$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa File: db0b227f-9958-4ebb-9f23-65cc24c5c799.roa (raw, json) Hash identifier: prEgXyRZtT0u/n9/JuY0sWhUg7MPSxh49t4LO2FBh94= Subject key identifier: B5:CC:18:EC:99:A9:14:4C:EC:E6:40:BE:5E:2C:23:76:55:66:84:44 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 3C82BDF1F9CA46FE3E743DB1BB507206D826ABDF Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa Signing time: Fri 10 Oct 2025 00:21:07 +0000 ROA not before: Fri 10 Oct 2025 00:21:07 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:82:bd:f1:f9:ca:46:fe:3e:74:3d:b1:bb:50:72:06:d8:26:ab:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Oct 10 00:21:07 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=001a0ec65d74bea55daead4ca16d296ab5ad1396a8314914d7ee6429217449d0, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:58:44:ea:03:10:e1:c2:5d:28:b0:c3:84:dc: ec:d1:a0:d6:0d:a1:86:47:20:c9:6a:bc:a9:02:ed: 5e:22:d6:6e:c9:a8:eb:93:ef:76:35:fc:b0:33:27: 20:8d:50:86:c0:25:9c:99:94:44:c3:b4:db:f6:02: 03:23:b1:66:78:65:0c:9d:6f:b2:2e:ac:d2:cb:9c: 79:c3:da:18:71:f5:ad:18:f8:9d:e6:92:8b:0b:2a: a2:b0:aa:5c:3d:02:0e:73:89:55:2d:10:2d:68:11: 80:0d:b3:b3:5e:a3:3f:e2:b4:ba:ad:a2:74:e7:e1: ca:f5:f2:94:95:13:bc:ed:df:71:62:38:a1:c6:df: d9:e9:e2:4b:51:c0:66:f8:db:d5:43:69:4f:83:49: c8:01:f5:7f:10:4c:17:d1:65:21:6a:e1:ac:47:b3: 88:bf:0f:39:0e:2b:26:69:90:0e:7d:da:85:91:cc: b4:d8:16:b3:ab:56:52:24:31:35:4e:06:0c:79:02: 91:a6:01:bc:f3:74:7d:d2:5a:d0:a5:ee:01:e3:c4: 71:2b:f9:b0:f7:52:31:d7:8c:41:bf:c7:c8:2f:0d: d7:aa:a5:d0:d8:18:b4:49:3b:76:b9:d7:bb:fe:b6: 3f:30:95:93:23:03:f7:2c:4a:c8:bf:05:12:39:3e: 52:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CC:18:EC:99:A9:14:4C:EC:E6:40:BE:5E:2C:23:76:55:66:84:44 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption b2:24:e6:cc:c3:4d:bc:dc:bd:5d:24:9e:1e:e7:62:33:59:96: 47:bd:d1:9a:21:cd:f8:7c:7e:ca:12:53:af:65:52:f4:42:3b: df:dc:85:b8:19:b7:c1:f4:85:51:42:fb:7b:fd:44:81:8c:5a: 3c:f9:be:79:83:75:14:19:ad:80:31:d5:c9:2d:4c:6e:eb:aa: b9:2f:66:7a:11:21:b2:a2:1d:4c:3d:5a:62:3b:20:ba:e9:69: 1e:b7:f5:34:6d:f1:47:9c:06:ab:9b:b5:a0:1a:01:f2:ed:e1: 83:9e:dc:e8:10:d3:f6:b0:a2:a5:64:d5:97:d5:b0:f8:ab:4e: 6c:a9:f3:d3:4e:99:3e:80:a9:12:99:c7:2c:17:bf:ca:8d:2d: 56:c5:b1:8e:d5:f2:82:b5:31:0a:89:0b:a3:77:58:c2:39:95: de:01:6f:47:28:c7:b9:38:5e:09:01:5d:d1:ab:42:c3:5d:d8: da:50:42:67:fb:53:31:ab:2f:e1:31:97:c3:ed:44:7f:58:c0: af:49:5a:1f:a5:c4:09:60:60:b0:d0:45:b9:c6:bb:48:20:f1: c0:8c:22:a4:40:71:b3:e8:6e:21:bc:80:e0:64:74:7f:90:8c: b3:be:e9:ea:18:3b:4f:b6:9a:eb:c4:1f:e8:17:c1:1c:1f:97: 03:a0:17:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPIK98fnKRv4+dD2xu1ByBtgmq98wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUxMDEwMDAyMTA3WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDFhMGVjNjVkNzRiZWE1NWRhZWFkNGNhMTZkMjk2YWI1 YWQxMzk2YTgzMTQ5MTRkN2VlNjQyOTIxNzQ0OWQwMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUWETqAxDhwl0osMOE3OzRoNYNoYZHIMlqvKkC7V4i1m7J qOuT73Y1/LAzJyCNUIbAJZyZlETDtNv2AgMjsWZ4ZQydb7IurNLLnHnD2hhx9a0Y +J3mkosLKqKwqlw9Ag5ziVUtEC1oEYANs7Neoz/itLqtonTn4cr18pSVE7zt33Fi OKHG39np4ktRwGb429VDaU+DScgB9X8QTBfRZSFq4axHs4i/DzkOKyZpkA592oWR zLTYFrOrVlIkMTVOBgx5ApGmAbzzdH3SWtCl7gHjxHEr+bD3UjHXjEG/x8gvDdeq pdDYGLRJO3a517v+tj8wlZMjA/csSsi/BRI5PlKlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtcwY7JmpFEzs5kC+XiwjdlVmhEQwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2RiMGIyMjdmLTk5NTgtNGViYi05ZjIzLTY1Y2MyNGM1Yzc5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBALIk5szDTbzcvV0knh7nYjNZlke9 0Zohzfh8fsoSU69lUvRCO9/chbgZt8H0hVFC+3v9RIGMWjz5vnmDdRQZrYAx1ckt TG7rqrkvZnoRIbKiHUw9WmI7ILrpaR639TRt8UecBqubtaAaAfLt4YOe3OgQ0/aw oqVk1ZfVsPirTmyp89NOmT6AqRKZxywXv8qNLVbFsY7V8oK1MQqJC6N3WMI5ld4B b0cox7k4XgkBXdGrQsNd2NpQQmf7UzGrL+Exl8PtRH9YwK9JWh+lxAlgYLDQRbnG u0gg8cCMIqRAcbPobiG8gOBkdH+QjLO+6eoYO0+2muvEH+gXwRwflwOgF+8= -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:52 2025 by rpki-client