$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa File: 3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa (raw, json) Hash identifier: u/uGABjkaGAPE1y6Te2x85XP+Qg9b801iOikxY4ThAQ= Subject key identifier: 92:2C:D2:00:72:11:39:ED:E5:6F:DE:DE:BC:A4:09:DE:AE:43:89:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 772DA89B76833E2F99BD5D6493EF8CEFF768B9F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa Signing time: Fri 18 Jul 2025 00:51:12 +0000 ROA not before: Fri 18 Jul 2025 00:51:12 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:2d:a8:9b:76:83:3e:2f:99:bd:5d:64:93:ef:8c:ef:f7:68:b9:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:51:12 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=c3609e38a0f5691d3740632911e7e53747b9220edf2421db5e83ddf04f1f8f65, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:53:5b:00:12:63:b5:15:51:16:b8:e3:b0: 78:ce:c2:9b:75:17:ef:78:4f:23:9c:6a:0a:02:39: cd:2a:f5:e5:ed:e8:c3:f8:20:14:18:a1:ed:43:cc: 49:38:28:ab:28:c9:6a:24:71:5c:19:25:5e:58:30: 48:22:3c:d3:2f:41:7f:f4:72:33:53:cf:79:aa:28: 5e:01:d1:10:5f:82:24:11:5b:3f:7b:68:9a:9f:be: b5:06:6a:ad:b6:d3:2c:7f:a2:c7:7e:58:bb:19:72: 92:af:c0:ee:30:00:51:3e:c8:69:7e:23:89:1d:b0: e8:c2:b8:e4:6c:e7:af:29:42:8e:96:34:bb:53:80: ff:8f:de:cb:26:cc:5c:40:31:0d:74:b8:dd:0c:0c: 9a:88:32:ca:e6:07:8f:f7:b2:ad:f5:fe:c7:3e:cc: 0d:79:78:38:13:d6:5a:5d:e1:47:6f:3b:29:e2:a7: 09:ba:73:7e:5b:fe:3d:81:63:b2:71:71:2d:23:df: fa:93:60:82:f8:e1:8f:be:8a:ac:43:15:25:c3:d9: 47:fa:39:d1:6a:63:80:82:5d:93:16:ac:84:37:95: fd:c2:72:fa:65:fa:2d:b1:0e:05:64:6d:b0:fc:b7: ba:d0:68:de:21:b0:46:bc:39:8d:dc:84:27:10:5c: 69:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2C:D2:00:72:11:39:ED:E5:6F:DE:DE:BC:A4:09:DE:AE:43:89:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.186.0/24 Signature Algorithm: sha256WithRSAEncryption 55:29:cc:15:d5:bd:42:db:7c:0b:1a:15:db:e2:41:91:64:5d: c9:ac:2b:39:a2:78:c5:24:71:6d:53:20:fb:59:fd:b2:f8:87: 90:e1:67:9c:a7:48:a4:78:e4:d5:83:e5:67:72:ab:61:ab:0b: 68:7e:77:89:48:69:59:01:0b:84:69:af:cf:91:e7:01:58:45: e8:30:6d:43:c6:06:96:31:ea:fa:bb:45:31:8a:3c:7b:c2:08: 53:e5:bf:78:27:43:31:c5:9b:ad:1c:9c:c7:07:ff:b3:63:ed: 65:fb:8e:a5:47:93:ce:88:6c:66:27:36:65:ca:30:a0:78:ce: d8:5b:e2:a2:33:13:29:a0:6e:8e:18:a7:b4:6c:67:d8:91:6b: 2c:28:c6:4b:e2:f6:87:eb:1f:db:a8:53:ef:b8:ff:e1:a1:9b: 66:c9:42:59:2d:d9:36:10:e2:a6:88:40:17:b8:d8:cc:4d:91: 7a:92:9d:f3:f1:03:d6:8e:d5:da:c2:23:4e:f1:15:09:1f:a2: 2d:b0:72:ab:f7:c6:ac:ee:26:54:84:d5:cd:b2:71:b8:a8:37: 70:17:35:f2:71:8a:6f:e5:8e:3c:c7:85:23:b7:94:d2:c7:92: 86:1f:17:c1:a0:3a:35:09:92:40:44:13:b7:8e:01:a9:39:26: c3:9a:59:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdy2om3aDPi+ZvV1kk++M7/doufYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDA1MTEyWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzYwOWUzOGEwZjU2OTFkMzc0MDYzMjkxMWU3ZTUzNzQ3 YjkyMjBlZGYyNDIxZGI1ZTgzZGRmMDRmMWY4ZjY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8dFNbABJjtRVRFrjjsHjOwpt1F+94TyOcagoCOc0q9eXt 6MP4IBQYoe1DzEk4KKsoyWokcVwZJV5YMEgiPNMvQX/0cjNTz3mqKF4B0RBfgiQR Wz97aJqfvrUGaq220yx/osd+WLsZcpKvwO4wAFE+yGl+I4kdsOjCuORs568pQo6W NLtTgP+P3ssmzFxAMQ10uN0MDJqIMsrmB4/3sq31/sc+zA15eDgT1lpd4UdvOyni pwm6c35b/j2BY7JxcS0j3/qTYIL44Y++iqxDFSXD2Uf6OdFqY4CCXZMWrIQ3lf3C cvpl+i2xDgVkbbD8t7rQaN4hsEa8OY3chCcQXGm7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkizSAHIROe3lb97evKQJ3q5DiQIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MzNjNzgyLTRhOGUtNGIwNS1iMjNlLWUzNzQxZTlmYjAyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTbowDQYJKoZIhvcNAQELBQADggEBAFUpzBXVvULbfAsaFdviQZFkXcms KzmieMUkcW1TIPtZ/bL4h5DhZ5ynSKR45NWD5Wdyq2GrC2h+d4lIaVkBC4Rpr8+R 5wFYRegwbUPGBpYx6vq7RTGKPHvCCFPlv3gnQzHFm60cnMcH/7Nj7WX7jqVHk86I bGYnNmXKMKB4zthb4qIzEymgbo4Yp7RsZ9iRaywoxkvi9ofrH9uoU++4/+Ghm2bJ Qlkt2TYQ4qaIQBe42MxNkXqSnfPxA9aO1drCI07xFQkfoi2wcqv3xqzuJlSE1c2y cbioN3AXNfJxim/ljjzHhSO3lNLHkoYfF8GgOjUJkkBEE7eOAak5JsOaWcY= -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:19 2025 by rpki-client