$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa File: f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa (raw, json) Hash identifier: XvCKHAT3t0BDDNBS+hPEjPeljWpDiseP3lUU54wUdzc= Subject key identifier: 2D:7B:BC:1A:C9:87:0C:49:18:75:10:85:07:AC:9F:A4:3B:51:79:81 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 363BAEF7B32C2E6AD700FF021B9B402961553972 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa Signing time: Tue 21 Oct 2025 00:50:03 +0000 ROA not before: Tue 21 Oct 2025 00:50:03 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 27 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:3b:ae:f7:b3:2c:2e:6a:d7:00:ff:02:1b:9b:40:29:61:55:39:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Oct 21 00:50:03 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=d2ab7be043bda6d33edd4d527b66f2e1b061619bfeac4b52b2017708bbb4d42c, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2e:51:99:3b:b4:0e:4b:1a:f4:83:e1:74:4f: 2e:81:3c:2d:06:06:92:d9:f6:05:be:28:2d:e8:41: 87:4c:96:af:86:43:24:db:0a:76:f9:0d:cb:8a:5a: 18:06:f8:a8:ff:0a:91:77:71:73:11:a3:0e:14:3a: e9:dd:35:8e:84:4d:08:1a:4c:b8:26:9f:0a:66:29: 7a:27:c4:9e:5b:d5:05:37:ea:73:df:b4:e7:ae:d6: 0a:a1:0c:db:9b:3e:9a:10:b8:63:2a:06:b4:35:42: 6b:f1:d6:88:de:39:ea:8c:51:1d:21:3f:e6:85:62: 3e:f4:8f:32:3c:d4:36:51:5a:05:f8:5d:98:b4:6b: ad:68:9f:36:70:a9:e1:54:39:1a:41:d2:a5:96:79: 75:4d:d5:fe:e7:1e:17:17:21:73:b1:ea:d6:87:6c: fb:82:fa:00:2e:10:73:c2:84:8d:36:d4:ff:0f:ac: 2f:7d:b0:b1:58:17:dd:42:51:93:10:5a:ac:06:ae: 7d:de:84:e5:6a:82:41:ed:b5:0d:0e:e5:2f:b9:4f: 63:b9:88:3b:0f:c8:59:4f:d9:35:07:cd:59:ca:87: ce:f8:62:3f:1d:c4:17:5d:40:40:a2:63:f5:f6:b6: 08:f4:52:74:ef:b9:93:ae:c8:30:7b:03:b9:5a:1a: 87:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:7B:BC:1A:C9:87:0C:49:18:75:10:85:07:AC:9F:A4:3B:51:79:81 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 61:15:c2:30:0a:1f:2c:d6:6f:48:ca:b9:d6:1d:cb:15:e1:19: 9c:75:56:dc:fe:d2:26:c4:f9:c6:73:4d:8a:d4:7b:00:35:f3: a8:39:aa:3f:24:80:98:44:66:f3:eb:71:76:01:59:66:cd:4f: 21:95:a4:60:2a:10:1e:93:ae:3e:46:cc:9c:36:1a:cf:a8:a6: 2b:5d:a5:8e:59:22:f6:73:de:ee:2c:82:66:44:b5:43:31:6c: 94:b5:f9:95:56:16:2e:20:d1:09:11:90:46:f9:00:08:2d:e6: 7e:ed:fd:c8:83:7d:44:27:dc:ae:08:a3:51:cc:47:c6:34:eb: 8d:29:a4:48:33:f7:6d:af:6d:59:48:c3:71:9d:f2:82:94:01: ac:57:b1:32:b2:77:d9:c6:83:d3:7b:8b:71:ec:ca:13:6c:84: be:bd:74:f7:49:26:9f:e1:1d:47:ca:63:b1:2c:a2:3c:46:14: 9c:25:45:b0:e7:f0:16:cf:bc:f0:84:a0:b7:04:3b:33:9b:c4: 70:15:f6:5e:e6:71:6b:02:b5:aa:1b:a3:51:14:09:e4:40:b3: df:3e:a7:09:73:e0:b3:05:9c:29:0a:2e:7b:e8:c2:3d:37:1f: d9:ec:04:3a:91:35:3f:14:7e:93:2c:fa:a0:89:9a:d7:54:5c: 7c:76:e0:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNjuu97MsLmrXAP8CG5tAKWFVOXIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUxMDIxMDA1MDAzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmFiN2JlMDQzYmRhNmQzM2VkZDRkNTI3YjY2ZjJlMWIw NjE2MTliZmVhYzRiNTJiMjAxNzcwOGJiYjRkNDJjMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClLlGZO7QOSxr0g+F0Ty6BPC0GBpLZ9gW+KC3oQYdMlq+G QyTbCnb5DcuKWhgG+Kj/CpF3cXMRow4UOundNY6ETQgaTLgmnwpmKXonxJ5b1QU3 6nPftOeu1gqhDNubPpoQuGMqBrQ1Qmvx1ojeOeqMUR0hP+aFYj70jzI81DZRWgX4 XZi0a61onzZwqeFUORpB0qWWeXVN1f7nHhcXIXOx6taHbPuC+gAuEHPChI021P8P rC99sLFYF91CUZMQWqwGrn3ehOVqgkHttQ0O5S+5T2O5iDsPyFlP2TUHzVnKh874 Yj8dxBddQECiY/X2tgj0UnTvuZOuyDB7A7laGodbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULXu8GsmHDEkYdRCFB6yfpDtReYEwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2YyZTVlMTFjLWY0ZTAtNGY5MS04ZWQxLWE2Y2JhNmM1ZTI4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBAGEVwjAKHyzWb0jKudYdyxXhGZx1 Vtz+0ibE+cZzTYrUewA186g5qj8kgJhEZvPrcXYBWWbNTyGVpGAqEB6Trj5GzJw2 Gs+opitdpY5ZIvZz3u4sgmZEtUMxbJS1+ZVWFi4g0QkRkEb5AAgt5n7t/ciDfUQn 3K4Io1HMR8Y0640ppEgz922vbVlIw3Gd8oKUAaxXsTKyd9nGg9N7i3HsyhNshL69 dPdJJp/hHUfKY7EsojxGFJwlRbDn8BbPvPCEoLcEOzObxHAV9l7mcWsCtaobo1EU CeRAs98+pwlz4LMFnCkKLnvowj03H9nsBDqRNT8UfpMs+qCJmtdUXHx24CQ= -----END CERTIFICATE-----Generated at Fri Oct 24 17:20:16 2025 by rpki-client