$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa File: 3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa (raw, json) Hash identifier: VoyKRZNwcrX0fMEkSGbavSaPDcnU76zy8j94pIDF31I= Subject key identifier: DF:F6:8D:5F:F1:6B:BA:E0:93:8C:E9:BA:1D:8D:12:75:F7:27:C6:50 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 27F8695E510175B7B5330AF302B67B7ADE9A72E6 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa Signing time: Fri 11 Jul 2025 15:00:31 +0000 ROA not before: Fri 11 Jul 2025 15:00:31 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f8:69:5e:51:01:75:b7:b5:33:0a:f3:02:b6:7b:7a:de:9a:72:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jul 11 15:00:31 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=511d4f8021163e59c54686db09ddac7c8702195dec889da3c2deb0420071fdfd, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4b:2a:59:8a:af:57:b2:52:94:5b:be:5d:be: b5:5c:ca:ef:36:93:e7:a8:38:ad:e8:2e:e8:7e:4f: e0:53:6b:71:47:f1:b6:99:20:84:38:cd:09:4a:7a: d4:64:ba:c6:fd:6b:53:b8:8a:86:f6:9c:a0:3d:8a: ed:f5:4a:39:1c:00:6a:80:be:be:24:af:d2:86:aa: c0:e5:a5:e4:bd:44:07:fc:ba:50:43:91:19:e3:87: b2:67:4b:fd:c8:14:e5:81:bf:7c:b5:d0:d0:d3:62: 0f:36:61:c2:82:09:a0:98:74:de:7e:da:54:6b:a3: 4c:2b:5b:37:fd:17:78:11:ce:76:30:75:18:d5:16: 1f:7e:ed:0e:39:42:0f:c8:a4:7d:b8:bd:66:7a:cd: 42:92:cb:d1:4a:2c:07:c7:ba:a4:a2:1e:82:0b:6d: 93:28:87:d3:6f:06:06:16:0a:99:b7:da:b3:72:12: aa:2c:98:7c:7f:fb:47:f9:cf:41:99:c1:59:a2:69: 70:5e:16:a1:a5:5c:42:7b:04:3e:09:e7:66:ba:1d: d1:43:76:e5:dd:d7:01:1e:b5:49:4a:61:a1:31:0d: 08:6e:a7:35:f0:8e:75:20:b2:09:51:e4:a5:3c:71: 22:fb:9c:39:61:91:6f:d0:46:9a:3b:8e:f2:c6:ef: 15:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:F6:8D:5F:F1:6B:BA:E0:93:8C:E9:BA:1D:8D:12:75:F7:27:C6:50 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.32.0/19 Signature Algorithm: sha256WithRSAEncryption 3d:eb:55:86:eb:cc:96:17:49:26:bb:d8:69:0f:ef:58:be:23: 9e:87:49:58:c7:25:4a:79:7a:36:dd:3b:81:a5:03:9e:d8:ec: 7c:b8:e5:c6:b0:05:7b:5c:8b:53:35:0d:4b:eb:f5:5c:b9:d4: c2:e4:2f:5d:31:d1:2a:91:cc:b1:56:50:db:d7:16:9c:2c:a8: 39:07:f5:d9:09:02:4b:3e:0c:f3:36:46:8b:2a:35:f0:94:3a: a6:28:41:ab:d6:90:ff:0c:4a:15:ed:98:b4:1d:54:5d:9c:f8: eb:75:96:06:79:be:22:82:d5:bb:47:65:af:23:6c:70:c5:31: 24:0d:2e:ca:af:76:e7:73:75:65:5d:0b:a9:20:68:e9:b4:3c: fa:6f:5c:29:4a:8f:7d:85:5e:5d:e9:c6:6e:2e:de:a4:5a:94: 84:96:55:a6:fd:bc:6a:9f:ae:bc:cc:1c:a3:be:74:94:ba:3d: 1c:af:20:99:64:22:6b:d0:d1:e4:ce:ac:6f:cc:20:9f:58:d6: 8e:ea:48:8b:c9:76:70:56:a5:e2:ac:8c:c4:48:a8:83:77:7e: f8:ab:96:e6:d2:22:1e:a2:9e:38:8b:fb:da:b3:32:6d:b7:63: a3:db:59:1e:be:82:de:31:14:8c:d2:0f:ab:74:ca:35:84:6f: 57:ac:f1:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ/hpXlEBdbe1MwrzArZ7et6acuYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNzExMTUwMDMxWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTFkNGY4MDIxMTYzZTU5YzU0Njg2ZGIwOWRkYWM3Yzg3 MDIxOTVkZWM4ODlkYTNjMmRlYjA0MjAwNzFmZGZkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrSypZiq9XslKUW75dvrVcyu82k+eoOK3oLuh+T+BTa3FH 8baZIIQ4zQlKetRkusb9a1O4iob2nKA9iu31SjkcAGqAvr4kr9KGqsDlpeS9RAf8 ulBDkRnjh7JnS/3IFOWBv3y10NDTYg82YcKCCaCYdN5+2lRro0wrWzf9F3gRznYw dRjVFh9+7Q45Qg/IpH24vWZ6zUKSy9FKLAfHuqSiHoILbZMoh9NvBgYWCpm32rNy EqosmHx/+0f5z0GZwVmiaXBeFqGlXEJ7BD4J52a6HdFDduXd1wEetUlKYaExDQhu pzXwjnUgsglR5KU8cSL7nDlhkW/QRpo7jvLG7xXTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3/aNX/FruuCTjOm6HY0SdfcnxlAwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzNmZDYxMTdiLTVmNmItNDNmZS1iZjBhLWI2NmY4ZDM1ZTQ1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVgfyAwDQYJKoZIhvcNAQELBQADggEBAD3rVYbrzJYXSSa72GkP71i+I56H SVjHJUp5ejbdO4GlA57Y7Hy45cawBXtci1M1DUvr9Vy51MLkL10x0SqRzLFWUNvX FpwsqDkH9dkJAks+DPM2RosqNfCUOqYoQavWkP8MShXtmLQdVF2c+Ot1lgZ5viKC 1btHZa8jbHDFMSQNLsqvdudzdWVdC6kgaOm0PPpvXClKj32FXl3pxm4u3qRalISW Vab9vGqfrrzMHKO+dJS6PRyvIJlkImvQ0eTOrG/MIJ9Y1o7qSIvJdnBWpeKsjMRI qIN3fvirlubSIh6injiL+9qzMm23Y6PbWR6+gt4xFIzSD6t0yjWEb1es8VA= -----END CERTIFICATE-----Generated at Mon Aug 4 14:08:34 2025 by rpki-client