$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa File: 8f289340-82bf-42dd-8b4e-a118719df322.roa (raw, json) Hash identifier: s3yEMBli8wPcJL/pSQkDJyYEEbYr6zeudJVxBjjQ59g= Subject key identifier: 9D:9D:34:35:A3:04:55:92:EA:A0:BA:90:75:D3:68:B0:EC:BF:1B:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07BA62210152647A18CB8E82F45DA81D2AF7FB07 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa Signing time: Tue 19 Aug 2025 00:41:45 +0000 ROA not before: Tue 19 Aug 2025 00:41:45 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ba:62:21:01:52:64:7a:18:cb:8e:82:f4:5d:a8:1d:2a:f7:fb:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:41:45 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=8877176e03cf24772586a31fcf2acbc02e042269a50c431c8de09c4d21889ba4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e1:09:cf:2c:68:07:5f:7b:66:54:0b:b1:7b: 48:29:78:a2:25:10:50:c8:d9:23:b4:63:8b:de:44: 41:18:bd:de:6f:43:40:4e:fd:b5:71:bd:0c:73:37: 2e:f6:0c:96:d3:12:17:a9:cf:7c:b7:6b:05:07:19: 7a:fe:3c:cc:ff:73:93:bc:8d:b8:f1:ad:eb:1f:be: e4:7f:31:36:8e:90:0a:6d:72:af:cd:4c:ad:d5:70: d1:b5:7a:29:ca:c6:4a:a6:48:3b:ba:c4:0e:14:94: a0:f7:a1:42:20:67:0d:00:a8:e7:32:a6:1f:0b:da: cd:f0:10:0d:ce:71:96:8d:e2:87:b0:a1:98:8e:ff: f5:a6:37:a0:b6:e6:0c:6a:6a:44:75:a7:85:21:6a: 01:2e:d3:f8:b4:95:8b:c3:a8:c2:b8:1f:83:d7:73: 0c:4f:d2:0e:b1:c5:07:b5:cd:15:73:d4:23:c4:2f: c3:4b:63:d5:62:a0:83:ee:7d:03:56:c7:6e:07:6b: 04:11:58:4b:eb:a1:59:ea:70:6d:45:b8:cb:0a:2a: 36:eb:60:a4:b0:f3:60:ef:76:08:32:09:a6:2f:06: e7:f6:d3:63:da:f1:b4:53:25:1e:62:4f:79:84:23: df:c6:2b:64:bd:cd:7e:1e:93:98:82:5d:09:04:66: f7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:9D:34:35:A3:04:55:92:EA:A0:BA:90:75:D3:68:B0:EC:BF:1B:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.72.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:ba:62:fd:c8:ef:5c:18:b7:69:fa:a2:1a:7c:28:11:a9:2c: e4:6b:81:83:85:7a:f1:b1:f2:65:57:8f:c7:cd:ef:f6:d6:4e: d0:49:a5:35:04:10:df:8a:7c:18:41:e3:6a:73:ca:bd:c0:dd: 53:fb:da:b2:e7:39:bb:26:46:47:85:48:f9:66:81:6f:6a:89: 87:36:b5:c2:34:67:51:9a:92:ff:f2:61:81:7e:9f:4a:3e:c7: 3d:16:73:0e:b0:6c:00:a8:f3:0f:0d:04:e4:27:01:88:8c:13: 74:ae:88:8d:a9:17:ca:83:72:1b:3e:7e:fc:54:3f:4c:7c:e7: f3:f2:65:9e:d0:4b:92:4f:39:5b:d4:34:18:4f:01:2b:8d:3b: e8:b7:6f:4b:35:5a:be:c7:16:80:24:da:67:47:3c:9b:bd:27: 8d:1c:ef:6a:ee:cc:e1:9b:75:81:92:7b:de:e4:a1:5e:a0:1a: 5c:9a:53:ee:24:d1:19:cb:09:64:bb:11:29:a4:6c:14:21:1c: cf:43:89:90:f4:68:04:af:d1:00:2b:a2:5a:aa:5c:24:94:11: d7:50:7a:08:19:b3:90:61:7d:5a:2c:fb:1f:0d:26:d1:2f:ee: 27:59:d9:b9:e6:9d:84:5e:56:81:0c:40:9d:ce:8a:af:84:a2: 0f:8a:85:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB7piIQFSZHoYy46C9F2oHSr3+wcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDA0MTQ1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODc3MTc2ZTAzY2YyNDc3MjU4NmEzMWZjZjJhY2JjMDJl MDQyMjY5YTUwYzQzMWM4ZGUwOWM0ZDIxODg5YmE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT4QnPLGgHX3tmVAuxe0gpeKIlEFDI2SO0Y4veREEYvd5v Q0BO/bVxvQxzNy72DJbTEhepz3y3awUHGXr+PMz/c5O8jbjxresfvuR/MTaOkApt cq/NTK3VcNG1einKxkqmSDu6xA4UlKD3oUIgZw0AqOcyph8L2s3wEA3OcZaN4oew oZiO//WmN6C25gxqakR1p4UhagEu0/i0lYvDqMK4H4PXcwxP0g6xxQe1zRVz1CPE L8NLY9VioIPufQNWx24HawQRWEvroVnqcG1FuMsKKjbrYKSw82DvdggyCaYvBuf2 02Pa8bRTJR5iT3mEI9/GK2S9zX4ek5iCXQkEZvdJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnZ00NaMEVZLqoLqQddNosOy/GwcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMjg5MzQwLTgyYmYtNDJkZC04YjRlLWExMTg3MTlkZjMyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl0gwDQYJKoZIhvcNAQELBQADggEBAIq6Yv3I71wYt2n6ohp8KBGpLORr gYOFevGx8mVXj8fN7/bWTtBJpTUEEN+KfBhB42pzyr3A3VP72rLnObsmRkeFSPlm gW9qiYc2tcI0Z1Gakv/yYYF+n0o+xz0Wcw6wbACo8w8NBOQnAYiME3SuiI2pF8qD chs+fvxUP0x85/PyZZ7QS5JPOVvUNBhPASuNO+i3b0s1Wr7HFoAk2mdHPJu9J40c 72ruzOGbdYGSe97koV6gGlyaU+4k0RnLCWS7ESmkbBQhHM9DiZD0aASv0QArolqq XCSUEddQeggZs5BhfVos+x8NJtEv7idZ2bnmnYReVoEMQJ3Oiq+Eog+KhTs= -----END CERTIFICATE-----Generated at Sat Aug 23 08:26:20 2025 by rpki-client