$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa File: 1fecfeb1-6716-4dba-8f93-41774a220829.roa (raw, json) Hash identifier: LpTWR+s1GlKsWfeHR4is/x3GGJz2YELy96PCSzIpV6o= Subject key identifier: 04:AC:75:32:51:23:45:82:18:4E:69:A8:46:59:34:A6:1B:4E:1D:EC Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 6E97AFB5461565480D0F68E5A0271B30063BB78C Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa Signing time: Mon 01 Sep 2025 15:50:17 +0000 ROA not before: Mon 01 Sep 2025 15:50:17 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:97:af:b5:46:15:65:48:0d:0f:68:e5:a0:27:1b:30:06:3b:b7:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 1 15:50:17 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=7c2c6678ef502f60d11cdd98d837aa697d7ecbcfd31d330567713377288b03bd, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d4:81:44:b6:16:47:4a:27:8c:47:75:28:8a: 03:3d:77:91:4f:da:ab:89:00:de:87:39:8e:55:c2: 4f:6d:c3:01:6f:fe:3c:95:7c:c3:ac:8d:8a:de:b7: 5d:a9:85:87:ae:b2:d7:8e:07:25:8d:b3:f6:dd:2e: 3d:73:6f:e7:a2:4d:6d:d4:7f:09:e8:ab:e2:ab:f2: fb:fd:40:84:14:0a:fd:56:99:94:c0:cd:2b:36:4a: 26:e6:c9:e5:f1:14:3e:33:4f:ae:ef:7c:50:e3:c7: 0d:3d:c6:79:4b:28:ea:29:e6:78:07:ab:84:8c:3e: fe:87:e6:d4:2c:d7:c3:e0:5f:e5:a2:54:ab:39:46: d0:4f:e5:68:27:6a:c8:d5:bb:c1:ea:40:95:23:03: 4a:c1:55:fd:4f:3b:e5:48:20:22:38:39:89:db:63: fb:25:09:83:d6:96:16:68:da:a5:d0:c3:96:34:f2: 01:39:40:b6:a4:61:25:87:30:6a:b4:c2:e7:ab:e9: 07:5a:79:be:3f:a6:f5:c0:4e:0f:2a:01:6f:6f:8e: 50:e3:bc:23:e2:f8:fd:de:42:4a:7e:82:16:37:25: c6:88:8e:a0:cc:89:7e:92:72:fc:f9:78:d9:9c:ce: 6f:aa:1e:54:8b:d3:3c:75:bc:82:82:6d:6b:2a:ec: cf:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AC:75:32:51:23:45:82:18:4E:69:A8:46:59:34:A6:1B:4E:1D:EC X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/21 Signature Algorithm: sha256WithRSAEncryption 77:7b:25:71:84:f8:19:a6:d7:0b:8b:b9:83:a2:ec:e4:b2:b3: da:a5:86:69:cc:cd:1f:55:10:71:39:fa:fb:c8:26:c2:70:69: a9:b5:a2:73:0a:d9:79:de:a7:43:c1:91:97:89:4a:08:ce:ef: 21:8a:c2:c1:d5:a5:fe:f1:6b:e2:8c:09:77:19:cf:33:79:fa: c7:f4:49:67:ba:84:23:fe:d6:e3:b2:77:20:46:45:63:f6:49: 54:9d:91:cf:d5:fe:78:97:a1:9f:72:ea:39:51:65:31:65:2f: 1e:30:e0:d8:c8:f1:01:ce:32:91:8d:19:ad:0a:90:75:01:60: 90:8c:f7:57:51:59:c9:e5:cc:3e:db:32:c4:c0:21:12:06:37: 35:19:aa:1a:67:6b:49:16:0f:68:02:1e:da:44:f7:c3:06:ce: ce:f9:31:01:bf:1b:0c:c8:8f:58:14:3c:57:34:09:c1:e2:35: 3e:30:4e:3c:ea:f0:e5:41:87:a6:52:bc:17:f4:23:7b:88:f7: d7:b4:60:ec:12:61:97:c1:60:21:1b:28:61:d1:e2:5c:40:9c: 04:89:bf:89:89:bf:1a:1a:53:57:5b:41:0a:fb:ad:45:32:f1: ed:88:ff:9b:40:82:5d:cb:bf:16:7a:aa:8b:7d:87:8a:d0:17: 9a:ad:29:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbpevtUYVZUgND2jloCcbMAY7t4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwOTAxMTU1MDE3WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzJjNjY3OGVmNTAyZjYwZDExY2RkOThkODM3YWE2OTdk N2VjYmNmZDMxZDMzMDU2NzcxMzM3NzI4OGIwM2JkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT1IFEthZHSieMR3UoigM9d5FP2quJAN6HOY5Vwk9twwFv /jyVfMOsjYret12phYeusteOByWNs/bdLj1zb+eiTW3Ufwnoq+Kr8vv9QIQUCv1W mZTAzSs2SibmyeXxFD4zT67vfFDjxw09xnlLKOop5ngHq4SMPv6H5tQs18PgX+Wi VKs5RtBP5WgnasjVu8HqQJUjA0rBVf1PO+VIICI4OYnbY/slCYPWlhZo2qXQw5Y0 8gE5QLakYSWHMGq0wuer6Qdaeb4/pvXATg8qAW9vjlDjvCPi+P3eQkp+ghY3JcaI jqDMiX6Scvz5eNmczm+qHlSL0zx1vIKCbWsq7M9JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBKx1MlEjRYIYTmmoRlk0phtOHewwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzFmZWNmZWIxLTY3MTYtNGRiYS04ZjkzLTQxNzc0YTIyMDgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwAwDQYJKoZIhvcNAQELBQADggEBAHd7JXGE+Bmm1wuLuYOi7OSys9ql hmnMzR9VEHE5+vvIJsJwaam1onMK2Xnep0PBkZeJSgjO7yGKwsHVpf7xa+KMCXcZ zzN5+sf0SWe6hCP+1uOydyBGRWP2SVSdkc/V/niXoZ9y6jlRZTFlLx4w4NjI8QHO MpGNGa0KkHUBYJCM91dRWcnlzD7bMsTAIRIGNzUZqhpna0kWD2gCHtpE98MGzs75 MQG/GwzIj1gUPFc0CcHiNT4wTjzq8OVBh6ZSvBf0I3uI99e0YOwSYZfBYCEbKGHR 4lxAnASJv4mJvxoaU1dbQQr7rUUy8e2I/5tAgl3LvxZ6qot9h4rQF5qtKa8= -----END CERTIFICATE-----Generated at Sun Sep 7 16:17:43 2025 by rpki-client