$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/980e8bc3-7bcd-46fb-8c14-cb075b8a677c.roa File: 980e8bc3-7bcd-46fb-8c14-cb075b8a677c.roa (raw, json) Hash identifier: m77145HTpB4jME6cpbAVwtknG8+5wdo5O82F9mWDpOQ= Subject key identifier: D1:94:29:7A:D6:BD:49:E7:96:34:B3:AB:98:A1:8D:01:01:BE:D7:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69474A21E592A6A87840B612B9A0337A199B33A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/980e8bc3-7bcd-46fb-8c14-cb075b8a677c.roa Signing time: Mon 23 Jun 2025 15:52:09 +0000 ROA not before: Mon 23 Jun 2025 15:52:09 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:47:4a:21:e5:92:a6:a8:78:40:b6:12:b9:a0:33:7a:19:9b:33:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:52:09 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=ee7301ff7b03ea89625bd76cadea00627cd348fa6e9c9523cca07f5bd111b81e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:87:17:81:cb:98:86:0b:54:0d:33:44:66:13: 9a:50:e0:9a:a6:75:3a:de:a8:bb:9e:65:93:0c:41: f3:c0:7c:5b:da:02:d3:27:2f:80:38:31:c9:b3:32: c9:dd:74:21:18:97:71:77:c9:00:02:b5:cd:2e:34: 4b:27:91:3e:6e:7c:37:1a:20:21:3e:f0:0a:8d:14: 30:bd:42:d5:85:5a:62:74:b4:e4:75:80:66:bb:32: c6:c2:14:4e:22:36:62:ed:bf:ff:88:b7:90:31:b8: 92:6a:a6:d3:2f:57:66:bb:f4:fe:b3:62:da:fd:54: 48:98:ad:6b:76:8b:45:35:3a:4c:5f:62:38:8a:bd: f7:ab:a8:48:3f:02:ca:d4:c2:b5:6e:78:61:d2:97: 0a:a1:00:aa:06:75:44:4a:0f:26:8a:92:51:17:5e: 15:b9:49:e5:fb:42:46:0b:40:e0:26:2c:98:f5:6f: 95:4e:18:90:4b:fd:e7:37:d5:8b:b4:85:a5:eb:19: 34:e8:73:bb:97:cf:4e:af:86:9e:7e:fc:81:b9:9d: 93:f6:c3:bf:a8:7e:49:67:c7:bd:df:d2:57:42:ca: 59:70:78:f9:7a:bd:69:d1:ca:f9:86:15:a5:9d:c3: dd:07:61:9f:81:48:48:12:c6:f8:5b:2e:b8:0e:4d: bf:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:94:29:7A:D6:BD:49:E7:96:34:B3:AB:98:A1:8D:01:01:BE:D7:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/980e8bc3-7bcd-46fb-8c14-cb075b8a677c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.128.0/18 Signature Algorithm: sha256WithRSAEncryption 96:31:05:f9:f9:6b:47:a8:5e:3c:a2:cc:82:f5:f5:67:c0:f3: 8a:7c:96:b3:d2:27:12:bf:a7:a3:8a:f3:e7:69:47:43:9f:8e: 17:5b:76:a0:d1:2b:eb:3f:8e:57:ad:3f:53:1b:02:e1:4d:5c: 7a:ec:3e:cb:99:9a:d5:04:32:31:87:16:4a:b2:9f:7f:b0:78: 37:40:3c:c9:0d:87:83:6c:42:46:a2:a5:06:b5:6d:ca:db:1b: 9c:78:b7:c2:30:2d:75:29:69:9a:b3:f6:e7:94:8f:aa:cd:c7: 2e:bd:48:1c:2a:82:e6:05:f1:e3:87:dd:06:5e:51:23:14:71: 35:47:d3:de:2d:cf:e6:d5:d9:a2:0a:5f:05:a3:f4:1d:ff:15: 4a:cb:d0:0e:36:b4:a7:0f:70:49:2f:aa:cc:e9:55:29:05:0c: d4:3e:d4:d0:08:a4:2b:21:ff:26:f3:38:e6:25:29:4a:e2:a5: 65:10:52:77:1b:ee:07:ec:e5:7c:dc:7c:c0:0e:1c:9d:60:47: 59:34:4b:0f:f3:07:ab:c3:b4:99:4c:61:c5:d3:1f:2a:52:13: c8:5a:81:ef:b2:51:7e:26:a2:ab:49:b3:94:93:b8:0f:47:2c: e4:74:61:52:5a:90:ec:8f:c3:47:9c:61:92:6a:b6:ec:b0:63: 7f:ab:f7:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaUdKIeWSpqh4QLYSuaAzehmbM6AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU1MjA5WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTczMDFmZjdiMDNlYTg5NjI1YmQ3NmNhZGVhMDA2Mjdj ZDM0OGZhNmU5Yzk1MjNjY2EwN2Y1YmQxMTFiODFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVhxeBy5iGC1QNM0RmE5pQ4JqmdTreqLueZZMMQfPAfFva AtMnL4A4McmzMsnddCEYl3F3yQACtc0uNEsnkT5ufDcaICE+8AqNFDC9QtWFWmJ0 tOR1gGa7MsbCFE4iNmLtv/+It5AxuJJqptMvV2a79P6zYtr9VEiYrWt2i0U1Okxf YjiKvferqEg/AsrUwrVueGHSlwqhAKoGdURKDyaKklEXXhW5SeX7QkYLQOAmLJj1 b5VOGJBL/ec31Yu0haXrGTToc7uXz06vhp5+/IG5nZP2w7+ofklnx73f0ldCyllw ePl6vWnRyvmGFaWdw90HYZ+BSEgSxvhbLrgOTb/bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0ZQpeta9SeeWNLOrmKGNAQG+12gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4MGU4YmMzLTdiY2QtNDZmYi04YzE0LWNiMDc1YjhhNjc3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjUoAwDQYJKoZIhvcNAQELBQADggEBAJYxBfn5a0eoXjyizIL19WfA84p8 lrPSJxK/p6OK8+dpR0OfjhdbdqDRK+s/jletP1MbAuFNXHrsPsuZmtUEMjGHFkqy n3+weDdAPMkNh4NsQkaipQa1bcrbG5x4t8IwLXUpaZqz9ueUj6rNxy69SBwqguYF 8eOH3QZeUSMUcTVH094tz+bV2aIKXwWj9B3/FUrL0A42tKcPcEkvqszpVSkFDNQ+ 1NAIpCsh/ybzOOYlKUripWUQUncb7gfs5XzcfMAOHJ1gR1k0Sw/zB6vDtJlMYcXT HypSE8hage+yUX4moqtJs5STuA9HLOR0YVJakOyPw0ecYZJqtuywY3+r92Y= -----END CERTIFICATE-----Generated at Sun Jun 29 09:08:24 2025 by rpki-client