$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa File: 8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa (raw, json) Hash identifier: v9PUINDS7auOyrn7+iF4tOiStkpJpXhkz9GKWvhDP7I= Subject key identifier: 09:47:8D:EF:23:C1:D0:BF:AB:E5:F1:80:05:D4:6F:AB:87:85:85:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67503E1136E2E4DC8B8E810D44E8250566666C69 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa Signing time: Sat 19 Jul 2025 00:41:57 +0000 ROA not before: Sat 19 Jul 2025 00:41:57 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:50:3e:11:36:e2:e4:dc:8b:8e:81:0d:44:e8:25:05:66:66:6c:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:41:57 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=bd384d64bb5735aac7e9edbd63b891f1ef839d64cea5150a31ac5ab3c2f82e72, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:94:e6:a6:7e:e2:e4:44:66:e2:f7:75:ab:eb: b7:47:39:ec:1f:ea:d3:b8:d4:25:6a:3f:93:f8:4d: 01:de:90:5b:55:b7:a9:98:27:d4:d5:1d:3b:f8:0e: 3e:bb:18:65:96:17:66:38:de:6c:54:92:cd:e5:e6: 4b:b3:b2:d1:80:d9:d7:d3:87:f9:33:28:5d:53:d1: 43:6e:a6:11:6d:25:7e:55:83:e8:fc:cf:d2:21:a6: 04:c2:3b:bc:9f:03:33:1d:c5:d5:01:03:f3:5d:9c: 2a:ce:7e:6c:52:8b:6a:79:0e:44:b0:24:00:a2:28: 54:20:71:d5:09:a0:0f:de:2a:f9:26:e9:71:22:3f: ef:1b:2c:64:b8:a2:b9:b2:74:cb:00:e6:a6:4e:1e: 2e:cd:43:c6:ec:8a:6e:dc:12:b9:3b:0d:93:03:62: 30:fa:fb:01:1c:94:37:10:be:7f:03:20:cc:4b:92: 57:be:75:89:10:ca:3d:57:95:b8:93:fe:74:1b:32: 16:f4:dc:b3:3e:ed:2f:09:5c:bf:c5:0a:bf:54:cd: e0:4d:2d:12:35:6f:13:1c:c6:cc:2f:5d:b8:13:dd: 54:f7:af:a8:01:6d:f5:bb:db:cd:13:36:b0:42:08: e0:12:ae:51:62:30:af:ec:39:a5:ea:ad:8e:be:96: bd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:47:8D:EF:23:C1:D0:BF:AB:E5:F1:80:05:D4:6F:AB:87:85:85:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.145.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:22:cb:9a:37:15:3f:7e:06:7d:98:d1:f6:1c:93:cc:7a:97: ee:3f:91:40:ca:ab:15:92:6e:9b:71:c7:32:66:93:6f:cb:60: f3:e1:de:de:1a:2f:48:af:e7:a2:75:26:d0:ed:64:59:0c:ae: 51:8f:9d:63:c3:da:ba:10:57:af:69:90:da:45:04:c2:65:01: 73:87:64:db:b5:9b:36:87:2c:68:68:b7:48:46:38:97:2f:05: b1:93:46:e7:5c:45:bb:9e:9b:8a:2d:4e:38:1d:d5:dd:0f:de: 03:18:0f:9c:4c:58:f5:56:4f:33:79:93:f2:69:df:69:4d:fc: 2b:ab:d1:bd:b1:a9:44:04:c9:47:13:38:c2:4e:55:5f:b7:7c: cb:bc:09:5d:6e:2e:44:f6:fa:bf:d5:66:4b:ea:4f:ac:e0:8f: b7:18:9e:c0:5b:eb:64:95:e0:9a:11:d6:6c:8b:30:3a:a2:0b: 5a:dc:ec:1f:bc:15:e8:1f:eb:d9:08:5e:7f:59:7e:97:9a:31: ab:8a:9f:cc:e8:dd:1a:12:8b:15:be:ea:11:50:53:9e:05:60: 41:36:7c:55:c4:e7:58:bb:04:73:dd:1e:5e:da:9b:18:56:0b: b6:30:48:9d:8c:b5:ee:7f:26:bd:71:65:c9:de:c8:7b:e8:37: 47:3d:3f:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ1A+ETbi5NyLjoENROglBWZmbGkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDA0MTU3WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDM4NGQ2NGJiNTczNWFhYzdlOWVkYmQ2M2I4OTFmMWVm ODM5ZDY0Y2VhNTE1MGEzMWFjNWFiM2MyZjgyZTcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVlOamfuLkRGbi93Wr67dHOewf6tO41CVqP5P4TQHekFtV t6mYJ9TVHTv4Dj67GGWWF2Y43mxUks3l5kuzstGA2dfTh/kzKF1T0UNuphFtJX5V g+j8z9IhpgTCO7yfAzMdxdUBA/NdnCrOfmxSi2p5DkSwJACiKFQgcdUJoA/eKvkm 6XEiP+8bLGS4ormydMsA5qZOHi7NQ8bsim7cErk7DZMDYjD6+wEclDcQvn8DIMxL kle+dYkQyj1XlbiT/nQbMhb03LM+7S8JXL/FCr9UzeBNLRI1bxMcxswvXbgT3VT3 r6gBbfW7280TNrBCCOASrlFiMK/sOaXqrY6+lr3ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCUeN7yPB0L+r5fGABdRvq4eFhTswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmY2QwOGJkLTg4MDQtNDMxYS05MWIyLTEyNWY1M2FiN2YwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZEwDQYJKoZIhvcNAQELBQADggEBAB4iy5o3FT9+Bn2Y0fYck8x6l+4/ kUDKqxWSbptxxzJmk2/LYPPh3t4aL0iv56J1JtDtZFkMrlGPnWPD2roQV69pkNpF BMJlAXOHZNu1mzaHLGhot0hGOJcvBbGTRudcRbuem4otTjgd1d0P3gMYD5xMWPVW TzN5k/Jp32lN/Cur0b2xqUQEyUcTOMJOVV+3fMu8CV1uLkT2+r/VZkvqT6zgj7cY nsBb62SV4JoR1myLMDqiC1rc7B+8Fegf69kIXn9ZfpeaMauKn8zo3RoSixW+6hFQ U54FYEE2fFXE51i7BHPdHl7amxhWC7YwSJ2Mte5/Jr1xZcneyHvoN0c9P8c= -----END CERTIFICATE-----Generated at Wed Jul 23 02:28:34 2025 by rpki-client