$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da4f36e5-5307-4447-b46d-47df8180ef89.roa File: da4f36e5-5307-4447-b46d-47df8180ef89.roa (raw, json) Hash identifier: iGjS4rj4P0lF15tcijw6+yPndzXdiFjTWvrmFXUvBW0= Subject key identifier: 0C:BC:C8:CE:A9:A8:E6:65:B9:6A:28:FD:3D:FE:BF:76:5C:DA:18:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 323F14F93C13E18B32DF7FF4678B4B741FAB8CB5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da4f36e5-5307-4447-b46d-47df8180ef89.roa Signing time: Fri 25 Jul 2025 00:31:47 +0000 ROA not before: Fri 25 Jul 2025 00:31:47 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:3f:14:f9:3c:13:e1:8b:32:df:7f:f4:67:8b:4b:74:1f:ab:8c:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:31:47 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=4d8da472f2553f5cffa9e2748e00f68aa52087f9bfde01b6b656e2bd19a10cda, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:08:b1:ca:af:dc:c2:41:ae:5c:28:f6:4b:a6: 55:73:f0:76:d8:a4:4f:4f:f7:04:67:17:ca:f4:21: 1f:97:83:a3:40:44:e1:2d:85:58:94:1b:37:79:23: f8:9c:88:1a:8d:09:14:ff:98:e2:80:98:34:0d:16: 46:43:f1:41:f4:9c:a5:4c:8b:a7:3e:c8:62:55:76: 69:d0:f4:58:55:b9:2a:70:a9:b3:f1:68:72:77:42: 52:81:af:e8:f1:c1:7e:ef:de:13:e4:b5:37:ea:8e: ec:d6:c2:18:e7:a5:26:83:40:0f:51:51:49:b6:b3: 6e:00:cd:3e:30:27:f3:aa:a8:5a:5e:d1:6f:55:c6: 77:e4:92:54:2a:9a:3b:d6:17:a5:04:d6:aa:4e:3b: f1:4e:ec:18:b2:c2:15:ae:aa:08:14:70:96:b6:e1: 66:f6:dd:72:41:f7:67:b6:79:fa:15:27:a6:65:dd: 12:4d:74:44:39:82:34:31:6f:ba:5e:01:2b:04:5f: a6:63:9e:09:ee:6c:c7:6b:1c:a6:9f:4c:e2:e5:94: 5d:62:76:eb:45:37:80:38:8d:50:6a:5a:cb:6a:5a: 5a:4d:e5:34:03:9b:54:df:3b:fb:ad:29:66:36:ac: e3:06:1a:54:73:6b:db:12:51:e3:f0:ae:4f:29:46: fb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BC:C8:CE:A9:A8:E6:65:B9:6A:28:FD:3D:FE:BF:76:5C:DA:18:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da4f36e5-5307-4447-b46d-47df8180ef89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.112.0/21 Signature Algorithm: sha256WithRSAEncryption 6a:d2:17:8c:26:43:43:34:ad:69:bc:18:c4:76:61:aa:37:ad: ae:98:79:06:d6:4e:4f:43:49:53:3b:c0:6c:b5:7c:f6:16:e3: 27:f0:eb:9f:52:f5:89:c2:04:c2:01:59:36:98:54:fb:a6:fe: 02:89:46:f4:36:f2:c8:5d:4e:82:38:44:4b:1f:bc:65:c2:b4: 05:79:97:73:c2:4a:74:63:1a:5f:27:d1:cb:af:d0:bd:c2:5d: e9:86:a7:a3:15:b9:57:14:77:71:25:27:55:3f:0c:58:08:57: f3:9d:86:37:b7:6f:34:18:77:03:00:13:db:3c:28:a9:6d:79: e6:61:15:2d:c1:7b:9c:34:f6:b7:a7:c6:d7:f2:39:8f:4f:c2: f5:3a:92:54:d6:64:00:5b:24:87:df:c1:e9:53:88:8c:fe:25: 58:3e:7e:25:d7:17:84:18:66:e1:db:16:24:72:13:97:db:c3: 3d:b2:15:5a:ba:b0:a7:ec:f7:54:96:03:bc:ad:12:7f:1b:91: c2:fe:3e:55:68:84:2c:d2:36:10:2c:6e:bb:53:fd:d2:45:07: 3f:2d:27:2b:8e:12:45:33:f6:d3:88:ed:79:70:c9:c6:03:c6: 65:dd:0d:15:22:2c:dc:3a:65:a3:ec:8e:c5:44:7a:0f:53:01: ee:99:9a:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMj8U+TwT4Ysy33/0Z4tLdB+rjLUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAzMTQ3WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDhkYTQ3MmYyNTUzZjVjZmZhOWUyNzQ4ZTAwZjY4YWE1 MjA4N2Y5YmZkZTAxYjZiNjU2ZTJiZDE5YTEwY2RhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3CLHKr9zCQa5cKPZLplVz8HbYpE9P9wRnF8r0IR+Xg6NA ROEthViUGzd5I/iciBqNCRT/mOKAmDQNFkZD8UH0nKVMi6c+yGJVdmnQ9FhVuSpw qbPxaHJ3QlKBr+jxwX7v3hPktTfqjuzWwhjnpSaDQA9RUUm2s24AzT4wJ/OqqFpe 0W9VxnfkklQqmjvWF6UE1qpOO/FO7BiywhWuqggUcJa24Wb23XJB92e2efoVJ6Zl 3RJNdEQ5gjQxb7peASsEX6ZjngnubMdrHKafTOLllF1idutFN4A4jVBqWstqWlpN 5TQDm1TfO/utKWY2rOMGGlRza9sSUePwrk8pRvupAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDLzIzqmo5mW5aij9Pf6/dlzaGAwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhNGYzNmU1LTUzMDctNDQ0Ny1iNDZkLTQ3ZGY4MTgwZWY4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlnAwDQYJKoZIhvcNAQELBQADggEBAGrSF4wmQ0M0rWm8GMR2Yao3ra6Y eQbWTk9DSVM7wGy1fPYW4yfw659S9YnCBMIBWTaYVPum/gKJRvQ28shdToI4REsf vGXCtAV5l3PCSnRjGl8n0cuv0L3CXemGp6MVuVcUd3ElJ1U/DFgIV/Odhje3bzQY dwMAE9s8KKlteeZhFS3Be5w09renxtfyOY9PwvU6klTWZABbJIffwelTiIz+JVg+ fiXXF4QYZuHbFiRyE5fbwz2yFVq6sKfs91SWA7ytEn8bkcL+PlVohCzSNhAsbrtT /dJFBz8tJyuOEkUz9tOI7XlwycYDxmXdDRUiLNw6ZaPsjsVEeg9TAe6ZmhA= -----END CERTIFICATE-----Generated at Sat Aug 9 05:39:52 2025 by rpki-client