$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9188fa7b-db94-4ddb-97de-5cb09ac9c624.roa File: 9188fa7b-db94-4ddb-97de-5cb09ac9c624.roa (raw, json) Hash identifier: siv62ApDUGoPvyduwRTG9rxq134bfNiGxoztoub/CpM= Subject key identifier: C7:FC:DB:C1:07:E1:2E:88:C4:5A:BF:1C:4C:25:C3:99:70:8E:29:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E0E2783AE4D129038FA20A3AF52B758641338C5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9188fa7b-db94-4ddb-97de-5cb09ac9c624.roa Signing time: Tue 19 Aug 2025 00:30:17 +0000 ROA not before: Tue 19 Aug 2025 00:30:17 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 99.151.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:0e:27:83:ae:4d:12:90:38:fa:20:a3:af:52:b7:58:64:13:38:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:30:17 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=afac9a68219a0da98513866bf439dbd000a34735d33d040ba29048cb6f4e8c89, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0c:ed:c7:3e:75:2e:0d:78:9b:ad:e4:6f:25: a9:37:69:b6:05:62:d0:d1:ef:3e:7a:82:c9:6d:11: 5d:d5:97:7d:62:f1:54:32:64:28:10:97:aa:1c:6c: 1b:32:9c:ac:75:66:f2:b9:e5:84:02:9d:eb:17:d1: cd:28:fd:fb:24:40:91:b9:0c:d8:a0:40:1a:8d:91: b3:4f:56:e1:f0:1b:83:b9:dc:63:3c:8d:b1:0b:8a: 1a:63:b5:23:a9:76:1b:bc:17:b0:c4:c0:32:65:c0: 88:0a:0a:ab:d3:9f:f3:7a:54:75:37:fd:71:66:a7: 0b:d0:4e:ad:8e:a0:b0:3a:49:01:20:7e:3d:62:d8: 1b:36:83:9f:13:db:87:5e:f2:71:e0:96:69:3d:4f: 4e:02:a9:51:25:f9:b8:fe:45:f9:b3:f8:fa:50:15: 48:4f:56:3d:09:90:19:6d:cf:19:f0:bb:41:9c:e1: 14:91:d7:80:fb:7a:5c:c6:3e:a5:76:79:92:1f:bb: 2a:4c:42:d9:fa:e4:17:17:04:8e:1d:c4:40:1f:0d: 8d:6e:79:58:8d:c9:c9:3c:17:30:52:3b:d4:dd:3c: 9c:76:e1:02:7e:54:51:00:05:e2:25:06:e5:31:81: 84:7c:a8:b0:39:25:ab:b6:bf:91:ca:e9:c8:97:04: cc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:FC:DB:C1:07:E1:2E:88:C4:5A:BF:1C:4C:25:C3:99:70:8E:29:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9188fa7b-db94-4ddb-97de-5cb09ac9c624.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.190.0/23 Signature Algorithm: sha256WithRSAEncryption 49:88:55:ba:6b:d9:a1:80:78:8c:df:33:8c:c3:5b:29:f7:06: 8f:86:b4:6e:40:55:02:77:da:e6:1a:d6:f5:7f:06:58:2a:9d: 66:b4:07:2c:9a:fc:a7:d6:81:b7:85:aa:59:4a:75:e0:b4:39: 1c:fb:fa:f6:77:27:6b:e0:8b:87:6c:ef:4b:9e:8c:70:30:54: fe:17:cd:5c:d2:a2:16:6d:d8:d2:91:1d:4a:40:42:d8:23:8f: 01:06:88:a4:d1:86:98:24:fc:48:b3:e8:6a:d1:dd:48:f4:b9: 93:d3:0a:99:db:e4:80:35:a5:1a:8f:85:8c:c1:ec:73:04:cd: c6:26:3b:51:9e:bc:67:05:4d:dc:0c:85:29:37:1d:f8:93:f5: dd:79:ba:e6:e7:e8:9b:87:e6:73:bc:12:4f:a5:63:38:6b:21: 1b:f2:3d:a6:59:db:24:aa:97:59:e5:19:cb:74:3d:d8:0b:4e: a1:50:15:2a:2b:ab:24:20:5e:24:0d:58:ae:8e:d9:56:89:5d: bc:2b:fc:46:41:3f:e5:20:85:e0:09:85:ad:4b:06:c9:06:b8: 5c:d9:3d:79:93:a1:5e:39:ab:fe:76:38:fa:a2:63:d4:75:2c: a2:dd:52:f7:25:88:5c:6d:52:b6:45:67:1a:40:bf:69:a5:05: 45:96:76:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDg4ng65NEpA4+iCjr1K3WGQTOMUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAzMDE3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZmFjOWE2ODIxOWEwZGE5ODUxMzg2NmJmNDM5ZGJkMDAw YTM0NzM1ZDMzZDA0MGJhMjkwNDhjYjZmNGU4Yzg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJDO3HPnUuDXibreRvJak3abYFYtDR7z56gsltEV3Vl31i 8VQyZCgQl6ocbBsynKx1ZvK55YQCnesX0c0o/fskQJG5DNigQBqNkbNPVuHwG4O5 3GM8jbELihpjtSOpdhu8F7DEwDJlwIgKCqvTn/N6VHU3/XFmpwvQTq2OoLA6SQEg fj1i2Bs2g58T24de8nHglmk9T04CqVEl+bj+Rfmz+PpQFUhPVj0JkBltzxnwu0Gc 4RSR14D7elzGPqV2eZIfuypMQtn65BcXBI4dxEAfDY1ueViNyck8FzBSO9TdPJx2 4QJ+VFEABeIlBuUxgYR8qLA5Jau2v5HK6ciXBMzLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx/zbwQfhLojEWr8cTCXDmXCOKVswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxODhmYTdiLWRiOTQtNGRkYi05N2RlLTVjYjA5YWM5YzYyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl74wDQYJKoZIhvcNAQELBQADggEBAEmIVbpr2aGAeIzfM4zDWyn3Bo+G tG5AVQJ32uYa1vV/BlgqnWa0Byya/KfWgbeFqllKdeC0ORz7+vZ3J2vgi4ds70ue jHAwVP4XzVzSohZt2NKRHUpAQtgjjwEGiKTRhpgk/Eiz6GrR3Uj0uZPTCpnb5IA1 pRqPhYzB7HMEzcYmO1GevGcFTdwMhSk3HfiT9d15uubn6JuH5nO8Ek+lYzhrIRvy PaZZ2ySql1nlGct0PdgLTqFQFSorqyQgXiQNWK6O2VaJXbwr/EZBP+UgheAJha1L BskGuFzZPXmToV45q/52OPqiY9R1LKLdUvcliFxtUrZFZxpAv2mlBUWWdjc= -----END CERTIFICATE-----Generated at Sat Aug 23 06:46:53 2025 by rpki-client