$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15dd7280-6c64-4c5f-9920-b8e295ae5383.roa File: 15dd7280-6c64-4c5f-9920-b8e295ae5383.roa (raw, json) Hash identifier: 0KDqL/W8SoP5PBrMUwc0rGqKg8QRoNKic5K7VbYETZM= Subject key identifier: D4:89:96:26:EA:8D:EF:7D:44:F3:86:FD:3E:3B:2C:A0:01:00:63:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6DBA3056B6D2AFAD3BDF922D3893DD872EB70E80 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15dd7280-6c64-4c5f-9920-b8e295ae5383.roa Signing time: Sat 06 Sep 2025 00:51:29 +0000 ROA not before: Sat 06 Sep 2025 00:51:29 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ba:30:56:b6:d2:af:ad:3b:df:92:2d:38:93:dd:87:2e:b7:0e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:51:29 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=c5e7a0d86710407581c8c8ff927288d4a7158d9790687a36a28a302c09400795, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:17:55:87:cf:ac:ea:12:77:68:45:28:f0:c8: da:44:ef:88:7f:4b:ff:63:0d:8c:5d:cf:37:54:8b: b5:e2:b1:c9:ca:26:a8:52:cb:0c:60:21:34:9a:65: 74:ef:57:23:13:f9:fe:02:9c:a5:03:20:21:65:d0: 2f:9f:32:df:d9:c5:3e:ea:dc:c3:d4:bf:eb:ad:a0: 46:60:ea:74:7d:b0:79:46:c2:63:38:65:50:40:bc: 2c:6b:50:6b:e7:de:29:39:9c:05:c4:a0:1e:20:fc: ad:ac:b9:30:46:60:c2:9f:4d:18:82:ac:72:72:73: d0:7a:96:4e:84:e1:12:80:46:ed:85:ad:63:e4:a5: 9d:cb:38:e6:25:a9:c9:66:1c:bc:1f:d7:4a:9c:82: 08:a9:3a:6d:b3:cf:09:92:4c:7f:a4:92:dd:00:f1: 4b:2e:bc:6e:0a:cd:87:4d:8d:a0:80:95:bb:d8:54: 4f:c6:d7:61:3d:c4:7d:6f:b9:8e:36:c0:fa:33:0b: 38:05:b1:ad:b5:92:5a:de:44:da:27:01:96:c9:2c: 86:a6:31:2e:a0:fc:33:a5:92:da:15:3b:58:7b:17: 44:c0:6b:41:20:06:b6:e2:6a:01:c6:c4:4d:df:e2: b5:1f:08:cd:c2:0e:82:99:f1:31:10:98:38:18:72: 12:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:89:96:26:EA:8D:EF:7D:44:F3:86:FD:3E:3B:2C:A0:01:00:63:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15dd7280-6c64-4c5f-9920-b8e295ae5383.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.233.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:d9:98:1d:34:21:a7:f4:14:85:95:19:ba:3e:62:f4:18:f1: 1a:e8:01:c9:83:8f:96:2d:b0:ba:91:8c:57:f5:40:7e:2b:1c: 54:92:7d:6b:b0:e8:9f:94:81:64:7e:f6:d3:b1:df:23:6c:3e: 35:86:44:7b:a8:77:64:56:ba:3e:4b:59:fe:cf:7e:ce:df:ab: a9:41:a7:0f:e5:72:21:b3:76:4c:a2:d5:35:1a:17:0e:b8:29: c5:1d:22:37:08:44:39:e7:0c:88:1e:e4:84:ce:aa:bd:e6:aa: db:fa:99:fd:98:ed:34:66:d8:b1:0e:3c:2d:b2:35:d4:fc:ee: fb:df:ff:87:f8:c9:75:26:c6:bd:50:22:ad:a3:bd:64:92:26: a0:4d:59:d7:3c:71:2d:2d:e1:a2:03:3b:db:9e:4a:55:4d:c7: b7:0f:7a:f7:85:d1:01:e2:a2:a1:27:9a:02:a7:0f:de:48:f5: 83:ef:a0:b1:dc:5d:fd:86:4e:41:d4:af:79:b3:e6:81:d1:bd: 85:e6:9b:a3:80:a3:8a:93:0e:d0:d6:79:a5:01:74:dd:33:d7: 71:d2:ba:a4:78:b5:bb:8c:3a:95:01:c5:48:1a:8f:8d:df:e8: 01:ab:ef:87:1b:df:6b:81:af:9a:61:1a:71:40:9a:55:70:e5: 12:50:3a:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbbowVrbSr60735ItOJPdhy63DoAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA1MTI5WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWU3YTBkODY3MTA0MDc1ODFjOGM4ZmY5MjcyODhkNGE3 MTU4ZDk3OTA2ODdhMzZhMjhhMzAyYzA5NDAwNzk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgF1WHz6zqEndoRSjwyNpE74h/S/9jDYxdzzdUi7XiscnK JqhSywxgITSaZXTvVyMT+f4CnKUDICFl0C+fMt/ZxT7q3MPUv+utoEZg6nR9sHlG wmM4ZVBAvCxrUGvn3ik5nAXEoB4g/K2suTBGYMKfTRiCrHJyc9B6lk6E4RKARu2F rWPkpZ3LOOYlqclmHLwf10qcggipOm2zzwmSTH+kkt0A8UsuvG4KzYdNjaCAlbvY VE/G12E9xH1vuY42wPozCzgFsa21klreRNonAZbJLIamMS6g/DOlktoVO1h7F0TA a0EgBrbiagHGxE3f4rUfCM3CDoKZ8TEQmDgYchIBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1ImWJuqN731E84b9PjssoAEAY5wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1ZGQ3MjgwLTZjNjQtNGM1Zi05OTIwLWI4ZTI5NWFlNTM4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTekwDQYJKoZIhvcNAQELBQADggEBAAvZmB00Iaf0FIWVGbo+YvQY8Rro AcmDj5YtsLqRjFf1QH4rHFSSfWuw6J+UgWR+9tOx3yNsPjWGRHuod2RWuj5LWf7P fs7fq6lBpw/lciGzdkyi1TUaFw64KcUdIjcIRDnnDIge5ITOqr3mqtv6mf2Y7TRm 2LEOPC2yNdT87vvf/4f4yXUmxr1QIq2jvWSSJqBNWdc8cS0t4aIDO9ueSlVNx7cP eveF0QHioqEnmgKnD95I9YPvoLHcXf2GTkHUr3mz5oHRvYXmm6OAo4qTDtDWeaUB dN0z13HSuqR4tbuMOpUBxUgaj43f6AGr74cb32uBr5phGnFAmlVw5RJQOok= -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:56 2025 by rpki-client