$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa File: eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa (raw, json) Hash identifier: lXFnnMtu95DuQ5hK+iJ7Hho1u81A0I/uXnnGFsKuLbM= Subject key identifier: 95:7C:6D:05:40:D3:13:86:84:62:50:9B:39:08:70:66:E0:5B:84:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6ED883D9D55C0AA984674C9421501532BFAEF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa Signing time: Mon 14 Jul 2025 15:21:36 +0000 ROA not before: Mon 14 Jul 2025 15:21:36 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:d8:83:d9:d5:5c:0a:a9:84:67:4c:94:21:50:15:32:bf:ae:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:21:36 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=31aec4bcda60012475c7aaa5418e6ff331906b499195d5444b8291a2f1c5b82d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b3:7e:66:1e:5a:4b:ef:94:a4:1e:5f:cc:d8: fc:b3:9c:a0:db:c3:6c:dc:3f:69:14:1d:f8:95:3f: 54:2a:a0:08:50:79:7c:3f:dc:cb:53:eb:69:cb:a8: 55:3e:48:b0:17:a7:85:67:d5:a7:0b:33:18:43:8b: 29:f1:1b:96:3d:76:7d:ed:88:6f:99:2f:76:7c:a7: 6a:61:0d:1a:c3:08:a2:83:c0:df:d5:0e:80:0c:20: 59:7e:41:0c:49:d4:52:01:ba:13:16:e8:79:ab:29: 8d:94:92:89:6a:d7:98:2e:22:b2:7f:8a:c4:f2:f8: 93:bd:b7:a5:a1:6a:26:fc:66:78:ae:9e:62:aa:74: d0:bf:78:bf:52:79:36:6c:fe:4d:fb:fe:4c:b9:60: 25:14:f8:b8:a8:36:33:1b:54:c6:c9:66:f6:ad:d6: ba:c7:1b:b6:bb:21:79:f5:5a:ca:dc:b5:f3:e6:2f: 52:68:1f:52:92:28:05:f7:30:42:e1:26:e7:bf:91: af:58:e1:2a:c8:4c:29:18:45:d5:16:79:af:00:d4: d4:a7:d9:77:84:14:69:4e:71:c7:5a:65:a8:75:e0: 62:8d:c9:f1:8d:3a:42:4e:5f:3d:c1:71:d8:11:32: 57:93:75:a9:52:c2:62:8d:ba:6d:9e:1b:d2:88:3f: a5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7C:6D:05:40:D3:13:86:84:62:50:9B:39:08:70:66:E0:5B:84:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.16.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:ac:26:fa:6b:8a:35:f6:ed:c0:e9:36:0b:85:71:45:90:1e: 8a:c9:9b:30:2a:15:30:57:d4:26:40:43:bc:5c:2c:21:28:8d: 5b:02:a3:12:21:b6:2f:ff:cc:e2:34:58:ad:4a:53:25:dc:3d: a4:6c:17:b6:e6:04:ec:ac:aa:06:2c:36:44:a7:1f:76:e3:d1: f7:78:8e:de:22:17:1d:64:8e:9e:90:6c:2d:50:dc:c8:91:b2: d6:5d:e5:7b:51:7b:ea:7b:b4:90:c7:df:a6:fa:91:5d:b2:81: 90:ce:55:f2:76:43:65:c7:ff:46:6d:d1:a5:62:fb:6c:5f:23: 9f:69:ad:1f:e0:6d:bb:6f:95:ee:3a:1d:ce:c4:fd:79:15:08: 77:b2:90:69:99:c7:2a:26:8f:65:91:ff:3d:a0:56:d5:da:61: 25:93:fb:29:a8:7d:a7:ea:14:e5:8e:cb:6b:fa:6d:b1:f4:6f: ee:47:d4:fd:c4:bd:1c:a9:2d:fd:f2:bb:b3:80:26:23:00:06: a2:7c:6e:31:69:a3:6a:dc:ea:b5:91:8a:1d:82:5e:5e:d6:c8: 83:63:40:ad:51:a3:0a:cd:58:cb:01:0e:0f:fb:8a:ae:41:20: 8d:a2:ad:68:3b:e8:fb:2d:1e:0c:12:1c:a3:af:a2:c7:fe:49: 1b:0c:a3:25 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITbtiD2dVcCqmEZ0yUIVAVMr+u8TANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA3MTQxNTIxMzZaFw0yNTA4MTgyMzU5NTla MHoxSTBHBgNVBAUTQDMxYWVjNGJjZGE2MDAxMjQ3NWM3YWFhNTQxOGU2ZmYzMzE5 MDZiNDk5MTk1ZDU0NDRiODI5MWEyZjFjNWI4MmQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALGzfmYeWkvvlKQeX8zY/LOcoNvDbNw/aRQd+JU/VCqgCFB5 fD/cy1PracuoVT5IsBenhWfVpwszGEOLKfEblj12fe2Ib5kvdnynamENGsMIooPA 39UOgAwgWX5BDEnUUgG6ExboeaspjZSSiWrXmC4isn+KxPL4k723paFqJvxmeK6e Yqp00L94v1J5Nmz+Tfv+TLlgJRT4uKg2MxtUxslm9q3WuscbtrshefVayty18+Yv UmgfUpIoBfcwQuEm57+Rr1jhKshMKRhF1RZ5rwDU1KfZd4QUaU5xx1plqHXgYo3J 8Y06Qk5fPcFx2BEyV5N1qVLCYo26bZ4b0og/pecCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBSVfG0FQNMThoRiUJs5CHBm4FuEeDAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZWFjYTEwZWQtZjc2NS00YTc2LTllYTUtMzJmMzliMTljMzZiLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA2OWEDANBgkqhkiG9w0BAQsFAAOCAQEAS6wm+muKNfbtwOk2C4VxRZAeismb MCoVMFfUJkBDvFwsISiNWwKjEiG2L//M4jRYrUpTJdw9pGwXtuYE7KyqBiw2RKcf duPR93iO3iIXHWSOnpBsLVDcyJGy1l3le1F76nu0kMffpvqRXbKBkM5V8nZDZcf/ Rm3RpWL7bF8jn2mtH+Btu2+V7jodzsT9eRUId7KQaZnHKiaPZZH/PaBW1dphJZP7 Kah9p+oU5Y7La/ptsfRv7kfU/cS9HKkt/fK7s4AmIwAGonxuMWmjatzqtZGKHYJe XtbIg2NArVGjCs1YywEOD/uKrkEgjaKtaDvo+y0eDBIco6+ix/5JGwyjJQ== -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:11 2025 by rpki-client