$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d95802-c80e-48cb-8f8e-746d414d0f7f.roa File: 46d95802-c80e-48cb-8f8e-746d414d0f7f.roa (raw, json) Hash identifier: eNeHRC7uI1cHlw7iqSHZncXhKiDqdkwo+QQvHi0TrdU= Subject key identifier: D6:27:14:B3:A6:7C:5E:BA:DB:41:75:A9:B0:5A:E4:9C:04:1B:ED:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 435D5BF80A39ADB235E5961A148817603606EB75 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d95802-c80e-48cb-8f8e-746d414d0f7f.roa Signing time: Mon 14 Jul 2025 15:21:43 +0000 ROA not before: Mon 14 Jul 2025 15:21:43 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5d:5b:f8:0a:39:ad:b2:35:e5:96:1a:14:88:17:60:36:06:eb:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:21:43 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=2eb69e46b4e446d4fec919d8f4176f776ebe43695af313559b6de21f3783a7e8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ef:e0:ea:3f:4f:7d:2a:e2:40:5e:d5:98:52: aa:8d:01:f3:01:ef:b6:70:a4:4c:c4:79:20:f5:61: 6b:a6:94:6c:49:43:16:83:a3:04:2f:f0:9f:5a:72: aa:9d:28:eb:2e:ed:c0:0a:f4:18:a8:bd:16:62:28: a4:21:b0:f6:d7:3a:36:ed:50:08:e5:9f:b6:14:70: 1f:ba:ab:1d:5e:9a:bb:fb:ab:c9:f3:bb:13:14:cc: 97:a9:c6:75:ad:3a:ec:36:f3:c8:64:51:e5:a6:e9: c2:c2:9d:57:8a:80:3b:9d:71:83:d5:fc:a1:b9:76: bf:93:30:72:87:7f:d7:0c:1c:69:2e:b2:8d:32:0f: 4f:76:ff:c0:8f:78:ce:ce:fc:d2:c6:0c:24:45:eb: 4c:2a:a0:93:1f:be:ca:32:da:0f:c3:e2:0d:cb:b4: cb:a1:8f:5a:28:01:be:d2:68:d3:da:68:5a:89:a1: 36:99:dd:dd:16:e2:c4:4d:d0:d3:58:a3:0c:65:dc: de:34:41:9f:28:77:5f:a0:22:a8:15:82:85:e8:69: c3:53:9c:19:04:ee:18:04:d7:28:b8:98:c0:08:6e: 06:d1:29:0f:a9:26:06:74:58:24:45:73:ba:2f:86: 59:a3:08:fd:76:f5:41:20:38:c8:45:02:2e:66:08: 13:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:27:14:B3:A6:7C:5E:BA:DB:41:75:A9:B0:5A:E4:9C:04:1B:ED:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d95802-c80e-48cb-8f8e-746d414d0f7f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.237.0/24 Signature Algorithm: sha256WithRSAEncryption 71:39:02:3a:57:00:ac:36:25:5e:91:d3:dd:8f:27:30:91:38: 3a:b8:5a:1f:a7:36:94:e7:d4:6a:e0:9a:bc:2d:34:59:26:98: c0:6f:38:69:17:50:29:ae:75:35:73:cb:17:3d:bc:17:d0:68: d5:71:19:f5:50:42:a5:5c:b5:d7:fe:dd:55:12:ba:12:8a:01: 10:3a:59:05:c5:f3:76:3f:b5:d1:19:f7:d3:f5:64:55:df:b4: 61:45:20:ac:d4:37:74:69:be:90:28:cf:4c:b4:a1:a7:11:43: a1:ea:2c:8b:5d:f2:73:85:70:90:30:24:9a:56:e9:fb:0a:a7: b9:9c:bb:04:1a:03:66:67:fa:c4:b8:18:3c:fd:0f:dd:05:15: ce:0d:05:50:6f:be:cb:59:58:77:1e:c5:0d:37:5e:6b:2c:17: f4:5d:5d:35:0f:a3:2f:2c:8b:fe:f2:54:99:69:1d:03:93:80: 91:32:03:88:2d:3d:26:fd:de:c5:f3:21:a8:25:a1:77:be:48: f8:22:a6:28:97:d1:ac:8d:57:72:fb:9c:ab:e9:f7:4e:dd:cb: e0:e3:de:a9:bf:8c:86:e4:b5:07:3c:48:ba:34:2a:77:fa:06: e2:f1:4d:1d:9c:1e:4f:c5:31:30:c3:74:b2:b4:db:42:63:6e: 98:2d:5b:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ11b+Ao5rbI15ZYaFIgXYDYG63UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUyMTQzWhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZWI2OWU0NmI0ZTQ0NmQ0ZmVjOTE5ZDhmNDE3NmY3NzZl YmU0MzY5NWFmMzEzNTU5YjZkZTIxZjM3ODNhN2U4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC37+DqP099KuJAXtWYUqqNAfMB77ZwpEzEeSD1YWumlGxJ QxaDowQv8J9acqqdKOsu7cAK9BiovRZiKKQhsPbXOjbtUAjln7YUcB+6qx1emrv7 q8nzuxMUzJepxnWtOuw288hkUeWm6cLCnVeKgDudcYPV/KG5dr+TMHKHf9cMHGku so0yD092/8CPeM7O/NLGDCRF60wqoJMfvsoy2g/D4g3LtMuhj1ooAb7SaNPaaFqJ oTaZ3d0W4sRN0NNYowxl3N40QZ8od1+gIqgVgoXoacNTnBkE7hgE1yi4mMAIbgbR KQ+pJgZ0WCRFc7ovhlmjCP129UEgOMhFAi5mCBNdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1icUs6Z8XrrbQXWpsFrknAQb7aYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2ZDk1ODAyLWM4MGUtNDhjYi04ZjhlLTc0NmQ0MTRkMGY3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTe0wDQYJKoZIhvcNAQELBQADggEBAHE5AjpXAKw2JV6R092PJzCRODq4 Wh+nNpTn1GrgmrwtNFkmmMBvOGkXUCmudTVzyxc9vBfQaNVxGfVQQqVctdf+3VUS uhKKARA6WQXF83Y/tdEZ99P1ZFXftGFFIKzUN3RpvpAoz0y0oacRQ6HqLItd8nOF cJAwJJpW6fsKp7mcuwQaA2Zn+sS4GDz9D90FFc4NBVBvvstZWHcexQ03XmssF/Rd XTUPoy8si/7yVJlpHQOTgJEyA4gtPSb93sXzIagloXe+SPgipiiX0ayNV3L7nKvp 907dy+Dj3qm/jIbktQc8SLo0Knf6BuLxTR2cHk/FMTDDdLK020JjbpgtW90= -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:27 2025 by rpki-client