$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1970fdae-d81d-4d44-bdc0-2931ee225a83.roa File: 1970fdae-d81d-4d44-bdc0-2931ee225a83.roa (raw, json) Hash identifier: NzKPSTPAivvt6KAG3uKWF3FWMs2quUon/ql3t9e0Dn8= Subject key identifier: B4:3B:5D:B5:1E:0E:19:90:69:AB:EF:2D:E1:DD:60:72:A8:05:2F:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A346CF01C7E1C7191CF574397BB4AD695C01C17 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1970fdae-d81d-4d44-bdc0-2931ee225a83.roa Signing time: Tue 19 Aug 2025 00:30:26 +0000 ROA not before: Tue 19 Aug 2025 00:30:26 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:34:6c:f0:1c:7e:1c:71:91:cf:57:43:97:bb:4a:d6:95:c0:1c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:30:26 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=2def43a4895b2cbb600a8030cd09833fc674e7b4fa8312f4497699a2e028459d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:88:f9:e0:da:29:34:96:6b:00:b9:2b:a9:dd: 37:17:b7:5a:27:b0:4f:02:eb:23:d6:ef:1c:ae:62: 09:42:f4:49:eb:93:a3:fe:99:d2:dd:97:24:69:a5: cc:d1:f9:31:78:b3:79:ff:29:34:93:80:da:e7:cf: 3f:6e:cb:3b:fe:9b:cb:22:1e:5c:7f:b9:1b:aa:85: 93:3b:89:f5:53:62:e2:2a:bd:1b:b6:c3:3a:4b:c4: f5:1c:69:ee:08:f6:0d:b8:d1:a8:4a:51:83:85:18: 29:22:e5:28:b9:ac:dd:6a:99:6c:d0:2a:07:e9:52: 80:0b:09:fe:2d:5c:53:1f:23:f7:a0:51:f1:e3:dd: 6c:51:2e:b8:4d:96:fc:57:bc:88:23:fd:8b:09:b4: 68:48:4e:82:34:45:a9:a7:6c:f4:6f:03:1e:14:a9: f5:0c:f3:3d:9c:b1:75:47:82:90:cc:64:22:ae:f3: 96:da:69:cd:98:87:82:09:63:ec:9b:a8:20:e0:56: d5:d1:13:4c:e6:be:db:63:8d:e9:64:b6:ca:09:3d: 5a:c1:ce:1d:57:9b:d2:26:c5:38:47:ed:27:ba:77: d4:4e:27:54:ce:cc:a3:c3:f8:1c:3e:66:87:ec:a8: aa:90:c4:00:2d:9d:2d:65:3b:ff:bb:37:67:bd:7c: 53:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3B:5D:B5:1E:0E:19:90:69:AB:EF:2D:E1:DD:60:72:A8:05:2F:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1970fdae-d81d-4d44-bdc0-2931ee225a83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.186.0/24 Signature Algorithm: sha256WithRSAEncryption 65:a7:49:59:35:49:c2:de:0e:0e:38:30:cf:eb:09:96:86:0d: 57:af:b0:9d:1d:59:16:4e:6c:32:1b:ae:35:0d:55:1c:51:0a: 98:91:68:e6:08:12:65:f8:59:e3:83:23:0b:9f:b8:09:65:8e: b2:08:04:18:5b:9a:4a:62:9b:56:2f:e5:36:ac:1f:c2:4a:04: b1:74:16:9e:e9:e5:8c:5c:fd:f7:3b:ac:90:6d:39:e1:54:39: 1b:b7:01:8f:b8:1c:30:72:25:f2:70:a2:ec:e7:d6:3f:3d:82: fd:e1:3d:4e:4c:0d:e9:40:aa:2f:19:37:da:b9:03:dc:49:1f: 70:1c:22:73:64:23:64:7f:2b:50:36:4d:c7:e6:1f:61:7f:df: 4a:6c:d6:21:e7:3d:ec:26:03:a9:1a:0f:34:c5:2a:f8:0a:c4: 50:06:9a:7a:a2:6a:de:8e:55:6d:84:77:49:eb:83:44:f5:30: db:14:0e:29:ee:33:9e:75:92:fa:39:f4:85:dd:0e:e0:28:0a: df:cc:cd:40:da:28:31:e5:32:30:51:3d:a3:c2:19:ce:44:06: e4:f8:50:e7:da:e3:b8:ae:5a:11:e0:a2:84:de:fa:a1:91:38: e0:ef:35:c0:73:1a:5c:c3:1c:af:ca:3f:94:82:52:20:a8:24: b0:fd:4d:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGjRs8Bx+HHGRz1dDl7tK1pXAHBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAzMDI2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZGVmNDNhNDg5NWIyY2JiNjAwYTgwMzBjZDA5ODMzZmM2 NzRlN2I0ZmE4MzEyZjQ0OTc2OTlhMmUwMjg0NTlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMiPng2ik0lmsAuSup3TcXt1onsE8C6yPW7xyuYglC9Enr k6P+mdLdlyRppczR+TF4s3n/KTSTgNrnzz9uyzv+m8siHlx/uRuqhZM7ifVTYuIq vRu2wzpLxPUcae4I9g240ahKUYOFGCki5Si5rN1qmWzQKgfpUoALCf4tXFMfI/eg UfHj3WxRLrhNlvxXvIgj/YsJtGhIToI0RamnbPRvAx4UqfUM8z2csXVHgpDMZCKu 85baac2Yh4IJY+ybqCDgVtXRE0zmvttjjelktsoJPVrBzh1Xm9ImxThH7Se6d9RO J1TOzKPD+Bw+ZofsqKqQxAAtnS1lO/+7N2e9fFOZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtDtdtR4OGZBpq+8t4d1gcqgFL7cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5NzBmZGFlLWQ4MWQtNGQ0NC1iZGMwLTI5MzFlZTIyNWE4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl7owDQYJKoZIhvcNAQELBQADggEBAGWnSVk1ScLeDg44MM/rCZaGDVev sJ0dWRZObDIbrjUNVRxRCpiRaOYIEmX4WeODIwufuAlljrIIBBhbmkpim1Yv5Tas H8JKBLF0Fp7p5Yxc/fc7rJBtOeFUORu3AY+4HDByJfJwouzn1j89gv3hPU5MDelA qi8ZN9q5A9xJH3AcInNkI2R/K1A2TcfmH2F/30ps1iHnPewmA6kaDzTFKvgKxFAG mnqiat6OVW2Ed0nrg0T1MNsUDinuM551kvo59IXdDuAoCt/MzUDaKDHlMjBRPaPC Gc5EBuT4UOfa47iuWhHgooTe+qGROODvNcBzGlzDHK/KP5SCUiCoJLD9TSA= -----END CERTIFICATE-----Generated at Sat Aug 23 07:04:15 2025 by rpki-client