$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa File: 5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa (raw, json) Hash identifier: Mb6FLFvHQwBiAraKE2OQM0fcDYvBbNKypqnG2Woig0U= Subject key identifier: 3D:26:2B:8A:2C:99:25:88:A1:57:D7:A2:82:A2:75:9D:5D:E5:89:98 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 22BC6258CF25D1B462A59989718D5E39157B97B0 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa Signing time: Tue 20 May 2025 15:30:58 +0000 ROA not before: Tue 20 May 2025 15:30:58 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:bc:62:58:cf:25:d1:b4:62:a5:99:89:71:8d:5e:39:15:7b:97:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 20 15:30:58 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=1164751f2fb785c17b66d4e9c7b395096ea33ab863e911e510c7105c915a2942, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c0:03:2a:a9:30:42:22:fe:f2:9e:a6:52:cc: 55:d2:b2:ff:dc:66:ef:7d:72:9d:bd:76:33:b1:c6: ad:c9:a3:77:14:2f:8b:e8:fc:c5:ed:fb:de:90:d6: a5:f4:2e:54:c8:62:24:f7:ad:85:25:19:9d:d1:f0: 7b:b5:0b:9d:c2:ad:8b:54:cf:32:64:31:d2:c9:c5: 40:08:42:e6:a4:6b:28:73:03:f0:2a:28:0d:00:bd: 73:90:83:52:cd:9a:0c:8d:eb:8b:4f:2f:90:7b:34: 8c:95:65:ee:71:7b:3d:f9:70:8e:56:0f:cd:f5:4a: b0:41:1b:50:7b:d1:18:f1:14:cd:a8:e1:c9:52:e2: 97:9b:7e:5c:57:4f:14:cf:b9:0b:2e:4f:20:01:9d: 06:0b:25:37:ea:83:bb:35:77:c3:6f:20:2f:7f:29: 0d:cc:f7:72:aa:37:b0:85:27:ed:8c:5c:c0:8c:e0: e8:fa:3c:c1:20:3c:90:64:e0:ab:bd:94:37:6e:a3: 12:2f:19:ad:77:d6:64:b0:f3:73:44:d0:69:ea:ed: 3e:d4:89:cd:12:c2:73:e4:e9:5d:3a:3f:8a:8d:fc: d1:a3:42:a2:e2:56:fc:e4:8a:f6:54:f4:65:3a:c2: 32:25:97:20:76:59:50:53:a1:6e:86:d8:1d:e7:9e: 5b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:26:2B:8A:2C:99:25:88:A1:57:D7:A2:82:A2:75:9D:5D:E5:89:98 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 11:0f:48:c3:55:e3:53:a7:af:d8:b2:40:3d:a6:9a:9c:d2:8b: e4:b9:80:1d:45:53:aa:08:26:e4:b2:ff:50:c1:78:3a:78:d8: 10:00:e2:db:1a:3e:49:b9:fa:d0:75:25:58:76:f0:6a:73:21: 67:05:5e:d1:8a:c3:f7:32:79:44:d8:a4:33:53:10:f3:3b:53: 2e:f8:75:0e:aa:b9:ae:5d:e3:c6:f5:3b:df:48:2e:b0:64:42: 0c:c4:26:57:55:36:f1:83:fa:7e:7c:7b:26:3d:aa:0d:a5:c9: 47:dd:56:47:45:7e:f0:24:9a:d3:35:54:a6:31:7c:76:41:54: 20:8b:39:58:24:9e:68:0d:15:2d:89:e9:99:60:01:c9:6a:0b: 33:8c:3a:dd:48:09:bc:ee:2e:4a:a0:09:00:c5:5a:97:23:9e: 63:b4:e9:2c:bc:a9:b2:45:dc:da:07:de:09:2a:f4:dd:89:fa: 1b:69:c0:f4:37:ca:72:76:a2:32:c0:2d:8f:b1:89:bb:bc:81: fb:3f:37:d6:78:b0:88:2f:c6:0d:7a:a8:a0:f2:5f:82:50:c5: c4:da:79:85:28:6f:33:2a:a7:e1:e4:46:48:0d:44:e0:6c:7a: bb:ec:71:3a:5a:a9:89:b1:ee:56:c1:4d:89:49:fd:8b:ff:44: 90:75:d8:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIrxiWM8l0bRipZmJcY1eORV7l7AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNTIwMTUzMDU4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTY0NzUxZjJmYjc4NWMxN2I2NmQ0ZTljN2IzOTUwOTZl YTMzYWI4NjNlOTExZTUxMGM3MTA1YzkxNWEyOTQyMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0wAMqqTBCIv7ynqZSzFXSsv/cZu99cp29djOxxq3Jo3cU L4vo/MXt+96Q1qX0LlTIYiT3rYUlGZ3R8Hu1C53CrYtUzzJkMdLJxUAIQuakayhz A/AqKA0AvXOQg1LNmgyN64tPL5B7NIyVZe5xez35cI5WD831SrBBG1B70RjxFM2o 4clS4pebflxXTxTPuQsuTyABnQYLJTfqg7s1d8NvIC9/KQ3M93KqN7CFJ+2MXMCM 4Oj6PMEgPJBk4Ku9lDduoxIvGa131mSw83NE0Gnq7T7Uic0SwnPk6V06P4qN/NGj QqLiVvzkivZU9GU6wjIllyB2WVBToW6G2B3nnlv9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPSYriiyZJYihV9eigqJ1nV3liZgwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzVlZDUxMDQ5LWQzNDctNGRkMC1iZjRmLWUxY2I0YWRjODBjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBABEPSMNV41Onr9iyQD2mmpzSi+S5 gB1FU6oIJuSy/1DBeDp42BAA4tsaPkm5+tB1JVh28GpzIWcFXtGKw/cyeUTYpDNT EPM7Uy74dQ6qua5d48b1O99ILrBkQgzEJldVNvGD+n58eyY9qg2lyUfdVkdFfvAk mtM1VKYxfHZBVCCLOVgknmgNFS2J6ZlgAclqCzOMOt1ICbzuLkqgCQDFWpcjnmO0 6Sy8qbJF3NoH3gkq9N2J+htpwPQ3ynJ2ojLALY+xibu8gfs/N9Z4sIgvxg16qKDy X4JQxcTaeYUobzMqp+HkRkgNROBservscTpaqYmx7lbBTYlJ/Yv/RJB12LQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:30:24 2025 by rpki-client