$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa File: 661f32c0-f8f7-4621-8aaf-7a270e451918.roa (raw, json) Hash identifier: i5t21X7sdc+RjRTlnWqZZGYfFaxy3Mf8mtwDbicvTfw= Subject key identifier: B0:C6:56:54:89:B5:48:F4:81:FC:91:1D:0D:FD:02:EE:48:D7:7E:75 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 1C3D071F4986F45E413D47583875A83104AE7A52 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa Signing time: Tue 21 Oct 2025 00:50:13 +0000 ROA not before: Tue 21 Oct 2025 00:50:13 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:3d:07:1f:49:86:f4:5e:41:3d:47:58:38:75:a8:31:04:ae:7a:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Oct 21 00:50:13 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=f2fd3ab4415437e9019bdbf30ed3bfa050dabb582cdfde2ad91fa37eb9b3897d, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2e:ae:48:68:4b:ba:46:44:dd:de:48:fb:47: 40:0b:23:f7:d8:cc:80:21:a9:41:f5:08:41:b0:d6: ca:7c:fd:a1:5f:6d:39:f5:1c:41:6b:ad:71:89:bf: f0:e3:81:2f:13:90:59:08:a7:a8:73:57:a3:b4:a1: 81:fe:c3:e5:8a:ad:2c:fe:ef:e7:c3:e2:df:b0:1d: 5e:38:1c:d4:7f:c9:60:a6:7a:54:5d:a4:91:de:30: da:64:d3:34:0a:9f:ff:23:0b:54:89:8c:f1:9b:38: b4:5b:0b:7c:a4:3e:15:e9:b3:fa:b1:ad:6d:5b:e6: 40:56:d2:fc:db:c2:6f:ba:4d:b2:6f:fa:9f:30:3f: a6:05:8c:50:1f:a3:c5:7f:d1:15:dd:cf:a9:0c:3c: 5e:a1:36:10:1b:09:74:11:91:07:12:4f:3b:a2:54: e6:4a:e7:d0:59:84:25:b6:5c:75:e3:98:63:ff:20: ea:a1:2b:bf:4c:c8:7c:f6:d8:01:89:90:d8:6d:56: 3c:aa:f8:d0:27:18:dc:38:5f:65:af:8f:aa:82:c1: 97:fd:86:8c:e8:5a:ae:30:05:bc:10:6d:d3:12:33: fa:45:03:a5:d1:2a:d4:05:fc:43:9e:51:26:d6:3b: 5e:c8:08:1d:8b:e7:57:4e:d4:71:e9:92:0a:8f:26: 39:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C6:56:54:89:B5:48:F4:81:FC:91:1D:0D:FD:02:EE:48:D7:7E:75 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.9.0/24 Signature Algorithm: sha256WithRSAEncryption 82:cc:57:7b:a7:93:bb:7b:f2:4f:46:4e:0e:c3:f8:2f:bb:1a: 74:ec:97:46:57:7e:5e:16:5d:b3:ce:f1:12:13:36:f4:87:51: 03:23:0e:13:35:a8:cc:2c:c6:43:a9:6d:f7:2d:16:28:6c:55: 4b:3c:28:96:7d:82:31:ff:ba:82:ef:3e:83:a1:3f:32:33:89: 88:d8:22:1b:29:ec:7b:88:c4:8f:79:4d:0d:18:ab:b4:ae:2c: c6:e2:2a:ed:97:f8:8f:fd:d9:ee:e8:49:63:a5:3b:ea:c6:c6: 78:47:47:ba:43:74:20:af:64:c7:d0:c1:f1:b2:b8:1d:c9:05: aa:e6:60:fb:e5:f0:41:d5:a3:79:62:c4:ee:9b:70:24:8e:f6: 99:57:f3:65:09:39:26:1d:ad:fc:29:69:2f:e9:ce:1d:00:21: d3:6a:ce:5a:0e:7a:b6:9b:93:dc:bb:b3:63:ce:0d:46:42:b3: 14:cf:cb:d3:46:00:d3:46:81:49:40:1d:6c:58:d2:6f:67:82: f8:96:fc:85:64:69:68:0d:c6:62:42:84:fb:cc:82:38:58:fa: 4b:c4:6e:9f:f4:f2:88:4e:ca:3f:c8:1a:97:70:27:50:3b:d0: 61:49:da:f2:9d:58:48:93:bf:7e:a7:0c:94:d6:a9:0b:71:54: 5c:7d:04:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHD0HH0mG9F5BPUdYOHWoMQSuelIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUxMDIxMDA1MDEzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmZkM2FiNDQxNTQzN2U5MDE5YmRiZjMwZWQzYmZhMDUw ZGFiYjU4MmNkZmRlMmFkOTFmYTM3ZWI5YjM4OTdkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOLq5IaEu6RkTd3kj7R0ALI/fYzIAhqUH1CEGw1sp8/aFf bTn1HEFrrXGJv/DjgS8TkFkIp6hzV6O0oYH+w+WKrSz+7+fD4t+wHV44HNR/yWCm elRdpJHeMNpk0zQKn/8jC1SJjPGbOLRbC3ykPhXps/qxrW1b5kBW0vzbwm+6TbJv +p8wP6YFjFAfo8V/0RXdz6kMPF6hNhAbCXQRkQcSTzuiVOZK59BZhCW2XHXjmGP/ IOqhK79MyHz22AGJkNhtVjyq+NAnGNw4X2Wvj6qCwZf9hozoWq4wBbwQbdMSM/pF A6XRKtQF/EOeUSbWO17ICB2L51dO1HHpkgqPJjl3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsMZWVIm1SPSB/JEdDf0C7kjXfnUwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzY2MWYzMmMwLWY4ZjctNDYyMS04YWFmLTdhMjcwZTQ1MTkxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwkwDQYJKoZIhvcNAQELBQADggEBAILMV3unk7t78k9GTg7D+C+7GnTs l0ZXfl4WXbPO8RITNvSHUQMjDhM1qMwsxkOpbfctFihsVUs8KJZ9gjH/uoLvPoOh PzIziYjYIhsp7HuIxI95TQ0Yq7SuLMbiKu2X+I/92e7oSWOlO+rGxnhHR7pDdCCv ZMfQwfGyuB3JBarmYPvl8EHVo3lixO6bcCSO9plX82UJOSYdrfwpaS/pzh0AIdNq zloOerabk9y7s2PODUZCsxTPy9NGANNGgUlAHWxY0m9ngviW/IVkaWgNxmJChPvM gjhY+kvEbp/08ohOyj/IGpdwJ1A70GFJ2vKdWEiTv36nDJTWqQtxVFx9BDI= -----END CERTIFICATE-----Generated at Tue Oct 21 04:34:49 2025 by rpki-client