$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa File: 9e3973a0-6f9e-4d6a-981e-b0146a441803.roa (raw, json) Hash identifier: aLKd/NZUeeTZi0o4vRb4ob04DDP9P5HfsfNO7hp8YYE= Subject key identifier: 2E:56:B3:C0:3A:DB:47:EE:2F:84:06:46:F2:44:BB:6C:C1:7A:85:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BD444F5DAD651073C748091A848C2F654C40EFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa Signing time: Sat 19 Jul 2025 00:51:09 +0000 ROA not before: Sat 19 Jul 2025 00:51:09 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d4:44:f5:da:d6:51:07:3c:74:80:91:a8:48:c2:f6:54:c4:0e:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:51:09 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=c7c404b22f59f1baf8c4f02c79e09a78a19b868bf73ce5f75ea621046f4fc752, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ba:88:33:c0:19:2c:4c:bc:50:d7:f0:9f:01: fe:0d:86:67:fd:00:b5:c3:64:e1:22:ac:76:32:6a: bf:6b:e1:cf:7f:56:2d:84:49:0c:e1:bb:07:b6:15: b8:e2:52:e9:b7:b4:f7:f1:cc:e1:89:8f:6f:9a:ca: 9a:69:e7:e4:2f:85:5a:ef:fb:9a:72:fc:48:7c:5b: 33:02:33:46:b6:25:52:d6:9e:ae:ff:26:0f:3c:90: f0:46:46:c0:cc:a1:b5:20:9b:b3:aa:ea:f2:c5:41: 38:05:79:d2:48:a5:fc:85:bc:67:c9:4e:8c:c6:6c: 01:e8:e0:57:60:25:a5:22:ac:dc:5a:57:30:bd:5f: 2b:de:48:93:f1:73:41:94:4b:ad:e3:8f:2e:5f:28: c5:85:ba:c0:af:59:d1:b2:c8:68:85:a1:bd:14:11: 25:c8:2e:97:6f:26:0f:a5:64:41:68:34:95:db:47: 20:4d:96:2b:24:cc:1c:ab:4e:ff:6c:fc:97:c1:5a: 94:df:5b:a9:91:de:02:73:1f:53:7d:41:ca:3a:fb: 00:84:28:6b:c1:44:96:2b:6c:f9:a7:e6:1d:44:12: 09:c7:45:fa:c0:1c:7b:c8:da:b1:e3:9f:63:43:a4: ce:95:97:3b:77:02:97:08:b5:75:e0:b7:68:27:89: 5d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:56:B3:C0:3A:DB:47:EE:2F:84:06:46:F2:44:BB:6C:C1:7A:85:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.236.0/24 Signature Algorithm: sha256WithRSAEncryption 90:79:d8:f4:6d:06:7d:cb:d6:c3:fc:cb:df:e3:58:03:22:f4: e7:40:df:ac:7a:29:09:29:4d:57:11:dd:94:17:52:67:43:49: cc:10:09:84:2a:ae:e7:2a:ce:bc:88:18:fd:d4:af:2a:5b:b4: ff:78:8a:bb:8b:8e:d8:99:1e:ce:54:a8:bd:54:4c:61:63:c5: 8f:f8:17:1c:41:3d:72:9b:af:cc:e5:2a:8d:56:2d:ad:2f:1e: 3d:a6:ba:27:17:01:46:df:17:f2:bc:60:04:3d:df:47:18:cb: ad:74:cb:77:b1:bb:c3:a4:08:08:25:6d:a1:72:d0:fc:1a:8f: 8e:89:26:d0:f9:d4:b2:51:c5:e5:26:d5:f0:db:43:dd:cb:f8: a8:90:a0:ce:92:28:a2:c4:a5:ed:f1:ac:77:5c:ee:75:b5:39: ab:f5:43:4b:52:85:bb:96:24:a3:70:48:5f:3e:75:e2:f4:bf: d3:49:4e:70:e1:ae:35:82:e3:03:e6:86:9c:2b:9a:82:ce:f0: c3:63:16:c9:60:01:ee:b0:a0:28:1e:4b:0e:2c:1f:a3:21:bc: 27:aa:84:cb:04:94:41:ca:30:6f:8b:28:0d:17:45:58:80:4e: 6f:98:06:23:17:47:e0:32:12:8b:dc:d9:97:61:f2:ef:47:f0: 39:65:14:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS9RE9drWUQc8dICRqEjC9lTEDv0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDA1MTA5WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2M0MDRiMjJmNTlmMWJhZjhjNGYwMmM3OWUwOWE3OGEx OWI4NjhiZjczY2U1Zjc1ZWE2MjEwNDZmNGZjNzUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCruogzwBksTLxQ1/CfAf4Nhmf9ALXDZOEirHYyar9r4c9/ Vi2ESQzhuwe2FbjiUum3tPfxzOGJj2+ayppp5+QvhVrv+5py/Eh8WzMCM0a2JVLW nq7/Jg88kPBGRsDMobUgm7Oq6vLFQTgFedJIpfyFvGfJTozGbAHo4FdgJaUirNxa VzC9XyveSJPxc0GUS63jjy5fKMWFusCvWdGyyGiFob0UESXILpdvJg+lZEFoNJXb RyBNliskzByrTv9s/JfBWpTfW6mR3gJzH1N9Qco6+wCEKGvBRJYrbPmn5h1EEgnH RfrAHHvI2rHjn2NDpM6Vlzt3ApcItXXgt2gniV1TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULlazwDrbR+4vhAZG8kS7bMF6haswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllMzk3M2EwLTZmOWUtNGQ2YS05ODFlLWIwMTQ2YTQ0MTgwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTewwDQYJKoZIhvcNAQELBQADggEBAJB52PRtBn3L1sP8y9/jWAMi9OdA 36x6KQkpTVcR3ZQXUmdDScwQCYQqrucqzryIGP3UrypbtP94iruLjtiZHs5UqL1U TGFjxY/4FxxBPXKbr8zlKo1WLa0vHj2muicXAUbfF/K8YAQ930cYy610y3exu8Ok CAglbaFy0Pwaj46JJtD51LJRxeUm1fDbQ93L+KiQoM6SKKLEpe3xrHdc7nW1Oav1 Q0tShbuWJKNwSF8+deL0v9NJTnDhrjWC4wPmhpwrmoLO8MNjFslgAe6woCgeSw4s H6MhvCeqhMsElEHKMG+LKA0XRViATm+YBiMXR+AyEovc2Zdh8u9H8DllFAs= -----END CERTIFICATE-----Generated at Wed Aug 6 05:28:17 2025 by rpki-client