$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11efc78f-00de-42b6-b52c-218adf4f6cc9.roa File: 11efc78f-00de-42b6-b52c-218adf4f6cc9.roa (raw, json) Hash identifier: G4IluO9+JZ0iiW3Gq0ik7PIHIt6VE38xnOPhLfUJPMc= Subject key identifier: 2E:A2:40:3E:1A:25:38:63:31:6B:E3:4E:56:22:BD:D7:95:9A:58:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15E0F69A134C3E5ED5C186B2132B0CBC223085FB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11efc78f-00de-42b6-b52c-218adf4f6cc9.roa Signing time: Fri 25 Jul 2025 00:41:25 +0000 ROA not before: Fri 25 Jul 2025 00:41:25 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:e0:f6:9a:13:4c:3e:5e:d5:c1:86:b2:13:2b:0c:bc:22:30:85:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:41:25 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=34f3cb51bdc0ff497b46790666cbb2c43b6157ee728022781f4d7f81431966cc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4d:86:2b:82:0f:eb:c9:35:a5:38:36:37:34: f7:54:86:ab:30:3e:7e:67:e8:a1:66:13:8f:4e:fe: 0a:d4:a9:84:7a:ed:33:15:c5:8d:73:3f:c8:9d:a6: 06:eb:dd:49:9a:42:06:52:e2:0d:ea:c1:83:61:06: 90:13:73:b2:85:45:34:8a:b7:a3:ed:db:84:98:7b: f6:03:6a:4c:7a:73:c9:b6:cb:e4:15:70:ab:f5:4d: 71:64:8e:b6:42:d2:5b:d7:68:9c:91:4e:ba:c5:c1: ba:da:9d:17:35:f9:10:77:86:ff:ad:8c:f4:9e:bb: 0e:04:f0:2c:f6:45:58:14:31:74:8a:29:19:d6:0f: 70:37:ff:20:8b:ca:e6:6a:dc:c5:c6:a2:94:96:f9: e2:4e:0a:5b:63:77:86:f8:9e:ae:40:b9:f0:70:1e: 18:fd:55:00:53:d6:bc:b7:76:31:f3:df:4f:0f:07: 35:b9:66:84:34:96:23:d1:a1:48:62:0b:59:e7:6d: 04:65:f5:70:16:7c:6a:e9:22:b9:45:ba:eb:48:38: f6:87:12:c8:a3:0f:fa:4e:bc:d8:2a:fb:5a:8c:54: 6a:71:d7:b0:4d:f1:a1:a8:48:71:8c:8b:3e:28:5e: 92:20:fb:63:65:40:60:59:89:36:96:05:ad:c8:af: 26:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A2:40:3E:1A:25:38:63:31:6B:E3:4E:56:22:BD:D7:95:9A:58:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11efc78f-00de-42b6-b52c-218adf4f6cc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.64.0/23 Signature Algorithm: sha256WithRSAEncryption b0:e3:8e:43:c3:9c:31:bd:b2:2e:23:cb:90:7e:62:18:f4:b3: c3:cf:98:e2:d1:6f:74:d4:08:38:74:c7:57:81:67:c4:d7:2a: 30:f8:60:de:ee:69:95:cb:b3:6f:51:7a:58:3a:57:d4:76:e6: b3:1c:12:99:4c:f3:54:06:4f:9c:ce:73:a0:b7:b9:02:52:f1: cd:d5:07:1f:cc:a8:e2:ef:52:5c:1b:52:25:c3:df:fc:ce:da: 81:f4:8d:a0:80:da:92:14:ee:33:2c:b1:3c:3f:91:4b:af:b2: 2d:12:f0:d2:4f:6a:9b:11:3f:93:48:7a:7f:45:e4:b4:73:15: ff:77:d8:c1:c3:56:48:49:14:9d:ce:52:dc:95:63:98:ba:88: ed:e1:78:42:ba:6f:c1:56:95:57:a6:5c:21:48:c9:1e:48:5f: 6c:9e:9f:e1:2b:83:81:81:df:46:24:8e:eb:89:e0:2c:a0:56: 02:c5:a0:80:07:03:42:78:9b:04:02:a1:d1:63:8c:78:1f:ed: c6:c2:73:3f:99:9e:92:73:a4:7c:68:a6:4e:c9:70:7e:b0:b9: b3:b6:1d:a7:eb:ac:9e:18:78:e4:78:17:09:92:ab:33:db:31: 95:d9:6e:f3:af:66:4b:25:a3:56:b5:69:08:18:ff:b0:cf:d2: dd:26:7b:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFeD2mhNMPl7VwYayEysMvCIwhfswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDA0MTI1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGYzY2I1MWJkYzBmZjQ5N2I0Njc5MDY2NmNiYjJjNDNi NjE1N2VlNzI4MDIyNzgxZjRkN2Y4MTQzMTk2NmNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgTYYrgg/ryTWlODY3NPdUhqswPn5n6KFmE49O/grUqYR6 7TMVxY1zP8idpgbr3UmaQgZS4g3qwYNhBpATc7KFRTSKt6Pt24SYe/YDakx6c8m2 y+QVcKv1TXFkjrZC0lvXaJyRTrrFwbranRc1+RB3hv+tjPSeuw4E8Cz2RVgUMXSK KRnWD3A3/yCLyuZq3MXGopSW+eJOCltjd4b4nq5AufBwHhj9VQBT1ry3djHz308P BzW5ZoQ0liPRoUhiC1nnbQRl9XAWfGrpIrlFuutIOPaHEsijD/pOvNgq+1qMVGpx 17BN8aGoSHGMiz4oXpIg+2NlQGBZiTaWBa3IryZzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULqJAPholOGMxa+NOViK915WaWIQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExZWZjNzhmLTAwZGUtNDJiNi1iNTJjLTIxOGFkZjRmNmNjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl0AwDQYJKoZIhvcNAQELBQADggEBALDjjkPDnDG9si4jy5B+Yhj0s8PP mOLRb3TUCDh0x1eBZ8TXKjD4YN7uaZXLs29Relg6V9R25rMcEplM81QGT5zOc6C3 uQJS8c3VBx/MqOLvUlwbUiXD3/zO2oH0jaCA2pIU7jMssTw/kUuvsi0S8NJPapsR P5NIen9F5LRzFf932MHDVkhJFJ3OUtyVY5i6iO3heEK6b8FWlVemXCFIyR5IX2ye n+Erg4GB30YkjuuJ4CygVgLFoIAHA0J4mwQCodFjjHgf7cbCcz+ZnpJzpHxopk7J cH6wubO2HafrrJ4YeOR4FwmSqzPbMZXZbvOvZkslo1a1aQgY/7DP0t0me+U= -----END CERTIFICATE-----Generated at Wed Aug 6 05:14:54 2025 by rpki-client