$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa File: dd78fb58-81b2-482f-a731-59203ab98f30.roa (raw, json) Hash identifier: xPe97N7/hUIpdzn2KohSUpx6RsK9KSWwpXCmpHGaLNM= Subject key identifier: 48:FD:21:E8:9C:E1:D2:62:8D:C6:2E:8E:E9:96:51:FF:EA:B7:2F:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56452F38B9752F21DA107B693EC954941B5E799C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa Signing time: Fri 15 Aug 2025 00:51:44 +0000 ROA not before: Fri 15 Aug 2025 00:51:44 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:45:2f:38:b9:75:2f:21:da:10:7b:69:3e:c9:54:94:1b:5e:79:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:51:44 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=cc40d5d84e1eacaa5232a001ed8fd9ecd5b2d8d192af4c0347b22678eee1e99d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d2:4f:cf:bb:c6:49:ad:44:f3:b3:06:a5:f8: 44:81:cb:56:7b:a8:40:ee:ae:c5:46:80:7e:f0:50: 38:dd:cc:80:cd:6e:9b:32:7a:18:2f:94:67:6d:a6: fa:49:91:24:7a:92:33:b4:4a:05:c5:4f:7a:67:4b: 76:7a:8a:fc:fe:8f:fb:b6:27:b5:ec:59:28:08:36: 63:51:22:94:8a:df:c7:65:be:fc:6b:98:ff:0c:f9: d9:e7:d4:54:ef:e4:a8:3e:0d:62:4b:06:96:50:42: ac:b4:d8:89:bb:30:97:f0:36:9a:7f:b2:cc:c2:36: 5c:11:7b:d5:72:90:53:b0:06:cc:52:bd:63:38:bf: f6:f5:7a:4e:3c:30:10:54:25:b8:56:ad:f0:4a:ed: d6:14:85:e4:17:b8:34:18:2f:07:18:1c:ca:fb:c1: 15:ee:24:5f:e6:21:c9:31:3e:34:c9:bb:4e:15:39: 3d:b0:92:8d:0a:75:58:0a:0c:32:d2:0c:97:1c:4e: f4:4c:d6:23:93:d8:db:5a:52:fb:ef:fa:ab:64:3c: 11:57:5a:af:a2:d0:95:a8:b6:15:1f:66:b3:29:84: b3:6f:11:cd:97:52:3c:6b:ee:84:3b:49:e9:4d:73: 5b:45:51:d0:99:d8:85:1f:3a:ee:60:38:09:7a:80: bf:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:FD:21:E8:9C:E1:D2:62:8D:C6:2E:8E:E9:96:51:FF:EA:B7:2F:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.184.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:20:cc:1f:bb:ce:5c:fd:99:ea:b3:b1:ef:7e:d5:7b:67:c5: 95:98:47:15:55:49:50:44:86:62:f2:c3:37:e7:c8:59:d6:06: 97:af:47:f5:6c:82:9e:bf:05:99:2a:b0:44:52:5e:41:6b:3c: c4:e6:11:be:93:6a:14:84:e1:8e:a0:41:84:f0:32:56:ed:30: fa:47:d4:fb:4e:a6:e6:ca:5d:54:7f:21:dd:9f:b3:15:cb:85: 01:a7:14:a5:cd:da:61:13:36:ed:be:77:84:88:be:b0:cd:b8: b4:64:90:00:4c:e1:ac:db:b5:e5:eb:3f:e0:1b:6a:08:83:c9: 43:63:02:2d:80:2a:d0:fa:0e:ff:9a:16:20:d2:14:02:4e:56: 96:35:65:83:80:60:e4:7a:51:6f:4e:34:da:40:5a:6b:f2:61: fb:81:32:3a:4a:a8:c3:69:6c:cb:24:c7:27:bb:e9:d3:64:e1: c3:61:0d:c9:a3:b4:d1:66:37:74:91:81:67:e7:56:f8:7c:03: 47:db:41:63:f0:1d:77:dd:c0:34:a0:31:77:5b:1a:7e:70:81: 25:5f:d2:c3:2d:30:17:cf:6e:5a:5d:16:96:83:fa:a3:05:e2: ad:6b:89:8e:b7:56:a7:c2:ff:ef:4d:e4:4a:1a:cc:bb:36:0a: 25:99:a3:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVkUvOLl1LyHaEHtpPslUlBteeZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDA1MTQ0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzQwZDVkODRlMWVhY2FhNTIzMmEwMDFlZDhmZDllY2Q1 YjJkOGQxOTJhZjRjMDM0N2IyMjY3OGVlZTFlOTlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm0k/Pu8ZJrUTzswal+ESBy1Z7qEDursVGgH7wUDjdzIDN bpsyehgvlGdtpvpJkSR6kjO0SgXFT3pnS3Z6ivz+j/u2J7XsWSgINmNRIpSK38dl vvxrmP8M+dnn1FTv5Kg+DWJLBpZQQqy02Im7MJfwNpp/sszCNlwRe9VykFOwBsxS vWM4v/b1ek48MBBUJbhWrfBK7dYUheQXuDQYLwcYHMr7wRXuJF/mIckxPjTJu04V OT2wko0KdVgKDDLSDJccTvRM1iOT2NtaUvvv+qtkPBFXWq+i0JWothUfZrMphLNv Ec2XUjxr7oQ7SelNc1tFUdCZ2IUfOu5gOAl6gL8/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSP0h6Jzh0mKNxi6O6ZZR/+q3L5MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkNzhmYjU4LTgxYjItNDgyZi1hNzMxLTU5MjAzYWI5OGYzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl7gwDQYJKoZIhvcNAQELBQADggEBAD8gzB+7zlz9meqzse9+1XtnxZWY RxVVSVBEhmLywzfnyFnWBpevR/Vsgp6/BZkqsERSXkFrPMTmEb6TahSE4Y6gQYTw MlbtMPpH1PtOpubKXVR/Id2fsxXLhQGnFKXN2mETNu2+d4SIvrDNuLRkkABM4azb teXrP+AbagiDyUNjAi2AKtD6Dv+aFiDSFAJOVpY1ZYOAYOR6UW9ONNpAWmvyYfuB MjpKqMNpbMskxye76dNk4cNhDcmjtNFmN3SRgWfnVvh8A0fbQWPwHXfdwDSgMXdb Gn5wgSVf0sMtMBfPblpdFpaD+qMF4q1riY63VqfC/+9N5EoazLs2CiWZo2s= -----END CERTIFICATE-----Generated at Sat Aug 23 08:23:05 2025 by rpki-client