$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa File: af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa (raw, json) Hash identifier: qLPdiz42HJaYhA6FOuNX418cafzu8hj1RC1ksVigmvA= Subject key identifier: 80:AE:26:A2:1A:E3:B5:DB:7F:5B:20:DF:FB:2B:20:01:6C:09:7E:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 24C6AC62900997FE30168476FC03C5C751474918 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa Signing time: Tue 12 Aug 2025 15:00:18 +0000 ROA not before: Tue 12 Aug 2025 15:00:18 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:c6:ac:62:90:09:97:fe:30:16:84:76:fc:03:c5:c7:51:47:49:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 15:00:18 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=821f5e06bdb6df5b5e4d2656207cc7a4ea71f338d4f41c581f03d9289202b551, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6e:07:c4:7a:15:57:7c:f8:22:50:61:46:17: 70:02:19:ca:c7:4b:71:87:04:bc:1f:f8:d1:b2:b8: 84:0d:4f:e6:f8:1e:8f:0d:10:7b:a0:6a:f9:09:09: be:54:41:08:bb:4b:86:e4:1c:cd:3d:13:5f:d3:02: e0:2c:90:92:23:60:05:dd:0c:59:47:03:95:ff:8f: f1:f1:12:2b:01:b4:03:35:34:00:4d:4c:81:2a:2e: 3b:b3:9c:4c:66:d1:f3:82:8c:9d:39:59:b9:d4:49: aa:4f:f7:c8:68:76:60:14:aa:20:d0:60:5e:14:47: fa:da:79:85:7f:eb:c2:01:bb:09:b2:7b:38:fe:fb: c7:c5:07:3f:0f:dd:6b:ef:47:53:8c:4e:b0:57:df: d9:56:6a:69:e4:29:04:c7:de:40:66:a2:4b:64:8e: 7c:25:bb:03:a4:47:6a:99:39:45:3e:91:b0:48:b8: 4e:78:2e:71:76:85:fd:a7:de:b5:52:26:ba:dc:2d: 9e:69:51:b4:0a:4a:bc:f5:f9:4e:e6:0c:b8:e6:53: 38:5b:fd:55:42:eb:fb:d8:e5:13:3c:ee:66:c2:61: 31:bc:9e:98:a0:fb:40:9b:56:6e:07:0c:3c:a9:e6: e1:a0:5e:d3:9b:ba:73:ca:ab:a6:97:63:d3:ae:43: 85:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AE:26:A2:1A:E3:B5:DB:7F:5B:20:DF:FB:2B:20:01:6C:09:7E:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.138.0/24 Signature Algorithm: sha256WithRSAEncryption bf:67:64:d3:e1:a1:36:86:f4:d1:d6:f9:d8:60:56:42:83:c6: c5:46:b5:c4:b8:05:1d:fc:e4:08:b8:4c:ed:94:f2:d2:d6:a1: 15:50:9a:ef:25:e9:e2:77:66:f9:b2:2a:8e:be:12:00:3c:29: 99:5e:43:d1:8b:f0:ea:ac:f0:0e:dc:c8:80:3c:cc:57:1b:77: 95:1a:35:d8:25:19:0f:cd:80:27:d7:21:e4:f1:85:1a:f7:04: 7b:20:ca:f0:06:64:d2:07:47:01:09:22:df:55:b4:32:a5:f8: 86:5d:03:bd:42:4b:39:c8:bc:4b:7d:19:b2:c2:b1:25:8f:1f: a0:bf:bb:c8:39:51:df:bb:f6:03:dd:19:b8:bc:c7:7e:4f:ae: b8:89:a7:a5:ca:ee:5a:76:30:16:ce:a0:41:e8:4b:1d:6a:5d: d7:ba:3e:d6:84:02:44:65:57:84:1a:93:f1:69:ac:e8:3f:44: 12:5c:59:7b:2b:d6:fd:17:2a:ae:d9:1b:4b:45:37:46:c8:54: 66:3e:74:56:84:39:59:54:13:ab:ac:09:e2:50:50:45:28:10: c3:38:61:f6:db:d2:9b:a3:7c:05:4d:9f:4b:1f:d6:6b:4a:ca: ba:4c:e7:0f:21:15:83:61:d0:56:ea:eb:e8:77:89:16:ef:12: c9:1f:77:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJMasYpAJl/4wFoR2/APFx1FHSRgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMTUwMDE4WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjFmNWUwNmJkYjZkZjViNWU0ZDI2NTYyMDdjYzdhNGVh NzFmMzM4ZDRmNDFjNTgxZjAzZDkyODkyMDJiNTUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbbgfEehVXfPgiUGFGF3ACGcrHS3GHBLwf+NGyuIQNT+b4 Ho8NEHugavkJCb5UQQi7S4bkHM09E1/TAuAskJIjYAXdDFlHA5X/j/HxEisBtAM1 NABNTIEqLjuznExm0fOCjJ05WbnUSapP98hodmAUqiDQYF4UR/raeYV/68IBuwmy ezj++8fFBz8P3WvvR1OMTrBX39lWamnkKQTH3kBmoktkjnwluwOkR2qZOUU+kbBI uE54LnF2hf2n3rVSJrrcLZ5pUbQKSrz1+U7mDLjmUzhb/VVC6/vY5RM87mbCYTG8 npig+0CbVm4HDDyp5uGgXtObunPKq6aXY9OuQ4UdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgK4mohrjtdt/WyDf+ysgAWwJftkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmN2EyOGFkLWMyZjktNDM1ZS1hOGVlLWU4NDYzOWQwMDZjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYowDQYJKoZIhvcNAQELBQADggEBAL9nZNPhoTaG9NHW+dhgVkKDxsVG tcS4BR385Ai4TO2U8tLWoRVQmu8l6eJ3ZvmyKo6+EgA8KZleQ9GL8Oqs8A7cyIA8 zFcbd5UaNdglGQ/NgCfXIeTxhRr3BHsgyvAGZNIHRwEJIt9VtDKl+IZdA71CSznI vEt9GbLCsSWPH6C/u8g5Ud+79gPdGbi8x35PrriJp6XK7lp2MBbOoEHoSx1qXde6 PtaEAkRlV4Qak/FprOg/RBJcWXsr1v0XKq7ZG0tFN0bIVGY+dFaEOVlUE6usCeJQ UEUoEMM4Yfbb0pujfAVNn0sf1mtKyrpM5w8hFYNh0Fbq6+h3iRbvEskfd7o= -----END CERTIFICATE-----Generated at Sat Aug 23 08:18:08 2025 by rpki-client