$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa File: 2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa (raw, json) Hash identifier: 08I7xmaB6Kvf5AV2oa4AmB1K5mghJebH1Cqs8TPO5bM= Subject key identifier: BA:DA:53:04:8D:24:61:C3:FE:53:8D:C4:C1:21:9E:E1:BB:FC:B5:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BE9B97757D61CBA6AB1372AF6431BFAD7B1FB35 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa Signing time: Tue 24 Jun 2025 00:50:23 +0000 ROA not before: Tue 24 Jun 2025 00:50:23 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.87.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e9:b9:77:57:d6:1c:ba:6a:b1:37:2a:f6:43:1b:fa:d7:b1:fb:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:50:23 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=19eee7fef8e1b19b5634dba8b48b7ecdda9db35a2c8764dce9fe5ace1fb7ae9f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4d:1b:65:f5:91:e3:18:09:ba:e8:bc:e6:12: 3f:be:3b:6b:cb:97:34:fb:f8:cb:3c:dc:c4:b5:df: 79:94:ac:2c:65:a4:d4:64:f5:7f:e2:62:e7:bf:ce: 27:8d:f1:aa:08:6c:90:96:9f:78:b1:cd:29:45:bb: 5f:63:40:69:ed:0a:3f:6d:7d:7c:4a:cb:01:9a:87: d1:34:ba:20:0c:52:f2:44:ff:5d:83:53:83:b3:ba: 3d:ab:86:cf:dd:86:e9:ee:08:92:19:7f:36:f3:d3: aa:a9:6f:ff:3d:1b:23:8e:bb:c3:42:e2:bc:0b:af: c4:f4:80:2e:34:51:ea:f4:e3:cd:c4:c9:46:0b:57: fb:69:1b:6d:92:37:09:04:47:fc:6a:c0:01:73:20: 6c:57:1b:45:5f:1c:b7:ff:e9:9a:34:9b:bb:e4:59: 04:24:e7:e0:78:ce:58:7f:59:6e:4f:cf:15:38:62: 79:ec:b3:c3:51:53:9f:92:c9:e9:87:c4:70:aa:ec: ad:87:4f:6e:5e:cb:d0:51:8d:ad:6e:bf:62:be:33: fb:67:9f:de:43:62:82:cf:58:31:a8:25:2e:22:40: 5d:b1:59:b6:57:4b:52:02:05:c6:f9:17:c2:10:51: 86:16:5e:a6:36:0e:ef:d7:ca:04:33:69:c7:20:08: a0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:DA:53:04:8D:24:61:C3:FE:53:8D:C4:C1:21:9E:E1:BB:FC:B5:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.128.0/18 Signature Algorithm: sha256WithRSAEncryption 3f:99:31:e6:9f:77:08:c4:42:fa:6a:b7:72:e1:01:bd:dd:54: 0c:71:f1:4a:82:cc:df:7f:c1:32:90:3e:4d:6a:04:e5:37:dd: 99:d4:b7:47:50:92:b9:e8:7c:93:44:80:c9:60:c4:1b:97:35: e1:b8:e9:c4:f3:4f:00:50:b1:85:6c:a8:6e:01:71:12:52:b6: 51:6c:88:3d:e3:69:9a:ca:4c:d5:04:c9:e9:ff:c3:cf:46:02: e1:8d:bd:e4:a5:16:4f:01:7b:9b:bc:0c:0f:99:c0:a8:02:d9: d3:14:ae:5f:e5:dc:c7:87:90:98:b2:5b:14:9a:35:1e:aa:fc: 2c:09:b1:74:99:5f:69:b7:99:7c:45:79:85:f1:ab:0d:dd:5c: 3b:a9:7b:53:b5:60:27:f5:7c:d7:9c:19:a2:00:cb:84:b5:1a: 71:71:17:c1:55:92:2a:1c:95:eb:eb:93:c6:0e:7d:27:e8:14: 77:f0:af:33:80:57:b7:90:c1:4e:ea:1e:29:47:55:ed:91:df: e0:f4:75:d7:11:6f:a6:a6:f4:ca:40:b3:cc:9d:63:4c:01:92: d5:23:e1:8e:b5:ea:ca:34:75:e4:be:78:7d:ca:c8:16:53:8a: 54:b0:c8:b4:94:51:b5:53:5f:e9:3a:22:c0:e8:4f:1b:70:bd: 95:21:35:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa+m5d1fWHLpqsTcq9kMb+tex+zUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDA1MDIzWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWVlZTdmZWY4ZTFiMTliNTYzNGRiYThiNDhiN2VjZGRh OWRiMzVhMmM4NzY0ZGNlOWZlNWFjZTFmYjdhZTlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgTRtl9ZHjGAm66LzmEj++O2vLlzT7+Ms83MS133mUrCxl pNRk9X/iYue/zieN8aoIbJCWn3ixzSlFu19jQGntCj9tfXxKywGah9E0uiAMUvJE /12DU4Ozuj2rhs/dhunuCJIZfzbz06qpb/89GyOOu8NC4rwLr8T0gC40Uer0483E yUYLV/tpG22SNwkER/xqwAFzIGxXG0VfHLf/6Zo0m7vkWQQk5+B4zlh/WW5PzxU4 Ynnss8NRU5+SyemHxHCq7K2HT25ey9BRja1uv2K+M/tnn95DYoLPWDGoJS4iQF2x WbZXS1ICBcb5F8IQUYYWXqY2Du/XygQzaccgCKCPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUutpTBI0kYcP+U43EwSGe4bv8tfIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkOTViZDYyLWU2ODEtNGNlZi1hMDI2LWZiYjJkMmViMWVmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjV4AwDQYJKoZIhvcNAQELBQADggEBAD+ZMeafdwjEQvpqt3LhAb3dVAxx 8UqCzN9/wTKQPk1qBOU33ZnUt0dQkrnofJNEgMlgxBuXNeG46cTzTwBQsYVsqG4B cRJStlFsiD3jaZrKTNUEyen/w89GAuGNveSlFk8Be5u8DA+ZwKgC2dMUrl/l3MeH kJiyWxSaNR6q/CwJsXSZX2m3mXxFeYXxqw3dXDupe1O1YCf1fNecGaIAy4S1GnFx F8FVkioclevrk8YOfSfoFHfwrzOAV7eQwU7qHilHVe2R3+D0ddcRb6am9MpAs8yd Y0wBktUj4Y616so0deS+eH3KyBZTilSwyLSUUbVTX+k6IsDoTxtwvZUhNQ0= -----END CERTIFICATE-----Generated at Sun Jun 29 09:08:35 2025 by rpki-client