$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa File: 5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa (raw, json) Hash identifier: hK8LmsXGQrQv2s5nTFYDwa0vavXtloozLLdXapd4W2I= Subject key identifier: 1F:54:18:EB:31:4A:56:52:9F:28:E2:EB:78:25:27:C0:61:BB:F8:20 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 5C4838B98EF37627E211FA14FC069ACFD5F0AD Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa Signing time: Tue 21 Oct 2025 00:50:03 +0000 ROA not before: Tue 21 Oct 2025 00:50:03 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 27 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:48:38:b9:8e:f3:76:27:e2:11:fa:14:fc:06:9a:cf:d5:f0:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Oct 21 00:50:03 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=e6984ad6002aa11be7ad9acd02caef1d3a84900997b6071f5ad008732bc7885a, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d3:ce:61:8a:07:e7:a4:e5:30:d6:52:c8:cb: c3:e1:40:68:c5:e0:9b:ba:41:50:1f:67:1c:b0:f1: f9:6d:99:59:45:74:57:1b:fe:d1:ee:18:0a:4a:3c: 63:90:0b:58:cf:19:11:80:67:37:1c:77:19:a2:d2: 4c:c9:17:05:58:fc:cf:0d:49:f0:0f:a5:c2:ed:c1: 82:39:5e:9e:a5:a0:20:ef:39:24:95:f4:9c:28:26: 32:44:27:98:d8:9d:d7:8e:4b:bc:06:91:55:50:96: da:e7:0b:42:08:2c:6d:94:ba:a8:b4:7b:c7:d9:ff: 08:f3:54:16:8f:ec:ff:fd:1d:e2:28:fa:eb:3a:50: df:eb:14:98:27:e3:c9:78:2a:b6:e1:78:12:e2:0e: e5:d5:33:e3:64:eb:5d:83:f0:7c:28:3d:aa:62:d9: a7:ba:7e:1d:78:7c:5a:f9:f6:6b:43:17:8f:67:a6: 6b:7a:2f:dd:f9:11:96:3d:0c:7e:c5:b9:00:c1:c4: 12:2c:65:5c:d4:d9:f3:1f:fe:4a:26:03:34:d8:a6: 3c:b0:72:88:6d:92:03:60:49:75:43:c7:78:af:67: 2d:ae:18:12:97:1a:66:bd:21:fb:c0:53:9e:84:93: 5d:21:a5:ac:01:18:b8:94:91:89:5e:4a:41:43:c4: c2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:54:18:EB:31:4A:56:52:9F:28:E2:EB:78:25:27:C0:61:BB:F8:20 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 41:67:25:8f:3d:ae:6d:f7:f9:70:92:11:f8:ee:e2:27:0c:06: 60:2f:6e:a2:ff:18:26:cb:f1:54:65:6a:1c:bf:4c:8a:30:de: e4:ac:b9:c5:5e:59:a7:59:81:36:5e:30:7c:6a:62:7d:a9:87: 93:dd:68:71:47:45:46:64:90:85:92:87:e0:c4:3e:46:37:70: e1:76:87:f7:03:cd:4b:79:ed:6b:41:fa:78:ff:f5:15:e3:4c: 45:a3:75:22:63:14:1e:af:5a:82:05:53:98:6c:1d:87:a9:09: b8:32:96:76:54:23:cb:d0:45:85:cc:65:51:4b:de:00:46:e0: 