$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa File: cffa990e-6fc2-4b61-89ad-172287c16758.roa (raw, json) Hash identifier: PeZ+Ue9KR32JENtyuUchwwTpWyE0mWp825mOMAeXC6c= Subject key identifier: C7:25:25:62:EF:27:44:E4:35:E7:A5:EE:BF:A5:39:D8:BD:B5:DC:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72271CBB7E7BAF3FB8A8D4D49AB9C429F9BA2D32 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa Signing time: Wed 06 Aug 2025 00:40:10 +0000 ROA not before: Wed 06 Aug 2025 00:40:10 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 77.122.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:27:1c:bb:7e:7b:af:3f:b8:a8:d4:d4:9a:b9:c4:29:f9:ba:2d:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:40:10 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=3179e9290962c3bffbaff434ad9a7456a80aea3f503dac8b3d6639b614cf8a36, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:96:e0:7c:f4:3f:f9:12:2b:99:32:a4:b2:8e: 5c:e3:c4:ff:7a:17:0b:06:f5:72:9f:a0:d4:5a:bf: 2e:85:b9:c5:e4:e9:9b:15:02:40:29:3f:bb:82:60: 8b:9d:d1:d1:b6:08:50:82:18:95:8e:39:8c:19:9b: 5d:dc:f8:12:c5:38:ab:b3:64:05:10:83:01:ac:cb: 74:ff:e0:f6:48:0e:97:23:bc:89:7a:4c:3d:a8:47: 34:1d:af:00:4d:8f:ac:bd:a7:83:13:1d:32:de:98: b7:92:de:9a:00:1d:92:56:2d:60:7d:23:bd:a6:8b: 96:ae:3e:a3:87:0c:58:2b:ee:23:ce:d8:18:0f:ab: 60:90:ae:da:ad:b4:17:a3:68:2d:01:10:e2:20:c1: c6:ed:1f:9c:78:d5:17:3b:13:ba:7e:35:32:38:17: 85:e8:a6:2d:d1:d0:50:e2:59:c7:07:35:28:34:e6: 00:23:bc:84:6c:32:48:a9:75:0d:d6:3f:1b:fa:71: eb:f3:7e:e5:ff:5f:df:28:d6:c1:64:4d:61:b9:0a: 7d:b2:b9:02:45:52:0a:7e:2a:7d:45:4d:f7:9c:67: 67:2a:ec:64:90:bf:a9:3a:91:03:27:bb:4f:b2:85: 16:f3:10:19:77:b3:20:3b:15:9d:f0:5c:b4:89:0d: 5f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:25:25:62:EF:27:44:E4:35:E7:A5:EE:BF:A5:39:D8:BD:B5:DC:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.122.0.0/16 Signature Algorithm: sha256WithRSAEncryption a9:33:73:d6:50:e8:04:07:b7:2e:da:47:69:00:dd:5a:d1:1f: 5b:5c:96:41:7b:a5:3e:e5:7a:be:0b:13:8e:5d:6c:5c:c0:19: 5b:4f:a2:7e:25:42:f9:a0:02:4a:94:95:9c:d3:7c:d5:8a:5b: 2b:e4:9b:8b:3f:b5:ce:f1:86:a3:a5:00:b1:af:3e:02:b8:36: 59:23:6b:66:11:7b:03:c4:56:3d:71:8c:a6:e6:52:9b:3e:02: ae:b0:ce:fd:10:8c:71:44:64:dc:11:aa:e3:30:c8:72:ec:84: 30:ed:63:b4:25:e3:d5:1e:1b:9c:78:67:69:c7:97:0f:c8:ae: 56:07:56:15:3b:ef:ab:d1:98:24:bb:f4:84:7e:f6:3e:4c:f3: bf:21:cc:c4:e5:d0:96:0a:ca:57:a8:4b:9a:76:70:3d:e5:51: 41:b4:ab:05:d9:bf:fd:f7:76:a7:9e:35:ae:50:fc:28:56:5b: ea:5b:b3:fe:7c:a4:81:3c:64:5e:11:58:19:2d:ae:a6:90:6b: 5f:ea:32:05:07:78:5a:8e:b5:9d:9a:4a:e9:e4:a4:82:7c:09: d7:27:47:41:0d:d3:68:98:ad:62:ea:fa:ae:d2:6b:6a:cb:d1: 6d:a6:22:cf:25:78:34:60:f7:d8:7e:d4:60:8a:3a:f4:6e:6b: 01:2d:84:55 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUciccu357rz+4qNTUmrnEKfm6LTIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDA0MDEwWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTc5ZTkyOTA5NjJjM2JmZmJhZmY0MzRhZDlhNzQ1NmE4 MGFlYTNmNTAzZGFjOGIzZDY2MzliNjE0Y2Y4YTM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWluB89D/5EiuZMqSyjlzjxP96FwsG9XKfoNRavy6FucXk 6ZsVAkApP7uCYIud0dG2CFCCGJWOOYwZm13c+BLFOKuzZAUQgwGsy3T/4PZIDpcj vIl6TD2oRzQdrwBNj6y9p4MTHTLemLeS3poAHZJWLWB9I72mi5auPqOHDFgr7iPO 2BgPq2CQrtqttBejaC0BEOIgwcbtH5x41Rc7E7p+NTI4F4Xopi3R0FDiWccHNSg0 5gAjvIRsMkipdQ3WPxv6cevzfuX/X98o1sFkTWG5Cn2yuQJFUgp+Kn1FTfecZ2cq 7GSQv6k6kQMnu0+yhRbzEBl3syA7FZ3wXLSJDV/dAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxyUlYu8nROQ156Xuv6U52L213JYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmZmE5OTBlLTZmYzItNGI2MS04OWFkLTE3MjI4N2MxNjc1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBNejANBgkqhkiG9w0BAQsFAAOCAQEAqTNz1lDoBAe3LtpHaQDdWtEfW1yW QXulPuV6vgsTjl1sXMAZW0+ifiVC+aACSpSVnNN81YpbK+Sbiz+1zvGGo6UAsa8+ Arg2WSNrZhF7A8RWPXGMpuZSmz4CrrDO/RCMcURk3BGq4zDIcuyEMO1jtCXj1R4b nHhnaceXD8iuVgdWFTvvq9GYJLv0hH72PkzzvyHMxOXQlgrKV6hLmnZwPeVRQbSr Bdm//fd2p541rlD8KFZb6luz/nykgTxkXhFYGS2uppBrX+oyBQd4Wo61nZpK6eSk gnwJ1ydHQQ3TaJitYur6rtJrasvRbaYizyV4NGD32H7UYIo69G5rAS2EVQ== -----END CERTIFICATE-----Generated at Sat Aug 9 14:21:42 2025 by rpki-client