$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa File: 3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa (raw, json) Hash identifier: lBXH5ruetFhB/1Pe8zPx5+CV50aYoa3GWwJB0d4M0jI= Subject key identifier: 29:02:62:04:28:77:A5:2B:40:B9:35:EB:55:88:54:F7:7C:51:87:28 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 5CB683C3D8D100C18035596E54DC42B9E8F97CDE Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa Signing time: Tue 20 May 2025 15:31:16 +0000 ROA not before: Tue 20 May 2025 15:31:16 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b6:83:c3:d8:d1:00:c1:80:35:59:6e:54:dc:42:b9:e8:f9:7c:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 20 15:31:16 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=8130596de7361df77d214993e8cf0649cfd72847a8781e16ec5839303e84096e, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:93:b5:b4:e5:e3:33:8f:c3:af:4c:f6:a3:9f: e3:a9:cf:76:b4:18:ee:0d:2e:72:24:25:12:99:64: dc:73:f5:fb:c2:cf:3d:c6:24:3f:11:2f:9f:86:e9: 46:fa:8f:5a:69:b9:88:1b:b6:a0:fe:73:75:1c:63: 9b:7b:36:69:31:1a:de:44:d8:55:a1:d2:77:04:f3: 11:44:ca:c8:c3:30:f5:7f:84:ea:eb:8d:79:41:01: 76:dc:1e:8e:e8:84:4b:b9:41:b7:0e:7c:d6:e5:f7: f0:5b:95:5a:0b:d8:c2:b5:66:68:f5:c4:b5:48:1f: 6e:72:44:de:46:cf:f8:ba:b4:7c:00:1f:0d:c9:e7: 91:b9:44:e3:fe:95:2e:a4:c5:67:49:25:75:1c:73: ce:a0:2c:45:1a:e5:d9:a5:46:24:d8:de:a1:27:9f: da:47:88:02:91:88:6f:72:0b:b1:6e:62:eb:75:c5: 1b:fe:49:5f:89:80:68:8b:f2:34:10:7b:08:9c:55: b6:6b:9e:86:80:b0:97:16:a6:ad:1c:52:f0:65:d3: 0c:93:cd:f1:2e:1b:8c:cf:9c:05:ce:b7:15:c9:2d: 84:3e:dd:26:d9:f9:c6:67:aa:a5:f8:65:6f:bf:a4: 26:e2:8e:26:bb:bd:c9:6a:71:7a:ac:70:33:66:88: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:02:62:04:28:77:A5:2B:40:B9:35:EB:55:88:54:F7:7C:51:87:28 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.32.0/19 Signature Algorithm: sha256WithRSAEncryption 15:f1:60:54:61:3a:99:e2:af:66:64:b5:76:41:99:45:8a:e8: 39:31:5b:ca:1e:d8:8b:af:fb:62:f9:35:97:a0:1c:23:3c:17: a5:bb:01:2c:59:81:b4:1a:91:fa:f9:b5:d2:a1:32:cd:51:ba: 87:ea:c9:29:76:0d:61:81:ce:3a:ad:30:29:f2:c1:53:7e:78: 7f:c7:0a:34:ee:77:c1:77:8a:a8:75:25:de:09:b9:a6:3b:bf: 32:a8:11:45:cd:62:c0:7e:e3:39:16:9c:74:38:a0:89:8a:10: 54:ff:ca:21:da:8d:b9:82:46:ed:a7:a4:c9:59:69:f1:f0:72: 3a:0b:5e:2f:b8:25:58:df:6c:e5:0c:0b:4e:4c:9a:34:17:17: 9e:69:3c:f6:ac:3f:43:ff:60:80:80:75:f3:27:89:a6:fb:7a: e4:b0:40:ef:74:4c:2a:85:5a:6d:31:72:8e:50:a7:9c:45:7e: 15:6f:2f:35:4d:59:da:21:1f:7a:98:0d:89:0d:06:00:b8:34: a3:8c:a9:67:de:8d:a1:a4:c2:29:0e:27:f6:7c:68:ff:d1:6e: 92:4d:b6:6b:f8:8b:e3:ed:c6:4c:59:3e:7c:34:f8:85:09:52: 1a:c4:96:4f:b7:ac:69:e2:bf:83:dd:cc:75:b4:ac:be:ee:2c: d6:84:15:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXLaDw9jRAMGANVluVNxCuej5fN4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNTIwMTUzMTE2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTMwNTk2ZGU3MzYxZGY3N2QyMTQ5OTNlOGNmMDY0OWNm ZDcyODQ3YTg3ODFlMTZlYzU4MzkzMDNlODQwOTZlMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqk7W05eMzj8OvTPajn+Opz3a0GO4NLnIkJRKZZNxz9fvC zz3GJD8RL5+G6Ub6j1ppuYgbtqD+c3UcY5t7NmkxGt5E2FWh0ncE8xFEysjDMPV/ hOrrjXlBAXbcHo7ohEu5QbcOfNbl9/BblVoL2MK1Zmj1xLVIH25yRN5Gz/i6tHwA Hw3J55G5ROP+lS6kxWdJJXUcc86gLEUa5dmlRiTY3qEnn9pHiAKRiG9yC7FuYut1 xRv+SV+JgGiL8jQQewicVbZrnoaAsJcWpq0cUvBl0wyTzfEuG4zPnAXOtxXJLYQ+ 3SbZ+cZnqqX4ZW+/pCbijia7vclqcXqscDNmiCahAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKQJiBCh3pStAuTXrVYhU93xRhygwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzNmZDYxMTdiLTVmNmItNDNmZS1iZjBhLWI2NmY4ZDM1ZTQ1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVgfyAwDQYJKoZIhvcNAQELBQADggEBABXxYFRhOpnir2ZktXZBmUWK6Dkx W8oe2Iuv+2L5NZegHCM8F6W7ASxZgbQakfr5tdKhMs1RuofqySl2DWGBzjqtMCny wVN+eH/HCjTud8F3iqh1Jd4JuaY7vzKoEUXNYsB+4zkWnHQ4oImKEFT/yiHajbmC Ru2npMlZafHwcjoLXi+4JVjfbOUMC05MmjQXF55pPPasP0P/YICAdfMniab7euSw QO90TCqFWm0xco5Qp5xFfhVvLzVNWdohH3qYDYkNBgC4NKOMqWfejaGkwikOJ/Z8 aP/RbpJNtmv4i+PtxkxZPnw0+IUJUhrElk+3rGniv4PdzHW0rL7uLNaEFbw= -----END CERTIFICATE-----Generated at Mon Jun 16 01:32:29 2025 by rpki-client