$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa File: 1fecfeb1-6716-4dba-8f93-41774a220829.roa (raw, json) Hash identifier: AZ6kiT0aOgW7G1PDjgatz5uW8oXheADtV40/zfBpsJs= Subject key identifier: 27:48:56:08:3D:26:CD:AA:05:D7:09:4C:93:38:35:DA:AD:34:0E:E4 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 25339BC054CF72CE717C472889A0CE599C8AC4B6 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa Signing time: Tue 05 Aug 2025 15:00:55 +0000 ROA not before: Tue 05 Aug 2025 15:00:55 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:33:9b:c0:54:cf:72:ce:71:7c:47:28:89:a0:ce:59:9c:8a:c4:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Aug 5 15:00:55 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=9d7ff7ff9ef62bc9defac20eb459b39904b338577c732b7964d81a37ca96a5a1, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:11:39:b2:e7:f0:ab:eb:8d:6a:a4:2d:d5:07: c3:9e:eb:6a:13:50:fd:75:66:16:23:da:32:8a:d7: f7:21:2a:52:4c:1b:28:94:e1:c2:1e:da:d7:0d:5a: cf:d4:1f:77:d6:d0:da:0c:0a:6a:13:12:ab:09:8f: 81:c8:ed:ea:79:3d:aa:1c:a5:e9:26:f9:38:27:62: 73:af:d4:4f:55:59:8d:b0:50:02:0d:9c:92:ac:05: 56:f2:c8:80:d8:e8:05:92:60:b0:f8:a9:23:50:ef: 74:ab:8b:d2:21:cd:c0:0c:86:c4:9d:c2:20:e9:c6: 07:e4:3c:18:33:62:48:63:d4:e7:90:57:cf:06:02: e9:bc:d8:8a:4f:5e:04:c2:85:94:ec:25:0e:6f:46: 1a:97:00:58:85:f7:dd:21:76:63:c1:e6:91:29:1a: 21:60:ec:e6:8f:0d:df:62:63:cf:ff:b5:b7:ee:75: 70:59:47:15:fb:f0:74:8c:c6:66:bf:8e:da:be:b4: b7:94:d4:8d:a8:bb:c1:28:ad:dc:bc:08:66:ce:eb: 94:2b:37:07:51:a8:ac:dc:19:d6:aa:73:fc:e9:e5: 90:2e:6c:ff:48:09:2b:79:38:bd:96:4d:43:cd:f4: de:60:af:93:7d:96:6d:ef:c7:ae:3d:2a:49:e4:95: 91:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:48:56:08:3D:26:CD:AA:05:D7:09:4C:93:38:35:DA:AD:34:0E:E4 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/21 Signature Algorithm: sha256WithRSAEncryption 04:60:79:c6:47:97:d0:e0:b0:56:75:cb:25:e8:70:3b:25:59: 14:e1:a1:c6:57:b2:3f:e7:55:74:fd:f7:f4:02:5c:47:26:3b: 54:7b:c2:16:5b:08:31:91:c3:8c:35:84:91:2f:7a:a5:ba:5c: 05:73:e0:c1:b8:19:ea:b6:66:09:d4:66:fe:e1:72:0c:ff:a5: bd:98:e1:dd:cc:ad:3d:a8:33:19:f8:2d:c6:e4:94:e3:4f:67: 16:99:1c:3e:e3:6d:6a:85:bd:98:ad:0f:4a:3f:53:c5:27:ee: 93:eb:f2:77:9e:46:e4:19:9b:48:bf:17:cf:18:06:46:22:ad: f4:7a:fc:02:b5:a0:71:53:38:70:fa:31:02:54:c9:30:3f:f6: be:e8:81:ae:1b:3a:ab:fa:69:cd:ad:7a:e4:19:de:62:3c:bb: eb:0c:bc:4d:e6:9d:bd:f4:59:1c:85:ae:8d:9b:8a:2c:35:6a: 4a:47:22:48:28:95:a0:04:b9:d3:ea:6f:76:93:e3:bc:06:b2: 61:ff:e9:f8:d1:fc:4a:45:b7:d4:57:d9:f8:84:c0:bd:39:84: ec:10:4c:b3:9f:e6:3a:3d:ca:17:bf:a3:85:91:fe:dc:98:84: e9:ee:89:03:7a:13:54:51:f9:68:14:46:78:78:de:a0:0c:dc: 67:34:45:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJTObwFTPcs5xfEcoiaDOWZyKxLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwODA1MTUwMDU1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDdmZjdmZjllZjYyYmM5ZGVmYWMyMGViNDU5YjM5OTA0 YjMzODU3N2M3MzJiNzk2NGQ4MWEzN2NhOTZhNWExMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNETmy5/Cr641qpC3VB8Oe62oTUP11ZhYj2jKK1/chKlJM GyiU4cIe2tcNWs/UH3fW0NoMCmoTEqsJj4HI7ep5Paocpekm+TgnYnOv1E9VWY2w UAINnJKsBVbyyIDY6AWSYLD4qSNQ73Sri9IhzcAMhsSdwiDpxgfkPBgzYkhj1OeQ V88GAum82IpPXgTChZTsJQ5vRhqXAFiF990hdmPB5pEpGiFg7OaPDd9iY8//tbfu dXBZRxX78HSMxma/jtq+tLeU1I2ou8Eordy8CGbO65QrNwdRqKzcGdaqc/zp5ZAu bP9ICSt5OL2WTUPN9N5gr5N9lm3vx649KknklZExAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ0hWCD0mzaoF1wlMkzg12q00DuQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzFmZWNmZWIxLTY3MTYtNGRiYS04ZjkzLTQxNzc0YTIyMDgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwAwDQYJKoZIhvcNAQELBQADggEBAARgecZHl9DgsFZ1yyXocDslWRTh ocZXsj/nVXT99/QCXEcmO1R7whZbCDGRw4w1hJEveqW6XAVz4MG4Geq2ZgnUZv7h cgz/pb2Y4d3MrT2oMxn4LcbklONPZxaZHD7jbWqFvZitD0o/U8Un7pPr8neeRuQZ m0i/F88YBkYirfR6/AK1oHFTOHD6MQJUyTA/9r7oga4bOqv6ac2teuQZ3mI8u+sM vE3mnb30WRyFro2biiw1akpHIkgolaAEudPqb3aT47wGsmH/6fjR/EpFt9RX2fiE wL05hOwQTLOf5jo9yhe/o4WR/tyYhOnuiQN6E1RR+WgURnh43qAM3Gc0RSY= -----END CERTIFICATE-----Generated at Tue Aug 5 17:25:30 2025 by rpki-client