$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa File: 8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa (raw, json) Hash identifier: NfU6sjv6k5wQ0nb8/02V7ppNnpHRxMzVR7dn5jrzu4I= Subject key identifier: AB:9C:52:6C:3A:8A:04:1C:F3:D2:4B:B3:84:02:4D:36:AE:35:BB:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F76E7370EFBA54182951780B09187B7E1C28274 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa Signing time: Tue 19 Aug 2025 00:41:01 +0000 ROA not before: Tue 19 Aug 2025 00:41:01 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:76:e7:37:0e:fb:a5:41:82:95:17:80:b0:91:87:b7:e1:c2:82:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:41:01 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=b9e483bb8a7a491ab845fc9f93a95f5b9c7920dca25ab0cfeab630abacca0841, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ee:3c:23:93:81:ac:32:4d:3a:46:da:77:31: f0:f3:ea:d0:a6:50:2b:cd:e1:0b:dd:bc:a0:0c:59: ca:05:a6:fa:9d:5e:25:89:ef:d0:47:62:8e:c5:53: 9c:06:54:6b:c4:f7:84:37:ee:2d:4b:41:7d:34:c8: 5c:38:f8:32:4c:05:08:b9:69:18:69:c5:4e:a9:99: b7:f7:76:62:7d:ee:57:15:f2:60:78:3f:ce:85:9e: 6d:a7:19:d5:1e:a8:99:0c:74:65:0a:a5:d6:81:a6: 72:99:70:14:e1:11:c6:14:db:73:9c:e7:06:e2:89: 97:35:15:95:67:3c:49:5b:b3:8b:4a:bd:30:32:e2: e4:dd:42:b2:e0:30:06:8c:f2:1e:58:5b:3b:75:1b: fd:d4:c8:ea:4a:f1:84:7f:94:8b:0a:7e:e2:7e:a6: e7:ea:94:f2:63:3b:7e:3f:3f:b1:b1:a9:02:72:df: 66:56:04:71:e2:79:38:ee:95:b6:4c:05:15:6e:90: 95:12:81:df:1e:eb:9b:51:32:04:19:84:15:dc:49: 0f:7f:19:b0:1a:6a:6f:d3:f7:d5:c1:a1:de:98:85: 66:06:9e:aa:10:20:5c:ab:7d:25:d1:46:9f:65:61: 12:4b:d4:6b:6c:05:e4:3c:07:d0:61:74:39:01:2a: bb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9C:52:6C:3A:8A:04:1C:F3:D2:4B:B3:84:02:4D:36:AE:35:BB:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.156.0/23 Signature Algorithm: sha256WithRSAEncryption b8:41:b8:d3:58:5d:74:1f:ab:3e:3b:89:c2:94:1c:02:7d:04: 90:38:ba:bb:06:a0:57:84:7a:35:82:c1:e5:3a:94:fa:9e:4c: a8:d2:fd:fd:5d:46:e4:da:08:a6:33:75:a2:14:00:50:39:c4: 9b:9a:77:73:34:e4:fa:bd:40:d3:1c:0b:24:85:d8:69:5e:47: 1b:aa:b6:75:8f:f0:6f:b0:e2:c2:72:60:b4:d6:cb:32:ad:2b: d2:ea:b1:52:bf:66:cb:19:a1:08:f1:47:ad:bf:6c:93:57:79: a5:f2:95:35:0c:2f:e6:e7:2a:3b:3b:c7:55:02:70:82:bf:14: c5:a9:55:46:94:73:12:00:28:c9:44:2e:4e:63:08:9d:a1:ea: 43:fb:c0:81:3c:73:79:24:4f:99:8d:2d:f6:f9:30:e8:c4:88: 8e:59:77:41:2f:c4:29:51:f0:83:0c:6b:e6:7e:88:d9:b7:08: de:6a:43:03:d0:c0:b7:e9:11:10:c4:ac:32:63:89:4e:8f:ee: 17:4c:9f:74:db:7a:b8:cb:27:d8:33:25:e9:77:d9:ad:ad:74: d2:62:d9:4e:4a:48:96:07:d4:42:bd:f9:d5:d5:24:b3:0e:0d: 56:46:29:e6:f1:99:2a:be:5a:8c:cd:b4:b4:24:1d:ac:72:fe: 20:26:49:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL3bnNw77pUGClReAsJGHt+HCgnQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDA0MTAxWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWU0ODNiYjhhN2E0OTFhYjg0NWZjOWY5M2E5NWY1Yjlj NzkyMGRjYTI1YWIwY2ZlYWI2MzBhYmFjY2EwODQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC87jwjk4GsMk06Rtp3MfDz6tCmUCvN4QvdvKAMWcoFpvqd XiWJ79BHYo7FU5wGVGvE94Q37i1LQX00yFw4+DJMBQi5aRhpxU6pmbf3dmJ97lcV 8mB4P86Fnm2nGdUeqJkMdGUKpdaBpnKZcBThEcYU23Oc5wbiiZc1FZVnPElbs4tK vTAy4uTdQrLgMAaM8h5YWzt1G/3UyOpK8YR/lIsKfuJ+pufqlPJjO34/P7GxqQJy 32ZWBHHieTjulbZMBRVukJUSgd8e65tRMgQZhBXcSQ9/GbAaam/T99XBod6YhWYG nqoQIFyrfSXRRp9lYRJL1GtsBeQ8B9BhdDkBKrshAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq5xSbDqKBBzz0kuzhAJNNq41u9owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3NTZhYjVhLWMwYjktNDdlNy04NWI5LTExYzdlNzBkMzhkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl5wwDQYJKoZIhvcNAQELBQADggEBALhBuNNYXXQfqz47icKUHAJ9BJA4 ursGoFeEejWCweU6lPqeTKjS/f1dRuTaCKYzdaIUAFA5xJuad3M05Pq9QNMcCySF 2GleRxuqtnWP8G+w4sJyYLTWyzKtK9LqsVK/ZssZoQjxR62/bJNXeaXylTUML+bn Kjs7x1UCcIK/FMWpVUaUcxIAKMlELk5jCJ2h6kP7wIE8c3kkT5mNLfb5MOjEiI5Z d0EvxClR8IMMa+Z+iNm3CN5qQwPQwLfpERDErDJjiU6P7hdMn3TberjLJ9gzJel3 2a2tdNJi2U5KSJYH1EK9+dXVJLMODVZGKebxmSq+WozNtLQkHaxy/iAmSWA= -----END CERTIFICATE-----Generated at Sat Aug 23 06:38:08 2025 by rpki-client