$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69c5765e-9e8e-44a6-be4d-76b3616ef390.roa File: 69c5765e-9e8e-44a6-be4d-76b3616ef390.roa (raw, json) Hash identifier: WmPNOplBCW+Uk/7U2WQRH/FgKqfd/ieZa60WIpuiKWk= Subject key identifier: 37:91:C2:E7:A1:26:DE:9E:A3:30:ED:40:82:8C:4A:3F:0F:A3:95:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A873FFBC63272E2D8784F60F191612570402532 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69c5765e-9e8e-44a6-be4d-76b3616ef390.roa Signing time: Tue 05 Aug 2025 15:01:08 +0000 ROA not before: Tue 05 Aug 2025 15:01:08 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.79.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:87:3f:fb:c6:32:72:e2:d8:78:4f:60:f1:91:61:25:70:40:25:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 15:01:08 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=f7a389e59739f220432cf456dc4ae084a5683ff405492179fcc316c4e1eaecab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:fa:49:18:75:88:52:e6:11:a9:4b:d5:46: 1b:16:d0:bd:1d:50:30:55:a3:c2:23:7c:4d:cd:23: ae:3a:23:ce:3b:0c:ee:10:56:e2:f0:72:e7:6a:14: 19:d4:4a:5b:5c:92:b1:ea:c3:5a:6d:bc:0f:eb:4b: c0:0a:1a:3e:94:44:0f:83:ac:2f:a4:bc:e4:52:1c: da:d9:5b:b7:4a:a8:d3:7d:b0:e8:f2:71:99:2a:4c: 4d:6a:b0:12:56:1d:dc:c2:54:67:57:d5:8b:cb:a7: e8:51:f5:3d:10:fa:d0:2a:ff:46:2c:0f:66:02:05: 6b:17:6d:4a:74:67:99:47:04:55:a5:1e:b3:56:64: 02:14:d3:d1:02:5c:b9:5e:80:03:78:09:71:77:95: 83:f6:5f:d1:88:f7:68:e5:2d:ca:92:bf:46:a4:3d: 75:8c:8b:ed:40:34:fc:3b:06:a3:00:e0:34:3c:09: b8:44:59:21:61:0b:6c:c4:50:11:58:53:42:9d:b5: 37:e0:fb:07:89:14:37:6b:06:af:51:5b:b8:75:2b: 3b:a8:63:3d:08:34:8c:44:7c:d8:5b:c1:05:f3:4e: c9:ca:ed:04:55:8f:00:0f:9e:3f:33:cd:12:8a:f5: b7:dd:a4:27:3a:79:e7:f8:24:ee:e2:b6:01:8e:3d: 75:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:91:C2:E7:A1:26:DE:9E:A3:30:ED:40:82:8C:4A:3F:0F:A3:95:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69c5765e-9e8e-44a6-be4d-76b3616ef390.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 46:74:e1:b1:08:39:39:a0:cc:94:c6:57:41:ac:94:7f:79:b7: ba:b3:f1:3f:03:33:2d:86:e4:f3:1c:0c:b5:e2:96:37:54:15: 95:6e:1b:e6:1c:22:76:e8:21:b9:a4:da:40:26:fb:c1:68:5b: ee:ef:e7:84:98:a1:5d:05:d4:07:70:aa:63:63:1f:ab:b7:4c: 3b:00:a4:5b:13:5d:9f:16:1c:e1:86:a7:43:c6:54:54:a2:1b: 2a:90:f5:24:8b:77:11:9d:39:d8:4b:02:ce:1b:8d:b5:14:59: 5b:a5:4e:00:9e:a2:32:7d:27:ba:ae:88:53:5a:9d:e2:db:16: f2:6c:8b:c6:51:ff:d4:a1:55:fc:a5:fe:12:1b:38:01:a0:c0: b2:ea:1d:7a:7b:fe:a5:79:3a:68:a9:82:11:fd:00:0c:8d:f8: 12:e2:1b:62:18:c0:88:0b:e7:09:fc:56:ec:e2:37:57:93:18: 86:93:7a:8c:fd:34:e4:b9:a3:1e:de:cd:b8:f3:ec:56:8b:65: 57:c0:49:74:8c:19:ce:2c:6e:eb:06:64:85:cd:27:87:53:33: ca:a9:59:c8:44:e3:7a:c4:f4:3a:2f:4d:a7:36:b9:a9:ad:a5: 06:f5:11:1d:46:07:b6:84:44:ae:46:9a:c2:07:5b:95:cf:8f: e4:7a:78:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOoc/+8YycuLYeE9g8ZFhJXBAJTIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MTUwMTA4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmN2EzODllNTk3MzlmMjIwNDMyY2Y0NTZkYzRhZTA4NGE1 NjgzZmY0MDU0OTIxNzlmY2MzMTZjNGUxZWFlY2FiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5HPpJGHWIUuYRqUvVRhsW0L0dUDBVo8IjfE3NI646I847 DO4QVuLwcudqFBnUSltckrHqw1ptvA/rS8AKGj6URA+DrC+kvORSHNrZW7dKqNN9 sOjycZkqTE1qsBJWHdzCVGdX1YvLp+hR9T0Q+tAq/0YsD2YCBWsXbUp0Z5lHBFWl HrNWZAIU09ECXLlegAN4CXF3lYP2X9GI92jlLcqSv0akPXWMi+1ANPw7BqMA4DQ8 CbhEWSFhC2zEUBFYU0KdtTfg+weJFDdrBq9RW7h1KzuoYz0INIxEfNhbwQXzTsnK 7QRVjwAPnj8zzRKK9bfdpCc6eef4JO7itgGOPXV1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUN5HC56Em3p6jMO1AgoxKPw+jlY8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5YzU3NjVlLTllOGUtNDRhNi1iZTRkLTc2YjM2MTZlZjM5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBjTzANBgkqhkiG9w0BAQsFAAOCAQEARnThsQg5OaDMlMZXQayUf3m3urPx PwMzLYbk8xwMteKWN1QVlW4b5hwidughuaTaQCb7wWhb7u/nhJihXQXUB3CqY2Mf q7dMOwCkWxNdnxYc4YanQ8ZUVKIbKpD1JIt3EZ052EsCzhuNtRRZW6VOAJ6iMn0n uq6IU1qd4tsW8myLxlH/1KFV/KX+Ehs4AaDAsuodenv+pXk6aKmCEf0ADI34EuIb YhjAiAvnCfxW7OI3V5MYhpN6jP005LmjHt7NuPPsVotlV8BJdIwZzixu6wZkhc0n h1MzyqlZyETjesT0Oi9Npza5qa2lBvURHUYHtoRErkaawgdblc+P5Hp4/w== -----END CERTIFICATE-----Generated at Thu Aug 7 04:01:02 2025 by rpki-client