$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa File: 3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa (raw, json) Hash identifier: 0JbHMYETqtSQZQ4/Uc/0cH2YUzIeoWmbB3bVH5c5+Qo= Subject key identifier: A0:75:D4:43:C9:21:0B:71:80:E5:93:8F:3F:05:1C:EF:94:F4:AD:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5675D3F147A58C7EB2190DB995BDE6628E7346E5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa Signing time: Tue 19 Aug 2025 00:41:12 +0000 ROA not before: Tue 19 Aug 2025 00:41:12 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:75:d3:f1:47:a5:8c:7e:b2:19:0d:b9:95:bd:e6:62:8e:73:46:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:41:12 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=0480df2a71bce25657f0041c0cab1fba99faf2b89a689adaac967d93ba18230a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0b:e7:1c:83:6e:d3:37:cc:4c:5e:5c:07:71: 1a:54:d4:7a:be:60:45:a6:b4:02:78:c9:c6:17:77: 59:c5:94:7f:5f:f3:07:bf:e1:0d:cd:a2:95:0b:ae: 76:21:09:bb:35:70:92:37:9a:0f:3f:45:22:2d:8a: 35:26:31:f8:96:4b:84:32:8d:23:97:38:4e:3d:e3: 2a:bd:a8:29:ca:e0:6f:04:a4:c8:5b:8a:ea:ba:18: 51:ec:46:5f:be:85:7e:01:e6:e9:d8:21:2a:d6:98: d5:d4:3e:00:56:5c:80:65:8e:a6:31:c8:5b:74:27: 0e:33:d7:b0:50:88:ab:c1:b8:eb:80:0b:09:50:38: ce:c4:cf:41:84:9e:ef:4a:6e:23:3e:db:08:95:44: 88:b3:90:05:bc:c7:53:ed:1e:5c:2b:dd:74:9f:ba: 9f:89:33:e3:57:78:1b:e5:b0:dd:63:96:60:cc:d3: da:8d:5f:1a:16:a5:00:48:92:32:21:49:a2:a2:9d: 60:e3:44:58:76:a6:59:50:66:e7:f5:d5:dd:67:5d: 59:3a:ac:26:8b:05:c3:52:71:52:f9:21:d0:95:c7: df:65:25:08:04:25:2a:c4:15:5e:15:f8:9f:11:92: d8:61:1b:aa:75:72:d1:c2:37:f7:50:e6:cb:c4:e2: 5b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:75:D4:43:C9:21:0B:71:80:E5:93:8F:3F:05:1C:EF:94:F4:AD:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.168.0/22 Signature Algorithm: sha256WithRSAEncryption 63:ed:bf:13:ea:6a:ed:21:c1:5d:b6:0b:19:92:8e:66:32:40: a7:b7:42:90:fa:0d:44:a4:be:47:bb:cb:ad:97:81:31:70:df: 03:2e:70:ac:8e:b6:a0:a6:54:ac:4f:98:d1:fe:d9:e9:9f:5b: 7c:9c:27:9e:76:d6:48:51:1b:3b:e7:ba:da:e3:3d:87:f0:b5: 77:fc:83:60:9f:a7:09:f1:8b:06:39:00:b5:b1:30:2e:fa:6c: b3:42:ec:eb:2c:d8:12:3b:0c:32:80:7b:24:ab:7e:fc:6a:3b: 00:ba:ec:01:7c:2e:76:22:44:f8:a3:ae:ff:9e:3c:0c:4a:c1: 79:21:90:f1:52:d6:b7:98:58:b4:69:2d:b4:37:bf:b1:f7:8f: 07:ff:34:ff:85:1d:88:b2:f6:e7:4a:b9:b2:4a:a4:f8:cf:9b: de:e4:c9:4e:fb:4d:d6:63:00:b0:06:75:70:64:4a:67:dc:20: 84:91:98:1e:6a:00:d4:4a:c5:07:e9:36:dd:06:28:14:37:34: 96:44:77:de:62:5e:51:cc:07:09:d5:21:c1:23:f7:a1:10:5a: d9:da:2b:f5:df:e8:4e:86:11:21:68:1f:06:82:91:60:7e:ed: a3:95:4b:e9:3d:82:ed:f9:24:a3:35:d8:13:21:82:e9:4b:1b: 89:47:2e:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVnXT8UeljH6yGQ25lb3mYo5zRuUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDA0MTEyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDgwZGYyYTcxYmNlMjU2NTdmMDA0MWMwY2FiMWZiYTk5 ZmFmMmI4OWE2ODlhZGFhYzk2N2Q5M2JhMTgyMzBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnC+ccg27TN8xMXlwHcRpU1Hq+YEWmtAJ4ycYXd1nFlH9f 8we/4Q3NopULrnYhCbs1cJI3mg8/RSItijUmMfiWS4QyjSOXOE494yq9qCnK4G8E pMhbiuq6GFHsRl++hX4B5unYISrWmNXUPgBWXIBljqYxyFt0Jw4z17BQiKvBuOuA CwlQOM7Ez0GEnu9KbiM+2wiVRIizkAW8x1PtHlwr3XSfup+JM+NXeBvlsN1jlmDM 09qNXxoWpQBIkjIhSaKinWDjRFh2pllQZuf11d1nXVk6rCaLBcNScVL5IdCVx99l JQgEJSrEFV4V+J8RkthhG6p1ctHCN/dQ5svE4ltFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoHXUQ8khC3GA5ZOPPwUc75T0rZ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkYzVjMzNmLWM0NzktNDllZC04ZDkxLTVmMmI2YTI5NmViMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjl6gwDQYJKoZIhvcNAQELBQADggEBAGPtvxPqau0hwV22CxmSjmYyQKe3 QpD6DUSkvke7y62XgTFw3wMucKyOtqCmVKxPmNH+2emfW3ycJ5521khRGzvnutrj PYfwtXf8g2CfpwnxiwY5ALWxMC76bLNC7Oss2BI7DDKAeySrfvxqOwC67AF8LnYi RPijrv+ePAxKwXkhkPFS1reYWLRpLbQ3v7H3jwf/NP+FHYiy9udKubJKpPjPm97k yU77TdZjALAGdXBkSmfcIISRmB5qANRKxQfpNt0GKBQ3NJZEd95iXlHMBwnVIcEj 96EQWtnaK/Xf6E6GESFoHwaCkWB+7aOVS+k9gu35JKM12BMhgulLG4lHLsE= -----END CERTIFICATE-----Generated at Sat Aug 23 09:01:25 2025 by rpki-client