$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3252a22f-fb3d-4e15-a400-14f758a8e577.roa File: 3252a22f-fb3d-4e15-a400-14f758a8e577.roa (raw, json) Hash identifier: R3vn5P7p+ryefyFBOP05T7EuJJchug5lWPbLvOqbzic= Subject key identifier: CB:F9:CF:C9:C6:48:52:6E:4E:B0:4B:43:95:7C:CE:55:6D:80:FB:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36366BBFB189A02620583DF6577E158848E3D1EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3252a22f-fb3d-4e15-a400-14f758a8e577.roa Signing time: Fri 25 Jul 2025 00:41:32 +0000 ROA not before: Fri 25 Jul 2025 00:41:32 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:36:6b:bf:b1:89:a0:26:20:58:3d:f6:57:7e:15:88:48:e3:d1:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:41:32 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=55ca2d3ac05c065ad2b4b727aaf5a7b2d7cd329f6357a792775a307c2ee4a2a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8d:03:27:98:7b:88:33:fb:bf:c5:77:3c:09: 49:87:ef:f7:c3:d1:12:7c:83:dd:1a:13:57:5b:7e: 44:04:ae:2f:7e:53:d5:a3:ef:cf:ef:87:f2:78:d4: f7:ca:79:22:1e:a0:a3:bd:ea:f9:d0:b2:7c:eb:a0: 97:3d:35:bd:8a:f7:8e:4e:21:75:dd:cb:08:c7:c5: 87:23:0e:db:7a:64:f0:07:68:21:b8:55:af:b6:12: b9:92:ba:33:48:77:67:c8:fb:bb:11:a0:3a:c3:ac: 2d:41:df:73:10:a7:05:74:68:b8:80:cb:22:8e:ae: fb:99:ba:c2:39:0a:8b:af:40:59:ab:32:19:a5:8b: c9:9e:ce:81:cd:2b:b2:04:47:73:db:28:97:64:06: 61:61:c4:fa:7c:8e:bd:e9:18:a0:be:ac:b8:e0:a5: d7:7b:1c:c9:ba:54:2e:73:85:20:36:b3:80:e1:1f: 56:07:37:53:14:35:cd:83:3d:5e:cb:ea:49:8b:77: fa:49:15:87:42:52:70:30:b1:d4:b9:e6:d3:6f:77: 81:1d:c9:03:01:82:11:fa:1e:3e:c8:1e:d7:22:f0: 12:e7:44:01:7c:1b:18:fd:3f:3d:84:e4:18:43:83: 86:a1:c0:9d:ac:ad:f2:de:6e:ea:6c:1e:0b:4d:b7: 9e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F9:CF:C9:C6:48:52:6E:4E:B0:4B:43:95:7C:CE:55:6D:80:FB:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3252a22f-fb3d-4e15-a400-14f758a8e577.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.80.0/23 Signature Algorithm: sha256WithRSAEncryption ab:a3:25:c5:68:10:8f:18:6e:6b:e9:97:ef:41:2a:07:c9:a8: c3:85:d2:e9:9b:fe:60:27:b9:57:d3:3c:e4:3a:ae:ed:e3:1e: 91:70:b6:74:5b:78:9b:a8:69:8c:2c:72:9d:9d:54:f1:3a:6f: 1a:ed:9b:28:9f:a7:a3:76:e9:2d:8d:b6:af:ac:e8:93:04:5a: 45:51:6f:bf:d4:d1:4d:ff:c1:c8:e7:bc:f9:1f:b0:ae:17:3d: a2:26:eb:27:ea:9f:5c:f2:d8:de:ee:55:1a:1f:ab:f9:c1:20: 6c:59:41:02:d7:af:b7:83:55:2a:f1:b5:37:7d:a4:9b:e2:df: 37:de:76:a8:9d:65:db:15:3b:64:8b:51:a7:fd:c0:51:63:d3: 9d:bc:6e:cf:aa:6a:21:45:6f:24:d7:63:58:23:90:6c:71:d6: d3:56:df:3e:2e:a6:3e:a0:f1:6c:71:c0:e5:f0:b1:a7:cb:9a: 06:21:04:5d:f5:28:9e:45:8c:b4:59:c4:ca:db:ac:63:55:18: 4f:11:bc:58:e1:4b:9b:46:89:ab:7d:5b:58:2a:52:18:d6:b2: 25:c0:01:6a:f4:31:24:00:6c:ba:03:58:77:8e:07:a5:5b:74: 3b:7a:fe:c1:b8:fb:55:4c:f1:2e:69:2d:6f:0e:4f:32:62:aa: 60:3b:ff:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNjZrv7GJoCYgWD32V34ViEjj0eswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDA0MTMyWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWNhMmQzYWMwNWMwNjVhZDJiNGI3MjdhYWY1YTdiMmQ3 Y2QzMjlmNjM1N2E3OTI3NzVhMzA3YzJlZTRhMmEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcjQMnmHuIM/u/xXc8CUmH7/fD0RJ8g90aE1dbfkQEri9+ U9Wj78/vh/J41PfKeSIeoKO96vnQsnzroJc9Nb2K945OIXXdywjHxYcjDtt6ZPAH aCG4Va+2ErmSujNId2fI+7sRoDrDrC1B33MQpwV0aLiAyyKOrvuZusI5CouvQFmr Mhmli8mezoHNK7IER3PbKJdkBmFhxPp8jr3pGKC+rLjgpdd7HMm6VC5zhSA2s4Dh H1YHN1MUNc2DPV7L6kmLd/pJFYdCUnAwsdS55tNvd4EdyQMBghH6Hj7IHtci8BLn RAF8Gxj9Pz2E5BhDg4ahwJ2srfLebupsHgtNt543AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy/nPycZIUm5OsEtDlXzOVW2A+6cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMyNTJhMjJmLWZiM2QtNGUxNS1hNDAwLTE0Zjc1OGE4ZTU3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl1AwDQYJKoZIhvcNAQELBQADggEBAKujJcVoEI8Ybmvpl+9BKgfJqMOF 0umb/mAnuVfTPOQ6ru3jHpFwtnRbeJuoaYwscp2dVPE6bxrtmyifp6N26S2Ntq+s 6JMEWkVRb7/U0U3/wcjnvPkfsK4XPaIm6yfqn1zy2N7uVRofq/nBIGxZQQLXr7eD VSrxtTd9pJvi3zfedqidZdsVO2SLUaf9wFFj0528bs+qaiFFbyTXY1gjkGxx1tNW 3z4upj6g8WxxwOXwsafLmgYhBF31KJ5FjLRZxMrbrGNVGE8RvFjhS5tGiat9W1gq UhjWsiXAAWr0MSQAbLoDWHeOB6VbdDt6/sG4+1VM8S5pLW8OTzJiqmA7/0I= -----END CERTIFICATE-----Generated at Tue Aug 5 17:25:24 2025 by rpki-client