$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa File: 1fecfeb1-6716-4dba-8f93-41774a220829.roa (raw, json) Hash identifier: FuRWQ+2Bb8F4/2k4XrRbUpC6mk3dATDY0spoAvQEOT4= Subject key identifier: 4B:65:79:D7:B6:32:CB:D1:B7:16:6B:73:E9:AF:73:7E:C1:4C:E1:78 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 40B9764222A8A5D6283B4E209EC2A6DB49A3477F Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa Signing time: Tue 21 Oct 2025 00:50:04 +0000 ROA not before: Tue 21 Oct 2025 00:50:04 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 27 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b9:76:42:22:a8:a5:d6:28:3b:4e:20:9e:c2:a6:db:49:a3:47:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Oct 21 00:50:04 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=17b74687b2f8e0c605b04fa3aa9ea1048ac029e7b594fc0392aa9a922f555faf, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:99:7b:11:cc:2c:7c:16:8b:ef:53:b3:c4:9c: a6:73:7d:8e:4e:21:a4:8a:79:60:66:1a:ce:20:f3: b8:e8:28:1b:d5:aa:02:4e:31:e0:6e:98:5f:0a:5f: 70:a1:fd:30:70:ac:c8:43:72:b6:fe:cf:4c:3e:5e: fd:07:c7:45:f2:e0:2c:06:13:bb:ef:0b:9a:59:2b: 12:44:f8:bb:28:bd:28:6e:c8:f0:6e:6d:90:fd:8f: bd:59:50:e6:1c:64:78:41:ff:04:fd:89:1c:80:87: b0:4c:e2:c1:24:b9:66:7b:32:8f:8c:b0:fc:8f:de: 8c:89:25:fa:0a:91:b8:2a:9e:b4:8e:79:92:a7:94: f1:d5:71:e7:61:25:98:f2:2d:75:9b:ee:45:ec:02: b8:4d:f3:ed:df:3f:38:ec:cf:1d:78:8a:06:fc:d7: 76:3e:58:24:72:57:72:26:24:71:f5:25:f4:d8:34: 98:c2:53:99:25:a2:2d:88:44:3d:c0:e7:1e:c5:f9: a3:24:c4:29:12:cd:c9:ef:dc:d9:c0:a9:8c:02:a7: 5a:da:5c:2a:e0:80:7d:be:5f:92:37:ee:42:5e:46: 10:29:e8:89:83:58:ae:e3:29:7d:e2:e3:fe:75:f2: cc:83:9e:38:38:6a:c0:ae:a1:88:47:92:2b:9b:a8: 8d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:65:79:D7:B6:32:CB:D1:B7:16:6B:73:E9:AF:73:7E:C1:4C:E1:78 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:31:c9:1d:e7:bb:c3:4b:3f:89:dc:3e:c5:5f:8e:03:bb:38: ba:18:df:84:f2:68:8c:32:27:f7:95:00:cb:86:c9:20:2b:1d: 78:76:0f:ab:61:75:33:96:b3:d9:1a:e3:0e:03:fc:3f:a3:ba: 0c:80:56:b2:52:45:7e:7d:56:66:8c:65:3e:d1:8c:cf:86:75: f5:01:d1:85:80:58:9c:c4:25:84:b5:69:b1:bd:42:2b:ef:c6: 1c:83:c1:1b:1e:b0:1b:eb:eb:c2:70:ff:c6:67:3a:3b:41:e0: 32:67:0f:6b:b0:e4:b1:1d:26:86:9e:fb:2f:e7:6f:7c:33:66: 85:cb:d8:3a:37:a2:fe:58:62:08:09:cf:3f:de:a6:b2:9e:4f: 7b:ce:62:9d:15:b8:30:0c:65:c6:e2:e5:e9:6f:fd:35:05:7b: 63:73:9b:79:69:22:b1:76:dc:4f:52:d9:4d:c6:30:79:29:c6: 07:01:27:aa:a2:a6:1c:a2:f6:ff:88:7c:e3:04:f5:cf:34:ae: 65:38:e5:cb:a8:f3:f6:a8:8c:a4:a6:d8:9e:9f:89:6f:ab:64: 77:59:dc:23:65:51:57:f4:66:4c:ca:44:35:43:05:7c:28:21: 0a:05:ce:81:d1:83:db:cc:86:60:40:b4:dc:91:6f:08:9c:7e: 3b:37:46:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQLl2QiKopdYoO04gnsKm20mjR38wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUxMDIxMDA1MDA0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2I3NDY4N2IyZjhlMGM2MDViMDRmYTNhYTllYTEwNDhh YzAyOWU3YjU5NGZjMDM5MmFhOWE5MjJmNTU1ZmFmMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRmXsRzCx8FovvU7PEnKZzfY5OIaSKeWBmGs4g87joKBvV qgJOMeBumF8KX3Ch/TBwrMhDcrb+z0w+Xv0Hx0Xy4CwGE7vvC5pZKxJE+LsovShu yPBubZD9j71ZUOYcZHhB/wT9iRyAh7BM4sEkuWZ7Mo+MsPyP3oyJJfoKkbgqnrSO eZKnlPHVcedhJZjyLXWb7kXsArhN8+3fPzjszx14igb813Y+WCRyV3ImJHH1JfTY NJjCU5kloi2IRD3A5x7F+aMkxCkSzcnv3NnAqYwCp1raXCrggH2+X5I37kJeRhAp 6ImDWK7jKX3i4/518syDnjg4asCuoYhHkiubqI2VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS2V517Yyy9G3Fmtz6a9zfsFM4XgwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzFmZWNmZWIxLTY3MTYtNGRiYS04ZjkzLTQxNzc0YTIyMDgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwAwDQYJKoZIhvcNAQELBQADggEBAAoxyR3nu8NLP4ncPsVfjgO7OLoY 34TyaIwyJ/eVAMuGySArHXh2D6thdTOWs9ka4w4D/D+jugyAVrJSRX59VmaMZT7R jM+GdfUB0YWAWJzEJYS1abG9QivvxhyDwRsesBvr68Jw/8ZnOjtB4DJnD2uw5LEd Joae+y/nb3wzZoXL2Do3ov5YYggJzz/eprKeT3vOYp0VuDAMZcbi5elv/TUFe2Nz m3lpIrF23E9S2U3GMHkpxgcBJ6qiphyi9v+IfOME9c80rmU45cuo8/aojKSm2J6f iW+rZHdZ3CNlUVf0ZkzKRDVDBXwoIQoFzoHRg9vMhmBAtNyRbwicfjs3Rng= -----END CERTIFICATE-----Generated at Fri Oct 24 17:14:51 2025 by rpki-client