$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10f66a13-5879-48bb-b275-10276fd2b586.roa File: 10f66a13-5879-48bb-b275-10276fd2b586.roa (raw, json) Hash identifier: n8ZywtiYhqfW0Ah1Xr9hd6w5M4xvB8iGMI2QPXAyfPw= Subject key identifier: E6:02:DC:63:27:C5:4D:17:6A:9D:0B:E4:2D:7E:CA:96:50:FB:CC:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 79DB28797116294DE14740C3E739AE01663E65E4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10f66a13-5879-48bb-b275-10276fd2b586.roa Signing time: Fri 18 Jul 2025 00:51:13 +0000 ROA not before: Fri 18 Jul 2025 00:51:13 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:db:28:79:71:16:29:4d:e1:47:40:c3:e7:39:ae:01:66:3e:65:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:51:13 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=9e56e5aada6616e45d13822f31e7c6aae6450e1bc1a266eb5d00e48d524058f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:82:01:c1:11:50:fc:1d:d4:bf:10:68:ee:98: 51:d7:e1:b4:77:3a:8b:71:2e:28:84:15:58:0e:20: 7f:68:3a:ec:9f:cf:d6:e9:ab:63:31:f3:af:83:30: c3:cd:09:5f:0a:b5:ed:9c:8c:10:b4:5f:d0:dd:f5: c5:21:b9:94:db:a4:74:5a:10:91:31:a5:2a:45:fb: 3a:84:e1:7f:d8:9d:bf:50:fc:8e:69:6e:f0:1e:02: f2:be:df:34:16:d1:e4:49:29:d9:54:48:e9:b3:1d: 4e:38:0f:e9:51:c3:8d:12:c6:6b:b7:63:e0:07:1d: 59:03:86:72:1d:68:58:fb:0a:d4:a8:04:92:65:6e: 51:33:86:06:fa:dd:7a:dd:85:5f:28:fd:ae:f0:5b: 87:0c:ea:b6:43:5f:92:87:28:b5:9d:74:f3:94:fe: 47:89:46:2f:c8:72:87:40:53:49:96:d3:84:2a:e1: 5b:77:3c:44:13:7c:23:e5:f0:18:68:1e:f2:ad:d8: d0:ee:7c:f3:7c:92:95:cc:e7:f8:0d:cf:51:08:f9: 41:1c:bc:41:95:d6:c8:64:68:8a:08:4d:a7:b6:fd: 5a:f6:55:a3:16:6d:0b:3f:8b:01:8a:62:9d:07:03: 02:b6:ed:a5:a9:cf:90:d4:23:a2:d9:7f:f6:62:62: 06:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:02:DC:63:27:C5:4D:17:6A:9D:0B:E4:2D:7E:CA:96:50:FB:CC:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10f66a13-5879-48bb-b275-10276fd2b586.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.161.0/24 Signature Algorithm: sha256WithRSAEncryption 78:b6:82:2f:65:89:2c:6f:57:79:5c:b2:f0:27:fa:46:b4:32: f4:31:9c:06:30:e4:2a:52:0c:27:6c:fa:d1:91:62:27:3d:d7: 14:33:81:94:c9:19:1e:53:e1:f8:20:38:b0:62:87:ff:ff:73: 55:91:13:b7:93:36:6e:0d:da:fd:d2:ca:ce:1b:99:a0:82:8a: e0:c0:46:d7:11:fa:bc:2b:57:f1:26:7c:a0:57:ae:b0:ef:07: 3b:57:e8:8e:a2:00:4d:da:df:3e:c9:4c:53:4f:eb:4f:2c:39: ef:19:66:07:5e:bb:ab:4b:e0:4c:66:c9:0f:3a:b1:ff:58:cd: 8c:9e:c6:47:46:9b:2a:51:6b:39:f4:51:a0:a0:14:f1:fa:cb: a3:f4:6c:66:c6:98:9d:1d:70:ea:62:88:0f:9f:a8:3b:15:0e: 80:cc:da:ad:96:89:48:ee:c0:15:9f:80:3a:ca:c0:11:f4:48: 85:f6:08:1a:15:b8:83:32:2f:d4:af:1f:9a:e2:08:d0:56:d9: dc:3e:18:af:6e:b3:9e:d0:bb:f9:61:9f:ec:42:f0:f3:45:2d: 51:41:5a:72:38:b6:4b:1c:96:e2:1e:b7:ed:32:58:ea:92:b3: 96:28:8b:ac:ec:d1:20:c1:8d:20:89:77:6d:a3:1a:da:a6:11: 69:ec:55:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUedsoeXEWKU3hR0DD5zmuAWY+ZeQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDA1MTEzWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTU2ZTVhYWRhNjYxNmU0NWQxMzgyMmYzMWU3YzZhYWU2 NDUwZTFiYzFhMjY2ZWI1ZDAwZTQ4ZDUyNDA1OGY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHggHBEVD8HdS/EGjumFHX4bR3OotxLiiEFVgOIH9oOuyf z9bpq2Mx86+DMMPNCV8Kte2cjBC0X9Dd9cUhuZTbpHRaEJExpSpF+zqE4X/Ynb9Q /I5pbvAeAvK+3zQW0eRJKdlUSOmzHU44D+lRw40Sxmu3Y+AHHVkDhnIdaFj7CtSo BJJlblEzhgb63XrdhV8o/a7wW4cM6rZDX5KHKLWddPOU/keJRi/IcodAU0mW04Qq 4Vt3PEQTfCPl8BhoHvKt2NDufPN8kpXM5/gNz1EI+UEcvEGV1shkaIoITae2/Vr2 VaMWbQs/iwGKYp0HAwK27aWpz5DUI6LZf/ZiYgYVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5gLcYyfFTRdqnQvkLX7KllD7zA4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwZjY2YTEzLTU4NzktNDhiYi1iMjc1LTEwMjc2ZmQyYjU4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTaEwDQYJKoZIhvcNAQELBQADggEBAHi2gi9liSxvV3lcsvAn+ka0MvQx nAYw5CpSDCds+tGRYic91xQzgZTJGR5T4fggOLBih///c1WRE7eTNm4N2v3Sys4b maCCiuDARtcR+rwrV/EmfKBXrrDvBztX6I6iAE3a3z7JTFNP608sOe8ZZgdeu6tL 4ExmyQ86sf9YzYyexkdGmypRazn0UaCgFPH6y6P0bGbGmJ0dcOpiiA+fqDsVDoDM 2q2WiUjuwBWfgDrKwBH0SIX2CBoVuIMyL9SvH5riCNBW2dw+GK9us57Qu/lhn+xC 8PNFLVFBWnI4tkscluIet+0yWOqSs5Yoi6zs0SDBjSCJd22jGtqmEWnsVb8= -----END CERTIFICATE-----Generated at Sun Aug 10 04:16:25 2025 by rpki-client