$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ec0e3b70-66be-4cb5-bc14-953f4d2f5fc5.roa File: ec0e3b70-66be-4cb5-bc14-953f4d2f5fc5.roa (raw, json) Hash identifier: QDB1SJdB1huv8g+WRpD3hC6iRx3N5TlWRXY+zgvM+sI= Subject key identifier: 04:82:45:45:D7:B8:85:26:7B:16:0C:CC:B5:0F:72:D8:FC:9E:39:1F Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 6EFE0BC1C7C3BF7EABC2D8B5FB1C8B61E71BBD23 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ec0e3b70-66be-4cb5-bc14-953f4d2f5fc5.roa Signing time: Mon 16 Jun 2025 15:50:17 +0000 ROA not before: Mon 16 Jun 2025 15:50:17 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:fe:0b:c1:c7:c3:bf:7e:ab:c2:d8:b5:fb:1c:8b:61:e7:1b:bd:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jun 16 15:50:17 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=4c3aa3168b489710fa1f20a5cc5262617e0326e7118dcda44802241062efabf3, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e9:fd:ad:c8:25:92:18:83:8f:49:d1:40:65: 0e:c2:8a:67:a5:02:e5:cb:9f:43:44:e7:ec:89:af: 76:05:be:84:02:4c:6c:de:bc:cd:d1:b9:ea:3e:1e: 12:74:55:8d:25:3b:6d:8d:07:ae:5d:91:81:00:9a: c9:85:ff:b6:bd:38:a9:7b:97:61:69:53:76:6c:98: 16:50:16:ed:bf:6b:36:d8:26:51:5a:2f:12:26:65: f8:29:e3:ec:b6:bc:00:46:30:c9:ff:a5:bf:e4:ec: 79:cf:f0:a9:cb:34:40:30:36:19:44:db:4e:8f:01: 5e:ee:38:b2:9e:2f:42:0a:a2:14:fa:70:41:3f:35: 45:aa:96:b9:08:31:54:a5:99:3b:46:47:9b:21:68: 44:47:6c:de:c0:55:2b:bd:0c:7b:5f:8c:de:f3:7a: b6:12:e4:25:52:d6:2b:ef:33:de:61:a1:f5:45:7f: 3e:46:44:ff:e4:cc:8d:4c:4d:58:f3:17:15:d7:3b: f9:53:4f:00:42:d5:52:c0:6d:c0:15:9c:67:a9:e2: 2f:2c:da:05:61:64:5e:bf:4a:d2:86:f5:ec:0a:eb: 07:b3:29:46:6e:a6:b0:82:a8:93:dc:d7:80:9e:c7: a3:d2:cf:17:0a:15:a5:7a:0f:f6:96:b6:e0:70:00: 9a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:82:45:45:D7:B8:85:26:7B:16:0C:CC:B5:0F:72:D8:FC:9E:39:1F X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ec0e3b70-66be-4cb5-bc14-953f4d2f5fc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/24 Signature Algorithm: sha256WithRSAEncryption 28:a3:d3:5e:d8:b1:95:73:2d:06:30:db:e8:55:75:c6:bf:ee: 49:3c:4c:7a:fe:73:b5:4c:b9:80:6c:e7:0f:65:b1:2d:05:fe: c3:9f:40:4e:fc:47:e6:22:64:58:0b:d1:11:c1:de:42:96:b0: 47:35:50:8b:f7:a1:07:7c:13:b4:b8:1e:c0:6b:16:61:e3:60: 8d:91:86:82:14:f3:9d:1a:37:26:7f:94:79:64:18:67:dd:27: 2f:f3:2e:bc:0c:bb:1c:b2:fc:34:da:4d:e4:bc:28:63:ab:0f: f1:c0:53:29:b8:fb:7a:18:42:23:5b:2c:84:2b:84:c5:bf:bc: f7:3f:29:af:68:e0:39:44:15:00:36:63:54:61:4d:43:6c:43: 55:b2:5f:b4:7c:5e:e0:98:51:a0:f3:64:1a:c2:f7:e1:e1:a4: b2:17:d9:04:bb:df:33:77:04:52:a6:95:1d:f6:26:20:84:16: 7c:80:bf:10:b0:0e:fe:11:69:c0:80:66:04:2a:bb:da:03:10: 93:da:e8:ea:0c:96:6c:27:4d:71:28:7d:fc:9c:80:fd:81:9e: 3f:73:29:9d:cd:36:e4:aa:6f:49:91:b7:1d:d9:fb:06:3d:be: cb:fc:c9:4f:a6:53:e3:45:29:22:12:b7:e0:38:2d:61:b4:7a: d2:c2:4f:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbv4LwcfDv36rwti1+xyLYecbvSMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNjE2MTU1MDE3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzNhYTMxNjhiNDg5NzEwZmExZjIwYTVjYzUyNjI2MTdl MDMyNmU3MTE4ZGNkYTQ0ODAyMjQxMDYyZWZhYmYzMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa6f2tyCWSGIOPSdFAZQ7CimelAuXLn0NE5+yJr3YFvoQC TGzevM3Rueo+HhJ0VY0lO22NB65dkYEAmsmF/7a9OKl7l2FpU3ZsmBZQFu2/azbY JlFaLxImZfgp4+y2vABGMMn/pb/k7HnP8KnLNEAwNhlE206PAV7uOLKeL0IKohT6 cEE/NUWqlrkIMVSlmTtGR5shaERHbN7AVSu9DHtfjN7zerYS5CVS1ivvM95hofVF fz5GRP/kzI1MTVjzFxXXO/lTTwBC1VLAbcAVnGep4i8s2gVhZF6/StKG9ewK6wez KUZuprCCqJPc14Cex6PSzxcKFaV6D/aWtuBwAJqTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBIJFRde4hSZ7FgzMtQ9y2PyeOR8wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2VjMGUzYjcwLTY2YmUtNGNiNS1iYzE0LTk1M2Y0ZDJmNWZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwAwDQYJKoZIhvcNAQELBQADggEBACij017YsZVzLQYw2+hVdca/7kk8 THr+c7VMuYBs5w9lsS0F/sOfQE78R+YiZFgL0RHB3kKWsEc1UIv3oQd8E7S4HsBr FmHjYI2RhoIU850aNyZ/lHlkGGfdJy/zLrwMuxyy/DTaTeS8KGOrD/HAUym4+3oY QiNbLIQrhMW/vPc/Ka9o4DlEFQA2Y1RhTUNsQ1WyX7R8XuCYUaDzZBrC9+HhpLIX 2QS73zN3BFKmlR32JiCEFnyAvxCwDv4RacCAZgQqu9oDEJPa6OoMlmwnTXEoffyc gP2Bnj9zKZ3NNuSqb0mRtx3Z+wY9vsv8yU+mU+NFKSISt+A4LWG0etLCTww= -----END CERTIFICATE-----Generated at Sun Jun 29 16:08:33 2025 by rpki-client