$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7726d8-ccb6-4f34-b961-8b864e5561aa.roa File: 9f7726d8-ccb6-4f34-b961-8b864e5561aa.roa (raw, json) Hash identifier: OGVckOoAMH0phO8m9gXxQyUIlvFiHzinh34nzswfOfQ= Subject key identifier: A7:3C:7C:A2:43:60:7F:C0:60:B6:23:F6:09:5E:4E:82:B7:AD:DC:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67458152B1EC37E298DF1044719A737578BCCD20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7726d8-ccb6-4f34-b961-8b864e5561aa.roa Signing time: Tue 19 Aug 2025 00:41:05 +0000 ROA not before: Tue 19 Aug 2025 00:41:05 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:45:81:52:b1:ec:37:e2:98:df:10:44:71:9a:73:75:78:bc:cd:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:41:05 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=0cf548162e0d396884342f503e9272e6044dc577cfd0ce0ed5a1ef249043ffa1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:bd:19:7c:63:92:fc:10:f7:66:cb:81:c8: 2e:17:c4:ba:19:77:b4:cb:d3:10:9f:03:7f:ce:4a: e9:2f:da:50:8e:56:d1:03:c3:85:6f:3c:79:a5:d8: 43:99:c0:f1:76:4a:6b:40:24:e2:b7:dc:8f:3b:6f: 32:d9:47:36:ba:7a:70:a3:6f:63:c4:eb:be:c9:7d: 0e:c3:dd:b2:74:f4:7f:a2:92:be:e0:5a:c6:44:28: 99:f3:1e:57:5f:27:f5:9e:e7:19:10:76:5d:7f:75: 87:3a:6e:5e:49:a5:73:f2:72:24:f5:7b:72:e1:30: 76:0c:30:4e:79:a5:47:09:15:5e:04:d9:63:f1:71: 0c:12:1a:08:8d:a3:b1:29:17:ec:f3:65:40:39:eb: 8d:26:7b:82:bf:28:73:66:00:8f:bd:d2:a0:8d:36: 14:bd:3f:23:e4:b7:d5:8c:31:e1:fd:05:0e:2f:2c: 6c:cb:a1:69:3e:61:90:5e:01:be:e2:67:a6:c8:db: 11:d1:ca:fc:e8:cf:08:83:f4:10:4f:27:9e:6f:ff: f9:47:c5:4a:2d:ee:bb:d6:98:37:14:4d:3f:fe:db: 78:52:39:2d:a5:f3:a8:1b:01:19:b7:7f:9d:b7:52: f5:68:81:2c:de:d5:c4:1c:2f:40:35:c7:9c:23:d0: e1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3C:7C:A2:43:60:7F:C0:60:B6:23:F6:09:5E:4E:82:B7:AD:DC:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7726d8-ccb6-4f34-b961-8b864e5561aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.144.0/23 Signature Algorithm: sha256WithRSAEncryption 89:48:3c:f8:d4:17:e3:65:41:b7:ac:3d:af:3b:45:3c:16:fb: 8e:9a:96:88:bd:ad:62:9f:47:3c:1f:21:83:da:6e:2d:46:02: 91:62:21:0c:42:e7:d4:cb:fd:76:cc:e7:d8:60:54:e9:ef:8f: c4:33:fc:de:7b:06:b6:44:c8:a4:99:9d:30:d1:55:17:f9:25: c3:2c:a8:ea:d8:83:00:42:a7:ae:d6:97:1d:a7:ff:e6:8f:2a: 43:17:eb:b8:49:78:2c:8f:27:53:a3:4f:a9:8b:f5:41:fa:5c: 03:94:25:c2:5c:eb:53:26:42:dd:8a:a3:2e:d1:2b:b6:ac:57: e4:3f:ae:ff:7a:fa:c5:85:e5:93:92:ad:d3:91:af:41:e9:15: e6:c4:77:34:0b:20:d4:7c:7e:4f:6b:0b:ae:57:77:1d:fc:63: 13:2e:b2:2e:17:12:bc:f6:f5:12:b9:8f:90:01:e4:bc:10:78: 3c:0c:23:66:d8:62:24:42:6f:a4:b7:0f:c0:12:74:ac:43:b6: 9f:51:49:73:83:9f:cd:ac:4d:ef:5f:58:2b:94:4f:b1:7f:1c: 8f:45:78:0e:1f:50:f2:76:51:ef:24:9e:57:76:96:69:b0:16: e0:74:69:c4:2b:17:75:7d:d7:aa:cd:a8:2f:82:f2:23:19:00: aa:03:b0:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ0WBUrHsN+KY3xBEcZpzdXi8zSAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDA0MTA1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2Y1NDgxNjJlMGQzOTY4ODQzNDJmNTAzZTkyNzJlNjA0 NGRjNTc3Y2ZkMGNlMGVkNWExZWYyNDkwNDNmZmExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDw70ZfGOS/BD3ZsuByC4XxLoZd7TL0xCfA3/OSukv2lCO VtEDw4VvPHml2EOZwPF2SmtAJOK33I87bzLZRza6enCjb2PE677JfQ7D3bJ09H+i kr7gWsZEKJnzHldfJ/We5xkQdl1/dYc6bl5JpXPyciT1e3LhMHYMME55pUcJFV4E 2WPxcQwSGgiNo7EpF+zzZUA5640me4K/KHNmAI+90qCNNhS9PyPkt9WMMeH9BQ4v LGzLoWk+YZBeAb7iZ6bI2xHRyvzozwiD9BBPJ55v//lHxUot7rvWmDcUTT/+23hS OS2l86gbARm3f523UvVogSze1cQcL0A1x5wj0OGXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpzx8okNgf8BgtiP2CV5Ogret3OEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmNzcyNmQ4LWNjYjYtNGYzNC1iOTYxLThiODY0ZTU1NjFhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl5AwDQYJKoZIhvcNAQELBQADggEBAIlIPPjUF+NlQbesPa87RTwW+46a loi9rWKfRzwfIYPabi1GApFiIQxC59TL/XbM59hgVOnvj8Qz/N57BrZEyKSZnTDR VRf5JcMsqOrYgwBCp67Wlx2n/+aPKkMX67hJeCyPJ1OjT6mL9UH6XAOUJcJc61Mm Qt2Koy7RK7asV+Q/rv96+sWF5ZOSrdORr0HpFebEdzQLINR8fk9rC65Xdx38YxMu si4XErz29RK5j5AB5LwQeDwMI2bYYiRCb6S3D8ASdKxDtp9RSXODn82sTe9fWCuU T7F/HI9FeA4fUPJ2Ue8knld2lmmwFuB0acQrF3V916rNqC+C8iMZAKoDsPE= -----END CERTIFICATE-----Generated at Sat Aug 23 08:34:38 2025 by rpki-client