$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa File: 9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa (raw, json) Hash identifier: vfRFMw/LtgoZrcVVkGfmm+6uGw7yPj93fYHGb6br8T0= Subject key identifier: DB:00:F4:BD:D5:BA:94:A7:74:03:72:88:A7:A6:70:BD:63:4B:63:E3 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: FE05EE83DBD7FB3443C51DAF974F5453EFC677 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa Signing time: Tue 20 May 2025 15:31:13 +0000 ROA not before: Tue 20 May 2025 15:31:13 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: fe:05:ee:83:db:d7:fb:34:43:c5:1d:af:97:4f:54:53:ef:c6:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 20 15:31:13 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=dafc424918b6e9389a0f89651e81f9ee0af688e10d80defe5c00dc6b5c57068f, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:11:28:17:5d:98:29:25:e5:77:0d:49:0a:96: 41:71:a8:d1:28:ad:02:06:3e:b2:2e:19:12:46:d3: e0:b1:be:51:c7:d6:e7:6a:4d:c8:d3:76:97:6c:5c: 76:8c:94:a5:3c:c4:5e:24:23:61:af:7d:58:08:3b: 6f:5d:04:36:72:f4:34:9a:ef:08:70:1b:bf:86:8e: f4:72:e4:a5:6b:ce:79:eb:df:1b:6f:73:07:3b:22: 93:44:2a:a6:3d:8b:c7:4e:61:18:2b:8c:91:d6:c0: 5e:b1:92:3b:f4:f7:12:87:af:41:ab:26:ee:6a:78: d4:66:50:79:9d:53:d7:e1:98:cd:2f:9e:1e:0f:98: 0a:0c:ab:60:95:a8:ef:d3:ab:60:d1:bf:d8:bb:dc: a0:85:02:f7:15:f8:88:fd:9d:7b:80:7d:e2:b5:60: 69:ba:97:08:09:34:36:63:86:9c:82:38:eb:f2:4a: 25:31:33:67:71:f9:fd:55:4b:cd:46:6e:4d:2e:fd: 80:5c:dd:6b:74:15:6d:25:d0:e1:a7:a2:45:d8:2c: 7f:12:a0:72:a7:f3:86:af:24:b7:bf:74:ed:3e:46: 55:f8:25:37:54:dc:38:73:ac:0e:4a:4b:66:46:56: a1:c6:15:29:ed:b3:ee:54:db:a9:59:8e:08:1e:1b: 61:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:00:F4:BD:D5:BA:94:A7:74:03:72:88:A7:A6:70:BD:63:4B:63:E3 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 31:72:68:a1:1c:3d:ea:e9:e6:c6:eb:7e:98:cf:f8:c3:ca:1f: b3:e2:c8:94:55:be:2a:6b:14:80:fc:b2:08:d2:a3:ee:60:9a: 7c:04:a7:24:a4:9a:a9:a4:37:2c:7c:1b:22:c6:ba:08:7c:55: b4:f3:65:28:df:e0:b6:1e:18:32:5a:fe:f0:ef:ef:41:65:fd: 17:ac:a1:5f:6d:b9:74:e7:38:8b:f7:c3:17:11:78:17:b0:fc: 9b:7a:2e:79:57:c8:63:70:56:e3:24:2a:15:e2:f3:48:3d:2a: 70:13:87:0a:1e:30:c8:f2:26:5c:54:84:68:10:23:2e:7e:0b: da:f2:bc:61:3e:a1:0d:4d:d5:a9:0a:8e:a6:eb:63:ae:53:8b: 8a:a5:fa:a4:4b:2a:61:1e:08:02:5d:39:60:ca:b1:cf:e8:47: 9b:48:29:35:66:cd:63:da:50:e2:33:a0:94:ee:61:94:86:eb: d2:8c:bc:c3:69:d0:7b:bc:7d:89:82:25:e8:78:ce:8b:63:87: e6:34:2b:4c:ce:b4:44:f2:63:24:21:71:74:a3:b1:b1:a6:0e: 96:dd:6a:13:f8:72:b9:b0:d5:4d:8f:6d:0d:ca:82:0c:bf:77: da:dd:3c:7d:60:5a:ca:cc:10:eb:f6:2d:52:5a:f1:fe:86:a0: dd:a5:cf:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAP4F7oPb1/s0Q8Udr5dPVFPvxncwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNTIwMTUzMTEzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWZjNDI0OTE4YjZlOTM4OWEwZjg5NjUxZTgxZjllZTBh ZjY4OGUxMGQ4MGRlZmU1YzAwZGM2YjVjNTcwNjhmMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCESgXXZgpJeV3DUkKlkFxqNEorQIGPrIuGRJG0+CxvlHH 1udqTcjTdpdsXHaMlKU8xF4kI2GvfVgIO29dBDZy9DSa7whwG7+GjvRy5KVrznnr 3xtvcwc7IpNEKqY9i8dOYRgrjJHWwF6xkjv09xKHr0GrJu5qeNRmUHmdU9fhmM0v nh4PmAoMq2CVqO/Tq2DRv9i73KCFAvcV+Ij9nXuAfeK1YGm6lwgJNDZjhpyCOOvy SiUxM2dx+f1VS81Gbk0u/YBc3Wt0FW0l0OGnokXYLH8SoHKn84avJLe/dO0+RlX4 JTdU3DhzrA5KS2ZGVqHGFSnts+5U26lZjggeG2FhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2wD0vdW6lKd0A3KIp6ZwvWNLY+MwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzlhNmFjZTU0LWYyMzEtNGUyNS04YTM2LWM0NjFkNDlkZmE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBADFyaKEcPerp5sbrfpjP+MPKH7Pi yJRVviprFID8sgjSo+5gmnwEpySkmqmkNyx8GyLGugh8VbTzZSjf4LYeGDJa/vDv 70Fl/ResoV9tuXTnOIv3wxcReBew/Jt6LnlXyGNwVuMkKhXi80g9KnAThwoeMMjy JlxUhGgQIy5+C9ryvGE+oQ1N1akKjqbrY65Ti4ql+qRLKmEeCAJdOWDKsc/oR5tI KTVmzWPaUOIzoJTuYZSG69KMvMNp0Hu8fYmCJeh4zotjh+Y0K0zOtETyYyQhcXSj sbGmDpbdahP4crmw1U2PbQ3Kggy/d9rdPH1gWsrMEOv2LVJa8f6GoN2lz6c= -----END CERTIFICATE-----Generated at Sun Jun 8 13:46:14 2025 by rpki-client