$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa File: 5fa46662-88d2-4fa9-9076-26587048b3d0.roa (raw, json) Hash identifier: YJu6/tkfSUSZykR5Wj74caLlRIn7ibB/uVaUTKEanrg= Subject key identifier: ED:9A:AC:44:70:BC:FB:34:62:F1:A3:06:D6:DC:8A:F4:D0:66:CC:6F Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 1F015C0460898C0BA6384CD0EF246E128503D4E3 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa Signing time: Tue 20 May 2025 15:31:06 +0000 ROA not before: Tue 20 May 2025 15:31:06 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:01:5c:04:60:89:8c:0b:a6:38:4c:d0:ef:24:6e:12:85:03:d4:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 20 15:31:06 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=9630457c9707b6a4c3a6acb9d785acdeaa767ea3035310dece6200217ef3e77b, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:37:7b:bb:dc:7c:21:ad:4e:63:b2:32:99:40: 64:be:84:90:7b:c3:94:e2:0b:0c:6d:63:f7:59:c1: fc:ac:1d:2d:c5:18:e6:53:4f:e2:2a:58:4b:38:81: 66:88:8c:71:dc:9d:6b:0c:db:e9:ce:fa:83:77:8e: 44:6d:34:07:01:09:5f:45:f8:b3:1b:1e:fd:bf:7b: fd:81:48:52:52:aa:b5:41:74:10:e8:f4:36:97:4d: 08:ac:39:a6:3e:a0:08:ec:65:ee:a1:19:1e:d9:a4: 9d:0f:29:84:74:4a:00:e8:e8:14:9a:d3:58:2b:e5: d5:29:7b:f1:c4:9f:83:78:9a:d8:68:bc:2f:4f:b5: 41:fc:65:9f:79:61:b4:5c:d7:7c:9d:e5:d3:33:a9: 09:c2:05:c9:7f:77:53:bb:d3:1b:f8:c6:e8:9e:20: 86:fa:e4:8e:4b:00:62:d5:4d:3f:bf:56:98:49:7b: 14:4e:fc:af:08:b2:16:4e:3f:91:b7:6d:04:1c:41: b7:5d:5f:4a:09:c0:70:25:dc:5c:a0:85:ee:a7:cd: 40:4a:cf:b2:40:cf:c0:c4:41:59:26:dc:76:71:16: a9:f6:a2:5a:21:8b:7f:91:b0:8b:29:67:f3:47:4c: 97:4c:56:b0:8f:14:93:f6:78:c3:9c:d4:b9:5a:8c: 67:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9A:AC:44:70:BC:FB:34:62:F1:A3:06:D6:DC:8A:F4:D0:66:CC:6F X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.8.0/21 Signature Algorithm: sha256WithRSAEncryption 89:b0:14:7b:da:2c:79:34:88:35:56:45:2f:55:ce:fc:55:97: 09:61:0b:37:ad:bf:41:c7:c9:19:3f:d3:e7:28:5f:d9:45:a2: cc:24:e8:59:98:b9:b1:d9:b1:2c:3b:43:2c:d1:68:ea:03:ce: e2:a8:8a:a6:a8:28:36:11:b5:df:28:cf:5e:88:22:dc:63:88: aa:12:88:50:6b:33:1c:a4:7b:f7:fe:fe:c8:69:c5:d0:00:68: a4:89:32:f2:3f:02:c6:bc:a0:5f:cc:ec:d0:f5:74:44:88:5b: 71:05:8c:5d:50:4a:41:e2:ce:68:da:4d:94:bb:ca:b2:05:ac: 90:07:c2:f3:81:39:4a:ac:1f:bf:11:94:d0:50:c8:52:8f:e6: cb:f2:dd:52:e0:c0:b5:40:21:b6:9e:ef:04:9e:cc:3d:c0:ac: ef:46:7f:82:ff:df:db:28:05:f8:8a:23:61:08:6e:0b:c5:7c: f9:e8:cc:05:7f:4f:fa:ac:08:b4:0c:08:a5:15:b3:a4:72:85: 59:3c:51:73:42:01:13:47:03:db:1a:11:fa:14:0e:12:69:fe: 9d:5e:3e:62:1c:ac:20:75:2d:3a:8c:00:3e:ad:ed:92:53:7e: 5f:9a:30:61:31:8a:36:9b:ea:ca:d9:8b:8d:38:16:71:4a:f6: 13:3a:62:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHwFcBGCJjAumOEzQ7yRuEoUD1OMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNTIwMTUzMTA2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjMwNDU3Yzk3MDdiNmE0YzNhNmFjYjlkNzg1YWNkZWFh NzY3ZWEzMDM1MzEwZGVjZTYyMDAyMTdlZjNlNzdiMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDON3u73HwhrU5jsjKZQGS+hJB7w5TiCwxtY/dZwfysHS3F GOZTT+IqWEs4gWaIjHHcnWsM2+nO+oN3jkRtNAcBCV9F+LMbHv2/e/2BSFJSqrVB dBDo9DaXTQisOaY+oAjsZe6hGR7ZpJ0PKYR0SgDo6BSa01gr5dUpe/HEn4N4mtho vC9PtUH8ZZ95YbRc13yd5dMzqQnCBcl/d1O70xv4xuieIIb65I5LAGLVTT+/VphJ exRO/K8IshZOP5G3bQQcQbddX0oJwHAl3Fyghe6nzUBKz7JAz8DEQVkm3HZxFqn2 olohi3+RsIspZ/NHTJdMVrCPFJP2eMOc1LlajGcBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7ZqsRHC8+zRi8aMG1tyK9NBmzG8wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzVmYTQ2NjYyLTg4ZDItNGZhOS05MDc2LTI2NTg3MDQ4YjNkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwgwDQYJKoZIhvcNAQELBQADggEBAImwFHvaLHk0iDVWRS9VzvxVlwlh Czetv0HHyRk/0+coX9lFoswk6FmYubHZsSw7QyzRaOoDzuKoiqaoKDYRtd8oz16I ItxjiKoSiFBrMxyke/f+/shpxdAAaKSJMvI/Asa8oF/M7ND1dESIW3EFjF1QSkHi zmjaTZS7yrIFrJAHwvOBOUqsH78RlNBQyFKP5svy3VLgwLVAIbae7wSezD3ArO9G f4L/39soBfiKI2EIbgvFfPnozAV/T/qsCLQMCKUVs6RyhVk8UXNCARNHA9saEfoU DhJp/p1ePmIcrCB1LTqMAD6t7ZJTfl+aMGExijab6srZi404FnFK9hM6YpM= -----END CERTIFICATE-----Generated at Sat Jun 7 17:23:12 2025 by rpki-client