$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d63cd7b-5f9f-40bd-a7d4-e2a1d5ca5822.roa File: 9d63cd7b-5f9f-40bd-a7d4-e2a1d5ca5822.roa (raw, json) Hash identifier: S8azxrHLM2M3zAsKdEbqbU9Jwab7OUt5N80YE+r/sNU= Subject key identifier: B3:F0:9D:21:A1:73:95:C1:FD:0F:57:86:A5:D2:10:05:04:D2:75:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 628A60E44891CCBAB240A6D16E502173423AB198 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d63cd7b-5f9f-40bd-a7d4-e2a1d5ca5822.roa Signing time: Tue 19 Aug 2025 00:40:59 +0000 ROA not before: Tue 19 Aug 2025 00:40:59 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:8a:60:e4:48:91:cc:ba:b2:40:a6:d1:6e:50:21:73:42:3a:b1:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:40:59 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=e43821b9d52eec1b0a08e2096c1c0267eb5336152db8970f196162b40f3bba5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9c:5c:1d:85:92:03:95:4c:d6:ea:ff:6e:ae: 07:58:a1:d1:c5:f8:04:5e:73:7a:88:cb:3b:3b:dc: 49:2a:36:fd:30:88:cb:f2:fc:d7:da:16:66:bb:1a: 6b:a1:43:9e:92:d7:05:aa:eb:06:ec:ee:fc:fb:b7: 8a:b1:29:4a:c8:93:3a:1d:da:65:6a:cb:21:52:02: f0:39:42:fd:a2:38:72:14:e4:3f:79:2f:d3:0f:06: 0e:5a:84:c3:39:44:e5:df:d8:10:a1:45:2e:32:b5: 3e:33:fa:38:10:28:ef:c3:fe:90:0e:d3:bf:da:2b: 48:80:e3:5d:f9:f8:09:c5:96:d6:e9:a7:dc:db:df: ff:5d:3b:50:e8:fb:3e:7c:8b:69:59:c5:7b:38:ad: 1c:b0:61:20:c8:89:ba:e2:0e:0d:d3:95:a5:ad:6a: e0:64:bd:34:f5:b0:ba:a2:77:f7:40:05:d2:04:89: 7a:93:bc:02:a6:db:08:b7:e5:c3:dd:1e:41:e4:05: e7:61:80:c8:be:1c:5e:c6:50:be:6a:9c:9e:2a:2d: c5:33:43:5f:f8:38:14:44:1d:fb:d5:eb:62:69:25: 32:e9:b0:55:85:a7:21:47:26:ef:f1:53:e9:73:bd: 0e:61:58:dd:da:34:9c:7e:9f:cc:e3:f5:15:5b:20: b9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F0:9D:21:A1:73:95:C1:FD:0F:57:86:A5:D2:10:05:04:D2:75:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d63cd7b-5f9f-40bd-a7d4-e2a1d5ca5822.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.128.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:77:ab:90:05:8b:76:54:2e:b9:97:73:10:6a:6c:a4:35:7a: 03:36:fb:32:32:3e:24:31:95:08:19:28:62:15:de:d2:d2:5f: 41:5b:a4:86:d1:03:bb:ce:0e:01:13:d9:57:dd:17:5b:51:99: 4f:c3:dc:90:f1:16:78:e8:4f:73:89:8f:ba:76:ce:cc:76:55: fa:80:d0:83:0b:9e:ab:13:97:6b:d3:f1:35:0f:62:c7:e3:3b: 2e:be:01:92:61:29:c0:8e:9f:e3:83:ff:37:70:4b:22:6f:67: c9:9a:21:98:08:96:c4:af:d3:4d:bb:8c:09:a3:c1:5c:b2:1a: 63:9c:bf:a2:62:91:a3:68:86:3c:03:89:50:c6:c8:1f:a4:eb: 4b:b6:8f:dd:b9:c5:1a:41:a3:f5:6c:a4:d4:0b:d8:c5:46:99: eb:cf:c9:98:58:f9:26:0d:b6:24:0b:78:b3:a8:f6:17:5a:5f: e8:62:b1:28:27:36:35:3e:01:c9:71:88:bb:09:b0:e0:9a:ea: 9e:73:13:b3:b3:c4:59:56:b5:58:44:c8:a4:80:45:9c:0e:2c: 21:27:e4:25:09:11:cf:97:39:28:80:54:70:c0:75:87:7d:88: 5a:50:3e:8e:9d:c9:8a:32:3d:f5:d4:c3:df:08:4f:8f:69:b2: 9b:43:f9:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYopg5EiRzLqyQKbRblAhc0I6sZgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDA0MDU5WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDM4MjFiOWQ1MmVlYzFiMGEwOGUyMDk2YzFjMDI2N2Vi NTMzNjE1MmRiODk3MGYxOTYxNjJiNDBmM2JiYTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPnFwdhZIDlUzW6v9urgdYodHF+ARec3qIyzs73EkqNv0w iMvy/NfaFma7GmuhQ56S1wWq6wbs7vz7t4qxKUrIkzod2mVqyyFSAvA5Qv2iOHIU 5D95L9MPBg5ahMM5ROXf2BChRS4ytT4z+jgQKO/D/pAO07/aK0iA4135+AnFltbp p9zb3/9dO1Do+z58i2lZxXs4rRywYSDIibriDg3TlaWtauBkvTT1sLqid/dABdIE iXqTvAKm2wi35cPdHkHkBedhgMi+HF7GUL5qnJ4qLcUzQ1/4OBREHfvV62JpJTLp sFWFpyFHJu/xU+lzvQ5hWN3aNJx+n8zj9RVbILmjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs/CdIaFzlcH9D1eGpdIQBQTSdTUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkNjNjZDdiLTVmOWYtNDBiZC1hN2Q0LWUyYTFkNWNhNTgyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl4AwDQYJKoZIhvcNAQELBQADggEBABt3q5AFi3ZULrmXcxBqbKQ1egM2 +zIyPiQxlQgZKGIV3tLSX0FbpIbRA7vODgET2VfdF1tRmU/D3JDxFnjoT3OJj7p2 zsx2VfqA0IMLnqsTl2vT8TUPYsfjOy6+AZJhKcCOn+OD/zdwSyJvZ8maIZgIlsSv 0027jAmjwVyyGmOcv6JikaNohjwDiVDGyB+k60u2j925xRpBo/VspNQL2MVGmevP yZhY+SYNtiQLeLOo9hdaX+hisSgnNjU+AclxiLsJsOCa6p5zE7OzxFlWtVhEyKSA RZwOLCEn5CUJEc+XOSiAVHDAdYd9iFpQPo6dyYoyPfXUw98IT49psptD+WM= -----END CERTIFICATE-----Generated at Sat Aug 23 08:14:40 2025 by rpki-client