$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b9504e-a82e-4bf9-be01-2560b7b49d15.roa File: 53b9504e-a82e-4bf9-be01-2560b7b49d15.roa (raw, json) Hash identifier: L83twg4pKKVQLuNKPrHHmBGDuCdQ21KIqKFYqPhBRdA= Subject key identifier: 78:68:FE:12:E1:B4:B7:BF:56:AF:BD:D0:AC:79:2B:E2:EA:34:F8:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 312BA3C78CB44FCCDA0496CDE6932A632FEB8282 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b9504e-a82e-4bf9-be01-2560b7b49d15.roa Signing time: Fri 25 Jul 2025 00:21:09 +0000 ROA not before: Fri 25 Jul 2025 00:21:09 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:2b:a3:c7:8c:b4:4f:cc:da:04:96:cd:e6:93:2a:63:2f:eb:82:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:21:09 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=2af5eee0ab39c264347d2c414a0dab90475fb850129f45965a7244c37c2a3e15, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:68:64:ef:e6:af:3b:c9:0d:bd:79:02:6a:68: 91:6e:80:f2:9c:5b:f7:25:e2:f6:e2:54:2f:6b:2e: 5c:fb:f5:a3:10:bb:c2:7a:ff:2f:c0:d8:3f:b4:83: fa:90:93:06:9b:6b:9e:87:4e:a4:c1:8a:0e:a8:21: 17:66:89:b2:b1:e0:54:e5:dc:91:41:7e:8a:f0:9c: be:82:df:9a:ff:3a:35:fe:1a:b9:10:db:c8:7b:c4: 5f:3b:0c:2e:ec:26:ad:7c:66:d6:b0:62:56:c6:7c: 71:ca:ee:06:26:5e:97:53:53:13:42:00:d3:04:a1: 8c:c4:38:6d:12:2d:a7:b8:16:2e:58:51:48:00:bf: 81:5a:88:0b:3e:d9:90:59:90:22:57:c4:33:86:c0: 7d:d4:07:dd:57:98:0f:d1:98:f6:32:b2:12:ff:fe: 78:c6:01:1d:ee:9d:1a:a7:8a:a2:23:0e:82:e4:e8: b2:0f:45:17:a8:8d:dc:05:ac:c3:f0:25:c3:b1:c2: 18:07:9e:18:82:50:e0:0c:53:9d:db:63:70:ab:c0: 26:61:79:35:8a:43:c2:62:f2:73:92:dc:99:a3:fb: 75:1f:8b:a1:60:21:85:e3:f4:f3:a3:de:e1:8f:5d: 88:70:6d:61:ae:f5:c3:cf:a9:f5:43:aa:6f:0c:94: 4e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:68:FE:12:E1:B4:B7:BF:56:AF:BD:D0:AC:79:2B:E2:EA:34:F8:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b9504e-a82e-4bf9-be01-2560b7b49d15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.114.0/24 Signature Algorithm: sha256WithRSAEncryption 04:4f:85:ed:3f:4f:5f:a3:db:2d:34:ad:af:df:64:60:35:c3: a0:0d:7b:29:59:e9:97:2a:af:63:ee:46:42:e1:7b:11:26:8a: 6f:58:93:6c:5d:70:cb:1a:b1:34:d9:ad:20:df:18:fb:b7:8b: b4:86:27:c9:f0:e5:db:7e:3c:35:c1:eb:55:13:0e:69:52:8e: 67:90:c3:d4:23:71:06:84:62:09:9f:90:3a:15:e1:0c:ce:32: dd:42:dc:05:71:72:e9:50:a3:41:97:5d:7b:81:60:53:8b:9d: f0:89:55:ac:a1:70:82:81:97:b5:45:c7:bf:e6:56:7d:8a:72: 30:70:6f:5a:36:de:6b:23:1a:e4:6b:58:ae:de:cc:a8:c4:42: dd:01:7c:a4:90:27:57:b5:17:d2:09:c8:1a:87:94:f8:3c:d1: dd:7b:9e:ac:99:43:28:be:32:f0:14:71:c9:90:f9:bf:6a:e0: 0c:6b:74:20:38:a5:e4:f6:4e:d8:a8:a9:0f:f4:78:0f:6d:f6: 43:1b:47:6c:f2:d4:d0:13:85:cd:62:39:a6:46:d8:90:ad:3a: f7:64:d5:ee:89:ec:32:5a:56:07:fa:52:6d:e2:62:82:c6:1a: 41:0c:0b:f9:18:54:8d:43:31:20:24:3a:bd:a6:d6:8a:91:b4: 2f:b5:39:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMSujx4y0T8zaBJbN5pMqYy/rgoIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAyMTA5WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWY1ZWVlMGFiMzljMjY0MzQ3ZDJjNDE0YTBkYWI5MDQ3 NWZiODUwMTI5ZjQ1OTY1YTcyNDRjMzdjMmEzZTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIaGTv5q87yQ29eQJqaJFugPKcW/cl4vbiVC9rLlz79aMQ u8J6/y/A2D+0g/qQkwaba56HTqTBig6oIRdmibKx4FTl3JFBforwnL6C35r/OjX+ GrkQ28h7xF87DC7sJq18ZtawYlbGfHHK7gYmXpdTUxNCANMEoYzEOG0SLae4Fi5Y UUgAv4FaiAs+2ZBZkCJXxDOGwH3UB91XmA/RmPYyshL//njGAR3unRqniqIjDoLk 6LIPRReojdwFrMPwJcOxwhgHnhiCUOAMU53bY3CrwCZheTWKQ8Ji8nOS3Jmj+3Uf i6FgIYXj9POj3uGPXYhwbWGu9cPPqfVDqm8MlE6jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeGj+EuG0t79Wr73QrHkr4uo0+LgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzYjk1MDRlLWE4MmUtNGJmOS1iZTAxLTI1NjBiN2I0OWQxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjlnIwDQYJKoZIhvcNAQELBQADggEBAARPhe0/T1+j2y00ra/fZGA1w6AN eylZ6Zcqr2PuRkLhexEmim9Yk2xdcMsasTTZrSDfGPu3i7SGJ8nw5dt+PDXB61UT DmlSjmeQw9QjcQaEYgmfkDoV4QzOMt1C3AVxculQo0GXXXuBYFOLnfCJVayhcIKB l7VFx7/mVn2KcjBwb1o23msjGuRrWK7ezKjEQt0BfKSQJ1e1F9IJyBqHlPg80d17 nqyZQyi+MvAUccmQ+b9q4AxrdCA4peT2TtioqQ/0eA9t9kMbR2zy1NAThc1iOaZG 2JCtOvdk1e6J7DJaVgf6Um3iYoLGGkEMC/kYVI1DMSAkOr2m1oqRtC+1OZU= -----END CERTIFICATE-----Generated at Tue Aug 5 16:40:57 2025 by rpki-client