$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa File: dd78fb58-81b2-482f-a731-59203ab98f30.roa (raw, json) Hash identifier: 8DqO9TX9ktVnAHYewSbPBkIbK/L6/xLSajeEw37pOX0= Subject key identifier: 2D:C9:98:33:AA:06:B0:89:DF:4C:E8:FD:E4:AF:45:D6:0F:CE:C5:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 296771BF1C3A98834304D7B53857EDFE2517045C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa Signing time: Wed 25 Jun 2025 00:10:47 +0000 ROA not before: Wed 25 Jun 2025 00:10:47 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:67:71:bf:1c:3a:98:83:43:04:d7:b5:38:57:ed:fe:25:17:04:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 25 00:10:47 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=6a6c2a4cf1a88d8fd15c4f04f944151a9ad4cc1d9f1387ec9321f551054dcd55, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fe:d8:32:db:c2:64:c7:53:2f:d6:10:dd:cf: 46:e1:20:71:2a:f0:e5:d6:52:48:30:75:50:2f:cf: 67:86:69:28:1b:f9:d0:ed:04:41:28:c8:9d:d6:c3: bc:b6:32:b7:47:18:7a:6e:63:c0:2c:d9:9e:5b:2c: 18:2c:a7:71:1c:43:41:5c:ae:88:dd:7d:4f:08:94: e7:da:e7:fb:b5:ea:55:09:5e:04:2e:d1:84:de:cc: 43:40:1d:0d:57:23:23:f2:95:be:1f:28:aa:1c:92: 68:ff:04:98:01:fe:f2:ab:e1:79:dc:ac:7a:06:fe: 33:f6:90:57:7b:4a:05:5a:41:53:0f:c7:5a:dd:67: 93:67:df:09:cb:bb:2f:67:00:dc:5e:cf:cd:af:a7: bd:92:39:c8:15:fd:fe:6e:ad:ea:5c:99:e0:bc:a7: c3:8e:bf:fd:fd:79:41:e2:4a:14:e8:52:7a:fb:c5: 0d:cf:eb:1d:a1:2b:9e:86:34:36:e4:c6:17:08:88: c3:30:99:c6:94:a5:d9:02:5d:18:49:68:a8:63:8b: a1:5e:42:31:0b:ff:fa:94:4e:ee:13:36:97:31:61: d1:c5:e7:ec:01:25:e4:e9:3c:5a:01:23:ec:c3:f5: 16:4f:c8:62:13:20:ce:d8:fc:d6:ee:6b:f3:52:de: b8:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C9:98:33:AA:06:B0:89:DF:4C:E8:FD:E4:AF:45:D6:0F:CE:C5:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd78fb58-81b2-482f-a731-59203ab98f30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.184.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:2d:83:f4:c2:dc:54:9f:16:41:8c:fa:db:2f:51:3a:ff:69: 3a:1d:39:23:77:55:c7:48:17:64:1d:ea:ef:af:bf:6d:72:39: 9d:41:d4:5d:80:de:be:5a:9b:3a:ef:d4:ab:c6:0b:96:44:73: 70:d4:cb:65:fe:51:d0:a5:29:41:82:7d:4c:08:94:b6:b0:9e: e2:23:ff:a3:05:cc:df:80:73:94:f4:92:62:82:0e:f8:8e:47: 7a:4a:56:3e:a0:ea:d6:4c:35:d0:35:d2:68:e2:f3:ad:be:4a: 53:3c:6a:2c:3f:82:9e:20:fe:82:ce:b4:6d:f0:b2:3d:f7:24: 12:23:18:00:92:ed:4f:77:55:3a:84:4e:de:c3:37:66:f1:a2: 5d:ed:d8:f8:77:52:6f:f7:7b:ab:11:2a:65:b9:93:60:8f:dc: e5:e6:ee:1b:b5:5b:60:1c:d3:ba:34:5c:fe:71:d9:b5:54:4a: 60:b6:19:27:eb:f7:05:35:9f:7e:54:35:b2:a9:b0:31:7a:18: 92:4b:3f:59:8c:54:8c:9e:d1:07:27:5f:b5:77:05:4c:77:b9: 96:7d:7b:1a:81:83:c4:dc:f7:0b:b6:6b:ca:5e:0d:81:7c:f4: 3d:cc:ce:e5:62:a5:f3:34:fa:dd:a5:5c:71:e6:80:5c:87:4a: 58:81:d0:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKWdxvxw6mINDBNe1OFft/iUXBFwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI1MDAxMDQ3WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTZjMmE0Y2YxYTg4ZDhmZDE1YzRmMDRmOTQ0MTUxYTlh ZDRjYzFkOWYxMzg3ZWM5MzIxZjU1MTA1NGRjZDU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa/tgy28Jkx1Mv1hDdz0bhIHEq8OXWUkgwdVAvz2eGaSgb +dDtBEEoyJ3Ww7y2MrdHGHpuY8As2Z5bLBgsp3EcQ0FcrojdfU8IlOfa5/u16lUJ XgQu0YTezENAHQ1XIyPylb4fKKockmj/BJgB/vKr4XncrHoG/jP2kFd7SgVaQVMP x1rdZ5Nn3wnLuy9nANxez82vp72SOcgV/f5urepcmeC8p8OOv/39eUHiShToUnr7 xQ3P6x2hK56GNDbkxhcIiMMwmcaUpdkCXRhJaKhji6FeQjEL//qUTu4TNpcxYdHF 5+wBJeTpPFoBI+zD9RZPyGITIM7Y/Nbua/NS3rhNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULcmYM6oGsInfTOj95K9F1g/OxSwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkNzhmYjU4LTgxYjItNDgyZi1hNzMxLTU5MjAzYWI5OGYzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl7gwDQYJKoZIhvcNAQELBQADggEBAJ4tg/TC3FSfFkGM+tsvUTr/aTod OSN3VcdIF2Qd6u+vv21yOZ1B1F2A3r5amzrv1KvGC5ZEc3DUy2X+UdClKUGCfUwI lLawnuIj/6MFzN+Ac5T0kmKCDviOR3pKVj6g6tZMNdA10mji862+SlM8aiw/gp4g /oLOtG3wsj33JBIjGACS7U93VTqETt7DN2bxol3t2Ph3Um/3e6sRKmW5k2CP3OXm 7hu1W2Ac07o0XP5x2bVUSmC2GSfr9wU1n35UNbKpsDF6GJJLP1mMVIye0QcnX7V3 BUx3uZZ9exqBg8Tc9wu2a8peDYF89D3MzuVipfM0+t2lXHHmgFyHSliB0LA= -----END CERTIFICATE-----Generated at Tue Jul 1 16:11:14 2025 by rpki-client