$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a41e5-dde6-424c-b8ee-427d2be83488.roa File: 225a41e5-dde6-424c-b8ee-427d2be83488.roa (raw, json) Hash identifier: 4bJp94UcSPgAb2rjXAYIpBx+Rban5vChXQvevt5n5OQ= Subject key identifier: 7D:7B:E4:06:B2:64:22:77:03:91:76:F0:76:41:D3:AB:8E:2C:D4:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D449064E32B45CE743FA4D5E91CCB3CE5A17F6E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a41e5-dde6-424c-b8ee-427d2be83488.roa Signing time: Tue 24 Jun 2025 00:40:32 +0000 ROA not before: Tue 24 Jun 2025 00:40:32 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:44:90:64:e3:2b:45:ce:74:3f:a4:d5:e9:1c:cb:3c:e5:a1:7f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:40:32 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=1e49534e2f47d90b719dd5ff0804695cc06cb92eaf0b9f5679ea0317b4e3234d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8f:42:35:b7:d8:b8:9b:fd:f2:5c:de:44:51: bb:b0:d5:cc:a0:57:c8:6d:56:1b:46:8a:1b:85:f2: fb:e8:ad:ff:7e:c7:8f:4f:0a:81:4a:15:87:95:51: 75:23:3b:e4:62:1e:65:cb:e8:1e:bc:26:e3:91:f7: 72:2a:02:43:44:e8:ce:bc:e8:25:39:b7:49:91:17: cd:c0:29:14:9a:58:0e:21:2a:18:94:51:3e:e6:b2: 0e:23:03:ec:9b:bc:d1:03:8d:b7:be:24:29:42:9d: 46:aa:df:dd:74:ef:19:c6:98:54:53:02:bc:16:03: b0:2d:d3:ea:c9:78:18:56:fc:52:47:ad:81:85:c1: bb:37:5d:8b:43:ca:5a:a4:8f:fb:98:db:fc:25:90: 21:eb:8a:8e:a1:a4:7a:c2:9a:88:5c:1d:0f:ca:c7: 6e:74:af:c3:c1:97:21:cf:f5:35:94:c1:01:9f:ee: 67:67:e8:9e:40:63:d2:bf:93:10:33:b5:17:20:bb: 02:1e:51:b8:df:04:91:e1:3a:4b:43:41:20:84:33: 62:b6:74:8d:3b:a4:73:5a:a6:fc:d8:06:0a:8c:7e: 25:6b:32:a8:7a:40:c1:8d:43:f2:ff:69:e5:f1:25: b6:71:73:3a:31:cb:5e:93:5d:1e:df:ed:1d:0e:48: 2f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7B:E4:06:B2:64:22:77:03:91:76:F0:76:41:D3:AB:8E:2C:D4:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a41e5-dde6-424c-b8ee-427d2be83488.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.130.0/24 Signature Algorithm: sha256WithRSAEncryption 37:67:15:3c:7a:20:20:38:03:51:d6:f7:11:14:8f:56:06:35: 4a:88:24:f7:70:dd:1c:69:52:c7:70:89:47:fc:30:d8:72:b7: 05:b8:6a:89:ec:86:25:b9:da:4e:74:a0:ce:dd:85:fe:70:fd: c5:94:ce:6f:c9:74:fd:c0:be:3b:fa:4d:64:b4:c1:71:f3:6b: 73:c3:5d:2d:63:8d:f1:be:2d:89:05:af:fb:28:de:75:7b:01: 69:36:9b:7e:67:a3:92:40:f6:b1:ae:1d:24:17:4a:f8:fa:5b: 57:bd:4d:aa:25:ad:67:26:65:d5:e1:e2:2a:59:7d:8d:ab:39: 89:f3:0d:9b:0e:c0:77:a3:06:8a:52:14:62:50:06:59:4b:9f: a7:fd:e6:cb:b1:41:27:9e:29:63:e5:fc:a4:14:c2:09:82:d4: f7:ef:f2:af:12:b1:ba:8f:60:ff:49:e1:0c:c7:6f:c6:a3:4c: 71:77:aa:40:7f:74:8d:54:25:9a:5b:c6:2f:a4:fb:27:50:7f: 5b:94:5e:80:5e:4e:f3:9f:a7:15:dc:74:20:5a:bb:5e:a3:a3: 05:11:cb:c6:9b:cd:f0:a6:2d:2f:dc:65:72:8c:9c:fe:70:c1: f1:06:ad:b5:b7:30:08:8f:32:13:1c:68:e1:b6:04:4b:7b:93: 9c:a8:3f:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfUSQZOMrRc50P6TV6RzLPOWhf24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDA0MDMyWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTQ5NTM0ZTJmNDdkOTBiNzE5ZGQ1ZmYwODA0Njk1Y2Mw NmNiOTJlYWYwYjlmNTY3OWVhMDMxN2I0ZTMyMzRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrj0I1t9i4m/3yXN5EUbuw1cygV8htVhtGihuF8vvorf9+ x49PCoFKFYeVUXUjO+RiHmXL6B68JuOR93IqAkNE6M686CU5t0mRF83AKRSaWA4h KhiUUT7msg4jA+ybvNEDjbe+JClCnUaq39107xnGmFRTArwWA7At0+rJeBhW/FJH rYGFwbs3XYtDylqkj/uY2/wlkCHrio6hpHrCmohcHQ/Kx250r8PBlyHP9TWUwQGf 7mdn6J5AY9K/kxAztRcguwIeUbjfBJHhOktDQSCEM2K2dI07pHNapvzYBgqMfiVr Mqh6QMGNQ/L/aeXxJbZxczoxy16TXR7f7R0OSC+5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfXvkBrJkIncDkXbwdkHTq44s1KYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNWE0MWU1LWRkZTYtNDI0Yy1iOGVlLTQyN2QyYmU4MzQ4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYIwDQYJKoZIhvcNAQELBQADggEBADdnFTx6ICA4A1HW9xEUj1YGNUqI JPdw3RxpUsdwiUf8MNhytwW4aonshiW52k50oM7dhf5w/cWUzm/JdP3Avjv6TWS0 wXHza3PDXS1jjfG+LYkFr/so3nV7AWk2m35no5JA9rGuHSQXSvj6W1e9TaolrWcm ZdXh4ipZfY2rOYnzDZsOwHejBopSFGJQBllLn6f95suxQSeeKWPl/KQUwgmC1Pfv 8q8SsbqPYP9J4QzHb8ajTHF3qkB/dI1UJZpbxi+k+ydQf1uUXoBeTvOfpxXcdCBa u16jowURy8abzfCmLS/cZXKMnP5wwfEGrbW3MAiPMhMcaOG2BEt7k5yoPwE= -----END CERTIFICATE-----Generated at Tue Jul 1 18:21:55 2025 by rpki-client