$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa File: 9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa (raw, json) Hash identifier: otvDyzBaxz63haC6UfSeAMZuyl3mSTVl5F8zhik9JKI= Subject key identifier: A3:21:DD:54:0A:CE:D3:D6:77:C8:64:76:31:C3:08:D3:45:BB:99:51 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 3C7181CC66049F98EF2AD1A9AC9FA48D89C1546A Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa Signing time: Tue 21 Oct 2025 00:50:11 +0000 ROA not before: Tue 21 Oct 2025 00:50:11 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 27 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:71:81:cc:66:04:9f:98:ef:2a:d1:a9:ac:9f:a4:8d:89:c1:54:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Oct 21 00:50:11 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=37bc8f9ce496f13ed2b40c060f43f3e74b445aab2910f815d8db982dbda795fb, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:00:81:ca:38:2f:89:6f:ed:a4:32:aa:d0:4f: 31:2d:be:56:84:2e:58:c7:7f:4b:c1:52:90:89:71: e4:e9:c6:05:85:0d:e1:a6:b2:77:03:71:6e:fb:3f: 9f:09:5a:93:46:16:58:4d:21:a0:ba:f9:1c:12:f1: 65:1c:24:60:a2:bb:24:3a:4c:9e:fb:d4:75:9f:5f: 14:55:16:76:cf:83:b1:66:06:fa:81:f5:f3:1c:8f: ec:ab:c4:82:5c:f2:2a:c7:07:16:6b:83:3c:1a:fd: 02:53:6f:f3:a7:ba:0e:6b:08:66:72:72:85:ce:99: 85:92:93:20:bd:c2:dc:b2:60:d7:98:cb:d1:07:9c: e6:2f:b0:8d:46:3b:47:47:4b:92:5c:95:29:f5:f5: d5:f2:e8:32:c7:f1:dd:2f:fe:07:f9:37:66:21:54: 61:c9:29:9e:59:85:97:da:9f:b0:63:e3:94:6c:04: 68:3d:7a:80:9b:77:81:50:8d:6e:1f:13:0d:b0:e0: ef:c1:d8:60:09:9b:e0:2f:4e:26:cf:3a:fe:3c:71: b6:58:f3:f3:4c:8c:00:04:80:2f:4d:8e:cf:9d:65: a1:1c:c9:58:ad:1f:b7:f1:2b:a3:fc:b6:1c:fc:09: 56:bc:7f:b0:0d:24:7e:6f:12:75:69:80:2f:a4:db: c5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:21:DD:54:0A:CE:D3:D6:77:C8:64:76:31:C3:08:D3:45:BB:99:51 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:e6:75:78:1f:14:61:f9:6a:a7:9d:bd:fa:a0:dd:88:ef:fc: 12:fb:37:f4:96:0d:1a:77:d1:33:08:b1:da:98:55:f9:fc:72: 4d:20:37:0d:49:02:4f:e1:5c:73:59:33:06:57:7a:ef:87:86: da:7b:b5:9e:c4:e2:cb:18:c2:85:91:e3:40:e7:74:ba:e4:b2: 25:63:65:1a:4c:11:d9:39:53:4d:b6:71:ea:ab:1c:fa:b2:a9: a7:5c:8a:9b:18:38:9d:65:d9:d4:10:bb:95:ee:ac:ff:9d:9e: 98:56:24:b9:d1:74:1f:68:88:ff:3a:bf:f4:3c:2f:4a:a2:8d: a7:de:12:bd:d7:48:9d:4b:10:27:8a:fd:b0:a3:b1:bf:8a:cf: 36:73:fc:17:fb:d9:24:40:1f:82:7e:54:2d:2b:d0:62:7d:ce: 9a:33:4d:38:a4:a0:df:22:53:1e:5a:8b:fe:67:a5:73:9b:c3: 5c:03:d8:b7:4c:73:33:f5:5c:5a:18:94:91:bc:ff:89:db:57: 28:f5:3a:14:b0:bd:00:f4:da:d6:44:67:d3:86:df:12:cf:1c: 4d:39:25:9c:f0:f6:96:bd:3f:2e:39:d5:36:d7:a0:a0:20:ba: 18:1a:9a:3a:d3:3e:11:94:90:f6:7f:36:e0:18:47:d2:16:c4: 1d:e2:fe:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPHGBzGYEn5jvKtGprJ+kjYnBVGowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUxMDIxMDA1MDExWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2JjOGY5Y2U0OTZmMTNlZDJiNDBjMDYwZjQzZjNlNzRi NDQ1YWFiMjkxMGY4MTVkOGRiOTgyZGJkYTc5NWZiMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnAIHKOC+Jb+2kMqrQTzEtvlaELljHf0vBUpCJceTpxgWF DeGmsncDcW77P58JWpNGFlhNIaC6+RwS8WUcJGCiuyQ6TJ771HWfXxRVFnbPg7Fm BvqB9fMcj+yrxIJc8irHBxZrgzwa/QJTb/Onug5rCGZycoXOmYWSkyC9wtyyYNeY y9EHnOYvsI1GO0dHS5JclSn19dXy6DLH8d0v/gf5N2YhVGHJKZ5ZhZfan7Bj45Rs BGg9eoCbd4FQjW4fEw2w4O/B2GAJm+AvTibPOv48cbZY8/NMjAAEgC9Njs+dZaEc yVitH7fxK6P8thz8CVa8f7ANJH5vEnVpgC+k28X9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoyHdVArO09Z3yGR2McMI00W7mVEwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzlhNmFjZTU0LWYyMzEtNGUyNS04YTM2LWM0NjFkNDlkZmE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBAIzmdXgfFGH5aqedvfqg3Yjv/BL7 N/SWDRp30TMIsdqYVfn8ck0gNw1JAk/hXHNZMwZXeu+Hhtp7tZ7E4ssYwoWR40Dn dLrksiVjZRpMEdk5U022ceqrHPqyqadcipsYOJ1l2dQQu5XurP+dnphWJLnRdB9o iP86v/Q8L0qijafeEr3XSJ1LECeK/bCjsb+KzzZz/Bf72SRAH4J+VC0r0GJ9zpoz TTikoN8iUx5ai/5npXObw1wD2LdMczP1XFoYlJG8/4nbVyj1OhSwvQD02tZEZ9OG 3xLPHE05JZzw9pa9Py451TbXoKAguhgamjrTPhGUkPZ/NuAYR9IWxB3i/iw= -----END CERTIFICATE-----Generated at Fri Oct 24 17:17:03 2025 by rpki-client