$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa File: 396fb735-ddd1-4676-8f03-961ccd29c7fb.roa (raw, json) Hash identifier: BJvk1+7Sb7Ndx4FmdQx7VqTSbcd30kuYHafj2hDMKHw= Subject key identifier: F1:FA:54:AF:97:DA:8E:D3:B8:3D:E2:ED:42:55:A8:18:5B:A5:09:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 430F12383ACA04C802E1A1D160CAD147B66AA877 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa Signing time: Tue 19 Aug 2025 00:30:24 +0000 ROA not before: Tue 19 Aug 2025 00:30:24 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:0f:12:38:3a:ca:04:c8:02:e1:a1:d1:60:ca:d1:47:b6:6a:a8:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:30:24 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=f25e943c61e5210fba2938c6f8da642c82e0ebcf81522c434e84ecb28a8ef95f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2c:61:f0:d4:58:81:53:4e:a0:ec:eb:64:57: 0a:98:42:f9:2d:ab:0c:4e:00:fe:9a:ad:1f:e8:cf: 63:b9:e8:05:da:4c:5b:5f:fd:e1:e4:49:f6:96:14: 8d:fe:e5:1e:1d:de:04:62:e2:20:03:45:8e:ee:8b: fe:39:15:64:1b:5c:ad:f5:33:12:32:bd:d7:07:92: be:f3:a3:2d:69:4c:a0:45:dc:3c:21:46:da:72:2b: 47:45:56:a1:53:fd:75:bf:2d:26:fe:9f:d2:b5:fc: 73:97:3a:1d:e0:db:60:d5:50:60:04:94:90:3e:43: 92:b9:44:ab:43:1b:ce:ea:48:a1:0b:dd:af:b4:d1: 67:54:39:44:ef:3a:4b:ba:d5:72:94:1d:b9:a7:62: 7d:59:15:68:12:dc:5d:24:9a:5d:1d:63:fd:f0:89: 85:0d:9a:48:49:17:25:bf:20:68:64:17:86:22:1e: 74:d1:f3:7a:54:c1:95:3a:a9:85:74:70:48:fd:03: 87:ad:69:bc:3a:0a:fb:fb:92:5f:a8:d8:91:c1:17: 84:ae:57:36:1f:e7:11:21:87:87:1d:44:af:62:83: 4e:63:e6:57:cb:59:d7:01:d2:94:7f:df:2f:7f:ab: 72:d0:95:0d:94:99:32:bc:bf:5a:cf:43:11:30:be: 65:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FA:54:AF:97:DA:8E:D3:B8:3D:E2:ED:42:55:A8:18:5B:A5:09:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.162.0/24 Signature Algorithm: sha256WithRSAEncryption 24:ef:b0:19:87:40:f5:e0:2e:3c:a5:84:99:14:ea:04:76:5b: f3:86:7b:8f:c7:5f:43:94:4a:84:1f:21:05:a1:03:f5:44:19: cb:92:b8:4b:aa:32:e9:4c:c5:32:cf:12:d2:2c:9c:96:af:1f: 49:47:d6:22:83:a8:0d:ae:19:f3:85:42:1d:3a:88:43:c1:6f: df:6d:f2:93:c9:b8:5d:cb:77:4b:ed:3a:35:a9:a0:62:7f:28: 9b:52:58:58:87:7f:e6:14:17:c2:6d:88:02:77:62:54:bf:3c: f3:cb:74:0c:c4:be:e9:fd:0d:54:1b:8a:d4:b0:b7:5d:b3:4e: 72:0d:96:03:36:cb:8a:b5:d2:c0:94:8d:2d:55:ca:4d:69:29: 53:83:a4:8b:4a:12:e2:01:9b:a9:39:f6:e2:94:d9:ba:b9:88: ba:4b:42:97:64:71:0b:5d:fc:b3:91:45:1a:d1:24:8a:80:73: 77:b6:47:49:b8:1a:d2:de:b3:36:16:b0:8f:e0:a0:44:a4:9b: 71:ac:74:dc:c2:b0:60:0c:24:83:f1:57:c5:15:30:f9:cf:1c: cb:51:68:ce:57:93:0f:6a:d0:11:97:7c:1a:67:41:73:e4:a6: cc:f4:d7:44:df:f0:25:39:fe:63:ac:e8:c1:d4:5d:00:5e:a2: e5:ee:7b:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQw8SODrKBMgC4aHRYMrRR7ZqqHcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAzMDI0WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjVlOTQzYzYxZTUyMTBmYmEyOTM4YzZmOGRhNjQyYzgy ZTBlYmNmODE1MjJjNDM0ZTg0ZWNiMjhhOGVmOTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwLGHw1FiBU06g7OtkVwqYQvktqwxOAP6arR/oz2O56AXa TFtf/eHkSfaWFI3+5R4d3gRi4iADRY7ui/45FWQbXK31MxIyvdcHkr7zoy1pTKBF 3DwhRtpyK0dFVqFT/XW/LSb+n9K1/HOXOh3g22DVUGAElJA+Q5K5RKtDG87qSKEL 3a+00WdUOUTvOku61XKUHbmnYn1ZFWgS3F0kml0dY/3wiYUNmkhJFyW/IGhkF4Yi HnTR83pUwZU6qYV0cEj9A4etabw6Cvv7kl+o2JHBF4SuVzYf5xEhh4cdRK9ig05j 5lfLWdcB0pR/3y9/q3LQlQ2UmTK8v1rPQxEwvmXjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8fpUr5fajtO4PeLtQlWoGFulCYkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5NmZiNzM1LWRkZDEtNDY3Ni04ZjAzLTk2MWNjZDI5YzdmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl6IwDQYJKoZIhvcNAQELBQADggEBACTvsBmHQPXgLjylhJkU6gR2W/OG e4/HX0OUSoQfIQWhA/VEGcuSuEuqMulMxTLPEtIsnJavH0lH1iKDqA2uGfOFQh06 iEPBb99t8pPJuF3Ld0vtOjWpoGJ/KJtSWFiHf+YUF8JtiAJ3YlS/PPPLdAzEvun9 DVQbitSwt12zTnINlgM2y4q10sCUjS1Vyk1pKVODpItKEuIBm6k59uKU2bq5iLpL QpdkcQtd/LORRRrRJIqAc3e2R0m4GtLeszYWsI/goESkm3GsdNzCsGAMJIPxV8UV MPnPHMtRaM5Xkw9q0BGXfBpnQXPkpsz010Tf8CU5/mOs6MHUXQBeouXue9A= -----END CERTIFICATE-----Generated at Sat Aug 23 08:26:45 2025 by rpki-client