$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa File: d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa (raw, json) Hash identifier: eySn0MRNjNfGLyCHbtt9M7+pUr7wcr/d8ZNnyXX3p30= Subject key identifier: DD:53:4E:41:ED:E8:1B:CE:EB:D9:91:08:01:1E:36:19:0B:E3:59:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03AB842C6685A849C8D2DD3A9891CBBF151C592B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa Signing time: Tue 19 Aug 2025 00:41:51 +0000 ROA not before: Tue 19 Aug 2025 00:41:51 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ab:84:2c:66:85:a8:49:c8:d2:dd:3a:98:91:cb:bf:15:1c:59:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:41:51 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=d5f32990fe321234df96676e811035fcb42ebf8de18c1823cfd16342f8aebeea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2b:5d:a3:73:a9:a5:d1:24:ca:86:1c:6b:55: e0:a2:e8:a6:a8:dd:74:65:25:09:68:a9:1e:7d:99: 9f:a0:8e:e4:83:95:3b:96:68:40:97:9e:ff:6d:28: f1:6c:45:69:e5:0a:e3:d7:b9:c9:b4:c7:71:d4:c0: 2e:d2:fb:fa:85:eb:41:6b:c7:73:f3:b5:3f:43:d0: ab:6c:ef:66:49:fe:47:92:32:d5:26:c1:c0:cb:7e: b5:7d:30:e1:89:c7:7a:e9:d1:15:86:65:50:ec:de: bb:b4:3d:74:64:5c:5f:e3:d1:3d:2c:09:69:48:fd: 67:a1:b5:82:09:99:5a:07:8f:60:ad:6a:3f:bc:2f: c4:09:4f:8c:a5:03:1c:85:5d:ad:dc:41:e0:c3:89: 99:ff:69:a6:9b:27:e4:5b:75:47:5a:96:6b:e4:5c: 11:a9:69:dd:23:ea:38:1f:95:0f:75:c4:63:17:89: 06:8b:07:48:8a:24:b6:17:b0:18:13:7a:57:34:7c: 22:0a:a7:a2:8e:9f:21:c6:c7:e5:d2:fc:e0:40:8c: 80:75:c1:f1:87:53:e2:ba:04:1c:2a:82:af:33:99: b9:10:01:e9:ae:34:1e:5b:7f:3e:f9:df:96:9a:93: d2:6d:c7:28:3b:69:71:f9:43:bc:87:6e:7c:7a:45: d2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:53:4E:41:ED:E8:1B:CE:EB:D9:91:08:01:1E:36:19:0B:E3:59:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.88.0/21 Signature Algorithm: sha256WithRSAEncryption 44:ef:57:b0:41:bf:df:0b:55:6d:0b:20:51:7a:ce:3b:9f:0f: e9:6a:02:ba:bb:5a:01:f3:41:c0:3f:4c:ae:0d:de:38:d8:12: c3:e1:73:22:27:84:ae:14:46:5a:b8:f1:51:92:d3:e6:9b:b3: e7:b8:b5:86:32:15:0d:ce:94:ea:a2:31:ee:20:96:a1:e9:3b: b4:ba:a9:c7:e7:b1:9b:5d:96:4d:df:fe:02:f2:f2:cc:d6:2f: 55:20:10:97:93:f1:6b:97:42:7e:05:62:26:2d:bb:26:3c:57: 21:a5:57:cd:5b:b0:b5:e5:c0:13:52:8a:14:79:40:ad:f7:09: f4:86:e5:a1:7d:62:1d:08:20:3d:e3:8d:e9:a2:af:79:0b:b1: 53:46:a7:a2:8d:4c:27:b5:b0:8a:8a:98:ce:03:b5:4a:66:f8: 58:96:6c:8c:a4:4f:c8:ef:d8:df:4f:76:aa:f9:40:1a:92:10: 70:f0:2e:67:b5:5a:12:da:6c:cd:30:ac:24:39:32:d9:7b:5a: 1f:74:7e:c6:5c:3e:4b:ae:d8:99:54:e1:46:2d:e6:71:01:9a: 8c:46:64:36:de:fe:63:ff:ec:91:a6:8c:c1:56:2a:11:2c:08: ab:ee:d2:22:fc:ff:e0:a4:1e:9a:9f:66:85:a4:86:61:c9:7c: 3d:7b:dc:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA6uELGaFqEnI0t06mJHLvxUcWSswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDA0MTUxWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWYzMjk5MGZlMzIxMjM0ZGY5NjY3NmU4MTEwMzVmY2I0 MmViZjhkZTE4YzE4MjNjZmQxNjM0MmY4YWViZWVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpK12jc6ml0STKhhxrVeCi6Kao3XRlJQloqR59mZ+gjuSD lTuWaECXnv9tKPFsRWnlCuPXucm0x3HUwC7S+/qF60Frx3PztT9D0Kts72ZJ/keS MtUmwcDLfrV9MOGJx3rp0RWGZVDs3ru0PXRkXF/j0T0sCWlI/WehtYIJmVoHj2Ct aj+8L8QJT4ylAxyFXa3cQeDDiZn/aaabJ+RbdUdalmvkXBGpad0j6jgflQ91xGMX iQaLB0iKJLYXsBgTelc0fCIKp6KOnyHGx+XS/OBAjIB1wfGHU+K6BBwqgq8zmbkQ AemuNB5bfz7535aak9Jtxyg7aXH5Q7yHbnx6RdIBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3VNOQe3oG87r2ZEIAR42GQvjWYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwMjUzYzZiLTBhZDMtNDZmNS1iYjQxLWQyMTkxMDVjN2RjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl1gwDQYJKoZIhvcNAQELBQADggEBAETvV7BBv98LVW0LIFF6zjufD+lq Arq7WgHzQcA/TK4N3jjYEsPhcyInhK4URlq48VGS0+abs+e4tYYyFQ3OlOqiMe4g lqHpO7S6qcfnsZtdlk3f/gLy8szWL1UgEJeT8WuXQn4FYiYtuyY8VyGlV81bsLXl wBNSihR5QK33CfSG5aF9Yh0IID3jjemir3kLsVNGp6KNTCe1sIqKmM4DtUpm+FiW bIykT8jv2N9Pdqr5QBqSEHDwLme1WhLabM0wrCQ5Mtl7Wh90fsZcPkuu2JlU4UYt 5nEBmoxGZDbe/mP/7JGmjMFWKhEsCKvu0iL8/+CkHpqfZoWkhmHJfD173LM= -----END CERTIFICATE-----Generated at Sat Aug 23 09:03:24 2025 by rpki-client