$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaad6c7d-4b0b-4907-ac15-be008f56cea0.roa File: eaad6c7d-4b0b-4907-ac15-be008f56cea0.roa (raw, json) Hash identifier: z+auAzNbg7zsij9ms6hKMn/x119xBVUz5NykZ57jJ9E= Subject key identifier: FB:75:EF:C4:86:45:BC:47:86:E9:BC:43:80:5E:8C:0E:D0:3A:F3:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44DD8FDE5DBD936684F6A535A6C4AF4642F18ACE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaad6c7d-4b0b-4907-ac15-be008f56cea0.roa Signing time: Tue 12 Aug 2025 15:00:16 +0000 ROA not before: Tue 12 Aug 2025 15:00:16 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:dd:8f:de:5d:bd:93:66:84:f6:a5:35:a6:c4:af:46:42:f1:8a:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 15:00:16 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=734e35ab84eb83567722e8147bdce199c1c7f687d9d3dd26efe2bcfbfed35df0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:36:94:65:65:90:7a:1c:c8:f6:54:a5:d4: 2d:95:60:ab:4b:87:53:17:a1:44:f7:1f:1a:82:1a: a9:4b:a6:0c:0e:ac:6d:a8:7b:1e:92:fa:0d:85:69: 9d:1e:fa:a1:bc:9a:5f:4d:6a:f8:ca:1f:1e:f2:50: b9:d2:bc:18:18:6f:f7:12:f3:d1:db:a8:7a:c6:c4: e0:31:3b:11:e1:2a:55:79:84:7b:0d:46:8f:60:a4: 57:e3:38:0b:ba:05:ea:89:97:b3:5d:6f:cd:bc:28: 5a:6b:aa:aa:5e:ef:5a:06:12:03:3e:91:41:20:2a: 3e:07:36:15:2c:4e:ad:61:e7:0c:06:47:9b:e3:21: 33:82:60:4d:69:f9:18:7f:1b:3e:b3:6a:ca:3a:d1: 86:2b:29:6a:2d:72:1b:f4:92:92:c5:2b:1a:87:07: 59:a4:d0:e8:2a:ae:26:85:63:5c:f4:66:f4:d5:49: 76:71:06:c0:8a:01:d1:58:91:f7:97:c9:71:22:f4: 32:46:63:9d:a5:a7:83:b2:e3:37:50:b3:33:86:cb: 70:00:af:25:1f:eb:b2:9b:4d:36:23:1a:87:f8:77: ed:ef:75:90:a4:cb:e9:bc:29:e5:ec:92:ab:9c:85: 1c:35:ed:ee:ac:9c:47:36:dd:30:eb:57:c0:37:7f: fa:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:75:EF:C4:86:45:BC:47:86:E9:BC:43:80:5E:8C:0E:D0:3A:F3:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaad6c7d-4b0b-4907-ac15-be008f56cea0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.241.0/24 Signature Algorithm: sha256WithRSAEncryption 26:8b:11:70:e5:4c:95:bd:7d:5e:04:34:b9:c3:75:54:99:55: 86:a9:d5:39:dd:4a:52:19:5b:63:bb:92:d8:a4:d9:60:9c:16: 21:99:d8:6c:c1:f1:47:99:bb:7b:4f:e5:42:ce:8a:0e:4a:4f: e6:75:ae:e1:16:40:03:6c:24:a7:eb:08:78:d6:86:b3:fc:a4: 99:36:eb:fb:3f:1c:74:d0:b9:17:dc:34:5c:1c:8e:09:37:dd: 2a:b6:63:fc:75:1b:ff:56:a4:7b:7e:bc:f9:dc:d9:ce:ab:59: a3:ec:8f:f9:20:6e:49:aa:90:e7:6e:2d:5e:b6:9f:c9:98:fd: 74:f9:1e:ff:91:6d:cb:6f:87:d0:65:c5:e8:59:4b:6b:f0:99: 15:2a:59:2d:d1:43:7a:43:36:4d:0a:29:ea:e9:73:62:67:9f: 34:65:7f:a6:43:1a:33:09:bc:6e:10:31:d1:d0:d2:29:2f:1b: 6a:ba:fa:cc:1b:61:6e:8f:c4:40:6e:9e:51:73:ff:e8:6f:ce: 1f:b3:53:16:8e:21:5f:a7:c7:70:e9:be:91:73:4e:7f:d9:bc: 73:e0:c2:68:94:75:fa:8a:e9:bc:49:95:7f:6f:9f:3a:02:cc: f4:e4:8a:93:45:07:f7:75:b1:36:fc:a3:dc:6a:40:7d:ab:02: 1f:53:2c:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURN2P3l29k2aE9qU1psSvRkLxis4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMTUwMDE2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzRlMzVhYjg0ZWI4MzU2NzcyMmU4MTQ3YmRjZTE5OWMx YzdmNjg3ZDlkM2RkMjZlZmUyYmNmYmZlZDM1ZGYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkejaUZWWQehzI9lSl1C2VYKtLh1MXoUT3HxqCGqlLpgwO rG2oex6S+g2FaZ0e+qG8ml9NavjKHx7yULnSvBgYb/cS89HbqHrGxOAxOxHhKlV5 hHsNRo9gpFfjOAu6BeqJl7Ndb828KFprqqpe71oGEgM+kUEgKj4HNhUsTq1h5wwG R5vjITOCYE1p+Rh/Gz6zaso60YYrKWotchv0kpLFKxqHB1mk0OgqriaFY1z0ZvTV SXZxBsCKAdFYkfeXyXEi9DJGY52lp4Oy4zdQszOGy3AAryUf67KbTTYjGof4d+3v dZCky+m8KeXskquchRw17e6snEc23TDrV8A3f/r/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+3XvxIZFvEeG6bxDgF6MDtA68/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhYWQ2YzdkLTRiMGItNDkwNy1hYzE1LWJlMDA4ZjU2Y2VhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfEwDQYJKoZIhvcNAQELBQADggEBACaLEXDlTJW9fV4ENLnDdVSZVYap 1TndSlIZW2O7ktik2WCcFiGZ2GzB8UeZu3tP5ULOig5KT+Z1ruEWQANsJKfrCHjW hrP8pJk26/s/HHTQuRfcNFwcjgk33Sq2Y/x1G/9WpHt+vPnc2c6rWaPsj/kgbkmq kOduLV62n8mY/XT5Hv+Rbctvh9BlxehZS2vwmRUqWS3RQ3pDNk0KKerpc2JnnzRl f6ZDGjMJvG4QMdHQ0ikvG2q6+swbYW6PxEBunlFz/+hvzh+zUxaOIV+nx3DpvpFz Tn/ZvHPgwmiUdfqK6bxJlX9vnzoCzPTkipNFB/d1sTb8o9xqQH2rAh9TLOU= -----END CERTIFICATE-----Generated at Sat Aug 23 08:16:53 2025 by rpki-client