$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa File: c59f8dc7-041e-43d0-86e8-47f290f42602.roa (raw, json) Hash identifier: Tc9EBm2yIABV3LMW2BzTPfFYiw6gEJWR5rUNloKBFa4= Subject key identifier: CA:11:21:19:25:94:C4:DB:28:1D:1D:F2:44:43:61:1B:A0:8C:63:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2092CAE432226F994C03B2E3A0C773C4CA827FDB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa Signing time: Tue 12 Aug 2025 15:00:27 +0000 ROA not before: Tue 12 Aug 2025 15:00:27 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:92:ca:e4:32:22:6f:99:4c:03:b2:e3:a0:c7:73:c4:ca:82:7f:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 15:00:27 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=be89dc872cb32700daf857c97b5232b8c3ff5867f16098607d212301fb171738, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:31:d4:c1:27:7c:43:1e:7d:80:ac:05:43:46: 68:72:9e:c2:79:a9:17:95:12:dc:1f:9b:c4:bb:96: 67:f6:b6:40:da:1b:7e:eb:29:db:d3:b7:7b:48:c2: 29:e1:ec:92:cb:a3:15:17:22:0c:78:d2:33:46:e0: 79:c8:37:52:63:41:6e:e6:07:7a:f2:6d:a3:5e:b3: 9f:02:e4:72:74:75:a7:06:6b:3b:45:b6:3f:1c:9f: 44:9c:99:83:8a:2f:1d:75:56:4a:eb:1c:78:23:2e: a6:58:5d:de:f8:dd:27:50:81:9b:17:bf:5b:18:32: 80:d3:00:e5:6d:88:0f:1c:07:3e:b7:c8:b1:ec:a5: 23:81:64:75:e1:02:10:2b:fd:80:e0:a2:61:13:2c: a6:b6:6e:22:6b:6e:23:57:80:ed:2f:c2:2a:cb:23: bb:9d:c4:64:43:e1:3d:fc:13:44:66:7e:23:62:a1: c0:51:db:25:30:61:35:89:e1:f3:ec:82:4c:22:7d: 1c:30:a9:f9:ff:33:8d:c5:74:69:5c:0c:4e:ea:bf: 3d:81:e2:7a:1b:de:98:ec:68:9a:59:fb:af:c3:4a: 38:82:00:e9:56:8c:27:b6:73:4a:d1:06:31:05:b3: 06:8e:aa:c6:88:f8:a6:22:db:6c:0a:3d:6f:e8:52: 54:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:11:21:19:25:94:C4:DB:28:1D:1D:F2:44:43:61:1B:A0:8C:63:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.0.0/17 Signature Algorithm: sha256WithRSAEncryption 07:33:3f:13:75:88:ac:e2:62:9e:97:24:16:0b:d9:ab:e9:26: cd:fd:59:9a:8f:6f:e5:82:2c:72:67:bb:c1:18:65:33:60:e5: e6:18:a2:1b:bd:70:d7:73:8b:92:04:ca:48:60:27:27:07:1b: df:07:67:52:bd:ad:ab:25:20:77:eb:83:fa:83:f9:bb:fa:a8: c8:6d:7c:18:c7:80:22:53:82:48:3e:9b:9d:e1:f8:8c:07:f4: 4a:24:62:de:98:e0:2a:ea:fb:03:d3:fd:03:15:3b:bd:be:5a: 37:6e:be:8e:dc:1e:1c:24:bc:77:05:c0:3d:f2:ac:c6:89:82: 27:44:ac:66:bd:83:51:eb:03:95:c7:76:b1:14:a0:a4:85:e1: 0b:0b:27:7b:ea:fe:ff:ca:cc:10:09:b4:64:44:af:fa:96:41: 36:67:94:24:67:40:57:ca:85:3a:7a:3c:9f:9a:94:98:a4:24: 07:a4:0b:ae:f9:fe:3f:80:1f:c8:d2:32:35:e7:c7:0d:e2:bd: 95:b7:19:06:15:1c:ba:b2:8e:40:15:95:3f:5a:6e:96:c7:e8: 9f:2c:2a:06:a0:20:b7:78:e9:89:15:63:e0:35:11:0a:a6:9c: 19:01:54:5f:32:75:a3:0d:36:1e:28:8a:f3:d5:ee:1d:c4:5b: 8f:cf:65:36 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIJLK5DIib5lMA7LjoMdzxMqCf9swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMTUwMDI3WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTg5ZGM4NzJjYjMyNzAwZGFmODU3Yzk3YjUyMzJiOGMz ZmY1ODY3ZjE2MDk4NjA3ZDIxMjMwMWZiMTcxNzM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD3MdTBJ3xDHn2ArAVDRmhynsJ5qReVEtwfm8S7lmf2tkDa G37rKdvTt3tIwinh7JLLoxUXIgx40jNG4HnIN1JjQW7mB3rybaNes58C5HJ0dacG aztFtj8cn0ScmYOKLx11VkrrHHgjLqZYXd743SdQgZsXv1sYMoDTAOVtiA8cBz63 yLHspSOBZHXhAhAr/YDgomETLKa2biJrbiNXgO0vwirLI7udxGRD4T38E0RmfiNi ocBR2yUwYTWJ4fPsgkwifRwwqfn/M43FdGlcDE7qvz2B4nob3pjsaJpZ+6/DSjiC AOlWjCe2c0rRBjEFswaOqsaI+KYi22wKPW/oUlRDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyhEhGSWUxNsoHR3yRENhG6CMYxEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OWY4ZGM3LTA0MWUtNDNkMC04NmU4LTQ3ZjI5MGY0MjYwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjUgAwDQYJKoZIhvcNAQELBQADggEBAAczPxN1iKziYp6XJBYL2avpJs39 WZqPb+WCLHJnu8EYZTNg5eYYohu9cNdzi5IEykhgJycHG98HZ1K9raslIHfrg/qD +bv6qMhtfBjHgCJTgkg+m53h+IwH9EokYt6Y4Crq+wPT/QMVO72+Wjduvo7cHhwk vHcFwD3yrMaJgidErGa9g1HrA5XHdrEUoKSF4QsLJ3vq/v/KzBAJtGREr/qWQTZn lCRnQFfKhTp6PJ+alJikJAekC675/j+AH8jSMjXnxw3ivZW3GQYVHLqyjkAVlT9a bpbH6J8sKgagILd46YkVY+A1EQqmnBkBVF8ydaMNNh4oivPV7h3EW4/PZTY= -----END CERTIFICATE-----Generated at Sat Aug 23 14:04:55 2025 by rpki-client