$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa File: 5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa (raw, json) Hash identifier: ou13vyaa/VJC6R4DPnLqPuGu7p43nta6ExcKNq1rOuc= Subject key identifier: A9:BC:F4:83:6B:D9:3A:49:69:2F:95:3B:1F:9A:B0:49:57:89:37:8E Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 61F3C68F7737834D10360226B444CD53F37DF8CE Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa Signing time: Mon 16 Jun 2025 16:00:14 +0000 ROA not before: Mon 16 Jun 2025 16:00:14 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f3:c6:8f:77:37:83:4d:10:36:02:26:b4:44:cd:53:f3:7d:f8:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jun 16 16:00:14 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=a776026610b614b642b352cddd2c3face2852e1926a03c959667dce059c8905b, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bb:6d:cf:8d:85:e5:86:8e:88:1f:8d:7e:06: 7e:05:d1:bb:7d:86:04:5f:2b:a0:1e:42:2c:63:bb: db:89:8e:75:91:84:08:b7:73:c6:d0:b5:ff:78:c7: e4:f3:87:fc:8c:c6:6b:32:8e:9f:4f:37:2d:f9:0a: dd:c1:32:84:e5:35:1a:b3:77:5f:64:b0:70:35:12: 4c:e2:33:00:d5:ef:32:f5:67:71:a6:64:b7:c7:8a: b7:87:dc:01:ab:c8:2b:56:c0:81:0d:be:18:06:e7: 3c:dd:47:94:55:38:1c:1c:fb:e4:13:80:c6:11:1f: 97:21:ca:0f:bd:4f:0b:5a:47:31:7e:92:b5:00:52: 48:55:74:bf:6e:3e:6c:7f:99:8a:f1:2d:8a:ed:d3: f3:2b:68:96:ea:26:de:8c:17:d6:8f:09:2f:6d:6a: 38:9b:73:8d:65:28:51:3e:94:0b:71:0e:23:b3:40: 44:6a:57:b5:b8:7f:ef:3c:77:85:a9:de:81:8b:2a: 76:01:b3:02:38:6a:ec:ff:1f:d5:19:e6:a2:69:c0: c4:d9:16:5d:e5:21:d9:c1:46:6a:b3:46:49:36:6c: 2e:69:9d:58:82:4c:b7:9f:a2:67:8a:85:74:cd:4c: de:d0:ee:cb:f1:a3:e3:2d:1d:d7:be:bd:a7:5d:bb: e3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:BC:F4:83:6B:D9:3A:49:69:2F:95:3B:1F:9A:B0:49:57:89:37:8E X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 48:55:12:cd:7f:da:53:76:fa:96:8d:ef:0a:53:be:b2:62:77: a5:a1:af:33:3c:c0:d2:7b:88:34:99:b6:24:cd:a1:52:df:b1: 56:10:c7:c3:ae:59:c7:61:8d:6c:8d:24:6d:42:9e:a4:ef:05: 17:7d:a3:2c:e7:0d:96:e6:ab:7a:92:bc:f2:6a:14:48:d6:b2: 2a:48:00:20:1e:e7:fc:1c:17:07:d7:82:9d:87:03:78:b1:1a: af:44:10:01:5e:69:1c:4e:e6:37:4c:66:87:0c:2b:f0:03:e4: d2:86:b3:e4:bd:0a:a2:01:44:72:09:b7:a9:cf:3b:cc:28:ef: ec:5a:0e:b5:37:eb:b6:05:0b:44:ac:ea:1a:68:1a:30:9c:d1: 52:20:03:13:83:2a:ea:89:36:54:3b:c5:9c:59:91:03:0e:e1: 89:4d:36:5a:54:70:d1:2b:46:b0:bb:99:0a:58:90:f8:43:bb: d9:5e:db:22:54:74:83:b5:3b:28:5d:23:bc:36:89:c4:d8:00: 7d:98:dd:03:95:f4:00:d4:b5:8a:ca:c7:8a:93:60:9f:f8:f9: dc:6a:c6:f4:e6:e8:c1:57:52:8e:23:66:d0:47:3b:57:f5:2c: 2a:be:db:bb:5b:f1:20:65:71:28:c3:9d:ca:a8:e2:45:50:bc: ed:50:a8:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYfPGj3c3g00QNgImtETNU/N9+M4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNjE2MTYwMDE0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzc2MDI2NjEwYjYxNGI2NDJiMzUyY2RkZDJjM2ZhY2Uy ODUyZTE5MjZhMDNjOTU5NjY3ZGNlMDU5Yzg5MDViMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqu23PjYXlho6IH41+Bn4F0bt9hgRfK6AeQixju9uJjnWR hAi3c8bQtf94x+Tzh/yMxmsyjp9PNy35Ct3BMoTlNRqzd19ksHA1EkziMwDV7zL1 Z3GmZLfHireH3AGryCtWwIENvhgG5zzdR5RVOBwc++QTgMYRH5chyg+9TwtaRzF+ krUAUkhVdL9uPmx/mYrxLYrt0/MraJbqJt6MF9aPCS9tajibc41lKFE+lAtxDiOz QERqV7W4f+88d4Wp3oGLKnYBswI4auz/H9UZ5qJpwMTZFl3lIdnBRmqzRkk2bC5p nViCTLefomeKhXTNTN7Q7svxo+MtHde+vaddu+N9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqbz0g2vZOklpL5U7H5qwSVeJN44wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzVlZDUxMDQ5LWQzNDctNGRkMC1iZjRmLWUxY2I0YWRjODBjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBAEhVEs1/2lN2+paN7wpTvrJid6Wh rzM8wNJ7iDSZtiTNoVLfsVYQx8OuWcdhjWyNJG1CnqTvBRd9oyznDZbmq3qSvPJq FEjWsipIACAe5/wcFwfXgp2HA3ixGq9EEAFeaRxO5jdMZocMK/AD5NKGs+S9CqIB RHIJt6nPO8wo7+xaDrU367YFC0Ss6hpoGjCc0VIgAxODKuqJNlQ7xZxZkQMO4YlN NlpUcNErRrC7mQpYkPhDu9le2yJUdIO1OyhdI7w2icTYAH2Y3QOV9ADUtYrKx4qT YJ/4+dxqxvTm6MFXUo4jZtBHO1f1LCq+27tb8SBlcSjDncqo4kVQvO1QqJY= -----END CERTIFICATE-----Generated at Sun Jun 29 16:56:35 2025 by rpki-client