$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a41e5-dde6-424c-b8ee-427d2be83488.roa File: 225a41e5-dde6-424c-b8ee-427d2be83488.roa (raw, json) Hash identifier: cV85xVxf/E9A9NJPEQZwXBt/5q9CQ2I0TyHeGZgUSUo= Subject key identifier: 5E:AF:7B:4C:13:B3:2E:87:B9:B3:51:8A:5B:4F:7F:51:23:88:6E:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46E6265F20AF183E450055A0B8F6D116802C7FC1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a41e5-dde6-424c-b8ee-427d2be83488.roa Signing time: Wed 13 Aug 2025 00:50:39 +0000 ROA not before: Wed 13 Aug 2025 00:50:39 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:e6:26:5f:20:af:18:3e:45:00:55:a0:b8:f6:d1:16:80:2c:7f:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:50:39 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=f798d0da6820ba5a8ce078b950ac16a38cb90bd97d5e883927b7a7b0ccfd7c6a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a0:e2:4f:7d:e2:c3:6b:e5:d2:23:0b:cd:da: 70:65:49:ec:f8:82:f6:15:9c:56:ce:8d:bb:e2:36: cd:02:42:c1:1d:7b:5d:60:30:e1:74:34:72:68:4d: 8a:1b:d0:ec:4d:d2:8b:a3:68:2a:71:b9:79:17:a0: 3d:ea:86:03:79:bf:fc:eb:dc:3c:9b:ed:fb:95:c8: cc:ad:37:12:61:40:51:ef:06:90:37:a4:05:31:db: 0c:37:ad:a8:a8:0a:e5:6c:38:33:f7:de:e4:ab:fc: 14:c7:3b:0f:35:42:03:be:f2:73:43:a7:fd:5b:76: 87:75:8a:3e:5d:79:a4:72:d0:b9:b1:54:f1:29:92: bd:9a:55:f7:68:a6:ca:1d:15:e5:8a:4e:30:67:99: 7b:4e:6b:8d:e5:05:29:ee:02:95:a8:c4:fa:68:83: 77:2d:8e:56:e1:2e:74:d9:c6:6a:e7:7d:00:cd:d8: 92:36:eb:c3:31:2a:25:93:ae:48:c5:f1:3f:1f:be: e6:4c:50:de:1a:1d:c4:62:83:ee:0f:96:67:27:0d: 4c:74:7f:61:ef:1d:0e:64:c2:e9:87:ef:1a:3a:18: e8:41:9f:f6:4e:de:f4:f9:cc:4e:48:ad:34:ed:18: b6:d8:bc:df:ae:d1:f6:62:86:48:e4:7c:28:97:2d: 5d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AF:7B:4C:13:B3:2E:87:B9:B3:51:8A:5B:4F:7F:51:23:88:6E:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a41e5-dde6-424c-b8ee-427d2be83488.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.130.0/24 Signature Algorithm: sha256WithRSAEncryption 61:91:85:22:e6:53:fb:65:c2:3e:1f:9c:9d:11:28:32:27:d8: 2d:12:86:ee:67:6a:0c:37:35:3b:12:0d:18:57:8b:7f:c1:e3: 1a:dd:41:9b:a7:78:31:c1:ed:6e:ce:d2:3e:98:a0:9d:c2:de: 07:98:1e:62:70:71:6d:4a:06:a8:04:26:6b:7d:da:c3:cf:17: 4a:9c:d2:77:97:2f:49:b5:0f:e1:b2:a9:4e:c2:fc:db:24:4f: dd:13:93:26:69:dc:db:93:8d:2b:03:5e:e4:3e:74:48:b6:45: 24:93:98:11:04:be:53:7c:99:4c:8d:17:4f:86:51:81:49:a5: 3c:1a:9e:9e:38:f2:8d:5e:26:11:fa:e6:08:a5:d7:e8:14:b5: c8:5c:e9:08:ff:90:25:01:b1:13:e4:96:4a:3e:15:b9:b3:99: fc:1e:65:80:4c:9e:f9:95:10:06:63:7d:38:91:05:25:56:0b: 45:09:e2:4b:e6:53:33:aa:53:01:c6:25:2b:06:37:37:57:3b: dd:fb:64:8c:17:a5:61:1e:c2:03:77:8d:bd:8b:3b:b2:c0:40: db:ea:81:95:66:1b:11:8c:be:cd:3f:51:97:45:63:73:0c:b4: ed:45:3a:d3:73:ca:4f:e0:d7:15:4f:91:6d:40:f5:77:dd:6d: ef:85:3d:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURuYmXyCvGD5FAFWguPbRFoAsf8EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA1MDM5WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzk4ZDBkYTY4MjBiYTVhOGNlMDc4Yjk1MGFjMTZhMzhj YjkwYmQ5N2Q1ZTg4MzkyN2I3YTdiMGNjZmQ3YzZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMoOJPfeLDa+XSIwvN2nBlSez4gvYVnFbOjbviNs0CQsEd e11gMOF0NHJoTYob0OxN0oujaCpxuXkXoD3qhgN5v/zr3Dyb7fuVyMytNxJhQFHv BpA3pAUx2ww3raioCuVsODP33uSr/BTHOw81QgO+8nNDp/1bdod1ij5deaRy0Lmx VPEpkr2aVfdopsodFeWKTjBnmXtOa43lBSnuApWoxPpog3ctjlbhLnTZxmrnfQDN 2JI268MxKiWTrkjF8T8fvuZMUN4aHcRig+4PlmcnDUx0f2HvHQ5kwumH7xo6GOhB n/ZO3vT5zE5IrTTtGLbYvN+u0fZihkjkfCiXLV27AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXq97TBOzLoe5s1GKW09/USOIbrMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNWE0MWU1LWRkZTYtNDI0Yy1iOGVlLTQyN2QyYmU4MzQ4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYIwDQYJKoZIhvcNAQELBQADggEBAGGRhSLmU/tlwj4fnJ0RKDIn2C0S hu5nagw3NTsSDRhXi3/B4xrdQZuneDHB7W7O0j6YoJ3C3geYHmJwcW1KBqgEJmt9 2sPPF0qc0neXL0m1D+GyqU7C/NskT90TkyZp3NuTjSsDXuQ+dEi2RSSTmBEEvlN8 mUyNF0+GUYFJpTwanp448o1eJhH65gil1+gUtchc6Qj/kCUBsRPklko+Fbmzmfwe ZYBMnvmVEAZjfTiRBSVWC0UJ4kvmUzOqUwHGJSsGNzdXO937ZIwXpWEewgN3jb2L O7LAQNvqgZVmGxGMvs0/UZdFY3MMtO1FOtNzyk/g1xVPkW1A9Xfdbe+FPd0= -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:40 2025 by rpki-client