$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa File: 9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa (raw, json) Hash identifier: FzgjkIr83WqLzcZpIgPKIwPIacCPcPtDFLnb6GTHNk8= Subject key identifier: 87:33:84:85:AF:07:5F:9E:B8:84:A2:F6:05:28:99:C4:09:45:8F:D2 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 5F59DF71F4D6A03A560FBEDF3C79DB5D31EE3C27 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa Signing time: Tue 05 Aug 2025 15:01:07 +0000 ROA not before: Tue 05 Aug 2025 15:01:07 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:59:df:71:f4:d6:a0:3a:56:0f:be:df:3c:79:db:5d:31:ee:3c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Aug 5 15:01:07 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=d7c8b0741f832e7ea517eb17e625b434c12c532c5d2cb2e590072e0e4a95366e, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:73:7d:34:12:79:3e:2b:76:76:54:fb:92:60: bf:38:1d:ca:66:d8:93:77:53:d7:ec:63:e8:36:95: a4:36:fb:15:a2:fa:ac:be:5f:43:cf:02:05:70:45: 22:04:37:48:18:7a:6c:4d:89:49:3e:50:db:d9:d1: 57:6f:4a:2b:fe:a7:cf:bd:6d:6b:a7:1b:68:90:5a: 96:c6:d1:5b:b4:55:36:96:94:ff:61:1d:84:02:b7: e4:2b:e7:4d:29:4f:54:8e:99:8b:1f:bb:93:a0:02: 6f:22:ab:dd:a7:88:56:29:28:c9:43:bf:c2:3a:6c: 73:45:07:24:a5:57:a3:6d:95:aa:59:e7:73:1f:5c: 8c:cb:a0:5a:3e:ef:3d:da:60:5d:d7:4f:98:30:36: b0:ec:69:fe:03:a6:e7:0a:c4:c8:e3:46:0f:65:1f: 64:63:13:15:f7:d9:90:84:11:ba:b2:35:80:db:e8: f9:4f:1f:5c:e8:f8:e3:5c:55:a7:53:7a:b2:1f:dc: 0a:99:fd:44:4a:fb:ed:a4:c6:6d:5c:35:42:45:5e: f2:31:8c:4e:2b:f1:da:f6:16:c0:f8:2d:32:2d:17: ef:f9:cd:41:ff:d8:c6:36:38:7a:2a:5e:d2:90:c6: 31:7b:77:aa:db:ec:f6:a2:f4:76:da:3b:3e:ef:45: aa:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:33:84:85:AF:07:5F:9E:B8:84:A2:F6:05:28:99:C4:09:45:8F:D2 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 82:f5:1c:dd:72:6b:11:f9:69:49:c3:6d:af:90:4a:ae:11:1d: a9:61:18:7e:22:5d:57:8c:93:c8:7b:79:a7:3d:32:ad:25:cb: 51:15:61:3d:9f:45:bb:d6:e2:67:59:a7:d5:fe:35:65:5f:9b: 94:8d:b0:30:4b:bc:35:75:d8:5d:78:1d:ee:37:b3:a9:11:a8: ea:10:cc:5a:0b:15:b7:58:90:ca:69:ce:43:e9:6f:47:24:a8: 8e:25:2f:01:b2:51:8e:59:58:d8:87:a6:8a:20:2b:ca:67:1d: 48:15:22:af:00:f4:c0:5c:c1:c5:9e:50:ca:f5:c6:13:3d:50: c8:9b:71:32:e5:c7:dd:e1:e2:16:66:ab:6e:0a:b1:19:1c:63: f1:2a:fd:cb:8b:4d:b2:b3:c7:0f:a3:de:59:e5:91:5d:00:e7: a4:43:7d:74:6c:c5:e0:09:7b:66:25:04:9e:43:f3:ba:6d:ce: 22:ca:66:a1:78:e9:18:c7:44:6b:de:57:84:ec:50:6a:bb:52: b4:23:f1:92:d2:14:99:c3:3f:e8:7a:85:25:ca:cd:5b:72:74: 6a:f3:7b:df:3b:4a:12:b4:c7:56:b9:a1:e3:fe:02:31:93:6d: fd:1b:5a:b7:c2:05:15:79:16:c1:3e:9b:4a:23:62:31:9d:af: 20:00:fb:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX1nfcfTWoDpWD77fPHnbXTHuPCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwODA1MTUwMTA3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2M4YjA3NDFmODMyZTdlYTUxN2ViMTdlNjI1YjQzNGMx MmM1MzJjNWQyY2IyZTU5MDA3MmUwZTRhOTUzNjZlMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgc300Enk+K3Z2VPuSYL84Hcpm2JN3U9fsY+g2laQ2+xWi +qy+X0PPAgVwRSIEN0gYemxNiUk+UNvZ0VdvSiv+p8+9bWunG2iQWpbG0Vu0VTaW lP9hHYQCt+Qr500pT1SOmYsfu5OgAm8iq92niFYpKMlDv8I6bHNFBySlV6NtlapZ 53MfXIzLoFo+7z3aYF3XT5gwNrDsaf4DpucKxMjjRg9lH2RjExX32ZCEEbqyNYDb 6PlPH1zo+ONcVadTerIf3AqZ/URK++2kxm1cNUJFXvIxjE4r8dr2FsD4LTItF+/5 zUH/2MY2OHoqXtKQxjF7d6rb7Pai9HbaOz7vRaozAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhzOEha8HX564hKL2BSiZxAlFj9IwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzlhNmFjZTU0LWYyMzEtNGUyNS04YTM2LWM0NjFkNDlkZmE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBAIL1HN1yaxH5aUnDba+QSq4RHalh GH4iXVeMk8h7eac9Mq0ly1EVYT2fRbvW4mdZp9X+NWVfm5SNsDBLvDV12F14He43 s6kRqOoQzFoLFbdYkMppzkPpb0ckqI4lLwGyUY5ZWNiHpoogK8pnHUgVIq8A9MBc wcWeUMr1xhM9UMibcTLlx93h4hZmq24KsRkcY/Eq/cuLTbKzxw+j3lnlkV0A56RD fXRsxeAJe2YlBJ5D87ptziLKZqF46RjHRGveV4TsUGq7UrQj8ZLSFJnDP+h6hSXK zVtydGrze987ShK0x1a5oeP+AjGTbf0bWrfCBRV5FsE+m0ojYjGdryAA+6M= -----END CERTIFICATE-----Generated at Fri Aug 8 00:40:01 2025 by rpki-client