$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/a07adeae-538f-4d56-bebe-87d1a4b9c3b3.roa File: a07adeae-538f-4d56-bebe-87d1a4b9c3b3.roa (raw, json) Hash identifier: ufjoyIxqp9EW0xU4LWkpLH/+DQtR031s+uPiUvXmazg= Subject key identifier: D5:39:7C:A7:FE:87:80:81:EF:2B:86:3D:7D:89:BB:6E:88:EE:E4:2B Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 7645EBCA7B618763F97571373B812CAEAD1B89E8 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/a07adeae-538f-4d56-bebe-87d1a4b9c3b3.roa Signing time: Mon 01 Sep 2025 15:50:24 +0000 ROA not before: Mon 01 Sep 2025 15:50:24 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:45:eb:ca:7b:61:87:63:f9:75:71:37:3b:81:2c:ae:ad:1b:89:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 1 15:50:24 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=2a883b3e7a8d2e2b5cefea0623a99f660fdd3b5b00acc9e4109acd79e8b1ecf6, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a0:49:aa:5d:43:6c:6f:f9:17:96:cf:3c:c4: 9f:db:a7:67:85:f3:fa:42:e0:d5:56:ed:4e:29:58: 43:3a:e3:b7:24:8a:d8:0d:89:77:5c:53:29:f2:e2: 26:08:26:9f:af:07:8e:f0:95:4d:f3:93:78:9c:f3: 8f:e4:df:8a:39:b3:1f:63:a1:5c:92:65:9a:37:5b: bf:29:e8:36:e5:2f:c3:53:97:80:df:a3:bb:c2:0a: 99:40:a1:76:12:5c:15:37:41:7e:6b:7b:6f:1b:2e: af:6a:d6:ad:54:d2:05:c2:cc:8c:21:f0:94:53:00: 1c:66:43:87:02:b1:5b:7b:c0:64:41:8e:59:4f:c3: 9d:7e:8a:f6:42:2c:bb:2f:2e:ca:fd:84:f1:0f:51: d6:de:a3:2d:67:73:88:31:06:ee:62:4b:cb:84:f2: 59:09:c1:d9:e7:06:64:ee:d7:43:96:9e:43:33:41: 86:2a:00:93:9a:9d:a9:0d:b5:6e:86:88:02:18:9b: 97:a1:15:22:64:3b:f9:e3:68:60:6e:25:a0:bb:b6: d6:db:1f:90:ab:5a:9d:bf:3d:2d:85:cd:0c:8f:6c: 97:22:78:da:b2:e1:22:e5:ae:3c:91:cc:2b:8a:33: de:d5:73:11:e3:89:d6:63:b4:36:9a:22:7d:3e:54: f4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:39:7C:A7:FE:87:80:81:EF:2B:86:3D:7D:89:BB:6E:88:EE:E4:2B X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/a07adeae-538f-4d56-bebe-87d1a4b9c3b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.10.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:bf:c3:48:1d:eb:25:1b:21:7a:70:bc:d8:e4:84:9e:97:9c: ba:21:5d:38:4a:21:7e:e3:70:ca:a4:dc:ad:4e:21:cf:c1:ba: 81:19:90:25:1b:8c:1e:a5:59:ef:2c:a1:04:9e:9f:67:29:26: 4c:a4:4d:39:58:90:a1:dd:c8:d5:6d:c1:69:4e:c5:0c:a3:4f: 8f:b4:64:43:c4:39:87:f1:5f:38:04:ea:49:18:19:b7:f4:e5: 7d:a4:57:b0:73:29:08:36:de:39:e6:90:f9:23:41:4a:c3:e4: 0c:9b:f2:e9:99:22:67:ab:de:27:72:a1:ef:74:08:5b:a4:46: 09:28:82:58:ed:57:d6:9c:fb:df:e6:6c:f6:91:0b:ea:37:4d: 83:15:7e:27:49:0c:02:30:f7:a6:83:ac:f6:15:22:ac:ae:c6: 65:05:22:3a:01:21:6f:10:c2:64:dc:d5:cc:2c:cb:a3:1d:00: 7d:0f:91:22:9c:9d:04:8a:39:54:c1:c2:b1:e6:94:d8:11:4c: 26:07:1e:27:39:9d:ee:f4:fb:8e:c5:fc:f3:75:52:8a:55:a8: 34:f2:05:8e:53:3b:73:7e:7d:14:a4:4b:6e:44:bd:56:5e:6b: 58:2c:45:f7:80:4a:1f:22:91:aa:0a:9d:8a:a1:77:63:7d:bc: 37:9d:06:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdkXrynthh2P5dXE3O4Esrq0biegwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwOTAxMTU1MDI0WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTg4M2IzZTdhOGQyZTJiNWNlZmVhMDYyM2E5OWY2NjBm ZGQzYjViMDBhY2M5ZTQxMDlhY2Q3OWU4YjFlY2Y2MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaoEmqXUNsb/kXls88xJ/bp2eF8/pC4NVW7U4pWEM647ck itgNiXdcUyny4iYIJp+vB47wlU3zk3ic84/k34o5sx9joVySZZo3W78p6DblL8NT l4Dfo7vCCplAoXYSXBU3QX5re28bLq9q1q1U0gXCzIwh8JRTABxmQ4cCsVt7wGRB jllPw51+ivZCLLsvLsr9hPEPUdbeoy1nc4gxBu5iS8uE8lkJwdnnBmTu10OWnkMz QYYqAJOanakNtW6GiAIYm5ehFSJkO/njaGBuJaC7ttbbH5CrWp2/PS2FzQyPbJci eNqy4SLlrjyRzCuKM97VcxHjidZjtDaaIn0+VPRTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1Tl8p/6HgIHvK4Y9fYm7boju5CswHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2EwN2FkZWFlLTUzOGYtNGQ1Ni1iZWJlLTg3ZDFhNGI5YzNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgfwowDQYJKoZIhvcNAQELBQADggEBAFy/w0gd6yUbIXpwvNjkhJ6XnLoh XThKIX7jcMqk3K1OIc/BuoEZkCUbjB6lWe8soQSen2cpJkykTTlYkKHdyNVtwWlO xQyjT4+0ZEPEOYfxXzgE6kkYGbf05X2kV7BzKQg23jnmkPkjQUrD5Ayb8umZImer 3idyoe90CFukRgkogljtV9ac+9/mbPaRC+o3TYMVfidJDAIw96aDrPYVIqyuxmUF IjoBIW8QwmTc1cwsy6MdAH0PkSKcnQSKOVTBwrHmlNgRTCYHHic5ne70+47F/PN1 UopVqDTyBY5TO3N+fRSkS25EvVZea1gsRfeASh8ikaoKnYqhd2N9vDedBtY= -----END CERTIFICATE-----Generated at Sun Sep 7 16:15:37 2025 by rpki-client