$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a3bbed-796b-4e0a-86a6-becaa61b84af.roa File: d8a3bbed-796b-4e0a-86a6-becaa61b84af.roa (raw, json) Hash identifier: ne0Za07dekevPrDlW4wEpDjYTGknl6+9Mw9LMiEOPF8= Subject key identifier: 7C:AA:E3:D8:E4:78:AC:F3:01:D1:62:D1:02:5A:AF:D5:BA:59:44:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CE573511C5317E63D3BF0005A17453D402C9A5F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a3bbed-796b-4e0a-86a6-becaa61b84af.roa Signing time: Tue 19 Aug 2025 00:30:26 +0000 ROA not before: Tue 19 Aug 2025 00:30:26 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e5:73:51:1c:53:17:e6:3d:3b:f0:00:5a:17:45:3d:40:2c:9a:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:30:26 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=aaec7d006d7147b3368b0b7e5e5945bea699f8c3e208f3cb536f5f296e10a57a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:0a:be:c3:57:6c:be:52:1d:15:a5:90:6e:db: d9:bd:48:7b:a0:67:7e:5b:68:f9:53:e9:73:b4:af: 78:c1:e2:29:df:c2:ce:a2:c8:df:ca:67:86:e0:70: 67:84:ee:f9:56:54:96:25:9b:be:17:4f:e8:ad:4e: bf:25:59:29:df:fb:a5:a0:90:8c:8f:b5:54:30:d6: ba:ff:87:e0:91:31:f0:36:f2:dd:db:46:47:b5:9b: c4:f3:28:14:50:aa:80:42:ef:47:32:98:91:32:a9: a8:61:88:60:5e:d6:d1:f1:72:6f:e0:8b:97:21:8e: 92:72:1e:2a:13:a2:bd:e2:5a:61:67:00:5a:82:9f: 47:e4:ef:09:46:db:ff:b4:32:b8:45:a1:a9:80:a2: 43:1a:78:7e:dc:16:e1:dd:78:b4:97:53:02:9a:65: c0:9e:82:e5:de:57:9e:ca:0b:86:bd:25:99:c1:a5: 56:50:87:fe:3b:9b:f3:08:ec:a5:4a:d5:b4:63:73: bf:f6:96:1f:8f:c9:bb:f7:65:39:7e:9c:c5:a4:9a: 29:63:c1:a7:bf:9b:51:ef:ad:83:e6:39:37:ea:b5: 4d:4b:3e:c4:1a:7c:a5:65:78:f6:19:89:b4:de:4d: 48:17:9a:78:87:4a:d9:d8:d6:8b:58:34:7d:4d:3e: 96:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AA:E3:D8:E4:78:AC:F3:01:D1:62:D1:02:5A:AF:D5:BA:59:44:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a3bbed-796b-4e0a-86a6-becaa61b84af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.186.0/23 Signature Algorithm: sha256WithRSAEncryption d7:ec:8c:38:72:5d:44:52:8d:bb:f8:30:f8:22:5d:b3:11:5d: 28:a2:2f:7d:fa:63:fd:cb:00:2a:b5:4a:d2:3d:9f:b9:e6:2f: 5f:1a:72:ac:5e:79:ff:fa:17:35:e6:2e:e8:67:03:d9:bd:1a: 68:fa:77:8e:6b:b8:77:65:7e:09:77:85:e5:b1:70:1f:47:0f: 43:ca:d3:1e:89:95:f4:df:50:8f:09:1e:3a:32:06:c1:57:b0: 2a:4b:72:3a:ee:48:42:b2:5b:87:64:a0:88:ec:68:23:f5:cc: b3:99:01:c0:b3:ab:63:70:68:8d:3f:5d:17:24:cc:63:66:95: d5:99:cd:a4:07:99:79:06:88:3c:2e:e1:8b:cd:c7:0e:f1:d9: 3a:9f:c6:d2:18:ef:fa:81:3a:e3:2a:01:c1:65:4b:0d:d5:f1: bb:0c:cd:6f:ea:57:80:c8:79:7a:ef:e5:22:1d:3e:1d:37:e2: 59:9b:25:48:51:45:7d:78:cc:b6:0d:89:75:fd:08:eb:73:98: 1a:fe:a4:1c:70:cd:b6:d4:78:17:28:66:9f:fd:f4:d4:53:e6: 9f:17:7a:17:44:33:d0:1d:44:ce:6d:4c:8f:5d:8f:d0:67:93: 38:c4:e3:24:15:bc:6c:7e:00:5f:fa:bf:29:26:7f:4b:cf:d2: f5:09:fe:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbOVzURxTF+Y9O/AAWhdFPUAsml8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAzMDI2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWVjN2QwMDZkNzE0N2IzMzY4YjBiN2U1ZTU5NDViZWE2 OTlmOGMzZTIwOGYzY2I1MzZmNWYyOTZlMTBhNTdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYCr7DV2y+Uh0VpZBu29m9SHugZ35baPlT6XO0r3jB4inf ws6iyN/KZ4bgcGeE7vlWVJYlm74XT+itTr8lWSnf+6WgkIyPtVQw1rr/h+CRMfA2 8t3bRke1m8TzKBRQqoBC70cymJEyqahhiGBe1tHxcm/gi5chjpJyHioTor3iWmFn AFqCn0fk7wlG2/+0MrhFoamAokMaeH7cFuHdeLSXUwKaZcCeguXeV57KC4a9JZnB pVZQh/47m/MI7KVK1bRjc7/2lh+Pybv3ZTl+nMWkmiljwae/m1HvrYPmOTfqtU1L PsQafKVlePYZibTeTUgXmniHStnY1otYNH1NPpaFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfKrj2OR4rPMB0WLRAlqv1bpZRDcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4YTNiYmVkLTc5NmItNGUwYS04NmE2LWJlY2FhNjFiODRhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl7owDQYJKoZIhvcNAQELBQADggEBANfsjDhyXURSjbv4MPgiXbMRXSii L336Y/3LACq1StI9n7nmL18acqxeef/6FzXmLuhnA9m9Gmj6d45ruHdlfgl3heWx cB9HD0PK0x6JlfTfUI8JHjoyBsFXsCpLcjruSEKyW4dkoIjsaCP1zLOZAcCzq2Nw aI0/XRckzGNmldWZzaQHmXkGiDwu4YvNxw7x2TqfxtIY7/qBOuMqAcFlSw3V8bsM zW/qV4DIeXrv5SIdPh034lmbJUhRRX14zLYNiXX9COtzmBr+pBxwzbbUeBcoZp/9 9NRT5p8XehdEM9AdRM5tTI9dj9BnkzjE4yQVvGx+AF/6vykmf0vP0vUJ/hw= -----END CERTIFICATE-----Generated at Sat Aug 23 09:04:05 2025 by rpki-client