$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa File: 15633e1f-54bc-4c9a-8294-0c707f053f2a.roa (raw, json) Hash identifier: Bm0wgpl/nosLsmJGorCjAFVo1aV/EdE9e1rL3m/VQC4= Subject key identifier: 48:6C:BC:65:A5:64:26:8A:CA:D2:38:DD:37:90:25:D4:E1:C2:FD:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CD18810BA8117A9330CEFEE5D7903C32F175A20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa Signing time: Tue 02 Sep 2025 00:31:06 +0000 ROA not before: Tue 02 Sep 2025 00:31:06 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d1:88:10:ba:81:17:a9:33:0c:ef:ee:5d:79:03:c3:2f:17:5a:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:31:06 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=8a9f0e48e4532df0e66b094f0e1125720d4e372260e688abde3c72c31cb84579, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:46:66:42:f9:6d:9c:34:76:07:3d:ce:a7:b0: 4c:39:d0:b4:d1:2e:0e:78:31:1f:7c:09:18:78:04: 52:26:5f:e3:d0:fc:ad:26:6c:13:7c:08:4d:ee:e1: 57:01:fc:b0:96:61:7e:8e:ae:2f:00:90:a9:4d:e7: fa:b3:22:43:3a:63:8b:28:22:ab:54:f3:ee:c0:12: f7:5f:06:60:7d:2f:23:97:24:39:5a:1d:37:e4:7d: 61:ca:b0:98:81:b1:42:fc:78:20:9d:99:d0:97:9a: d3:c0:04:e5:0a:93:82:c2:0a:28:6e:a7:8c:68:32: 1e:c4:cc:3b:b1:58:11:1e:15:05:23:ee:f4:21:5d: 0a:1e:31:ce:f4:f9:4a:45:c3:86:cb:f8:1d:b2:cb: 3c:d3:cc:cf:94:88:61:74:4e:17:ad:f4:3c:75:c3: 76:76:07:d4:2c:f4:25:d7:bb:34:6c:82:96:9e:a2: cf:e1:a3:ba:dc:1c:0a:94:16:f7:36:72:f2:40:43: f3:80:7a:ee:56:0d:be:92:52:04:fc:bb:64:9c:87: 16:ff:ec:32:bf:29:34:9a:56:3e:ae:83:c7:f7:7e: 7c:5c:fd:d3:7a:99:e0:fa:86:4c:c6:2a:e8:0e:7d: 16:89:9f:8c:26:aa:4f:c3:36:97:0e:38:ac:f2:ee: e2:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:6C:BC:65:A5:64:26:8A:CA:D2:38:DD:37:90:25:D4:E1:C2:FD:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.190.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:3a:1c:c9:f0:18:2b:eb:6b:ec:91:c2:8b:ed:3e:86:84:6c: ce:23:ab:ee:0b:b6:fe:9f:83:55:b8:b0:00:c0:c9:15:7d:9a: 32:fc:19:00:a7:cd:3a:f6:02:d7:fb:a8:55:2b:26:c6:84:f4: ca:41:9a:5e:5b:05:46:00:7e:28:75:c3:35:8f:57:67:8a:ff: 21:bc:d5:66:1a:66:94:5d:65:22:59:5a:34:a8:c3:a9:f9:e3: 4f:6c:e6:fe:e4:22:01:9c:e8:41:a6:54:4d:f3:32:79:05:42: 84:4e:7a:a7:6e:92:cd:b9:9f:a9:9e:d9:e9:35:5c:49:b0:ce: 86:1d:94:cc:54:35:24:4c:0f:b8:28:36:8d:85:79:aa:a3:4d: cd:a7:ba:0a:d8:19:9f:41:1f:27:9b:ac:32:02:1b:8e:0a:db: 92:41:95:cb:09:76:be:f2:da:6e:31:94:b0:54:7b:ff:01:60: a4:2d:ef:0e:5b:96:4a:64:dc:97:c6:f4:ba:92:43:66:df:04: bd:24:20:89:51:f5:3e:bb:3f:b9:12:b3:c0:d2:31:2d:a4:57: 10:af:ef:9d:4f:25:3d:1d:8c:26:18:a3:4d:c1:13:c6:1a:f5: c7:0d:5e:73:24:ef:b3:ea:fd:53:52:a4:f2:b8:60:cd:b8:e2: 56:50:5d:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfNGIELqBF6kzDO/uXXkDwy8XWiAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAzMTA2WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTlmMGU0OGU0NTMyZGYwZTY2YjA5NGYwZTExMjU3MjBk NGUzNzIyNjBlNjg4YWJkZTNjNzJjMzFjYjg0NTc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNRmZC+W2cNHYHPc6nsEw50LTRLg54MR98CRh4BFImX+PQ /K0mbBN8CE3u4VcB/LCWYX6Ori8AkKlN5/qzIkM6Y4soIqtU8+7AEvdfBmB9LyOX JDlaHTfkfWHKsJiBsUL8eCCdmdCXmtPABOUKk4LCCihup4xoMh7EzDuxWBEeFQUj 7vQhXQoeMc70+UpFw4bL+B2yyzzTzM+UiGF0Thet9Dx1w3Z2B9Qs9CXXuzRsgpae os/ho7rcHAqUFvc2cvJAQ/OAeu5WDb6SUgT8u2Schxb/7DK/KTSaVj6ug8f3fnxc /dN6meD6hkzGKugOfRaJn4wmqk/DNpcOOKzy7uJpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSGy8ZaVkJorK0jjdN5Al1OHC/QYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1NjMzZTFmLTU0YmMtNGM5YS04Mjk0LTBjNzA3ZjA1M2YyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTb4wDQYJKoZIhvcNAQELBQADggEBACs6HMnwGCvra+yRwovtPoaEbM4j q+4Ltv6fg1W4sADAyRV9mjL8GQCnzTr2Atf7qFUrJsaE9MpBml5bBUYAfih1wzWP V2eK/yG81WYaZpRdZSJZWjSow6n5409s5v7kIgGc6EGmVE3zMnkFQoROeqduks25 n6me2ek1XEmwzoYdlMxUNSRMD7goNo2FeaqjTc2nugrYGZ9BHyebrDICG44K25JB lcsJdr7y2m4xlLBUe/8BYKQt7w5blkpk3JfG9LqSQ2bfBL0kIIlR9T67P7kSs8DS MS2kVxCv751PJT0djCYYo03BE8Ya9ccNXnMk77Pq/VNSpPK4YM244lZQXfk= -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:53 2025 by rpki-client