$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa File: f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa (raw, json) Hash identifier: zsc7fwMdGRscSCJb00oP3xavA4ZuyVjCC/3rugk04EA= Subject key identifier: 71:B3:5B:4E:8D:10:3E:67:CC:CD:66:FE:8C:88:32:61:26:44:F8:4A Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 07DF5AAB55896776FB31FCF97211F09B1334642E Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa Signing time: Mon 01 Sep 2025 15:50:57 +0000 ROA not before: Mon 01 Sep 2025 15:50:57 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:df:5a:ab:55:89:67:76:fb:31:fc:f9:72:11:f0:9b:13:34:64:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 1 15:50:57 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=fb5fd3dcae4039281e98a1e107d0302ab0683e015ed54c5c379b39503a8eb92d, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c3:d7:38:da:c1:49:84:82:1e:a3:64:20:68: 93:ba:02:b5:63:14:29:ad:6d:a7:d5:7a:ce:2f:e7: d2:44:3d:fc:60:c7:4f:09:6a:ba:f0:6e:1f:25:a8: ef:6d:93:b0:a4:e0:a6:6b:93:4b:16:4f:b4:d2:a0: 6b:1e:13:d7:73:ad:58:ac:b1:90:a8:cc:5d:dd:1e: fa:4a:e1:6e:43:c0:e9:cb:a7:20:89:3b:29:1b:88: e2:b6:04:8e:1a:ba:3b:cd:f8:4a:dd:5a:ff:50:45: 18:86:71:b8:61:ef:04:04:29:e6:3c:53:60:d2:45: b2:99:9f:90:32:db:7c:e6:40:fd:d9:31:20:37:c9: d6:4b:90:4b:b5:53:c9:f6:fd:a8:59:fc:46:f8:42: cd:3a:21:8f:77:10:af:c7:02:9b:0c:ce:30:1e:d1: b9:ab:cf:2d:3b:9d:be:a7:e2:27:de:b3:0a:64:ac: fc:71:ea:f7:38:66:c9:97:8c:34:ca:74:77:a3:25: 1a:9f:6c:c0:2c:e8:30:7d:69:87:11:ff:45:33:33: 83:63:35:e4:b1:2a:f0:c1:83:74:a1:8d:d7:cc:17: f7:ff:71:1a:d4:e5:84:c5:24:2b:9f:1b:6f:3d:cc: 48:61:f6:aa:d8:f3:29:bf:44:01:61:ad:57:57:32: 0a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B3:5B:4E:8D:10:3E:67:CC:CD:66:FE:8C:88:32:61:26:44:F8:4A X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 20:84:42:f9:dd:da:2e:4d:76:3a:ff:6e:ad:d3:2a:c5:96:0e: d3:cd:7d:82:0c:a7:ea:a1:47:5b:1c:08:6f:cf:59:60:0f:95: cb:66:52:58:ce:64:4b:ef:26:35:53:c8:ce:c8:9b:d7:da:b3: b3:40:cb:7c:c2:21:62:e4:9a:01:52:74:a6:1b:c3:d4:92:46: 28:8d:04:00:eb:fc:5f:50:67:43:6a:28:69:91:6c:a7:40:7d: c7:ba:96:e6:40:2d:dd:d6:1c:35:c5:68:9e:f7:4c:77:78:f9: 3c:35:5c:9a:c2:62:f3:5e:35:8e:3f:f4:17:d3:c9:36:1e:38: 0a:d6:e5:9b:dd:dd:8a:42:1e:db:67:78:09:83:ec:73:d3:44: 69:18:85:14:ff:28:44:0a:47:2e:24:4c:49:36:ea:be:bd:5c: 64:d0:d1:99:81:1f:40:1d:ed:12:cb:28:8e:77:e2:95:eb:32: 08:4c:5f:17:1c:15:3a:59:fa:e5:16:7a:d3:21:88:0c:db:2a: ae:3c:d3:e6:eb:c0:d0:d7:88:8e:bc:ee:ab:2c:50:58:a5:70: bc:f4:31:11:fc:b0:55:10:f3:9c:9d:c5:76:e5:86:7e:b3:cf: 77:0d:76:a7:f1:d2:f2:79:9d:bc:e4:7f:42:8d:89:d4:88:33: 28:da:38:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB99aq1WJZ3b7Mfz5chHwmxM0ZC4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwOTAxMTU1MDU3WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjVmZDNkY2FlNDAzOTI4MWU5OGExZTEwN2QwMzAyYWIw NjgzZTAxNWVkNTRjNWMzNzliMzk1MDNhOGViOTJkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCww9c42sFJhIIeo2QgaJO6ArVjFCmtbafVes4v59JEPfxg x08Jarrwbh8lqO9tk7Ck4KZrk0sWT7TSoGseE9dzrVissZCozF3dHvpK4W5DwOnL pyCJOykbiOK2BI4aujvN+ErdWv9QRRiGcbhh7wQEKeY8U2DSRbKZn5Ay23zmQP3Z MSA3ydZLkEu1U8n2/ahZ/Eb4Qs06IY93EK/HApsMzjAe0bmrzy07nb6n4ifeswpk rPxx6vc4ZsmXjDTKdHejJRqfbMAs6DB9aYcR/0UzM4NjNeSxKvDBg3ShjdfMF/f/ cRrU5YTFJCufG289zEhh9qrY8ym/RAFhrVdXMgrjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcbNbTo0QPmfMzWb+jIgyYSZE+EowHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2YyZTVlMTFjLWY0ZTAtNGY5MS04ZWQxLWE2Y2JhNmM1ZTI4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBACCEQvnd2i5Ndjr/bq3TKsWWDtPN fYIMp+qhR1scCG/PWWAPlctmUljOZEvvJjVTyM7Im9fas7NAy3zCIWLkmgFSdKYb w9SSRiiNBADr/F9QZ0NqKGmRbKdAfce6luZALd3WHDXFaJ73THd4+Tw1XJrCYvNe NY4/9BfTyTYeOArW5Zvd3YpCHttneAmD7HPTRGkYhRT/KEQKRy4kTEk26r69XGTQ 0ZmBH0Ad7RLLKI534pXrMghMXxccFTpZ+uUWetMhiAzbKq480+brwNDXiI687qss UFilcLz0MRH8sFUQ85ydxXblhn6zz3cNdqfx0vJ5nbzkf0KNidSIMyjaOFw= -----END CERTIFICATE-----Generated at Sun Sep 7 11:15:08 2025 by rpki-client