$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa File: 2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa (raw, json) Hash identifier: YYPMSGQ8imzzjCTZyD5Ff6uxKo6k1hgZD03E4rWsTgA= Subject key identifier: 7F:90:6A:B3:4A:3E:0D:19:90:B3:45:92:69:95:E4:D8:3E:BE:E3:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FABF6DE39129FB6064387887F03AF4F3758A40E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa Signing time: Sat 19 Jul 2025 00:50:26 +0000 ROA not before: Sat 19 Jul 2025 00:50:26 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.87.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ab:f6:de:39:12:9f:b6:06:43:87:88:7f:03:af:4f:37:58:a4:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:50:26 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=fba1a49ae416f120396dd735f257f972943e8f8b45ff5999334a342791130e77, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e6:1d:c3:0b:c1:82:3b:77:39:25:55:99:be: 80:31:6b:0a:2f:3f:39:1a:f9:30:05:86:16:e0:ff: 30:45:27:9e:6e:7f:89:f2:35:f6:85:38:21:24:1d: c7:f2:f1:ec:6f:dd:d3:c8:24:f6:a8:8c:5a:bd:c8: 54:97:ed:ef:10:88:e1:ea:38:f2:0f:1f:4a:cf:f8: 3b:4b:98:e5:3b:73:97:f7:88:11:7f:53:88:6c:1c: 1b:b3:4d:cc:8c:21:73:87:57:08:14:f4:99:37:5a: c7:3c:f4:2f:6a:0a:f7:28:b2:55:12:d2:02:16:95: f4:ca:f9:78:cc:9e:61:ce:50:88:44:db:41:98:bd: 9f:6a:3a:4d:04:02:83:ff:66:d5:d6:5e:3b:39:d5: 07:4a:27:bc:f5:46:8d:e7:77:39:5a:fa:9f:c5:f8: d4:23:9a:37:fc:3a:95:ab:6f:b2:06:c8:b9:a0:43: cd:5a:7f:f9:86:1d:26:41:d8:45:b9:c4:72:f3:dc: 42:5f:1d:d3:77:d7:87:87:1d:26:b2:af:90:5d:81: 24:6a:40:8c:33:38:bb:c4:51:2a:a5:32:48:6e:cb: 4c:01:e0:9f:68:a9:dd:58:93:94:1f:90:bb:16:1e: 49:6a:8c:25:3e:4d:b8:ad:f5:97:72:ea:13:5d:df: 7f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:90:6A:B3:4A:3E:0D:19:90:B3:45:92:69:95:E4:D8:3E:BE:E3:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.128.0/18 Signature Algorithm: sha256WithRSAEncryption 25:58:f8:41:4f:d3:5b:31:ba:cf:38:f8:19:b4:40:2d:25:6f: f5:a0:ae:24:2f:d9:30:b3:a1:71:7d:3a:84:d1:e3:2e:76:18: f3:0f:3f:c1:27:b0:f1:2c:2f:3a:70:a0:b0:55:d0:5e:9e:03: 5e:ba:57:39:04:d8:d6:2b:17:92:5f:fd:36:de:12:d8:b7:1d: 5c:02:e4:a0:97:a5:4f:b8:15:74:e7:0d:40:b0:03:dd:12:6c: fa:a9:d7:2c:8b:16:d3:e0:15:a7:d8:b8:91:cc:32:55:f6:04: 71:e0:79:2f:90:c9:7c:98:47:db:5c:39:91:05:2a:bf:84:88: 7b:58:36:03:15:2d:31:92:72:49:be:13:a9:4c:3e:e3:cf:78: d0:f3:05:6a:ee:05:3e:e8:5f:f5:44:92:f1:6c:1d:68:49:50: 2d:7a:a6:81:50:74:5a:d4:82:82:80:d4:0e:26:8e:bb:24:9b: 0a:16:2b:c9:c9:e2:3b:4d:88:2a:3e:2a:8e:79:74:b9:b0:a3: e7:93:f4:2d:16:92:e1:5d:a2:58:18:0d:fc:2a:bd:af:84:68: ed:23:be:be:18:3b:0a:59:89:c4:1c:81:2c:59:53:b5:63:aa: ec:09:a0:ce:85:3b:db:5c:63:c6:eb:2e:eb:b2:72:70:a1:ef: 00:0b:43:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD6v23jkSn7YGQ4eIfwOvTzdYpA4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDA1MDI2WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmExYTQ5YWU0MTZmMTIwMzk2ZGQ3MzVmMjU3Zjk3Mjk0 M2U4ZjhiNDVmZjU5OTkzMzRhMzQyNzkxMTMwZTc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt5h3DC8GCO3c5JVWZvoAxawovPzka+TAFhhbg/zBFJ55u f4nyNfaFOCEkHcfy8exv3dPIJPaojFq9yFSX7e8QiOHqOPIPH0rP+DtLmOU7c5f3 iBF/U4hsHBuzTcyMIXOHVwgU9Jk3Wsc89C9qCvcoslUS0gIWlfTK+XjMnmHOUIhE 20GYvZ9qOk0EAoP/ZtXWXjs51QdKJ7z1Ro3ndzla+p/F+NQjmjf8OpWrb7IGyLmg Q81af/mGHSZB2EW5xHLz3EJfHdN314eHHSayr5BdgSRqQIwzOLvEUSqlMkhuy0wB 4J9oqd1Yk5QfkLsWHklqjCU+Tbit9Zdy6hNd3385AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf5Bqs0o+DRmQs0WSaZXk2D6+448wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkOTViZDYyLWU2ODEtNGNlZi1hMDI2LWZiYjJkMmViMWVmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjV4AwDQYJKoZIhvcNAQELBQADggEBACVY+EFP01sxus84+Bm0QC0lb/Wg riQv2TCzoXF9OoTR4y52GPMPP8EnsPEsLzpwoLBV0F6eA166VzkE2NYrF5Jf/Tbe Eti3HVwC5KCXpU+4FXTnDUCwA90SbPqp1yyLFtPgFafYuJHMMlX2BHHgeS+QyXyY R9tcOZEFKr+EiHtYNgMVLTGSckm+E6lMPuPPeNDzBWruBT7oX/VEkvFsHWhJUC16 poFQdFrUgoKA1A4mjrskmwoWK8nJ4jtNiCo+Ko55dLmwo+eT9C0WkuFdolgYDfwq va+EaO0jvr4YOwpZicQcgSxZU7VjquwJoM6FO9tcY8brLuuycnCh7wALQ28= -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:04 2025 by rpki-client