$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa File: 9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa (raw, json) Hash identifier: WfW7xZCTbHbxZTKCcrmHaOtvoDi4saTDBV6nPcrKekI= Subject key identifier: 59:06:32:34:11:B6:86:43:CF:23:DB:9B:B2:F7:65:BA:36:7B:57:BE Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 18B70D55D6FC2D39CCE27C4D078DF255464F7A49 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa Signing time: Fri 26 Sep 2025 00:41:21 +0000 ROA not before: Fri 26 Sep 2025 00:41:21 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:b7:0d:55:d6:fc:2d:39:cc:e2:7c:4d:07:8d:f2:55:46:4f:7a:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Sep 26 00:41:21 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=da23f46bc4c36bbb3aa8adca6112afd6aed25472c6dc753d423e0e138f7e170f, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4c:e4:5e:1c:8c:ab:2a:99:4f:7f:c8:15:8d: cb:78:52:9b:04:71:40:0b:dd:fc:05:df:50:fe:e3: 68:83:54:2c:2b:4e:de:bd:cb:97:ff:2b:2e:33:d6: 92:fa:02:22:ac:ac:88:a7:9e:d6:ba:6e:2d:ee:e3: a4:d8:48:b2:66:b3:13:44:85:17:b0:79:36:73:07: 85:16:09:41:d2:7a:46:07:6d:dd:80:5b:a3:9a:65: a7:1e:83:25:7d:b9:06:e1:08:48:fa:c3:a1:21:a8: 14:73:01:42:c1:80:8f:22:c0:f4:52:6a:1a:52:0c: e5:4b:b9:d9:aa:fb:40:58:c3:81:8d:22:51:0b:e2: 20:47:5d:4f:89:b1:95:de:74:2a:ed:a8:a9:a4:32: 06:28:5b:e2:fa:47:c6:cb:94:55:91:a4:6f:c3:02: 99:86:0a:8c:64:88:d4:ed:0a:a3:96:78:d1:88:18: 53:0f:75:51:2b:29:70:9e:24:3d:41:02:86:5a:33: a8:3f:6e:03:29:04:1f:51:78:89:ef:8e:b8:cf:13: 19:f3:c1:cb:e5:c2:7b:ac:1b:71:aa:07:16:fa:53: 1d:e1:4b:47:df:27:36:8b:62:63:7a:8a:a2:7f:91: b9:09:3c:2c:f5:01:47:04:c7:0b:05:23:03:a0:98: ea:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:06:32:34:11:B6:86:43:CF:23:DB:9B:B2:F7:65:BA:36:7B:57:BE X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 09:17:8d:64:b8:e0:53:45:1d:57:49:c0:bf:ee:d9:8a:6d:e2: 72:e5:5d:7f:54:14:07:e1:d4:d7:7c:34:40:2f:a5:c4:34:c6: 27:40:09:8d:d6:76:bb:f0:d0:05:a9:7f:64:55:87:41:16:3b: 23:8c:10:67:41:c1:30:1c:d4:e3:31:82:f4:a1:3f:f5:19:02: ca:50:ad:87:be:c0:bc:49:78:f3:1c:2f:7d:f1:0b:f1:2f:78: 7b:01:2a:80:e3:89:b4:6e:a1:0a:84:52:b1:8e:19:ff:63:4b: c2:db:c6:b5:de:dc:19:15:0b:cf:16:c4:e9:42:8e:d7:62:b1: b0:92:8b:a2:99:51:00:2c:87:ab:87:18:b2:80:50:60:8d:0d: 4e:4a:14:e0:60:e7:b7:4b:95:97:8b:b4:37:8d:38:18:59:6f: b9:b1:dd:2d:9f:aa:b7:a9:af:f2:d1:b8:f9:49:9e:51:91:55: cc:dc:e6:ea:69:9a:95:7b:eb:f4:75:45:8f:80:80:83:89:a1: dc:7b:76:2a:5f:6c:d2:88:70:82:1d:d0:0b:c5:de:81:83:4b: f7:cc:41:dc:16:d5:cf:80:41:46:8f:ec:c3:7d:39:2c:6a:5e: 5e:bc:ee:57:a4:e2:cf:23:56:56:1f:ff:2f:bd:4c:ca:8f:19: 3e:5a:85:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGLcNVdb8LTnM4nxNB43yVUZPekkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwOTI2MDA0MTIxWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTIzZjQ2YmM0YzM2YmJiM2FhOGFkY2E2MTEyYWZkNmFl ZDI1NDcyYzZkYzc1M2Q0MjNlMGUxMzhmN2UxNzBmMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1TOReHIyrKplPf8gVjct4UpsEcUAL3fwF31D+42iDVCwr Tt69y5f/Ky4z1pL6AiKsrIinnta6bi3u46TYSLJmsxNEhReweTZzB4UWCUHSekYH bd2AW6OaZacegyV9uQbhCEj6w6EhqBRzAULBgI8iwPRSahpSDOVLudmq+0BYw4GN IlEL4iBHXU+JsZXedCrtqKmkMgYoW+L6R8bLlFWRpG/DApmGCoxkiNTtCqOWeNGI GFMPdVErKXCeJD1BAoZaM6g/bgMpBB9ReInvjrjPExnzwcvlwnusG3GqBxb6Ux3h S0ffJzaLYmN6iqJ/kbkJPCz1AUcExwsFIwOgmOqjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWQYyNBG2hkPPI9ubsvdlujZ7V74wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzlhNmFjZTU0LWYyMzEtNGUyNS04YTM2LWM0NjFkNDlkZmE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBAAkXjWS44FNFHVdJwL/u2Ypt4nLl XX9UFAfh1Nd8NEAvpcQ0xidACY3Wdrvw0AWpf2RVh0EWOyOMEGdBwTAc1OMxgvSh P/UZAspQrYe+wLxJePMcL33xC/EveHsBKoDjibRuoQqEUrGOGf9jS8LbxrXe3BkV C88WxOlCjtdisbCSi6KZUQAsh6uHGLKAUGCNDU5KFOBg57dLlZeLtDeNOBhZb7mx 3S2fqrepr/LRuPlJnlGRVczc5uppmpV76/R1RY+AgIOJodx7dipfbNKIcIId0AvF 3oGDS/fMQdwW1c+AQUaP7MN9OSxqXl687lek4s8jVlYf/y+9TMqPGT5ahQc= -----END CERTIFICATE-----Generated at Mon Oct 20 15:43:30 2025 by rpki-client