$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2796caa1-61d5-4482-ab4f-0768d89e60ff.roa File: 2796caa1-61d5-4482-ab4f-0768d89e60ff.roa (raw, json) Hash identifier: Jjxnffo/W8CoS+Hy68PwpTzNLDz8dhr4j/Zjs0jXwgo= Subject key identifier: 4B:36:85:70:32:E9:AD:6A:E5:2D:86:7F:33:E3:FF:C8:A2:07:C6:6E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4651484899E287D39B84B686203891D8794CB691 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2796caa1-61d5-4482-ab4f-0768d89e60ff.roa Signing time: Fri 25 Jul 2025 00:40:15 +0000 ROA not before: Fri 25 Jul 2025 00:40:15 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:51:48:48:99:e2:87:d3:9b:84:b6:86:20:38:91:d8:79:4c:b6:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:40:15 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=784e5a2a207104ff32f692ba661cf5caa9a1d8ae823b0a4074cda4a6794b5805, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:bb:81:ca:54:b0:d0:e2:ab:42:65:d8:1b:29: cb:ed:6b:34:40:b9:83:33:0f:c1:0d:6a:cc:ba:30: 95:8f:39:88:ca:5d:61:83:e3:59:c0:0c:e3:db:74: 93:37:2a:e0:f7:9d:9a:5f:1c:2d:ba:82:c4:da:49: 92:24:1e:d5:08:6f:23:e1:45:00:ae:e2:f9:fd:83: 5d:f6:d3:48:93:f7:de:20:b2:b3:0f:6d:73:ce:26: 9f:75:b3:bb:2d:b8:8f:a9:bf:0b:28:e2:15:bf:96: 0d:a9:dc:5b:c0:e6:46:98:88:69:aa:ad:1e:dd:5c: 2e:1a:25:1a:1a:c5:67:20:4a:b5:5c:1d:1a:90:34: 1b:f6:ce:3e:b5:96:58:e9:a2:ae:2e:3f:8e:08:34: 81:11:ac:d7:88:83:96:77:ce:de:e7:75:b3:88:d7: 13:c4:91:14:1f:85:58:58:21:e0:7f:06:6e:1e:da: dd:ba:ab:56:4b:2f:e4:00:89:a9:b1:a4:7d:e3:3a: e9:ed:22:c5:3d:bf:bf:e2:25:da:84:a8:a2:a3:8d: 63:74:38:19:8d:ee:5f:25:95:71:41:eb:ad:09:97: 41:99:5b:d3:82:2d:50:6f:6a:49:e2:14:22:90:ef: a8:a9:f4:76:29:71:81:61:16:e3:65:a8:1d:e6:0d: c9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:36:85:70:32:E9:AD:6A:E5:2D:86:7F:33:E3:FF:C8:A2:07:C6:6E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2796caa1-61d5-4482-ab4f-0768d89e60ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.136.0/21 Signature Algorithm: sha256WithRSAEncryption 5a:4e:db:13:6c:5b:b7:6b:cb:d5:f3:a7:9e:41:44:de:80:13: b5:c6:67:98:11:a8:d9:09:76:87:3e:19:45:bb:cf:d7:36:e4: 2b:a0:24:cf:87:81:91:5f:41:ca:a1:28:d3:84:74:9b:3a:bc: 6e:28:2a:3d:b9:e1:0d:92:82:c9:26:ec:93:ae:59:b4:fb:f3: 1f:c0:85:32:67:a7:6e:98:a8:57:c0:14:11:4f:49:2a:c7:a1: 3b:5b:d3:20:06:1a:a9:bf:b2:df:75:eb:6b:6c:99:17:2a:fa: ea:1e:d4:af:54:d7:8b:f2:74:08:73:dd:21:9f:62:a6:0e:9d: 95:96:4a:df:2a:21:3f:6a:54:9c:3b:39:e9:a0:0b:b1:6c:90: 57:0d:95:0b:61:ed:76:e7:6e:19:7b:20:7d:aa:1a:ef:99:8f: 06:20:e6:0e:be:bd:45:64:c4:a2:e8:6a:14:b6:67:25:97:f0: 65:bf:a7:d8:48:14:12:83:63:e5:de:fa:99:da:e0:62:89:43: 45:79:3c:f0:70:3e:dd:6d:ba:3d:8b:fd:b3:39:31:98:1f:d2: e1:8a:ef:b0:37:b1:10:77:35:71:ef:d8:e0:5b:b2:53:15:3d: 1c:a3:13:9c:f3:86:b9:f9:13:87:8b:32:0a:81:7c:ef:ba:ae: 5a:df:41:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURlFISJnih9ObhLaGIDiR2HlMtpEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDA0MDE1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODRlNWEyYTIwNzEwNGZmMzJmNjkyYmE2NjFjZjVjYWE5 YTFkOGFlODIzYjBhNDA3NGNkYTRhNjc5NGI1ODA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEu4HKVLDQ4qtCZdgbKcvtazRAuYMzD8ENasy6MJWPOYjK XWGD41nADOPbdJM3KuD3nZpfHC26gsTaSZIkHtUIbyPhRQCu4vn9g13200iT994g srMPbXPOJp91s7stuI+pvwso4hW/lg2p3FvA5kaYiGmqrR7dXC4aJRoaxWcgSrVc HRqQNBv2zj61lljpoq4uP44INIERrNeIg5Z3zt7ndbOI1xPEkRQfhVhYIeB/Bm4e 2t26q1ZLL+QAiamxpH3jOuntIsU9v7/iJdqEqKKjjWN0OBmN7l8llXFB660Jl0GZ W9OCLVBvakniFCKQ76ip9HYpcYFhFuNlqB3mDclVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSzaFcDLprWrlLYZ/M+P/yKIHxm4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3OTZjYWExLTYxZDUtNDQ4Mi1hYjRmLTA3NjhkODllNjBmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl4gwDQYJKoZIhvcNAQELBQADggEBAFpO2xNsW7dry9Xzp55BRN6AE7XG Z5gRqNkJdoc+GUW7z9c25CugJM+HgZFfQcqhKNOEdJs6vG4oKj254Q2Sgskm7JOu WbT78x/AhTJnp26YqFfAFBFPSSrHoTtb0yAGGqm/st9162tsmRcq+uoe1K9U14vy dAhz3SGfYqYOnZWWSt8qIT9qVJw7OemgC7FskFcNlQth7Xbnbhl7IH2qGu+ZjwYg 5g6+vUVkxKLoahS2ZyWX8GW/p9hIFBKDY+Xe+pna4GKJQ0V5PPBwPt1tuj2L/bM5 MZgf0uGK77A3sRB3NXHv2OBbslMVPRyjE5zzhrn5E4eLMgqBfO+6rlrfQdc= -----END CERTIFICATE-----Generated at Mon Aug 4 22:20:13 2025 by rpki-client