1b:0c:5a:38:cc:3d:c6:b6:49:76:65:4d:2a:4e:2e:09:f8:00: 15:47:1e:d3:b1:cb:a0:09:19:1a:14:14:2e:4a:11:f2:1e:d9: a8:60:3a:13:1c:c5:a2:6d:d2:d0:f3:4c:0c:e4:4e:e2:03:d2: f4:8b:94:d8:49:81:f3:59:b2:f8:1e:2a:bf:89:2c:5f:57:12: 02:51:72:83:07:51:5e:8c:e6:b6:c7:eb:55:6d:3c:ce:59:04: 16:38:be:38:5c:ef:6c:a6:25:9b:51:65:95:74:ce:05:0c:b2: 15:4f:cc:a9:ef:84:5b:a2:fb:2e:06:ae:43:26:06:d0:29:09: b4:eb:fb:d3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITXEg4uY7zdifiEfoU/Aaaz9XwrTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJjMDU2NzZjNzMzZmQ4Y2NhZTViZTYzYjkyYmRkYzkwYjdh NWI3NGU2OTQ0OWMxZWIwNDAeFw0yNTEwMjEwMDUwMDNaFw0yNTExMjUyMzU5NTla MHoxSTBHBgNVBAUTQGU2OTg0YWQ2MDAyYWExMWJlN2FkOWFjZDAyY2FlZjFkM2E4 NDkwMDk5N2I2MDcxZjVhZDAwODczMmJjNzg4NWExLTArBgNVBAMTJDAwOTlhN2Vh LTc5NGEtNGEyOC1iMTY0LTQ5NTQ3NjI2ZWIxMTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALnTzmGKB+ek5TDWUsjLw+FAaMXgm7pBUB9nHLDx+W2ZWUV0 Vxv+0e4YCko8Y5ALWM8ZEYBnNxx3GaLSTMkXBVj8zw1J8A+lwu3BgjlenqWgIO85 JJX0nCgmMkQnmNid145LvAaRVVCW2ucLQggsbZS6qLR7x9n/CPNUFo/s//0d4ij6 6zpQ3+sUmCfjyXgqtuF4EuIO5dUz42TrXYPwfCg9qmLZp7p+HXh8Wvn2a0MXj2em a3ov3fkRlj0MfsW5AMHEEixlXNTZ8x/+SiYDNNimPLByiG2SA2BJdUPHeK9nLa4Y EpcaZr0h+8BTnoSTXSGlrAEYuJSRiV5KQUPEwu8CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQfVBjrMUpWUp8o4ut4JSfAYbv4IDAfBgNVHSMEGDAWgBSZw1RMCMmUVLh5 lR7/pHqPY8indzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzc3YjU2NDI4LTli NTItNDE2Zi1iMjc5LWJiYWUxNDQyMmRlMi9jMDU2NzZjNzMzZmQ4Y2NhZTViZTYz YjkyYmRkYzkwYjdhNWI3NGU2OTQ0OWMxZWIwNC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS80MjU4MmM2Ny1kZDNmLTRiYzUtYmE2MC1lOTdl NTUyYzZlMzUvNWVkNTEwNDktZDM0Ny00ZGQwLWJmNGYtZTFjYjRhZGM4MGNhLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAt ZTk3ZTU1MmM2ZTM1L19Zeks1YjVqdVN2ZHlRdDZXM1RtbEVuQjZ3US5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB2B/ADANBgkqhkiG9w0BAQsFAAOCAQEAQWcljz2ubff5cJIR+O7iJwwGYC9u ov8YJsvxVGVqHL9MijDe5Ky5xV5Zp1mBNl4wfGpifamHk91ocUdFRmSQhZKH4MQ+ Rjdw4XaH9wPNS3nta0H6eP/1FeNMRaN1ImMUHq9aggVTmGwdh6kJuDKWdlQjy9BF hcxlUUveAEbgGwxaOMw9xrZJdmVNKk4uCfgAFUce07HLoAkZGhQULkoR8h7ZqGA6 ExzFom3S0PNMDORO4gPS9IuU2EmB81my+B4qv4ksX1cSAlFygwdRXozmtsfrVW08 zlkEFji+OFzvbKYlm1FllXTOBQyyFU/Mqe+EW6L7LgauQyYG0CkJtOv70w== -----END CERTIFICATE-----Generated at Fri Oct 24 17:16:53 2025 by rpki-client