$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f3e78c9d-caff-4237-aaba-b40f901e3c8a.roa File: f3e78c9d-caff-4237-aaba-b40f901e3c8a.roa (raw, json) Hash identifier: HkaJ2Uc6SfKJJToCxRLTGNMbzp/5l/zETCUJH/NjUBY= Subject key identifier: C3:11:58:4A:31:94:24:7C:BD:DC:D1:4A:02:D5:03:05:9F:16:0C:37 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 6EBFF9EC2C2F3210D177A74AB3075272FC133D9E Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f3e78c9d-caff-4237-aaba-b40f901e3c8a.roa Signing time: Mon 16 Jun 2025 15:50:29 +0000 ROA not before: Mon 16 Jun 2025 15:50:29 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:bf:f9:ec:2c:2f:32:10:d1:77:a7:4a:b3:07:52:72:fc:13:3d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jun 16 15:50:29 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=77af9829f7a20110d054601612b41428e942a6cdb6e833b55901f5f7bc10e3d4, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2b:40:6a:ed:c3:6b:e8:34:24:51:85:95:c5: 95:da:bb:57:92:7c:25:b8:81:02:0c:9f:0e:5f:a5: c8:4e:08:2b:7d:34:ed:0e:55:89:28:81:db:e7:5d: c9:e6:3a:dd:6e:87:11:31:06:98:59:28:aa:a1:9f: 32:92:65:60:d4:4e:09:c6:a5:d9:ce:f6:ec:eb:a0: 4f:08:8d:01:c4:80:3f:b5:7b:76:6a:42:80:df:49: 5b:de:78:a5:2c:cb:f3:e5:02:a8:52:f2:3c:38:8d: 57:ab:c6:35:63:32:78:27:67:f0:ba:b9:04:35:95: ad:3a:1f:c2:92:ba:43:4e:8a:19:9e:18:69:8e:58: 8d:87:40:b5:2f:0f:f1:b6:62:82:25:34:dd:24:af: 58:ea:80:7c:50:e5:61:48:4c:8f:19:a2:d7:13:1d: bb:e5:dc:0e:c2:35:2a:67:77:41:90:e8:8d:af:d0: 1a:38:f5:ab:0d:2c:7d:fb:0a:9c:2f:9a:96:8f:c0: 71:da:1c:a2:e7:13:f7:1e:00:47:e6:01:22:66:ab: d8:c9:97:35:e1:15:cd:fa:fe:dc:11:32:28:bf:76: 0e:7d:b7:fa:6c:41:f4:51:c0:6c:7c:fe:6f:55:a6: 10:72:d4:19:6d:4b:0f:14:bc:ec:1b:b6:48:56:73: ae:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:11:58:4A:31:94:24:7C:BD:DC:D1:4A:02:D5:03:05:9F:16:0C:37 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f3e78c9d-caff-4237-aaba-b40f901e3c8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.1.0/24 Signature Algorithm: sha256WithRSAEncryption 27:94:1e:b5:2a:03:13:9f:15:09:a0:4e:5a:c7:35:5f:b3:d9: 7c:70:35:a6:76:43:9a:a9:fe:a3:c6:33:1a:d7:56:18:3f:d9: 0a:2f:12:e0:9b:36:a8:ae:29:c1:96:cf:be:85:ce:38:03:5e: c6:15:ee:46:8e:1c:d6:d4:2d:e4:0c:33:e1:74:a7:2e:93:97: 7a:73:60:01:81:11:32:5c:a5:10:82:b0:f7:30:e9:08:bf:5f: bf:1d:a0:c5:7d:19:13:89:79:64:20:ca:28:9f:7a:c2:f5:ff: 35:f9:6c:36:3d:00:61:91:75:e3:cf:09:bf:56:b7:8f:81:8f: d4:89:af:15:42:2b:1a:5e:2b:cd:45:b9:78:08:ce:b4:35:62: 3d:b4:c5:2e:fd:91:d9:4f:6c:c2:96:4a:7e:74:ac:cb:01:92: e7:11:e6:b6:ed:78:29:33:e3:32:3a:d8:7e:52:c0:bb:44:7d: 10:f2:bc:13:29:73:e0:63:22:b4:6f:81:ad:74:89:d4:9d:50: 5f:3f:4d:7b:b7:36:9d:bf:c9:d9:1d:58:a8:a1:97:7b:be:ff: 42:59:25:22:3d:22:b4:e8:db:97:72:c1:c1:1a:6d:22:f6:e1: 94:4c:fc:d2:d8:88:3c:cf:be:55:00:d3:88:e3:dc:59:3f:0a: 45:59:fc:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbr/57CwvMhDRd6dKswdScvwTPZ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNjE2MTU1MDI5WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2FmOTgyOWY3YTIwMTEwZDA1NDYwMTYxMmI0MTQyOGU5 NDJhNmNkYjZlODMzYjU1OTAxZjVmN2JjMTBlM2Q0MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgK0Bq7cNr6DQkUYWVxZXau1eSfCW4gQIMnw5fpchOCCt9 NO0OVYkogdvnXcnmOt1uhxExBphZKKqhnzKSZWDUTgnGpdnO9uzroE8IjQHEgD+1 e3ZqQoDfSVveeKUsy/PlAqhS8jw4jVerxjVjMngnZ/C6uQQ1la06H8KSukNOihme GGmOWI2HQLUvD/G2YoIlNN0kr1jqgHxQ5WFITI8ZotcTHbvl3A7CNSpnd0GQ6I2v 0Bo49asNLH37CpwvmpaPwHHaHKLnE/ceAEfmASJmq9jJlzXhFc36/twRMii/dg59 t/psQfRRwGx8/m9VphBy1BltSw8UvOwbtkhWc67NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwxFYSjGUJHy93NFKAtUDBZ8WDDcwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2YzZTc4YzlkLWNhZmYtNDIzNy1hYWJhLWI0MGY5MDFlM2M4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwEwDQYJKoZIhvcNAQELBQADggEBACeUHrUqAxOfFQmgTlrHNV+z2Xxw NaZ2Q5qp/qPGMxrXVhg/2QovEuCbNqiuKcGWz76FzjgDXsYV7kaOHNbULeQMM+F0 py6Tl3pzYAGBETJcpRCCsPcw6Qi/X78doMV9GROJeWQgyiifesL1/zX5bDY9AGGR dePPCb9Wt4+Bj9SJrxVCKxpeK81FuXgIzrQ1Yj20xS79kdlPbMKWSn50rMsBkucR 5rbteCkz4zI62H5SwLtEfRDyvBMpc+BjIrRvga10idSdUF8/TXu3Np2/ydkdWKih l3u+/0JZJSI9IrTo25dywcEabSL24ZRM/NLYiDzPvlUA04jj3Fk/CkVZ/Do= -----END CERTIFICATE-----Generated at Sun Jun 29 04:45:17 2025 by rpki-client