$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa File: af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa (raw, json) Hash identifier: yZgesAMoEUO4vue/pbGfyV7plUttk3tOl4n2l0a1jNk= Subject key identifier: 96:B8:FF:25:B8:94:B1:DC:2E:08:F5:13:FB:E9:B7:B2:9A:E1:7A:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29CD30C3C28C4BDA5FA429B4FD7384E164739DC1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa Signing time: Mon 23 Jun 2025 15:50:31 +0000 ROA not before: Mon 23 Jun 2025 15:50:31 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:cd:30:c3:c2:8c:4b:da:5f:a4:29:b4:fd:73:84:e1:64:73:9d:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:50:31 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=ac66e48341c860f78c1a8a50b2fd0bf87dae7df2742d005ffdd28eb143191dcb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c2:80:13:4d:1d:93:26:37:43:1c:71:c9:c1: f7:dd:dc:13:ae:e3:d9:00:60:f5:f2:1f:1a:f1:2a: db:9c:ad:a6:a9:4b:3c:fd:ac:69:f1:01:8e:10:ef: 52:36:ba:8e:82:5c:d8:d4:3e:4f:f7:53:48:01:46: 3e:f6:c2:bb:bf:6e:10:eb:7c:76:ac:44:2c:83:72: bc:71:b5:53:7a:59:a4:15:33:18:72:4f:33:8a:b7: c3:38:b5:a4:8d:00:4c:58:1e:9b:97:1d:5a:14:88: b1:ca:5b:1e:d9:ed:d8:09:9f:11:a4:40:6a:b9:ca: d2:08:35:57:80:67:01:58:eb:3e:cc:24:7a:0e:11: eb:39:a8:3e:44:e7:0f:13:6a:19:53:a6:08:0c:14: db:0d:72:25:16:50:9b:13:0a:ee:4a:6b:32:e4:a7: e0:40:0c:44:ff:dc:a7:14:31:d6:16:95:f6:bc:cd: c9:7f:89:d5:7c:09:12:af:1e:27:17:2a:3d:5a:ac: 91:bf:a6:6d:bf:40:93:3a:35:e7:f6:da:62:75:f6: bf:11:3a:bc:39:da:5d:06:d7:8a:c0:5f:69:3c:a5: cb:3b:fc:6a:f8:e3:a2:df:e8:a6:53:79:f8:5b:2b: 7d:eb:00:a9:d0:fb:54:83:b5:db:4d:b7:69:39:21: 52:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B8:FF:25:B8:94:B1:DC:2E:08:F5:13:FB:E9:B7:B2:9A:E1:7A:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.138.0/24 Signature Algorithm: sha256WithRSAEncryption 78:92:69:d0:ee:8a:c3:71:33:50:26:2b:77:47:b5:63:4d:35: 84:96:53:7f:c5:68:8e:75:c2:96:c8:cf:7b:e1:a5:f2:37:34: a0:6b:00:a1:6e:1a:46:fb:30:c0:39:39:af:2b:ed:c8:ba:f2: f5:a9:3d:01:c0:2a:8c:85:2c:1f:5d:0f:4a:92:60:d8:93:03: e2:17:a6:38:3a:03:e3:b9:a7:66:84:b0:9d:7b:e2:fc:ae:88: 85:8e:55:be:9e:17:e9:62:c9:11:9d:e9:7a:9b:ff:3f:3f:bc: 6c:c0:bd:fc:e1:fa:a8:58:4e:e9:01:88:65:74:11:e5:18:de: 74:2a:db:b6:a4:fd:9d:88:1b:94:b5:0d:ff:98:84:70:53:19: d4:8b:70:54:03:60:3f:66:a7:d7:b9:4e:50:50:1e:9f:39:32: be:65:16:94:b2:1d:f7:53:bd:d2:59:54:b0:7f:70:4c:06:c3: 12:a0:44:68:48:a9:94:4e:88:3e:fc:5d:1c:7b:84:62:c3:81: a0:ab:0f:65:43:d6:2d:4e:c0:4a:be:72:98:55:19:f3:e7:8d: bd:05:dc:83:89:a4:0b:1c:6b:49:ec:f6:b1:2a:61:78:8d:44: 25:fe:2f:b5:fe:92:01:7e:f3:7d:d1:a5:d2:50:10:9f:65:ce: fd:61:49:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKc0ww8KMS9pfpCm0/XOE4WRzncEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU1MDMxWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzY2ZTQ4MzQxYzg2MGY3OGMxYThhNTBiMmZkMGJmODdk YWU3ZGYyNzQyZDAwNWZmZGQyOGViMTQzMTkxZGNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiwoATTR2TJjdDHHHJwffd3BOu49kAYPXyHxrxKtucraap Szz9rGnxAY4Q71I2uo6CXNjUPk/3U0gBRj72wru/bhDrfHasRCyDcrxxtVN6WaQV MxhyTzOKt8M4taSNAExYHpuXHVoUiLHKWx7Z7dgJnxGkQGq5ytIINVeAZwFY6z7M JHoOEes5qD5E5w8TahlTpggMFNsNciUWUJsTCu5KazLkp+BADET/3KcUMdYWlfa8 zcl/idV8CRKvHicXKj1arJG/pm2/QJM6Nef22mJ19r8ROrw52l0G14rAX2k8pcs7 /Gr446Lf6KZTefhbK33rAKnQ+1SDtdtNt2k5IVIBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlrj/JbiUsdwuCPUT++m3sprhelMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmN2EyOGFkLWMyZjktNDM1ZS1hOGVlLWU4NDYzOWQwMDZjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYowDQYJKoZIhvcNAQELBQADggEBAHiSadDuisNxM1AmK3dHtWNNNYSW U3/FaI51wpbIz3vhpfI3NKBrAKFuGkb7MMA5Oa8r7ci68vWpPQHAKoyFLB9dD0qS YNiTA+IXpjg6A+O5p2aEsJ174vyuiIWOVb6eF+liyRGd6Xqb/z8/vGzAvfzh+qhY TukBiGV0EeUY3nQq27ak/Z2IG5S1Df+YhHBTGdSLcFQDYD9mp9e5TlBQHp85Mr5l FpSyHfdTvdJZVLB/cEwGwxKgRGhIqZROiD78XRx7hGLDgaCrD2VD1i1OwEq+cphV GfPnjb0F3IOJpAsca0ns9rEqYXiNRCX+L7X+kgF+833RpdJQEJ9lzv1hSbI= -----END CERTIFICATE-----Generated at Mon Jun 30 17:39:10 2025 by rpki-client