$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1505dba2-f5d8-4cfa-892e-d67f9fff862f.roa File: 1505dba2-f5d8-4cfa-892e-d67f9fff862f.roa (raw, json) Hash identifier: CBZlxArH5IfQ8DeERkR7+P9tTgunwv/1MPskXPjpNAM= Subject key identifier: F2:FD:1D:FC:AD:A6:FC:38:07:99:8D:07:15:6F:9A:67:8C:EA:37:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BC7EE74DCE6F12805F931D66E4E1025C3D9112B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1505dba2-f5d8-4cfa-892e-d67f9fff862f.roa Signing time: Sat 19 Jul 2025 00:41:58 +0000 ROA not before: Sat 19 Jul 2025 00:41:58 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c7:ee:74:dc:e6:f1:28:05:f9:31:d6:6e:4e:10:25:c3:d9:11:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:41:58 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=eb71c82547f764903359bf2b25f6a821c7b0a6bff826e065f87b4cd21a4e7f97, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:75:12:54:19:ac:63:f3:ea:44:cc:44:a1:7c: f2:83:9e:37:8f:40:b7:bd:f7:fc:51:01:12:e2:ba: 9d:d8:b7:0e:c8:57:07:27:c7:2a:b5:3d:f0:0e:76: 37:36:e7:a1:b5:08:d0:e3:24:21:d8:46:ec:d0:85: 7c:d9:39:3a:ac:e1:5d:af:d4:39:03:5f:d9:4f:98: 42:9b:af:ec:5c:df:3c:12:3e:dd:60:76:79:86:f4: 5c:55:a4:18:7a:a8:a7:85:e8:e4:78:ad:92:df:e5: f6:77:f2:90:fb:dc:0e:a9:e2:e9:ec:8d:60:89:dd: 6e:c1:46:ae:7d:86:95:58:a8:c3:7f:6a:d2:b2:d4: 29:b9:7a:48:6f:dd:14:9b:9f:ca:f0:7d:e7:5a:23: bb:e2:43:0c:b7:c1:0d:f6:5d:2c:09:61:8a:c8:8b: ee:20:cb:fb:11:26:60:eb:4c:d0:e3:eb:d2:a6:3a: 06:48:75:6a:1e:e0:95:b2:af:f2:1e:f1:92:ab:1e: 81:9e:97:e8:5a:4b:3a:82:fc:09:33:15:65:2c:68: e5:63:6b:5e:1c:26:38:8d:63:74:52:08:72:01:ad: 6b:c1:20:d5:c2:07:0b:f7:98:c4:f2:6b:99:fd:73: 13:dc:cc:35:68:01:23:20:88:65:aa:5a:b2:1d:12: c7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FD:1D:FC:AD:A6:FC:38:07:99:8D:07:15:6F:9A:67:8C:EA:37:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1505dba2-f5d8-4cfa-892e-d67f9fff862f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.250.0/24 Signature Algorithm: sha256WithRSAEncryption 87:45:5c:ec:b6:53:04:4d:29:2e:ff:16:88:28:49:78:8f:3d: 85:c1:12:08:2d:f1:dc:e7:67:96:2f:fc:eb:31:9d:66:f6:30: a3:09:01:13:2e:ce:eb:7a:97:5a:49:35:20:58:35:c5:49:31: b6:2b:1f:b2:4b:28:1c:fd:9f:25:ca:a6:07:d5:1b:4e:5b:84: 22:ae:da:ff:75:c1:16:68:10:cf:8e:64:4a:17:f6:88:b7:d9: cd:ed:a7:d1:bd:f4:f7:a5:4b:32:49:4e:49:2e:87:1a:be:28: 38:40:2f:37:ad:31:9f:7c:4f:1e:7c:3a:cd:6b:69:c9:51:32: ea:cd:bc:16:cd:88:a9:db:d7:0a:47:8d:b9:19:a5:21:f9:46: b0:8b:70:b7:00:16:fe:30:34:44:f5:96:75:d6:47:56:25:1b: d2:e3:47:bc:60:14:9b:a9:4d:b0:dd:1a:3d:ad:ef:2a:0e:7a: 6f:3a:da:77:36:7e:04:f2:0f:c5:08:83:ae:52:e3:af:79:36: 1b:9c:79:ff:12:2f:37:70:a1:31:ca:5c:00:f4:72:1d:10:b0: 1e:ba:17:f3:2a:b0:03:87:ce:1f:25:d0:87:2f:0b:b6:d9:fa: 4b:3b:42:65:78:13:87:30:1d:6c:e9:9f:57:b1:ce:4a:96:8e: 9d:b4:49:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK8fudNzm8SgF+THWbk4QJcPZESswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDA0MTU4WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjcxYzgyNTQ3Zjc2NDkwMzM1OWJmMmIyNWY2YTgyMWM3 YjBhNmJmZjgyNmUwNjVmODdiNGNkMjFhNGU3Zjk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDadRJUGaxj8+pEzEShfPKDnjePQLe99/xRARLiup3Ytw7I Vwcnxyq1PfAOdjc256G1CNDjJCHYRuzQhXzZOTqs4V2v1DkDX9lPmEKbr+xc3zwS Pt1gdnmG9FxVpBh6qKeF6OR4rZLf5fZ38pD73A6p4unsjWCJ3W7BRq59hpVYqMN/ atKy1Cm5ekhv3RSbn8rwfedaI7viQwy3wQ32XSwJYYrIi+4gy/sRJmDrTNDj69Km OgZIdWoe4JWyr/Ie8ZKrHoGel+haSzqC/AkzFWUsaOVja14cJjiNY3RSCHIBrWvB INXCBwv3mMTya5n9cxPczDVoASMgiGWqWrIdEscPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8v0d/K2m/DgHmY0HFW+aZ4zqNxAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1MDVkYmEyLWY1ZDgtNGNmYS04OTJlLWQ2N2Y5ZmZmODYyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfowDQYJKoZIhvcNAQELBQADggEBAIdFXOy2UwRNKS7/FogoSXiPPYXB Eggt8dznZ5Yv/OsxnWb2MKMJARMuzut6l1pJNSBYNcVJMbYrH7JLKBz9nyXKpgfV G05bhCKu2v91wRZoEM+OZEoX9oi32c3tp9G99PelSzJJTkkuhxq+KDhALzetMZ98 Tx58Os1raclRMurNvBbNiKnb1wpHjbkZpSH5RrCLcLcAFv4wNET1lnXWR1YlG9Lj R7xgFJupTbDdGj2t7yoOem862nc2fgTyD8UIg65S4695Nhucef8SLzdwoTHKXAD0 ch0QsB66F/MqsAOHzh8l0IcvC7bZ+ks7QmV4E4cwHWzpn1exzkqWjp20SW8= -----END CERTIFICATE-----Generated at Wed Aug 6 04:13:19 2025 by rpki-client