$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa File: 9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa (raw, json) Hash identifier: JW2Ar22YGzQMQqpmUzhEw9OdaDf9U7Mst882RZq3X9Q= Subject key identifier: 2C:0D:9E:E3:F0:BB:F5:E4:83:A5:29:63:EE:F2:73:DA:10:9C:F9:4E Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 3610C973B2F9269AD4B56CD47432F6E2C399AF29 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa Signing time: Mon 16 Jun 2025 15:50:27 +0000 ROA not before: Mon 16 Jun 2025 15:50:27 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:10:c9:73:b2:f9:26:9a:d4:b5:6c:d4:74:32:f6:e2:c3:99:af:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jun 16 15:50:27 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=83172eeeee0bae8d4055c1a674e654cc6aeb3dcafb188372b2e313713c06409c, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7e:58:81:b1:ee:26:03:19:89:8a:54:d4:7c: b4:80:24:da:00:0f:c8:47:f9:65:8f:06:08:6d:49: 1d:fe:26:39:29:8f:40:c4:ad:88:4a:1c:e8:0c:d3: ae:aa:74:a0:fa:48:9d:44:f7:15:0f:80:cd:c4:2b: b3:36:f0:b0:96:db:23:8f:9a:22:25:6f:b6:ec:26: fe:bb:86:a2:36:86:db:eb:99:6a:96:45:32:d7:ca: df:66:66:66:80:56:fc:27:81:27:e1:e1:3d:bb:60: 6d:6e:83:67:5b:25:e7:96:e5:e8:83:ad:9c:4e:4b: 3a:a5:d3:6a:4c:4f:5c:c5:08:4e:d1:0f:e2:10:44: db:f0:78:2f:9c:82:b6:78:41:43:c5:57:33:50:43: d5:0e:67:53:b5:36:45:75:37:88:14:88:f7:dc:ec: 46:89:86:7d:da:9d:e1:25:3c:d6:ae:a2:9d:e4:d4: 59:c9:d2:ae:87:78:fd:40:aa:f0:d2:9a:e8:4d:16: aa:37:c2:57:77:d5:cd:3e:83:c7:f5:99:eb:f3:c9: 1c:2c:56:d3:be:6f:cd:ea:57:83:2c:53:7a:f0:a9: 7d:b1:6a:3a:da:52:19:6d:6f:09:5f:9d:62:e1:aa: 06:22:6d:f4:71:a9:3b:7d:08:69:39:ab:dc:ad:c1: 21:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0D:9E:E3:F0:BB:F5:E4:83:A5:29:63:EE:F2:73:DA:10:9C:F9:4E X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.8.0/21 Signature Algorithm: sha256WithRSAEncryption 87:5a:51:c8:44:e2:73:70:03:17:f8:de:9d:7d:37:1e:c1:12: 30:48:76:22:05:8e:84:5a:cd:f3:6a:6b:0d:60:ec:10:6f:94: 93:ba:77:38:e9:0f:78:c5:40:ad:a7:4f:55:5a:d7:75:ca:f6: 1f:22:a6:32:e0:f2:06:b3:4b:56:90:67:8e:51:5e:81:f4:0d: cb:9a:49:95:ef:5b:58:50:30:36:97:73:c4:e2:b8:40:a4:77: 69:aa:30:fd:01:c7:37:20:11:cc:eb:04:38:77:a2:a9:d7:d5: 4f:d9:d3:29:a5:a1:34:39:42:f2:3c:2c:58:f7:6b:f6:3e:7f: ac:06:83:07:26:79:18:a1:a3:92:4f:ee:00:6f:5a:62:4b:70: e5:29:40:c2:cd:60:86:df:2d:d1:95:4d:22:ca:91:76:dd:0f: 93:cc:c1:cf:74:d7:aa:fb:dc:30:d4:f6:50:57:d9:9d:49:3e: d6:9e:64:1c:7f:f7:94:c4:4b:fe:8b:c8:bf:fb:dc:71:fd:19: e8:bc:a2:57:b0:7d:96:ca:65:9f:31:58:b9:23:d1:c9:0b:a1: 29:b5:b0:38:3c:83:a2:cf:69:9a:ba:fa:29:ff:33:ca:4c:7f: e7:ad:0d:24:47:0e:ed:10:65:8b:91:4d:6b:db:f8:21:c7:32: 5e:4a:c8:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNhDJc7L5JprUtWzUdDL24sOZrykwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNjE2MTU1MDI3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzE3MmVlZWVlMGJhZThkNDA1NWMxYTY3NGU2NTRjYzZh ZWIzZGNhZmIxODgzNzJiMmUzMTM3MTNjMDY0MDljMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/fliBse4mAxmJilTUfLSAJNoAD8hH+WWPBghtSR3+Jjkp j0DErYhKHOgM066qdKD6SJ1E9xUPgM3EK7M28LCW2yOPmiIlb7bsJv67hqI2htvr mWqWRTLXyt9mZmaAVvwngSfh4T27YG1ug2dbJeeW5eiDrZxOSzql02pMT1zFCE7R D+IQRNvweC+cgrZ4QUPFVzNQQ9UOZ1O1NkV1N4gUiPfc7EaJhn3aneElPNauop3k 1FnJ0q6HeP1AqvDSmuhNFqo3wld31c0+g8f1mevzyRwsVtO+b83qV4MsU3rwqX2x ajraUhltbwlfnWLhqgYibfRxqTt9CGk5q9ytwSGHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULA2e4/C79eSDpSlj7vJz2hCc+U4wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzliZmRlOTRhLTFkOTUtNGRjZS1iMGIyLTcyNzE3MmY1ZTQ5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwgwDQYJKoZIhvcNAQELBQADggEBAIdaUchE4nNwAxf43p19Nx7BEjBI diIFjoRazfNqaw1g7BBvlJO6dzjpD3jFQK2nT1Va13XK9h8ipjLg8gazS1aQZ45R XoH0DcuaSZXvW1hQMDaXc8TiuECkd2mqMP0BxzcgEczrBDh3oqnX1U/Z0ymloTQ5 QvI8LFj3a/Y+f6wGgwcmeRiho5JP7gBvWmJLcOUpQMLNYIbfLdGVTSLKkXbdD5PM wc9016r73DDU9lBX2Z1JPtaeZBx/95TES/6LyL/73HH9Gei8olewfZbKZZ8xWLkj 0ckLoSm1sDg8g6LPaZq6+in/M8pMf+etDSRHDu0QZYuRTWvb+CHHMl5KyCk= -----END CERTIFICATE-----Generated at Sun Jun 29 04:27:23 2025 by rpki-client