$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa File: 2f44b632-2720-4ef0-917c-4b1813ed903f.roa (raw, json) Hash identifier: r/Z2SHyb90wvBAFsSkPrKVbbh6Zk3JKQoQ5CWEPJsPE= Subject key identifier: AD:FF:8F:79:14:2C:3E:AE:A1:CC:0C:BD:CE:2B:7E:A8:55:9D:10:AF Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 7025DEF1215BD9DF610DCDB9A38068DE9310C136 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa Signing time: Tue 20 May 2025 15:30:18 +0000 ROA not before: Tue 20 May 2025 15:30:18 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:25:de:f1:21:5b:d9:df:61:0d:cd:b9:a3:80:68:de:93:10:c1:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 20 15:30:18 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=095918b9ae7cec94eba53b74056b689cf9a443eb91014830537b1fd6437063c2, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b0:19:f1:08:e9:c8:73:42:b4:bb:6d:45:bf: 35:ba:65:26:44:8b:3b:13:56:8c:41:2a:be:53:3e: 36:3f:13:9f:73:d0:08:70:24:67:56:fa:0a:4f:84: 77:8e:4f:e5:cb:f4:34:50:49:00:67:ed:32:1f:a7: 3b:66:8a:25:09:94:f1:92:66:cb:3e:92:88:f9:bc: b3:f0:e9:06:f8:5b:f3:9b:72:c0:3a:d4:7d:aa:5d: b3:9a:b8:20:61:58:97:67:01:3a:11:80:d7:e3:b1: 69:c3:5d:fc:b6:e1:fa:f6:4b:b6:5b:67:93:b3:52: 16:5f:e0:f8:10:66:63:b1:3b:6a:e6:76:5c:17:8f: 6b:1c:a4:c4:1d:3d:0a:6f:94:29:8f:b9:5d:42:a6: 95:81:0c:33:ad:15:c1:4c:71:f4:e9:e5:d4:14:43: a2:7a:43:28:10:5d:7c:24:db:86:94:80:16:87:2e: 38:84:50:85:0b:2e:04:aa:f1:4e:28:4a:b4:55:f5: 6a:a8:0f:ba:0f:47:48:ec:8a:bf:14:02:74:a8:eb: 8f:50:ae:c3:48:c2:5e:9b:17:9a:0b:e0:81:b7:5e: ea:98:a6:b7:89:96:67:c8:61:ad:3d:1b:60:05:5c: 02:63:4b:3c:fd:3c:db:fa:ec:cc:c5:2d:56:9c:fa: 45:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FF:8F:79:14:2C:3E:AE:A1:CC:0C:BD:CE:2B:7E:A8:55:9D:10:AF X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.64.0/18 Signature Algorithm: sha256WithRSAEncryption 86:e6:c1:ec:32:12:0d:65:ef:4b:60:c1:3b:81:95:a5:9f:ec: 40:df:fa:f8:1a:a2:2f:7f:69:39:22:c0:a5:30:7b:70:82:68: 45:43:f6:c3:ce:dd:18:63:87:41:10:60:f1:2a:2f:5b:c6:e5: 34:de:0f:c2:d7:77:f0:2b:55:5c:b3:37:a4:be:28:c4:d5:ac: 9a:b8:40:76:9f:1d:b3:e9:84:72:9b:52:4a:20:6e:27:3f:70: fa:89:1c:86:ae:79:87:37:20:81:41:ff:bd:28:a6:2b:cd:99: f6:b1:99:ea:09:3b:93:5b:3b:12:0f:f3:64:09:d2:e1:5f:9b: f6:0c:1a:2d:aa:71:6a:47:f1:a9:fe:15:fb:b0:88:49:06:56: b6:ad:0a:bd:a9:33:29:44:83:a8:fe:6b:d4:6d:21:25:ad:e1: 66:bd:23:45:70:38:42:4c:d2:33:53:a3:c0:f5:e5:eb:58:62: 6f:ce:7a:44:fa:7e:e7:74:2e:5d:44:5e:af:d5:cd:94:7e:84: 0d:c1:1b:4e:18:84:ae:40:ac:28:52:89:4e:83:3e:05:80:62: 9e:02:64:a0:29:3d:c4:f3:d3:b8:9e:bf:62:a8:a2:91:ea:b7: 95:86:b7:ba:83:03:ad:ed:e5:94:4b:2b:43:fb:2c:71:a7:3f: 3d:e2:b9:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcCXe8SFb2d9hDc25o4Bo3pMQwTYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNTIwMTUzMDE4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTU5MThiOWFlN2NlYzk0ZWJhNTNiNzQwNTZiNjg5Y2Y5 YTQ0M2ViOTEwMTQ4MzA1MzdiMWZkNjQzNzA2M2MyMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQsBnxCOnIc0K0u21FvzW6ZSZEizsTVoxBKr5TPjY/E59z 0AhwJGdW+gpPhHeOT+XL9DRQSQBn7TIfpztmiiUJlPGSZss+koj5vLPw6Qb4W/Ob csA61H2qXbOauCBhWJdnAToRgNfjsWnDXfy24fr2S7ZbZ5OzUhZf4PgQZmOxO2rm dlwXj2scpMQdPQpvlCmPuV1CppWBDDOtFcFMcfTp5dQUQ6J6QygQXXwk24aUgBaH LjiEUIULLgSq8U4oSrRV9WqoD7oPR0jsir8UAnSo649QrsNIwl6bF5oL4IG3XuqY preJlmfIYa09G2AFXAJjSzz9PNv67MzFLVac+kWzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrf+PeRQsPq6hzAy9zit+qFWdEK8wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzJmNDRiNjMyLTI3MjAtNGVmMC05MTdjLTRiMTgxM2VkOTAzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZgf0AwDQYJKoZIhvcNAQELBQADggEBAIbmwewyEg1l70tgwTuBlaWf7EDf +vgaoi9/aTkiwKUwe3CCaEVD9sPO3Rhjh0EQYPEqL1vG5TTeD8LXd/ArVVyzN6S+ KMTVrJq4QHafHbPphHKbUkogbic/cPqJHIaueYc3IIFB/70opivNmfaxmeoJO5Nb OxIP82QJ0uFfm/YMGi2qcWpH8an+FfuwiEkGVratCr2pMylEg6j+a9RtISWt4Wa9 I0VwOEJM0jNTo8D15etYYm/OekT6fud0Ll1EXq/VzZR+hA3BG04YhK5ArChSiU6D PgWAYp4CZKApPcTz07iev2KoopHqt5WGt7qDA63t5ZRLK0P7LHGnPz3iudE= -----END CERTIFICATE-----Generated at Fri Jun 6 03:38:32 2025 by rpki-client