$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/a07adeae-538f-4d56-bebe-87d1a4b9c3b3.roa File: a07adeae-538f-4d56-bebe-87d1a4b9c3b3.roa (raw, json) Hash identifier: Tjl4j/Q/fhxF+8GymeOTrDSFC1f0wrHb7fevqRNb2BE= Subject key identifier: 81:DA:D2:E0:19:BF:03:F6:91:FB:94:78:F7:06:8E:31:94:B5:23:EF Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 68AF7B89E9525C95EAE645746B6D596E815E6DDE Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/a07adeae-538f-4d56-bebe-87d1a4b9c3b3.roa Signing time: Tue 20 May 2025 15:31:09 +0000 ROA not before: Tue 20 May 2025 15:31:09 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:af:7b:89:e9:52:5c:95:ea:e6:45:74:6b:6d:59:6e:81:5e:6d:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 20 15:31:09 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=7d06a8fd7054a97069394d1547c8705224cd6d5491164792d36be26656bab31d, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3f:c6:50:bf:33:ff:a5:c2:c9:60:4a:95:d7: 1f:92:1a:07:8a:e3:42:8b:b8:a7:95:bd:e0:91:67: d2:86:6b:7e:dd:b3:fe:b5:28:ec:b3:53:59:f7:86: b7:bc:e1:07:e4:81:1a:93:5a:ce:70:22:79:58:97: 74:30:2f:22:21:28:3e:bc:b8:67:9e:94:51:a0:03: f3:79:bf:ea:59:9a:25:d2:98:27:54:4f:ef:39:e9: 14:23:a2:02:05:75:3e:43:a3:95:49:b7:c2:6e:bc: 00:32:f0:7a:ff:a4:63:32:fd:1e:c4:49:21:bf:b0: e5:30:55:18:60:97:8b:07:ba:a8:51:b9:a4:4e:ea: 6b:de:41:cf:e8:bc:08:18:8a:eb:c6:50:f1:78:b0: 5c:66:69:ed:ca:a9:73:b0:ec:7f:18:a0:39:4a:bb: 0a:b5:99:f9:7a:78:88:ad:cf:db:ff:fa:ba:99:25: 81:c9:8e:25:a0:d2:5b:c9:d5:be:9f:90:18:95:20: 39:44:ac:f6:da:4c:30:87:64:7a:91:30:49:1c:74: 7c:01:33:e8:b9:e5:ff:27:b3:8e:c6:82:35:0d:5b: a4:1b:fd:78:2b:01:c2:25:43:41:c6:00:10:05:6a: c4:a2:93:74:7c:39:5f:93:0f:a9:9c:9f:1f:49:3d: 8e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:DA:D2:E0:19:BF:03:F6:91:FB:94:78:F7:06:8E:31:94:B5:23:EF X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/a07adeae-538f-4d56-bebe-87d1a4b9c3b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.10.0/23 Signature Algorithm: sha256WithRSAEncryption 00:9a:b8:5b:b0:e5:dd:68:03:d9:c7:88:ff:f8:a9:e6:3d:90: db:23:cb:ad:8d:44:c3:2c:41:0e:28:49:bd:f4:36:16:b1:35: 66:02:08:dd:43:30:d6:51:86:81:bf:18:b5:bb:45:87:26:46: 79:9b:f9:f0:84:35:96:dc:f1:66:cd:be:b5:14:bf:45:c8:96: 4c:67:36:0a:ba:37:4e:2a:f6:7c:8f:c3:97:b0:07:78:84:c0: b6:96:b8:7e:d6:3c:1a:cb:ff:57:09:9a:da:f1:0e:ee:26:be: 13:dc:3b:af:67:bd:b9:29:ad:81:1b:06:ac:13:40:fe:68:13: 67:2a:4f:72:67:12:48:37:b6:5a:1e:56:3e:db:52:cb:b0:cb: f2:94:0d:0a:ba:60:0c:55:af:d0:90:8b:59:d5:4d:1c:2f:a0: 5d:d9:22:89:1d:6a:37:c6:29:7d:44:93:ff:ae:29:43:80:ca: 66:3c:0c:50:2b:7f:7c:06:90:c0:db:fc:68:57:94:cf:51:21: 6a:ba:01:d5:2a:d0:0b:f2:e3:3a:89:66:6c:4b:5e:31:c9:36: 8d:a3:39:b6:05:2f:19:1c:5e:32:9d:ea:ca:1a:c8:63:31:46: 10:9a:11:c2:d5:f6:c7:c9:aa:ae:17:72:91:82:e9:96:91:cd: 06:48:fd:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaK97ielSXJXq5kV0a21ZboFebd4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNTIwMTUzMTA5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDA2YThmZDcwNTRhOTcwNjkzOTRkMTU0N2M4NzA1MjI0 Y2Q2ZDU0OTExNjQ3OTJkMzZiZTI2NjU2YmFiMzFkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrP8ZQvzP/pcLJYEqV1x+SGgeK40KLuKeVveCRZ9KGa37d s/61KOyzU1n3hre84QfkgRqTWs5wInlYl3QwLyIhKD68uGeelFGgA/N5v+pZmiXS mCdUT+856RQjogIFdT5Do5VJt8JuvAAy8Hr/pGMy/R7ESSG/sOUwVRhgl4sHuqhR uaRO6mveQc/ovAgYiuvGUPF4sFxmae3KqXOw7H8YoDlKuwq1mfl6eIitz9v/+rqZ JYHJjiWg0lvJ1b6fkBiVIDlErPbaTDCHZHqRMEkcdHwBM+i55f8ns47GgjUNW6Qb /XgrAcIlQ0HGABAFasSik3R8OV+TD6mcnx9JPY7TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgdrS4Bm/A/aR+5R49waOMZS1I+8wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2EwN2FkZWFlLTUzOGYtNGQ1Ni1iZWJlLTg3ZDFhNGI5YzNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgfwowDQYJKoZIhvcNAQELBQADggEBAACauFuw5d1oA9nHiP/4qeY9kNsj y62NRMMsQQ4oSb30NhaxNWYCCN1DMNZRhoG/GLW7RYcmRnmb+fCENZbc8WbNvrUU v0XIlkxnNgq6N04q9nyPw5ewB3iEwLaWuH7WPBrL/1cJmtrxDu4mvhPcO69nvbkp rYEbBqwTQP5oE2cqT3JnEkg3tloeVj7bUsuwy/KUDQq6YAxVr9CQi1nVTRwvoF3Z IokdajfGKX1Ek/+uKUOAymY8DFArf3wGkMDb/GhXlM9RIWq6AdUq0Avy4zqJZmxL XjHJNo2jObYFLxkcXjKd6soayGMxRhCaEcLV9sfJqq4XcpGC6ZaRzQZI/e0= -----END CERTIFICATE-----Generated at Sat Jun 7 04:19:36 2025 by rpki-client