$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa File: 9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa (raw, json) Hash identifier: 7F5aKl5HBNwUf1bruXmwRvnjhw87ubvjUhx+l0xUzwY= Subject key identifier: E1:C5:D6:93:B0:41:2C:B1:B8:4B:76:55:5B:EE:C3:3F:80:84:6A:DA Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 633F82D4F39A8CAAFD069769437E6FBF94D9A9C4 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa Signing time: Mon 01 Sep 2025 15:50:29 +0000 ROA not before: Mon 01 Sep 2025 15:50:29 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:3f:82:d4:f3:9a:8c:aa:fd:06:97:69:43:7e:6f:bf:94:d9:a9:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 1 15:50:29 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=2a9592e98c1c2943679849ae4cc2ef77c63206bdef82a91199f58bb95de2bc5f, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8c:c5:52:e9:53:dd:78:00:f1:d9:d4:0e:2c: 61:49:5f:08:80:2c:fb:46:b7:c0:f0:20:6e:1a:0b: a9:e1:42:e4:b6:ee:ca:96:aa:4f:aa:f9:61:56:28: 5f:d1:fc:31:af:44:ac:51:e4:90:a9:64:e5:65:61: 24:df:f0:08:fa:dc:37:98:ca:92:32:25:61:c8:54: b3:d3:1f:00:99:72:56:f4:dc:47:4d:48:30:3c:40: d2:87:b9:e2:c8:35:3c:1b:6e:e5:ad:28:80:e8:85: 0e:9f:48:23:eb:33:44:dd:73:c8:05:27:d8:a6:78: 61:36:12:03:e4:0a:91:60:05:e0:aa:eb:33:5a:72: 5b:8c:e9:10:c8:b4:ce:57:bc:02:8f:89:9a:db:6e: 54:7e:c5:33:60:91:3e:bb:ea:4f:d1:e4:d9:d2:eb: da:53:76:8c:d4:75:da:25:ba:8b:ba:08:07:7c:20: 9b:40:d0:dd:83:d2:b6:1d:bb:4b:d2:ee:b0:37:66: db:6c:85:54:4e:42:5e:60:d0:cd:04:ea:fa:46:03: ff:01:c9:5b:3a:14:72:bb:54:51:58:ca:62:ed:a1: 83:1a:35:e8:05:9e:be:3f:7c:64:34:62:b9:84:e4: ec:bb:70:77:e3:39:c9:30:fb:47:25:f2:cf:85:f3: a7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C5:D6:93:B0:41:2C:B1:B8:4B:76:55:5B:EE:C3:3F:80:84:6A:DA X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 43:50:8e:4f:7e:f7:69:13:f9:6f:ce:8c:36:fc:ad:06:1c:cb: 67:52:f6:1c:86:a6:6f:d1:f5:65:8d:f0:f8:85:a2:5a:ed:4d: a5:51:6b:fd:a9:95:ad:a1:57:64:c7:31:e7:70:60:49:ae:6c: a1:75:05:c1:f3:99:fa:9c:b3:7a:00:72:af:cf:02:5a:97:a0: 9b:8b:ad:b8:c3:94:02:cb:10:b3:3e:0c:3b:51:22:5b:03:1c: cd:26:47:b8:43:9d:33:c3:a9:1f:32:43:07:f3:9d:0d:61:9e: 05:16:69:ae:b7:4b:5b:f3:46:7b:da:5d:55:30:62:e2:53:00: f8:a3:e2:54:09:65:56:41:82:fa:19:f5:fa:65:18:cc:26:51: 8d:42:87:ff:a8:b0:c6:cd:5b:1a:0d:72:db:1f:b3:40:1e:b1: d7:02:1e:97:ba:c6:db:c5:c4:90:8e:5f:e4:1d:0d:37:d7:b7: 90:7c:4a:eb:55:f6:ac:f9:85:17:15:7a:12:56:7e:cb:1d:37: e6:ef:c6:2d:bd:0d:06:63:92:c2:51:34:b1:ba:55:14:14:f6: 48:4e:19:38:96:0d:24:69:19:80:24:d3:30:b9:c6:f8:f7:0a: cf:ac:c9:1f:89:e8:e9:6b:5d:03:2a:b0:3c:e2:cd:42:17:57: fe:99:54:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYz+C1POajKr9BpdpQ35vv5TZqcQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwOTAxMTU1MDI5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTk1OTJlOThjMWMyOTQzNjc5ODQ5YWU0Y2MyZWY3N2M2 MzIwNmJkZWY4MmE5MTE5OWY1OGJiOTVkZTJiYzVmMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7jMVS6VPdeADx2dQOLGFJXwiALPtGt8DwIG4aC6nhQuS2 7sqWqk+q+WFWKF/R/DGvRKxR5JCpZOVlYSTf8Aj63DeYypIyJWHIVLPTHwCZclb0 3EdNSDA8QNKHueLINTwbbuWtKIDohQ6fSCPrM0Tdc8gFJ9imeGE2EgPkCpFgBeCq 6zNacluM6RDItM5XvAKPiZrbblR+xTNgkT676k/R5NnS69pTdozUddoluou6CAd8 IJtA0N2D0rYdu0vS7rA3ZttshVROQl5g0M0E6vpGA/8ByVs6FHK7VFFYymLtoYMa NegFnr4/fGQ0YrmE5Oy7cHfjOckw+0cl8s+F86ezAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4cXWk7BBLLG4S3ZVW+7DP4CEatowHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzlhNmFjZTU0LWYyMzEtNGUyNS04YTM2LWM0NjFkNDlkZmE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBAENQjk9+92kT+W/OjDb8rQYcy2dS 9hyGpm/R9WWN8PiFolrtTaVRa/2pla2hV2THMedwYEmubKF1BcHzmfqcs3oAcq/P AlqXoJuLrbjDlALLELM+DDtRIlsDHM0mR7hDnTPDqR8yQwfznQ1hngUWaa63S1vz RnvaXVUwYuJTAPij4lQJZVZBgvoZ9fplGMwmUY1Ch/+osMbNWxoNctsfs0AesdcC Hpe6xtvFxJCOX+QdDTfXt5B8SutV9qz5hRcVehJWfssdN+bvxi29DQZjksJRNLG6 VRQU9khOGTiWDSRpGYAk0zC5xvj3Cs+syR+J6OlrXQMqsDzizUIXV/6ZVPM= -----END CERTIFICATE-----Generated at Sun Sep 7 11:18:38 2025 by rpki-client