$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8354722-950a-41e5-bc40-b7d3a30ec98a.roa File: c8354722-950a-41e5-bc40-b7d3a30ec98a.roa (raw, json) Hash identifier: DRId6lEuRX+xHWtaJVwoPA1NQ8LmGpav87UsGF0pK0w= Subject key identifier: BB:96:AF:64:0B:64:84:75:F5:B2:23:32:33:EB:06:2C:AE:3A:C5:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D88AD4BEF11B8151EF83279A21418BB314BE7D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8354722-950a-41e5-bc40-b7d3a30ec98a.roa Signing time: Mon 23 Jun 2025 15:52:06 +0000 ROA not before: Mon 23 Jun 2025 15:52:06 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:88:ad:4b:ef:11:b8:15:1e:f8:32:79:a2:14:18:bb:31:4b:e7:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:52:06 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=05d43b538d9f300c18156e0e975a26f3700d26fec6bd3bd4a950fd3abbab9697, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d5:49:0e:9c:a7:d8:f3:bf:ba:20:eb:64:00: 1c:64:04:50:78:ed:e6:c3:e0:c2:04:c1:96:2b:6a: 5f:45:66:0b:0b:f3:6d:42:78:45:fe:7a:25:bc:ad: a8:67:e6:58:b1:4b:b4:02:cf:32:e3:93:0e:a7:d3: 1d:18:da:0e:c5:0a:87:6e:f8:69:13:5d:37:c2:f2: bb:0b:c2:34:00:96:af:ec:43:70:92:6d:71:52:79: be:4a:a9:ed:dc:f7:14:3a:ef:3e:a9:25:8c:f2:ac: 17:6d:a2:79:cc:d9:4a:6a:ef:e5:66:ae:e5:51:5f: c0:d0:21:85:f5:ac:c7:3c:2a:68:90:60:14:24:a9: 6e:56:6c:1f:c2:74:5f:90:52:e4:0c:e1:5c:ba:87: 88:0a:47:f3:8a:12:eb:b8:91:5c:7f:ee:b7:e9:ba: c8:04:32:5f:20:81:56:71:45:83:ed:ee:4f:75:57: 1f:19:b2:ca:ba:24:b3:2f:60:29:1c:ab:81:22:ad: c1:91:be:8b:15:3a:0d:2a:a0:42:bb:30:0c:b7:b9: b0:45:a2:ee:d5:4a:66:e9:81:dd:c9:36:51:11:49: 83:b2:35:20:a3:63:38:41:2e:80:66:01:8b:5b:ec: 78:b0:ee:cf:52:28:2e:21:13:d5:72:61:0f:c1:25: 5b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:96:AF:64:0B:64:84:75:F5:B2:23:32:33:EB:06:2C:AE:3A:C5:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8354722-950a-41e5-bc40-b7d3a30ec98a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption be:6f:67:1c:4a:98:58:39:d6:49:e7:01:da:c6:bf:98:e1:b4: be:17:76:62:8f:bf:cf:aa:a5:5b:49:e0:d0:87:ab:cf:9a:3a: 5e:17:9e:38:0a:fa:1d:66:be:e0:7a:5c:df:51:8c:b4:ca:36: c9:4b:1d:7d:b5:12:94:88:72:b3:88:83:85:6c:10:62:d0:ac: ae:c5:df:ba:b1:33:4d:72:d5:32:56:ce:c9:01:c5:71:6b:f9: e3:dd:31:48:56:89:b9:4c:19:ef:a9:3e:b2:bd:9e:5d:f6:f5: b0:96:23:cf:79:ff:8d:d7:ce:68:84:f7:b5:d7:26:fd:94:f0: b5:dc:ea:6b:fc:7e:94:c2:46:e0:4a:6e:02:3f:0d:d1:35:41: ff:c0:ee:41:4d:2f:cc:b0:9f:ca:93:21:bb:56:5b:9e:84:4e: 88:e4:f7:26:c5:fe:37:58:a3:97:9e:da:5a:7d:bd:a8:85:a2: a8:1f:5f:a0:4a:02:4a:15:da:f2:98:20:07:81:5f:70:5b:2e: 48:d9:58:74:f3:65:c0:a9:d2:8f:45:62:e7:4a:f3:62:dd:ae: 34:48:b8:ac:5b:ad:e5:8f:fa:19:e6:81:7f:41:b1:cb:44:bf: e2:2d:eb:ac:64:ce:32:ae:32:71:a1:65:17:bc:bc:28:11:eb: f6:5e:65:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfYitS+8RuBUe+DJ5ohQYuzFL59YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU1MjA2WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWQ0M2I1MzhkOWYzMDBjMTgxNTZlMGU5NzVhMjZmMzcw MGQyNmZlYzZiZDNiZDRhOTUwZmQzYWJiYWI5Njk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH1UkOnKfY87+6IOtkABxkBFB47ebD4MIEwZYral9FZgsL 821CeEX+eiW8rahn5lixS7QCzzLjkw6n0x0Y2g7FCodu+GkTXTfC8rsLwjQAlq/s Q3CSbXFSeb5Kqe3c9xQ67z6pJYzyrBdtonnM2Upq7+VmruVRX8DQIYX1rMc8KmiQ YBQkqW5WbB/CdF+QUuQM4Vy6h4gKR/OKEuu4kVx/7rfpusgEMl8ggVZxRYPt7k91 Vx8Zssq6JLMvYCkcq4EircGRvosVOg0qoEK7MAy3ubBFou7VSmbpgd3JNlERSYOy NSCjYzhBLoBmAYtb7Hiw7s9SKC4hE9VyYQ/BJVsFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu5avZAtkhHX1siMyM+sGLK46xYYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4MzU0NzIyLTk1MGEtNDFlNS1iYzQwLWI3ZDNhMzBlYzk4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjTgAwDQYJKoZIhvcNAQELBQADggEBAL5vZxxKmFg51knnAdrGv5jhtL4X dmKPv8+qpVtJ4NCHq8+aOl4XnjgK+h1mvuB6XN9RjLTKNslLHX21EpSIcrOIg4Vs EGLQrK7F37qxM01y1TJWzskBxXFr+ePdMUhWiblMGe+pPrK9nl329bCWI895/43X zmiE97XXJv2U8LXc6mv8fpTCRuBKbgI/DdE1Qf/A7kFNL8ywn8qTIbtWW56ETojk 9ybF/jdYo5ee2lp9vaiFoqgfX6BKAkoV2vKYIAeBX3BbLkjZWHTzZcCp0o9FYudK 82LdrjRIuKxbreWP+hnmgX9BsctEv+It66xkzjKuMnGhZRe8vCgR6/ZeZZc= -----END CERTIFICATE-----Generated at Sun Jun 29 09:04:57 2025 by rpki-client