$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa File: 3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa (raw, json) Hash identifier: /n2EoMYuPrj0Xv5IdGKj/Zj4Hd9YB7Uf21EBg5StZ3Y= Subject key identifier: 3F:3C:88:83:D8:48:2A:8E:13:BB:7C:42:77:C8:C0:D4:D7:9D:AB:30 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 45C100BAC04D5779E134D42ED4A79D8B5C0BA875 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa Signing time: Tue 05 Aug 2025 15:01:10 +0000 ROA not before: Tue 05 Aug 2025 15:01:10 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c1:00:ba:c0:4d:57:79:e1:34:d4:2e:d4:a7:9d:8b:5c:0b:a8:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Aug 5 15:01:10 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=cf3099d2da25b3394f62464edf8ce154646b845c1604c802898e6a11e76f7fad, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f6:8d:48:0a:7f:8c:b4:cd:b0:f5:96:4d:b2: 89:48:4d:7c:94:25:3c:5a:eb:64:45:58:60:e9:b4: 58:5b:8a:13:b1:bb:84:50:1c:01:4a:07:17:82:4b: 11:19:40:37:0a:6b:f8:80:42:19:b9:96:0d:0d:7f: f7:be:7d:3e:73:0c:24:53:34:11:a8:2d:36:95:a4: 47:e1:d2:8e:c6:c7:1b:bf:68:96:71:d3:b6:a8:51: 05:fa:93:5c:4c:4a:95:89:20:5c:23:32:25:a5:e6: 4f:d3:33:64:a1:6a:d7:2a:7c:05:93:aa:3e:25:7b: 7b:de:8d:54:11:73:e2:b0:35:4a:fb:1a:a6:ff:12: 64:1d:98:41:8e:dc:69:99:fe:b2:04:32:00:85:67: ce:3c:2d:fb:7b:e9:ea:80:f3:1e:d4:32:1e:56:1e: 40:3e:a5:04:b4:23:08:bd:8a:c1:42:83:97:6b:57: 15:6c:1e:99:35:ce:e8:2d:57:96:7c:78:a8:29:e1: 11:90:19:a2:13:c0:de:9d:8b:1d:c5:ce:d6:af:6c: e1:72:65:88:1e:8e:84:1c:4f:09:01:1f:95:f0:be: aa:0b:1d:9c:f8:80:45:ab:04:cd:7d:e6:be:bc:87: 5d:35:a3:bf:f5:86:a0:84:29:9f:53:3c:aa:72:50: 8c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:3C:88:83:D8:48:2A:8E:13:BB:7C:42:77:C8:C0:D4:D7:9D:AB:30 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.32.0/19 Signature Algorithm: sha256WithRSAEncryption 3e:76:84:d1:64:c4:39:76:0c:bd:90:64:e6:df:45:60:74:48: b8:4b:be:09:22:66:d1:1e:d9:ff:a2:e6:ce:a7:c5:f3:ea:cd: 6f:09:d5:2c:83:e0:97:df:a1:79:7a:00:18:f5:c7:23:36:dc: 74:e9:12:4a:a5:64:7c:74:97:ce:1b:87:1a:07:c6:a2:a8:d1: a3:68:60:b9:08:69:f4:3b:fc:a7:8f:fb:1b:1f:b5:b7:3d:6a: 17:df:90:e4:68:1d:80:9a:bf:05:2a:76:3e:06:8a:90:81:62: e5:59:7e:08:27:7c:10:94:9d:a3:c4:3c:c9:d9:e6:d3:b2:44: 54:c9:23:a5:4c:5d:f6:37:6a:2d:06:fa:4c:33:73:f5:32:03: f1:dc:c3:13:57:87:d0:a9:39:13:0f:61:59:96:44:05:c6:a7: 6b:37:bb:c5:20:a6:40:ca:2d:4a:a2:48:ac:b2:63:eb:8c:ce: e2:62:0b:4e:a9:3e:99:32:3c:b0:03:b3:6f:cd:19:f2:fc:33: 37:e1:4e:88:f6:04:d2:b3:55:7b:21:f3:99:a0:b3:a3:d9:5b: f8:db:3b:7a:55:ee:bf:53:fa:0e:a7:78:2a:b9:b0:66:1d:43: 72:97:06:84:4d:95:20:96:91:1e:7b:01:a8:ca:05:07:6a:02: 32:16:2a:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURcEAusBNV3nhNNQu1Kedi1wLqHUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwODA1MTUwMTEwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjMwOTlkMmRhMjViMzM5NGY2MjQ2NGVkZjhjZTE1NDY0 NmI4NDVjMTYwNGM4MDI4OThlNmExMWU3NmY3ZmFkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa9o1ICn+MtM2w9ZZNsolITXyUJTxa62RFWGDptFhbihOx u4RQHAFKBxeCSxEZQDcKa/iAQhm5lg0Nf/e+fT5zDCRTNBGoLTaVpEfh0o7Gxxu/ aJZx07aoUQX6k1xMSpWJIFwjMiWl5k/TM2ShatcqfAWTqj4le3vejVQRc+KwNUr7 Gqb/EmQdmEGO3GmZ/rIEMgCFZ848Lft76eqA8x7UMh5WHkA+pQS0Iwi9isFCg5dr VxVsHpk1zugtV5Z8eKgp4RGQGaITwN6dix3FztavbOFyZYgejoQcTwkBH5XwvqoL HZz4gEWrBM195r68h101o7/1hqCEKZ9TPKpyUIyLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPzyIg9hIKo4Tu3xCd8jA1NedqzAwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzNmZDYxMTdiLTVmNmItNDNmZS1iZjBhLWI2NmY4ZDM1ZTQ1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVgfyAwDQYJKoZIhvcNAQELBQADggEBAD52hNFkxDl2DL2QZObfRWB0SLhL vgkiZtEe2f+i5s6nxfPqzW8J1SyD4JffoXl6ABj1xyM23HTpEkqlZHx0l84bhxoH xqKo0aNoYLkIafQ7/KeP+xsftbc9ahffkORoHYCavwUqdj4GipCBYuVZfggnfBCU naPEPMnZ5tOyRFTJI6VMXfY3ai0G+kwzc/UyA/HcwxNXh9CpORMPYVmWRAXGp2s3 u8UgpkDKLUqiSKyyY+uMzuJiC06pPpkyPLADs2/NGfL8MzfhToj2BNKzVXsh85mg s6PZW/jbO3pV7r9T+g6neCq5sGYdQ3KXBoRNlSCWkR57AajKBQdqAjIWKp0= -----END CERTIFICATE-----Generated at Sat Aug 23 20:04:46 2025 by rpki-client