$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa File: 2f44b632-2720-4ef0-917c-4b1813ed903f.roa (raw, json) Hash identifier: w5+Ex+ujGC+N1XHyNyvpuuaeWTOtKCnyCLjx/yXKyZE= Subject key identifier: 62:A9:EA:F1:FC:4A:91:94:C7:AD:5C:7B:A4:08:56:4D:C6:87:9A:E4 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 1F31F68518D980F938AB53DA835B34CA31677885 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa Signing time: Tue 05 Aug 2025 15:00:15 +0000 ROA not before: Tue 05 Aug 2025 15:00:15 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:31:f6:85:18:d9:80:f9:38:ab:53:da:83:5b:34:ca:31:67:78:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Aug 5 15:00:15 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=da010414abb4fe10fbad35eb8923307416d57f8c163d79f963db536ed3845a1c, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:49:ec:8c:f1:f8:00:52:f6:43:86:e5:f1:4c: d5:7d:df:aa:88:3f:63:5a:8a:fd:55:26:f3:5d:ae: ea:2e:c7:d3:98:56:98:43:6b:1b:2b:a1:b9:17:cb: 66:0a:e1:6a:78:a9:d6:08:e4:62:a6:56:37:a3:d0: 1d:03:e4:0c:d9:06:6e:84:2b:44:91:3a:23:cd:3b: b2:24:d3:1b:2a:4b:78:ab:64:a4:0a:33:de:d8:14: 81:69:1b:95:c4:08:d4:b4:06:97:d8:81:86:0b:8c: a3:4c:85:ae:ca:ae:22:6d:22:1f:a6:a4:87:ec:87: fb:86:3d:65:1f:5e:c4:59:41:53:64:23:01:97:70: 66:75:23:76:57:c6:35:df:26:60:0d:d6:56:ea:58: b4:fe:f6:ad:dc:57:5d:39:3c:b0:71:0e:25:d0:ee: e8:4b:63:6a:81:dd:43:0b:38:44:39:f4:b5:22:bd: 64:a1:4b:8a:be:18:19:c9:ff:6e:24:d6:5b:b5:b6: e7:27:9b:3e:c9:9b:65:95:ea:a8:15:a7:11:70:a9: cb:f3:e2:2b:1e:69:95:dd:f0:b6:47:0a:a5:d0:93: a6:b8:29:ee:15:0d:e7:0a:3f:f4:6c:15:dd:76:a3: 5e:b3:b8:a8:10:1f:50:3f:3e:e2:62:e2:36:45:89: 40:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A9:EA:F1:FC:4A:91:94:C7:AD:5C:7B:A4:08:56:4D:C6:87:9A:E4 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.64.0/18 Signature Algorithm: sha256WithRSAEncryption 40:22:51:97:7e:39:00:81:28:1c:f2:56:62:a3:55:0e:64:5b: 5c:64:2a:70:62:1d:b3:b8:79:29:c5:2b:ba:8b:eb:62:7d:dd: 48:a9:49:9f:81:92:8d:e0:28:90:da:67:52:41:a6:b4:69:92: f1:4c:89:0c:64:06:f5:a1:ae:e4:52:ea:2d:69:01:ab:20:f0: 48:13:d5:1c:df:25:83:30:1b:d0:4b:7b:8b:9d:a8:ad:5b:0d: 82:d0:08:8d:00:69:86:e5:92:e5:11:e7:0b:2c:12:ce:b6:06: 6b:20:87:a3:ea:81:a8:48:da:1b:2d:1e:69:16:c0:70:bb:85: 9a:5d:60:fe:a1:f8:fe:b3:54:29:e1:dd:0d:9f:c3:2d:4f:02: f9:cc:b8:d9:84:f4:1d:b2:7f:95:f0:2e:9a:e6:87:29:8e:98: db:84:18:45:0f:3e:6b:e8:a1:b9:05:11:56:57:9f:e8:21:49: 75:ca:51:a2:0a:a0:45:81:f5:00:27:45:f6:37:2f:3c:6e:25: 94:0a:fa:78:12:8a:43:97:65:53:43:dd:15:2f:dc:b8:72:82: 2f:58:68:d6:27:4d:5f:58:0f:33:ce:37:22:1f:3b:45:fc:d5: 45:7a:ad:5f:8f:2b:bd:36:ba:06:b5:ba:b4:3d:7f:57:11:63: 7e:e6:4e:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHzH2hRjZgPk4q1Pag1s0yjFneIUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwODA1MTUwMDE1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTAxMDQxNGFiYjRmZTEwZmJhZDM1ZWI4OTIzMzA3NDE2 ZDU3ZjhjMTYzZDc5Zjk2M2RiNTM2ZWQzODQ1YTFjMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCSeyM8fgAUvZDhuXxTNV936qIP2Naiv1VJvNdruoux9OY VphDaxsrobkXy2YK4Wp4qdYI5GKmVjej0B0D5AzZBm6EK0SROiPNO7Ik0xsqS3ir ZKQKM97YFIFpG5XECNS0BpfYgYYLjKNMha7KriJtIh+mpIfsh/uGPWUfXsRZQVNk IwGXcGZ1I3ZXxjXfJmAN1lbqWLT+9q3cV105PLBxDiXQ7uhLY2qB3UMLOEQ59LUi vWShS4q+GBnJ/24k1lu1tucnmz7Jm2WV6qgVpxFwqcvz4iseaZXd8LZHCqXQk6a4 Ke4VDecKP/RsFd12o16zuKgQH1A/PuJi4jZFiUDrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYqnq8fxKkZTHrVx7pAhWTcaHmuQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzJmNDRiNjMyLTI3MjAtNGVmMC05MTdjLTRiMTgxM2VkOTAzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZgf0AwDQYJKoZIhvcNAQELBQADggEBAEAiUZd+OQCBKBzyVmKjVQ5kW1xk KnBiHbO4eSnFK7qL62J93UipSZ+Bko3gKJDaZ1JBprRpkvFMiQxkBvWhruRS6i1p Aasg8EgT1RzfJYMwG9BLe4udqK1bDYLQCI0AaYblkuUR5wssEs62Bmsgh6PqgahI 2hstHmkWwHC7hZpdYP6h+P6zVCnh3Q2fwy1PAvnMuNmE9B2yf5XwLprmhymOmNuE GEUPPmvoobkFEVZXn+ghSXXKUaIKoEWB9QAnRfY3LzxuJZQK+ngSikOXZVND3RUv 3Lhygi9YaNYnTV9YDzPONyIfO0X81UV6rV+PK702uga1urQ9f1cRY37mTs8= -----END CERTIFICATE-----Generated at Sat Aug 23 16:05:45 2025 by rpki-client