$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa File: 3d387ff7-fed8-4308-a990-1ea058fcb160.roa (raw, json) Hash identifier: NQ/KFLWvFMGAseDfBMziEYaAhrQKoGE43TmuS0Y10Z8= Subject key identifier: 72:A8:BF:AD:E1:D3:8E:7E:64:A2:C1:94:6C:31:FA:BD:2D:4B:E0:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BEFB13CC93A10A539BDF1F561C859586F084C02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa Signing time: Tue 19 Aug 2025 00:40:13 +0000 ROA not before: Tue 19 Aug 2025 00:40:13 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ef:b1:3c:c9:3a:10:a5:39:bd:f1:f5:61:c8:59:58:6f:08:4c:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:40:13 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=9d55883e7d4188394c4fcbb24d15e182a75b4d26dc3552b3d76505441877bc4f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:73:83:21:92:12:6f:db:12:53:e4:66:72:44: ea:97:e4:94:97:7b:a7:b2:ae:71:32:e0:e2:16:a8: 2c:80:6c:4c:38:66:aa:87:a5:0e:44:1a:76:93:2c: 31:f0:d0:25:1f:f2:82:85:02:b8:07:d9:30:e3:5c: 1d:05:95:db:04:62:39:58:b3:56:9c:e9:f9:fa:a9: a1:e4:e9:ca:b9:2a:3e:71:58:3e:78:08:74:41:8f: 90:a2:5a:1a:44:42:6a:52:2a:be:7a:c3:ea:d1:d0: bd:0e:cd:f6:00:d0:97:03:6f:5c:c1:1e:cc:fa:21: 3e:3e:73:9a:0f:bb:c3:dd:be:81:f5:df:e2:66:14: 12:5d:7f:58:9d:c5:5f:32:45:a6:29:3f:c1:74:95: aa:1f:e3:57:61:7c:72:04:cf:fd:b8:f0:27:59:70: 6e:5b:f7:bc:6d:72:8a:77:77:5d:be:76:70:a1:6c: eb:74:5a:f6:86:9f:df:ef:70:f5:f4:fe:d3:eb:a8: e9:d0:97:53:a7:cf:8b:55:68:28:31:20:24:44:af: 49:6e:63:e6:f8:97:c7:d7:ec:e1:51:36:98:7d:e8: a0:d3:af:45:0a:77:04:b0:8d:c2:ab:1b:9e:ad:7d: 52:59:52:af:0e:ab:8a:e0:12:cd:03:41:70:8f:70: 21:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A8:BF:AD:E1:D3:8E:7E:64:A2:C1:94:6C:31:FA:BD:2D:4B:E0:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.82.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:da:9f:44:b6:83:82:41:09:db:e5:8a:2d:d6:bd:b5:33:d3: e4:87:e2:29:aa:f4:6c:f8:ee:80:0f:31:0c:10:a4:23:0d:b0: e9:92:15:76:df:3b:f7:f5:f4:40:82:78:81:a9:4f:1e:8c:65: 25:bb:25:fe:a8:19:90:d0:53:0c:07:fc:59:9e:2d:e3:70:cf: 5c:06:0f:2f:ae:fa:44:61:5c:50:29:4d:39:68:95:6a:af:c1: b7:e5:b1:d1:c5:c6:2e:17:5f:ff:f9:67:d0:32:34:ed:c2:cc: a3:e4:61:61:25:d6:18:57:a3:6a:25:09:2c:b1:8f:2b:8e:08: a8:4d:b3:70:27:df:20:78:a5:f2:9c:9a:ea:c1:74:b6:cb:bf: 37:a9:7c:25:85:3c:6f:e4:43:90:d8:18:c0:ab:bc:44:3a:12: 62:d5:16:8b:81:8e:e1:57:56:d3:a6:15:d5:e9:f0:30:63:5f: 37:7f:6b:da:ec:96:2f:49:fd:11:49:41:bc:f6:10:f8:e1:5c: fd:99:21:10:96:cc:4e:3b:43:8c:33:8c:d8:4e:16:58:ae:fd: 09:ef:a4:2a:57:a0:35:c8:7f:db:e5:a8:d5:cf:69:c4:da:13: 50:c0:53:09:f5:cf:bc:49:16:15:f5:6a:87:9f:1d:4b:ec:d5: 53:86:86:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG++xPMk6EKU5vfH1YchZWG8ITAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDA0MDEzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDU1ODgzZTdkNDE4ODM5NGM0ZmNiYjI0ZDE1ZTE4MmE3 NWI0ZDI2ZGMzNTUyYjNkNzY1MDU0NDE4NzdiYzRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqc4MhkhJv2xJT5GZyROqX5JSXe6eyrnEy4OIWqCyAbEw4 ZqqHpQ5EGnaTLDHw0CUf8oKFArgH2TDjXB0FldsEYjlYs1ac6fn6qaHk6cq5Kj5x WD54CHRBj5CiWhpEQmpSKr56w+rR0L0OzfYA0JcDb1zBHsz6IT4+c5oPu8PdvoH1 3+JmFBJdf1idxV8yRaYpP8F0laof41dhfHIEz/248CdZcG5b97xtcop3d12+dnCh bOt0WvaGn9/vcPX0/tPrqOnQl1Onz4tVaCgxICREr0luY+b4l8fX7OFRNph96KDT r0UKdwSwjcKrG56tfVJZUq8Oq4rgEs0DQXCPcCGJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcqi/reHTjn5kosGUbDH6vS1L4CEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkMzg3ZmY3LWZlZDgtNDMwOC1hOTkwLTFlYTA1OGZjYjE2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl1IwDQYJKoZIhvcNAQELBQADggEBAF3an0S2g4JBCdvlii3WvbUz0+SH 4imq9Gz47oAPMQwQpCMNsOmSFXbfO/f19ECCeIGpTx6MZSW7Jf6oGZDQUwwH/Fme LeNwz1wGDy+u+kRhXFApTTlolWqvwbflsdHFxi4XX//5Z9AyNO3CzKPkYWEl1hhX o2olCSyxjyuOCKhNs3An3yB4pfKcmurBdLbLvzepfCWFPG/kQ5DYGMCrvEQ6EmLV FouBjuFXVtOmFdXp8DBjXzd/a9rsli9J/RFJQbz2EPjhXP2ZIRCWzE47Q4wzjNhO Fliu/QnvpCpXoDXIf9vlqNXPacTaE1DAUwn1z7xJFhX1aoefHUvs1VOGhoo= -----END CERTIFICATE-----Generated at Sat Aug 23 10:22:54 2025 by rpki-client