$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa File: 669c6dd1-8211-4cb9-b776-33c71b14ac40.roa (raw, json) Hash identifier: X3rZpzaBs974cluuaHCarmlXnG8CnV4FCD9BEaz+m7A= Subject key identifier: 56:1E:00:12:A5:43:51:5B:F7:CF:84:8D:D6:F0:15:D9:E0:8B:04:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: D9A243A190F9FBB2AAF82D73B80CC3A1431331 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa Signing time: Tue 19 Aug 2025 00:41:43 +0000 ROA not before: Tue 19 Aug 2025 00:41:43 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d9:a2:43:a1:90:f9:fb:b2:aa:f8:2d:73:b8:0c:c3:a1:43:13:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:41:43 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=c212c18466687df3f6a407988ef2c3f6efa6009d68bc6e04e3ffe8fc1979f96c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:4f:38:fd:3b:77:8d:09:06:68:65:04:96:c8: f7:8d:6d:be:28:4e:96:76:96:5c:c1:67:4b:e4:f7: e6:a3:25:a1:dc:cd:fc:ef:bd:a7:59:11:c6:0e:ba: 40:77:3c:a0:05:d1:98:43:9c:2a:67:9e:20:f2:05: 5d:e3:9a:b7:7c:dd:5a:df:4c:f2:5e:74:c0:2f:be: c1:ff:b0:52:63:54:c7:2d:4c:57:75:8f:34:da:40: 83:ff:37:ba:58:9f:05:c4:f0:1d:8e:51:73:a4:64: a7:9c:56:d4:41:0d:bc:6e:13:60:99:7e:12:93:7b: d7:c1:3f:a9:5c:ce:cc:b8:67:fc:2b:c8:d6:48:21: 13:a7:1d:25:65:ae:ad:2d:fc:72:71:fe:b8:9c:a8: 05:7c:fc:6b:23:d6:62:77:cf:df:2a:67:a2:48:99: 19:dc:e9:1a:1c:b8:d3:c9:ab:ba:00:99:c5:3c:77: db:21:5e:bb:da:8b:af:c6:1d:29:8e:5f:c0:75:d2: 6f:4c:f1:8f:ac:cc:29:5b:4c:28:0d:02:d4:76:af: a3:c3:25:9d:e3:82:b3:ad:a7:b7:5c:1b:90:3e:44: c5:38:6d:7d:58:75:1b:ec:f1:74:c8:4a:04:c5:3c: 22:11:81:30:5f:ad:d7:d1:a6:2e:aa:26:33:12:ad: 4d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1E:00:12:A5:43:51:5B:F7:CF:84:8D:D6:F0:15:D9:E0:8B:04:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.72.0/23 Signature Algorithm: sha256WithRSAEncryption 06:dc:40:d2:a4:db:fa:d0:77:8e:8e:f1:3c:9b:ac:28:04:c6: 18:62:f0:ad:55:ad:a7:f2:9b:82:5c:cb:20:56:8a:0e:98:0f: 9c:78:2f:68:12:75:de:c2:4d:41:6c:6f:e5:61:88:32:9b:2c: 4b:c2:ca:5c:4a:a7:1c:19:8e:fc:16:db:42:02:ce:81:d3:d9: 6f:d4:50:c2:b3:bb:40:5d:d3:49:e6:55:a6:af:25:ae:3a:58: db:22:58:8d:ee:8e:11:63:e0:0e:fb:07:66:e0:f9:36:63:c0: 01:fc:7a:d5:92:16:9f:67:64:03:e9:42:d3:82:fa:cf:89:01: 76:4e:07:15:4b:22:bc:63:e5:23:99:96:f6:15:f8:50:4a:ca: 28:c1:bf:5d:9b:20:7a:2c:5e:ea:d4:6a:05:cb:c9:17:ac:e3: d0:99:46:2d:7c:e0:58:98:72:a3:50:27:1a:ac:1c:94:54:31: cf:d2:1c:d0:cf:a7:03:6c:82:33:ea:03:17:6c:d6:05:fd:90: 0a:c6:09:ff:b2:38:48:7d:44:21:cc:8e:71:73:ea:c8:c4:06: d2:b3:5e:a5:b0:e1:72:e5:e4:34:bf:35:96:5c:8e:e6:13:ec: ef:1e:b7:48:a7:40:76:20:3f:24:4b:9d:25:07:18:90:72:16: f3:75:c0:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUANmiQ6GQ+fuyqvgtc7gMw6FDEzEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDA0MTQzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjEyYzE4NDY2Njg3ZGYzZjZhNDA3OTg4ZWYyYzNmNmVm YTYwMDlkNjhiYzZlMDRlM2ZmZThmYzE5NzlmOTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFTzj9O3eNCQZoZQSWyPeNbb4oTpZ2llzBZ0vk9+ajJaHc zfzvvadZEcYOukB3PKAF0ZhDnCpnniDyBV3jmrd83VrfTPJedMAvvsH/sFJjVMct TFd1jzTaQIP/N7pYnwXE8B2OUXOkZKecVtRBDbxuE2CZfhKTe9fBP6lczsy4Z/wr yNZIIROnHSVlrq0t/HJx/ricqAV8/Gsj1mJ3z98qZ6JImRnc6RocuNPJq7oAmcU8 d9shXrvai6/GHSmOX8B10m9M8Y+szClbTCgNAtR2r6PDJZ3jgrOtp7dcG5A+RMU4 bX1YdRvs8XTISgTFPCIRgTBfrdfRpi6qJjMSrU2XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVh4AEqVDUVv3z4SN1vAV2eCLBO4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2OWM2ZGQxLTgyMTEtNGNiOS1iNzc2LTMzYzcxYjE0YWM0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl0gwDQYJKoZIhvcNAQELBQADggEBAAbcQNKk2/rQd46O8TybrCgExhhi 8K1Vrafym4JcyyBWig6YD5x4L2gSdd7CTUFsb+VhiDKbLEvCylxKpxwZjvwW20IC zoHT2W/UUMKzu0Bd00nmVaavJa46WNsiWI3ujhFj4A77B2bg+TZjwAH8etWSFp9n ZAPpQtOC+s+JAXZOBxVLIrxj5SOZlvYV+FBKyijBv12bIHosXurUagXLyRes49CZ Ri184FiYcqNQJxqsHJRUMc/SHNDPpwNsgjPqAxds1gX9kArGCf+yOEh9RCHMjnFz 6sjEBtKzXqWw4XLl5DS/NZZcjuYT7O8et0inQHYgPyRLnSUHGJByFvN1wC4= -----END CERTIFICATE-----Generated at Sat Aug 23 06:57:35 2025 by rpki-client