$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaad6c7d-4b0b-4907-ac15-be008f56cea0.roa File: eaad6c7d-4b0b-4907-ac15-be008f56cea0.roa (raw, json) Hash identifier: ByPND6geX+n6oAnztqWkJ3TfeP/2qwRSyr4n8Tr4tsE= Subject key identifier: 04:4C:3F:F2:8D:2E:0E:30:57:8D:FA:39:33:18:ED:6D:76:E2:01:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14178C79DD47811168E92EE8706A852F964A820B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaad6c7d-4b0b-4907-ac15-be008f56cea0.roa Signing time: Mon 23 Jun 2025 15:50:30 +0000 ROA not before: Mon 23 Jun 2025 15:50:30 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:17:8c:79:dd:47:81:11:68:e9:2e:e8:70:6a:85:2f:96:4a:82:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:50:30 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=04bdbef4e2700faacf22d00f5f0f350c30350f07b2127dc992f47a8bb514ebd6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2b:d8:25:e3:66:60:7f:19:27:17:17:a8:41: 91:c4:af:be:36:fd:bf:d3:77:4a:eb:99:67:aa:4a: 7f:97:3d:2b:d4:77:e0:6d:cf:cd:3d:0c:6d:e2:d8: df:e2:27:19:d3:df:79:a7:c5:06:8a:5f:59:40:26: 4e:de:f0:11:32:97:ba:8e:8b:9b:6f:be:24:ad:91: 9b:45:18:b5:0b:f4:09:df:10:57:84:2f:a7:aa:6a: c3:fe:37:a7:27:17:19:17:b9:fc:ba:17:c4:82:e2: 23:41:b6:b9:f2:57:af:4d:01:26:98:a2:2b:8d:35: 2c:ae:89:e7:8c:cc:4d:66:2e:bb:71:c1:c3:f4:ec: 8d:0c:c8:8f:52:be:e8:c0:a2:48:bb:33:58:0f:ab: fd:b3:e7:d1:7f:60:ef:1d:45:ba:06:79:6c:d4:e5: 09:96:bf:f6:63:7d:43:7a:47:b3:0b:4c:f7:e4:8c: 9d:51:79:45:37:21:f5:9f:2d:f3:17:96:44:83:8c: e2:73:a6:77:c0:f0:70:fa:86:5f:8f:a6:0b:60:c2: aa:8d:d0:9d:2b:d6:31:c2:e8:55:28:04:81:08:fc: ee:34:b8:44:83:9b:5a:f7:21:73:51:61:de:86:14: 7f:95:2b:0f:86:16:66:1b:5b:05:83:69:ff:be:e8: 4c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:4C:3F:F2:8D:2E:0E:30:57:8D:FA:39:33:18:ED:6D:76:E2:01:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaad6c7d-4b0b-4907-ac15-be008f56cea0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.241.0/24 Signature Algorithm: sha256WithRSAEncryption 42:95:fc:38:90:28:0c:86:c6:28:ed:39:8a:32:03:0a:cf:5a: 50:29:7f:56:33:81:b1:3e:51:f8:d4:20:ac:d7:e0:68:72:5d: ff:35:d6:92:49:19:b8:c4:64:6f:87:0c:26:7a:52:04:38:69: b0:a8:e6:d7:62:ea:33:82:91:48:87:a4:11:39:eb:2c:2e:17: 1c:4f:34:9a:76:33:47:c1:4e:88:4b:c6:c2:f8:a1:1d:01:3f: c8:bc:0c:b6:56:20:aa:5d:a3:68:d1:d6:f1:d4:7f:0f:ee:d8: 3a:75:4b:dc:ad:c5:70:32:98:9e:60:1f:db:96:81:36:c7:d1: e9:96:59:09:b5:2a:f8:d0:72:5f:e4:82:89:c1:ca:6a:61:7a: 32:a3:c4:60:fb:1e:2d:a7:95:5e:13:60:83:28:a6:e8:04:7a: ba:79:37:85:f3:af:ce:32:5a:ce:1d:52:30:f5:26:78:73:5c: 52:e4:d7:de:fb:b8:1e:57:ae:b4:fd:79:38:87:10:ba:49:17: ed:13:9d:ed:bd:29:fe:c7:db:00:f6:df:60:60:7a:4a:a8:28: b0:47:bf:52:03:81:50:dc:ac:01:78:26:5a:4e:ff:fa:a7:68: cf:4a:90:22:6d:a9:f7:70:0c:56:b3:a7:1f:a9:5e:fe:f0:86: 3c:c4:29:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFBeMed1HgRFo6S7ocGqFL5ZKggswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU1MDMwWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGJkYmVmNGUyNzAwZmFhY2YyMmQwMGY1ZjBmMzUwYzMw MzUwZjA3YjIxMjdkYzk5MmY0N2E4YmI1MTRlYmQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClK9gl42ZgfxknFxeoQZHEr742/b/Td0rrmWeqSn+XPSvU d+Btz809DG3i2N/iJxnT33mnxQaKX1lAJk7e8BEyl7qOi5tvviStkZtFGLUL9Anf EFeEL6eqasP+N6cnFxkXufy6F8SC4iNBtrnyV69NASaYoiuNNSyuieeMzE1mLrtx wcP07I0MyI9SvujAoki7M1gPq/2z59F/YO8dRboGeWzU5QmWv/ZjfUN6R7MLTPfk jJ1ReUU3IfWfLfMXlkSDjOJzpnfA8HD6hl+PpgtgwqqN0J0r1jHC6FUoBIEI/O40 uESDm1r3IXNRYd6GFH+VKw+GFmYbWwWDaf++6Ey/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBEw/8o0uDjBXjfo5MxjtbXbiASQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhYWQ2YzdkLTRiMGItNDkwNy1hYzE1LWJlMDA4ZjU2Y2VhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfEwDQYJKoZIhvcNAQELBQADggEBAEKV/DiQKAyGxijtOYoyAwrPWlAp f1YzgbE+UfjUIKzX4GhyXf811pJJGbjEZG+HDCZ6UgQ4abCo5tdi6jOCkUiHpBE5 6ywuFxxPNJp2M0fBTohLxsL4oR0BP8i8DLZWIKpdo2jR1vHUfw/u2Dp1S9ytxXAy mJ5gH9uWgTbH0emWWQm1KvjQcl/kgonBymphejKjxGD7Hi2nlV4TYIMopugEerp5 N4Xzr84yWs4dUjD1JnhzXFLk1977uB5XrrT9eTiHELpJF+0Tne29Kf7H2wD232Bg ekqoKLBHv1IDgVDcrAF4JlpO//qnaM9KkCJtqfdwDFazpx+pXv7whjzEKR4= -----END CERTIFICATE-----Generated at Sun Jun 29 09:23:01 2025 by rpki-client