$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa File: 5fa46662-88d2-4fa9-9076-26587048b3d0.roa (raw, json) Hash identifier: cu05vnRKR0Fo5v16OD1nMj5O9vmp9jye4L6SEWUDDiM= Subject key identifier: DA:A8:D8:E1:DC:7C:CD:72:1E:46:32:E8:17:47:F5:C3:AC:7A:CB:A3 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 3AFCD1558A051E8F9B8A6C35D440EC7BA5EA54BC Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa Signing time: Mon 01 Sep 2025 15:50:22 +0000 ROA not before: Mon 01 Sep 2025 15:50:22 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fc:d1:55:8a:05:1e:8f:9b:8a:6c:35:d4:40:ec:7b:a5:ea:54:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 1 15:50:22 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=35587ecd5b4af8a1b8b4d151c6245e4e4dda67da0d6d59c1ad75091ba6590517, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8f:63:aa:ea:62:84:1b:33:7a:86:26:3c:4e: a7:5e:0b:b4:b4:ab:15:6d:7f:93:e8:a6:27:f1:11: 50:41:79:aa:65:95:df:a6:e3:19:7a:5a:b0:ce:6a: e2:69:48:03:f1:79:16:8f:1a:e2:dd:f1:3a:e8:e3: 6f:90:3d:e8:f4:e2:ad:b8:5d:63:e4:61:a1:40:31: 78:a2:34:9d:30:f5:54:d3:d7:a6:53:95:df:73:ca: 75:29:8f:af:61:b3:9f:b5:02:02:b6:29:ff:48:4a: 77:45:27:a5:91:57:22:df:42:00:1a:7e:cb:73:45: 6c:ca:d2:f4:63:45:f5:9d:f6:61:cb:ee:2e:a1:7b: f5:0f:98:3d:0b:30:67:bc:2a:62:05:cf:2a:22:2e: da:5d:dd:da:93:13:01:1a:9a:77:91:b9:9d:8a:b1: 08:b2:40:53:cc:c5:79:38:6a:b8:13:c4:fe:e9:d5: de:5c:f9:56:7c:3e:a8:6f:44:80:09:f8:df:1a:09: 06:21:50:c9:fe:61:d4:33:3c:ad:48:7b:8d:35:99: 1e:07:0c:01:58:85:9f:bd:90:dc:77:f8:e8:91:58: 19:ea:0f:cc:e5:e5:24:f1:bf:06:77:b7:43:71:4d: 3f:e2:e8:f5:23:c5:69:c1:4a:64:67:25:53:69:e8: 38:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A8:D8:E1:DC:7C:CD:72:1E:46:32:E8:17:47:F5:C3:AC:7A:CB:A3 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.8.0/21 Signature Algorithm: sha256WithRSAEncryption 35:48:6e:f4:ee:34:db:95:3b:1a:ab:e2:10:06:d7:3c:39:9d: c4:1f:ed:21:d1:5e:8e:bc:09:57:6e:92:46:71:03:b3:fc:05: 36:99:3a:ab:39:44:28:11:29:50:c8:11:75:f7:7a:b7:90:a2: c0:78:f8:44:47:9b:3d:e3:b1:c1:f1:c4:a2:1e:f7:7a:96:d5: 36:45:44:6e:61:e3:c4:0d:5f:28:56:e1:28:af:d7:ea:22:f8: a6:5f:02:50:6d:32:b7:ed:85:b3:06:c2:46:25:86:52:0c:81: 02:68:5f:5d:1a:18:6d:e7:07:3d:73:18:09:5a:9b:c0:c8:31: b9:cb:0a:d6:bb:9d:93:91:6b:34:6c:f3:f6:23:2f:55:c5:4d: 8e:9b:87:64:85:1d:f0:25:cb:ce:4d:af:01:24:22:93:b1:56: 0a:a6:5b:d9:6d:4f:83:e6:ef:14:24:cb:76:ce:c9:60:d7:5f: 5d:6b:5f:5e:7d:1a:20:d8:1f:f2:eb:86:98:58:a1:2d:5c:ff: 3f:67:6a:c4:f5:0c:47:f1:70:90:a6:66:b6:30:f0:8d:15:30: e0:5e:fe:a8:3a:ac:a6:a3:78:5f:81:69:f2:e0:09:6b:ef:71: 38:e0:78:ac:dc:b3:ec:7a:8e:60:97:36:15:03:b6:9e:26:b2: d7:bd:4a:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOvzRVYoFHo+bimw11EDse6XqVLwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwOTAxMTU1MDIyWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTU4N2VjZDViNGFmOGExYjhiNGQxNTFjNjI0NWU0ZTRk ZGE2N2RhMGQ2ZDU5YzFhZDc1MDkxYmE2NTkwNTE3MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3j2Oq6mKEGzN6hiY8TqdeC7S0qxVtf5PopifxEVBBeapl ld+m4xl6WrDOauJpSAPxeRaPGuLd8Tro42+QPej04q24XWPkYaFAMXiiNJ0w9VTT 16ZTld9zynUpj69hs5+1AgK2Kf9ISndFJ6WRVyLfQgAafstzRWzK0vRjRfWd9mHL 7i6he/UPmD0LMGe8KmIFzyoiLtpd3dqTEwEamneRuZ2KsQiyQFPMxXk4argTxP7p 1d5c+VZ8PqhvRIAJ+N8aCQYhUMn+YdQzPK1Ie401mR4HDAFYhZ+9kNx3+OiRWBnq D8zl5STxvwZ3t0NxTT/i6PUjxWnBSmRnJVNp6DiHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2qjY4dx8zXIeRjLoF0f1w6x6y6MwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzVmYTQ2NjYyLTg4ZDItNGZhOS05MDc2LTI2NTg3MDQ4YjNkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwgwDQYJKoZIhvcNAQELBQADggEBADVIbvTuNNuVOxqr4hAG1zw5ncQf 7SHRXo68CVdukkZxA7P8BTaZOqs5RCgRKVDIEXX3ereQosB4+ERHmz3jscHxxKIe 93qW1TZFRG5h48QNXyhW4Siv1+oi+KZfAlBtMrfthbMGwkYlhlIMgQJoX10aGG3n Bz1zGAlam8DIMbnLCta7nZORazRs8/YjL1XFTY6bh2SFHfAly85NrwEkIpOxVgqm W9ltT4Pm7xQky3bOyWDXX11rX159GiDYH/LrhphYoS1c/z9nasT1DEfxcJCmZrYw 8I0VMOBe/qg6rKajeF+BafLgCWvvcTjgeKzcs+x6jmCXNhUDtp4mste9SnE= -----END CERTIFICATE-----Generated at Sun Sep 7 11:21:34 2025 by rpki-client