$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa File: c59f8dc7-041e-43d0-86e8-47f290f42602.roa (raw, json) Hash identifier: dPg1Z+VzRl5T35N4BsRJLeecIb3vkyOR/pJ1ctedzFE= Subject key identifier: D7:5B:11:E2:0A:00:91:26:61:E6:23:BC:93:BF:87:E0:B4:38:9D:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 027682CE3F32406CD948FBE00437CBEA400AC5CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa Signing time: Mon 23 Jun 2025 15:52:06 +0000 ROA not before: Mon 23 Jun 2025 15:52:06 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:76:82:ce:3f:32:40:6c:d9:48:fb:e0:04:37:cb:ea:40:0a:c5:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:52:06 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=a86a462c1df3bc4928465640ab2881cf81faa7eeff5e2bc0950476235778ec3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:eb:83:f6:72:22:63:55:ce:38:ad:22:57: 83:e8:fb:92:24:ea:98:be:14:b8:1a:c8:56:aa:3b: 77:28:24:3e:a2:fc:8e:14:1b:95:0c:0a:09:25:d8: ab:bc:71:27:8e:09:58:29:fe:12:58:2e:0a:67:12: 81:56:c3:e0:21:f0:33:f4:c2:93:93:f6:77:27:a6: 96:af:a6:a7:be:6e:c3:ed:c7:6d:83:8c:46:06:21: 97:47:e6:fa:a1:37:37:c9:0f:9a:70:ee:20:a7:69: 4d:3c:ff:fc:62:28:e7:36:1f:61:c9:57:8f:b7:a4: 12:9a:96:1b:36:bc:28:28:3d:0e:fb:6c:49:23:5b: 56:0a:ce:c2:02:41:3b:7b:96:a0:e9:a5:4e:3a:30: 41:81:18:e7:42:c5:7d:c0:52:b8:e0:0d:ef:fd:13: 33:c9:9e:c4:6a:22:7d:6a:73:4e:48:bd:b0:53:06: 14:6c:ee:29:fa:85:9d:e9:0b:5f:5f:18:63:01:13: 37:61:7a:c9:d2:dd:5d:28:fc:dc:1d:bc:3c:be:50: c4:2e:d5:2e:62:d1:08:aa:f4:49:37:80:da:f2:71: 71:74:2b:6c:ab:d1:93:88:9a:32:0f:96:f9:bb:37: 15:3a:7d:15:04:24:6a:78:4a:f6:08:f7:6c:52:50: 82:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:5B:11:E2:0A:00:91:26:61:E6:23:BC:93:BF:87:E0:B4:38:9D:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.0.0/17 Signature Algorithm: sha256WithRSAEncryption b1:6e:01:77:70:4b:e7:b7:bf:90:0d:24:a1:db:50:4f:e1:7d: 01:1e:1c:4f:d2:22:a5:bd:37:c6:70:8e:f6:9a:35:84:a2:d5: 36:06:2d:80:0c:76:11:38:c7:59:2c:13:1a:be:c3:2e:96:92: 1d:71:d2:b2:76:83:e5:b5:5c:62:50:dd:e6:83:e3:8e:f7:ac: d2:44:3e:16:15:ac:32:3c:89:2d:39:b2:2e:7c:60:ac:34:70: 2c:29:34:e5:d2:3a:8d:2c:c6:15:81:3f:ad:6c:96:df:d4:77: b2:10:22:cf:5b:ee:68:5a:6e:89:20:5e:d8:3b:ed:c9:c0:c6: d3:a6:49:83:64:64:00:32:f5:47:8e:44:29:05:ea:be:7a:36: 11:40:4e:24:30:c1:b7:b2:d6:35:92:82:2c:b7:9c:10:21:c1: d0:ec:a9:4d:17:3c:c0:5c:8f:d3:11:e6:6a:61:18:84:d8:10: b8:d9:ff:18:8e:29:6b:7c:f2:18:81:e9:20:4a:0d:cc:b9:0c: c4:41:b3:33:18:95:68:da:b2:6b:fb:b0:9f:75:29:02:7d:a9: 06:5f:50:ab:70:63:fd:f8:79:5e:e9:e9:96:bf:f7:f5:f5:f8: 51:8b:24:a3:49:a4:50:6e:4f:8b:a1:7c:e8:4b:b5:3f:53:f3: 41:cd:b9:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAnaCzj8yQGzZSPvgBDfL6kAKxcwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU1MjA2WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODZhNDYyYzFkZjNiYzQ5Mjg0NjU2NDBhYjI4ODFjZjgx ZmFhN2VlZmY1ZTJiYzA5NTA0NzYyMzU3NzhlYzNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/1OuD9nIiY1XOOK0iV4Po+5Ik6pi+FLgayFaqO3coJD6i /I4UG5UMCgkl2Ku8cSeOCVgp/hJYLgpnEoFWw+Ah8DP0wpOT9ncnppavpqe+bsPt x22DjEYGIZdH5vqhNzfJD5pw7iCnaU08//xiKOc2H2HJV4+3pBKalhs2vCgoPQ77 bEkjW1YKzsICQTt7lqDppU46MEGBGOdCxX3AUrjgDe/9EzPJnsRqIn1qc05IvbBT BhRs7in6hZ3pC19fGGMBEzdhesnS3V0o/NwdvDy+UMQu1S5i0Qiq9Ek3gNrycXF0 K2yr0ZOImjIPlvm7NxU6fRUEJGp4SvYI92xSUIK7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU11sR4goAkSZh5iO8k7+H4LQ4nWMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OWY4ZGM3LTA0MWUtNDNkMC04NmU4LTQ3ZjI5MGY0MjYwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjUgAwDQYJKoZIhvcNAQELBQADggEBALFuAXdwS+e3v5ANJKHbUE/hfQEe HE/SIqW9N8ZwjvaaNYSi1TYGLYAMdhE4x1ksExq+wy6Wkh1x0rJ2g+W1XGJQ3eaD 4473rNJEPhYVrDI8iS05si58YKw0cCwpNOXSOo0sxhWBP61slt/Ud7IQIs9b7mha bokgXtg77cnAxtOmSYNkZAAy9UeORCkF6r56NhFATiQwwbey1jWSgiy3nBAhwdDs qU0XPMBcj9MR5mphGITYELjZ/xiOKWt88hiB6SBKDcy5DMRBszMYlWjasmv7sJ91 KQJ9qQZfUKtwY/34eV7p6Za/9/X1+FGLJKNJpFBuT4uhfOhLtT9T80HNufE= -----END CERTIFICATE-----Generated at Mon Jun 30 11:58:21 2025 by rpki-client