$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa File: 203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa (raw, json) Hash identifier: lggOmwVcBN/HEG08Mbq8DikRL+lMwB9GMnYsk3C2VB8= Subject key identifier: B8:9E:74:DC:78:D9:E2:0E:90:49:AE:6D:B7:EE:DC:E8:9A:09:FF:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C5772C670B6502B0D24E675D5C388DB0EF1543F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa Signing time: Wed 13 Aug 2025 00:51:14 +0000 ROA not before: Wed 13 Aug 2025 00:51:14 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:57:72:c6:70:b6:50:2b:0d:24:e6:75:d5:c3:88:db:0e:f1:54:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:51:14 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=46cbfb6dee3a4b5d00c0a99d8e4f1b8c74c1a105f6c0b4a1aae521cfcd03f3af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e7:05:2a:71:8a:86:bb:65:82:ce:1e:6a:99: 97:e2:23:ae:7f:a0:db:0a:7c:39:28:7a:48:d5:b7: 52:da:78:1c:bf:96:06:fe:96:1d:8d:c5:3f:eb:75: 40:17:05:e3:ca:2b:c4:5f:10:e0:e5:cc:27:3d:92: 55:c2:34:0e:2d:93:e1:e3:c5:2b:ff:98:e2:a5:63: 30:fa:d9:81:83:17:c8:c4:7a:7f:af:24:47:3f:8a: 79:4c:46:a8:c9:bf:38:21:d1:ef:e8:0f:b7:08:1c: 8e:81:49:9f:1f:75:f7:60:16:2c:31:6d:de:23:28: 9e:aa:41:ae:e3:3c:9f:42:f5:58:ad:f3:4b:47:f2: 63:6c:42:29:5e:d5:67:30:5c:45:43:a0:1d:a1:56: 48:07:e5:f4:8a:3d:e3:cf:a8:86:6d:dc:82:4d:0a: 1f:49:42:0b:04:e8:58:b9:c3:34:1c:a0:ea:45:ac: e4:3b:e2:70:ca:07:1a:a4:40:a1:9a:26:17:6e:e7: be:09:03:10:84:c7:87:c0:9d:ea:34:45:48:c4:1d: 3b:f8:ff:dd:40:89:a3:35:d9:40:0a:67:da:ab:b4: 91:a0:a7:15:d7:e9:5e:43:a0:58:56:7c:8b:b7:32: eb:e6:03:75:0a:ef:60:4a:80:41:c4:ce:9c:4d:15: 9f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9E:74:DC:78:D9:E2:0E:90:49:AE:6D:B7:EE:DC:E8:9A:09:FF:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.132.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:a1:93:85:d0:41:a3:7f:4f:d2:d2:92:cd:ad:7b:b6:bd:78: 54:de:e0:8d:d7:2d:ae:d6:16:6e:3e:4f:29:e5:4b:5d:b3:0e: 1c:ba:ec:71:57:f2:96:68:21:fa:51:e6:51:6c:87:ef:59:c7: 27:3d:a0:e9:d0:07:a4:4e:19:98:16:5b:00:c2:07:9d:d4:55: 0a:9c:54:5d:c8:7b:b6:32:b9:6d:4f:68:f2:44:b8:c0:86:9c: 3c:48:06:ee:74:d4:89:3f:3e:d1:0d:ea:46:49:bf:ab:99:ad: fe:27:0e:35:f9:0e:a5:05:49:c4:f2:5b:5e:4f:c3:ee:5e:2c: b4:a2:a0:90:36:92:55:6c:05:00:d7:c2:c3:b5:9a:32:dc:e8: b9:0d:5e:a1:80:6b:0d:08:98:1f:a7:06:56:d3:49:db:bd:08: dc:08:6f:b7:61:9f:9e:4f:59:ac:d8:6b:10:66:d9:04:c4:79: 78:c9:e0:49:ac:17:38:30:b2:c0:0f:2c:3b:32:f8:47:38:08: 02:02:3b:ae:9a:e1:77:e7:2e:e8:53:82:2a:e7:a8:d2:74:8c: f3:e1:83:7d:73:7f:50:cc:ca:51:90:38:ea:ed:8b:a1:a7:05: ac:55:c0:d8:67:58:fb:35:c4:a9:02:97:40:30:5b:1b:a4:e1: 2b:bb:5f:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXFdyxnC2UCsNJOZ11cOI2w7xVD8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA1MTE0WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NmNiZmI2ZGVlM2E0YjVkMDBjMGE5OWQ4ZTRmMWI4Yzc0 YzFhMTA1ZjZjMGI0YTFhYWU1MjFjZmNkMDNmM2FmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC5wUqcYqGu2WCzh5qmZfiI65/oNsKfDkoekjVt1LaeBy/ lgb+lh2NxT/rdUAXBePKK8RfEODlzCc9klXCNA4tk+HjxSv/mOKlYzD62YGDF8jE en+vJEc/inlMRqjJvzgh0e/oD7cIHI6BSZ8fdfdgFiwxbd4jKJ6qQa7jPJ9C9Vit 80tH8mNsQile1WcwXEVDoB2hVkgH5fSKPePPqIZt3IJNCh9JQgsE6Fi5wzQcoOpF rOQ74nDKBxqkQKGaJhdu574JAxCEx4fAneo0RUjEHTv4/91AiaM12UAKZ9qrtJGg pxXX6V5DoFhWfIu3MuvmA3UK72BKgEHEzpxNFZ+7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuJ503HjZ4g6QSa5tt+7c6JoJ/9MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwM2ZhOTdlLWJjZjQtNDljNy05ZTMwLWFkM2NiNWNlNzU1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYQwDQYJKoZIhvcNAQELBQADggEBADyhk4XQQaN/T9LSks2te7a9eFTe 4I3XLa7WFm4+TynlS12zDhy67HFX8pZoIfpR5lFsh+9Zxyc9oOnQB6ROGZgWWwDC B53UVQqcVF3Ie7YyuW1PaPJEuMCGnDxIBu501Ik/PtEN6kZJv6uZrf4nDjX5DqUF ScTyW15Pw+5eLLSioJA2klVsBQDXwsO1mjLc6LkNXqGAaw0ImB+nBlbTSdu9CNwI b7dhn55PWazYaxBm2QTEeXjJ4EmsFzgwssAPLDsy+Ec4CAICO66a4XfnLuhTgirn qNJ0jPPhg31zf1DMylGQOOrti6GnBaxVwNhnWPs1xKkCl0AwWxuk4Su7X/I= -----END CERTIFICATE-----Generated at Sat Aug 23 08:20:21 2025 by rpki-client