$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/293c2826-82f4-42e2-82d9-04501c4668dd.roa File: 293c2826-82f4-42e2-82d9-04501c4668dd.roa (raw, json) Hash identifier: fqU9E2v/7RNal4E24mJt2bY79h8gWiiKmRX9ctDM1cc= Subject key identifier: 40:BB:2A:27:42:7A:9E:E8:51:06:89:1F:23:38:4F:23:98:C4:5F:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C37D9A6BA40A2BF2271BE6045FE3F6855FD3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/293c2826-82f4-42e2-82d9-04501c4668dd.roa Signing time: Tue 05 Aug 2025 15:01:10 +0000 ROA not before: Tue 05 Aug 2025 15:01:10 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.84.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:37:d9:a6:ba:40:a2:bf:22:71:be:60:45:fe:3f:68:55:fd:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 15:01:10 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=7d17a0bf5594d52fe6c21d5f7055cab7080c44d4511078fbac88084748368170, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f2:c8:d2:c4:d9:89:39:2f:05:1b:84:d5:10: 51:e1:67:4c:6b:a9:41:03:78:42:18:f1:a8:28:7a: 4f:be:9b:d2:da:98:57:fb:c6:f0:97:92:26:0b:ad: 7e:fb:63:c5:59:2a:76:1d:7c:c2:99:e5:b3:ed:8e: 48:9b:7d:5f:27:d5:d4:c2:dc:0d:c8:a5:c9:ef:eb: 63:bb:02:dc:4a:a9:f3:46:70:c4:ac:6a:c5:d9:6d: 26:79:75:2d:c6:e4:fc:ed:64:c5:18:2b:98:fd:e5: 87:1e:08:ee:02:c2:9c:1d:1f:ff:83:3f:73:33:2d: fa:7c:5a:35:6e:cd:1a:5d:1c:cd:9b:2c:02:8e:67: 64:6a:9a:39:f2:ec:63:10:0b:45:98:31:9e:7f:61: 94:fc:9e:82:0b:21:90:b7:24:cb:fc:44:13:21:d9: 66:72:45:e5:1a:41:6e:bf:df:2e:68:79:fa:cf:ea: a2:5a:15:f5:cc:1c:67:21:36:d0:c1:97:42:76:cb: 2e:53:e8:55:fc:03:8d:8e:e4:64:21:16:6a:03:f3: 8c:e1:a7:b0:7f:be:d5:27:08:3f:42:00:55:33:95: f0:14:64:ad:b0:11:59:f1:3a:6a:0e:04:0f:16:52: d9:db:6c:dd:6f:93:52:fb:3e:1f:63:c0:f0:09:95: fb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:BB:2A:27:42:7A:9E:E8:51:06:89:1F:23:38:4F:23:98:C4:5F:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/293c2826-82f4-42e2-82d9-04501c4668dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.84.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:77:34:9c:32:76:7e:f7:94:dd:87:42:2b:f0:57:af:23:43: 48:b9:9f:07:3f:29:aa:d3:f3:60:15:ed:d8:93:a0:1e:2b:99: 5c:4e:28:92:9f:2e:0b:89:a9:a4:d6:11:20:41:78:de:a3:58: 9c:0d:5a:b7:d8:c5:b3:cc:9f:d2:9a:6d:50:9a:a0:77:4b:ec: f4:b4:36:ae:43:d6:b7:52:fb:db:51:8c:d2:da:7c:23:0e:d4: e7:07:11:5c:cf:24:cd:53:17:32:40:36:b9:04:a8:91:b3:50: f7:9a:69:5c:ac:ab:d4:9b:fd:b8:71:ce:cb:33:a3:79:14:18: e4:bf:27:ee:35:7a:09:22:1b:bd:d7:d6:75:0e:20:ba:b3:9b: 83:3c:ed:ca:94:c5:ec:41:2d:50:d2:56:ca:0d:ac:19:f5:44: e1:1f:46:74:79:db:f4:2f:a4:f2:a0:45:2c:87:1d:5d:4d:c2: e6:65:ff:26:65:80:ff:06:5b:4c:8e:a3:af:7c:c7:e8:40:d7: 03:7b:77:11:aa:36:3a:d9:93:6f:ff:58:43:95:5e:17:b9:1e: 95:72:2e:99:44:5d:fa:fb:e4:07:4a:d8:c5:82:06:83:d8:ac: 6d:f0:db:e2:54:39:7d:86:31:ba:c4:74:02:f3:52:4a:3a:06: ff:ec:f9:e5 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITTDfZprpAor8icb5gRf4/aFX9PzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA4MDUxNTAxMTBaFw0yNTA5MDkyMzU5NTla MHoxSTBHBgNVBAUTQDdkMTdhMGJmNTU5NGQ1MmZlNmMyMWQ1ZjcwNTVjYWI3MDgw YzQ0ZDQ1MTEwNzhmYmFjODgwODQ3NDgzNjgxNzAxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKnyyNLE2Yk5LwUbhNUQUeFnTGupQQN4QhjxqCh6T76b0tqY V/vG8JeSJgutfvtjxVkqdh18wpnls+2OSJt9XyfV1MLcDcilye/rY7sC3Eqp80Zw xKxqxdltJnl1Lcbk/O1kxRgrmP3lhx4I7gLCnB0f/4M/czMt+nxaNW7NGl0czZss Ao5nZGqaOfLsYxALRZgxnn9hlPyeggshkLcky/xEEyHZZnJF5RpBbr/fLmh5+s/q oloV9cwcZyE20MGXQnbLLlPoVfwDjY7kZCEWagPzjOGnsH++1ScIP0IAVTOV8BRk rbARWfE6ag4EDxZS2dts3W+TUvs+H2PA8AmV+zECAwEAAaOCArAwggKsMB0GA1Ud DgQWBBRAuyonQnqe6FEGiR8jOE8jmMRf0zAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMjkzYzI4MjYtODJmNC00MmUyLTgyZDktMDQ1MDFjNDY2OGRkLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAGNUMA0GCSqGSIb3DQEBCwUAA4IBAQDHdzScMnZ+95Tdh0Ir8FevI0NIuZ8H Pymq0/NgFe3Yk6AeK5lcTiiSny4Liamk1hEgQXjeo1icDVq32MWzzJ/Smm1QmqB3 S+z0tDauQ9a3UvvbUYzS2nwjDtTnBxFczyTNUxcyQDa5BKiRs1D3mmlcrKvUm/24 cc7LM6N5FBjkvyfuNXoJIhu919Z1DiC6s5uDPO3KlMXsQS1Q0lbKDawZ9UThH0Z0 edv0L6TyoEUshx1dTcLmZf8mZYD/BltMjqOvfMfoQNcDe3cRqjY62ZNv/1hDlV4X uR6Vci6ZRF36++QHStjFggaD2Kxt8NviVDl9hjG6xHQC81JKOgb/7Pnl -----END CERTIFICATE-----Generated at Wed Aug 20 13:19:35 2025 by rpki-client