$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa File: 5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa (raw, json) Hash identifier: 7TQmyunN1N9gT2WStnqqPItdsfqDN0nilu7Y1s+I+OA= Subject key identifier: 69:E3:0E:95:09:1F:80:85:8A:49:C9:10:D7:29:AD:BF:D6:93:BF:73 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 359AD4C26A1C39114E2BD62A322DB99232178685 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa Signing time: Mon 01 Sep 2025 15:50:56 +0000 ROA not before: Mon 01 Sep 2025 15:50:56 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:9a:d4:c2:6a:1c:39:11:4e:2b:d6:2a:32:2d:b9:92:32:17:86:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 1 15:50:56 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=98a7e1bd288699a25771943988347575bc9e31afec9185a5d99466d1163a0fa7, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:0a:78:a2:3c:61:8d:bd:43:aa:9a:aa:e6:d1: 2a:e4:38:56:3b:67:1c:99:0a:c1:65:bd:5e:91:14: b5:85:86:4c:d0:a4:09:a6:f1:b0:e7:07:a5:12:53: db:a2:13:0d:d9:d7:99:ad:98:db:09:e9:97:c7:25: 92:3d:5f:6b:96:f1:da:b9:a0:05:85:a3:15:ec:2c: ad:2b:20:f8:92:23:16:12:35:04:20:93:72:ca:9e: 22:6f:5f:32:cd:bb:43:fc:7f:f3:79:8c:08:f5:25: d3:5c:15:ef:6c:17:fa:3a:b0:a7:27:43:17:42:8d: 8f:9d:93:d8:05:ec:fc:99:91:6d:b5:db:26:cb:38: e4:98:cd:0d:3e:52:b1:85:84:61:03:6b:35:15:90: 45:92:0c:ae:d5:a5:44:db:b8:52:0e:15:82:06:25: 11:87:f3:a1:da:0e:72:1b:72:6c:b5:f9:51:f4:e9: 0c:f0:7d:3f:14:17:3a:ac:56:74:84:15:1e:4f:27: 9d:b6:98:ca:17:d2:90:46:fd:7b:80:26:cd:a9:f9: 3b:8d:58:17:6d:58:68:7d:68:4d:47:b1:4c:87:01: b9:4c:78:5e:d7:22:ee:6a:ec:53:b6:00:70:ad:d2: aa:8c:92:74:58:8b:e7:93:57:2e:c0:91:76:16:06: 8a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E3:0E:95:09:1F:80:85:8A:49:C9:10:D7:29:AD:BF:D6:93:BF:73 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 40:d5:c0:ae:fb:e1:46:08:28:3b:bc:04:a3:56:48:a6:a5:4b: 21:8d:e7:06:9c:36:da:16:02:22:78:10:13:3b:82:fe:69:33: a6:dd:0d:cf:51:b5:22:a2:e5:d6:eb:ab:99:5b:9c:71:11:1d: c5:df:b2:3b:ae:28:6f:48:fb:d5:9f:6e:4b:b1:b4:e1:c4:26: 51:bd:60:18:9f:13:c4:a9:66:6d:aa:42:e7:4e:05:6f:ee:40: 66:8b:61:1c:ca:40:a5:8d:18:00:9f:66:21:62:b7:25:c0:9f: 1b:75:f1:e7:b6:97:a6:22:b3:56:9e:87:47:dd:01:52:f1:d2: 46:37:05:5e:f4:1e:27:55:70:4d:59:38:84:42:37:64:f2:4e: f5:56:70:91:04:5a:aa:43:3d:b9:47:a8:e3:74:4f:f2:84:62: bb:71:9b:13:61:84:5d:dc:29:a0:42:cf:d3:19:5e:79:07:89: 40:f4:11:bb:d4:7f:ac:6f:6e:12:f8:34:44:99:83:14:07:16: 9d:7e:4e:87:ed:a2:89:db:08:49:24:c1:f4:7f:f0:de:a3:53: 09:6c:76:48:57:ec:88:48:a8:ce:a1:3b:d9:01:e5:92:c0:60: 3b:0f:65:c1:13:d2:e4:63:43:c7:27:61:78:4a:c0:a5:e5:cd: 56:77:52:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNZrUwmocORFOK9YqMi25kjIXhoUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwOTAxMTU1MDU2WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGE3ZTFiZDI4ODY5OWEyNTc3MTk0Mzk4ODM0NzU3NWJj OWUzMWFmZWM5MTg1YTVkOTk0NjZkMTE2M2EwZmE3MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSCniiPGGNvUOqmqrm0SrkOFY7ZxyZCsFlvV6RFLWFhkzQ pAmm8bDnB6USU9uiEw3Z15mtmNsJ6ZfHJZI9X2uW8dq5oAWFoxXsLK0rIPiSIxYS NQQgk3LKniJvXzLNu0P8f/N5jAj1JdNcFe9sF/o6sKcnQxdCjY+dk9gF7PyZkW21 2ybLOOSYzQ0+UrGFhGEDazUVkEWSDK7VpUTbuFIOFYIGJRGH86HaDnIbcmy1+VH0 6QzwfT8UFzqsVnSEFR5PJ522mMoX0pBG/XuAJs2p+TuNWBdtWGh9aE1HsUyHAblM eF7XIu5q7FO2AHCt0qqMknRYi+eTVy7AkXYWBoq1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaeMOlQkfgIWKSckQ1ymtv9aTv3MwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzVlZDUxMDQ5LWQzNDctNGRkMC1iZjRmLWUxY2I0YWRjODBjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBAEDVwK774UYIKDu8BKNWSKalSyGN 5wacNtoWAiJ4EBM7gv5pM6bdDc9RtSKi5dbrq5lbnHERHcXfsjuuKG9I+9Wfbkux tOHEJlG9YBifE8SpZm2qQudOBW/uQGaLYRzKQKWNGACfZiFityXAnxt18ee2l6Yi s1aeh0fdAVLx0kY3BV70HidVcE1ZOIRCN2TyTvVWcJEEWqpDPblHqON0T/KEYrtx mxNhhF3cKaBCz9MZXnkHiUD0EbvUf6xvbhL4NESZgxQHFp1+ToftoonbCEkkwfR/ 8N6jUwlsdkhX7IhIqM6hO9kB5ZLAYDsPZcET0uRjQ8cnYXhKwKXlzVZ3Urw= -----END CERTIFICATE-----Generated at Sun Sep 7 16:17:39 2025 by rpki-client