$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8354722-950a-41e5-bc40-b7d3a30ec98a.roa File: c8354722-950a-41e5-bc40-b7d3a30ec98a.roa (raw, json) Hash identifier: IzSgmMepVNhy6SYES+CQvE/vXvEcn166pDIjyMpf7x8= Subject key identifier: AF:17:E8:ED:A3:A6:41:6E:16:A5:21:C8:CB:07:7B:E9:EA:A3:63:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5FF0B7A4C67986F7E106FA7B77DFF67D3357A079 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8354722-950a-41e5-bc40-b7d3a30ec98a.roa Signing time: Tue 12 Aug 2025 15:00:26 +0000 ROA not before: Tue 12 Aug 2025 15:00:26 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:f0:b7:a4:c6:79:86:f7:e1:06:fa:7b:77:df:f6:7d:33:57:a0:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 15:00:26 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=2e20d310576c9f1f8870943200774190b8e94118eab240d95e2fcc14b7ed3eea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:62:78:da:d9:85:ff:e3:84:84:cd:34:e5:12: 0c:67:61:4f:f7:c9:97:68:79:6a:72:53:df:a9:c6: 38:b1:bb:c6:e8:93:30:c1:7e:c5:19:2e:41:2f:ae: 97:eb:2b:9e:a8:47:20:1c:5c:ce:25:1d:aa:87:2a: ac:55:01:5a:8e:7e:79:89:cf:6f:bd:3c:ca:c1:f3: ff:d8:c3:2b:76:60:4e:2f:6c:2b:e5:3e:29:d5:f3: 8c:32:17:47:c8:0a:bd:bc:d0:38:49:37:c9:10:e5: f3:d4:52:b0:d2:05:a7:d9:17:28:7a:7e:9b:82:a0: 06:74:33:63:24:74:cf:d7:33:fb:19:9b:d4:e4:77: 24:43:46:b3:ce:68:7b:1f:dc:fb:12:3f:fb:a0:12: 7f:f6:53:00:ab:1c:3c:38:db:66:76:7a:40:0d:89: a4:bb:96:73:48:6f:c9:da:a6:b6:8b:e5:f4:ba:4a: be:b0:5c:f9:1b:50:54:b9:64:10:95:31:dd:78:3d: 4a:83:ef:57:aa:a0:98:71:9b:d2:52:b7:f2:72:49: eb:f1:dc:e3:e8:c0:1b:e1:e3:9c:6d:8b:a8:3b:3e: 93:34:5e:da:9f:cb:94:f0:e7:69:75:91:19:af:3a: 87:39:96:36:1a:dd:6b:24:73:ca:94:85:7e:de:e5: f9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:17:E8:ED:A3:A6:41:6E:16:A5:21:C8:CB:07:7B:E9:EA:A3:63:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8354722-950a-41e5-bc40-b7d3a30ec98a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption a8:80:db:cd:79:a3:0e:8d:b8:69:e7:bd:ac:4e:1f:ea:7c:fa: ad:91:f4:fc:ee:aa:ea:e7:20:14:30:f6:f5:ad:1c:20:c4:72: aa:69:32:13:e8:6a:4a:61:8b:da:54:45:6c:6f:1f:fd:a3:1c: ff:98:a9:8b:c4:c1:79:ab:45:ba:cd:14:9a:e1:34:0c:da:72: 59:a8:c9:48:b2:1b:41:22:cf:ad:30:c6:37:3c:8f:d2:74:a6: 6b:83:e7:66:c8:89:ab:3c:9a:24:42:bc:60:10:4d:3c:cb:ab: e6:55:18:59:45:ba:69:02:87:d0:7a:a0:be:7a:c8:02:80:d6: 5b:8a:39:12:cb:da:d3:50:a4:fa:4c:5e:f6:ac:ed:2e:7a:66: f3:51:6e:57:30:46:e5:02:e7:fa:ea:bc:ee:8d:3b:c3:38:ee: 4e:7f:99:ba:ee:50:4e:9a:ba:d1:ac:64:0d:ce:cc:75:11:b6: 44:50:aa:17:49:e8:16:89:a5:86:ca:f5:05:c1:be:30:22:13: 85:5d:13:46:91:07:8d:db:b2:3e:c9:14:09:66:51:7a:44:a4: d4:db:29:28:f4:20:6f:c5:d7:b4:e2:a2:a0:ef:2c:40:cc:8e: 5b:ca:b1:fe:cd:2e:45:4a:8b:f9:b4:92:92:67:13:28:f2:07: 62:69:57:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX/C3pMZ5hvfhBvp7d9/2fTNXoHkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMTUwMDI2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTIwZDMxMDU3NmM5ZjFmODg3MDk0MzIwMDc3NDE5MGI4 ZTk0MTE4ZWFiMjQwZDk1ZTJmY2MxNGI3ZWQzZWVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKYnja2YX/44SEzTTlEgxnYU/3yZdoeWpyU9+pxjixu8bo kzDBfsUZLkEvrpfrK56oRyAcXM4lHaqHKqxVAVqOfnmJz2+9PMrB8//Ywyt2YE4v bCvlPinV84wyF0fICr280DhJN8kQ5fPUUrDSBafZFyh6fpuCoAZ0M2MkdM/XM/sZ m9TkdyRDRrPOaHsf3PsSP/ugEn/2UwCrHDw422Z2ekANiaS7lnNIb8napraL5fS6 Sr6wXPkbUFS5ZBCVMd14PUqD71eqoJhxm9JSt/JySevx3OPowBvh45xti6g7PpM0 Xtqfy5Tw52l1kRmvOoc5ljYa3Wskc8qUhX7e5flBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrxfo7aOmQW4WpSHIywd76eqjYzQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4MzU0NzIyLTk1MGEtNDFlNS1iYzQwLWI3ZDNhMzBlYzk4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjTgAwDQYJKoZIhvcNAQELBQADggEBAKiA2815ow6NuGnnvaxOH+p8+q2R 9PzuqurnIBQw9vWtHCDEcqppMhPoakphi9pURWxvH/2jHP+YqYvEwXmrRbrNFJrh NAzaclmoyUiyG0Eiz60wxjc8j9J0pmuD52bIias8miRCvGAQTTzLq+ZVGFlFumkC h9B6oL56yAKA1luKORLL2tNQpPpMXvas7S56ZvNRblcwRuUC5/rqvO6NO8M47k5/ mbruUE6autGsZA3OzHURtkRQqhdJ6BaJpYbK9QXBvjAiE4VdE0aRB43bsj7JFAlm UXpEpNTbKSj0IG/F17TioqDvLEDMjlvKsf7NLkVKi/m0kpJnEyjyB2JpV4Q= -----END CERTIFICATE-----Generated at Sat Aug 23 08:16:13 2025 by rpki-client