$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa File: 34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa (raw, json) Hash identifier: dZlNrX9/NRlRnF26S8J/vFOg/si5BI3hGV247LeMCPc= Subject key identifier: E7:3D:17:59:69:55:83:6E:EE:93:66:92:C6:DF:68:6C:22:C2:43:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2129CBD415F82E344C1F094F533D617C49FCE1B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa Signing time: Mon 08 Sep 2025 15:51:58 +0000 ROA not before: Mon 08 Sep 2025 15:51:58 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 16 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:29:cb:d4:15:f8:2e:34:4c:1f:09:4f:53:3d:61:7c:49:fc:e1:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:51:58 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=a22fc96335824432d689acb14dc6637860ad218813a620e4dd04b87c1bae4ceb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:21:71:b0:4b:1e:02:34:ce:db:52:b0:9f:33: 70:27:60:4f:ca:a0:b3:cb:bc:2f:54:9b:42:f7:ac: 46:e2:d3:c0:ef:2a:9c:b9:bb:65:a3:39:a1:ce:93: 71:a4:57:44:6b:38:b1:e6:2a:c2:0e:f0:fb:51:98: dd:42:64:74:1c:13:90:b8:0c:c1:0c:50:11:1c:d6: bd:91:e9:61:37:c4:82:2d:c5:82:f4:4f:1f:0f:43: b8:33:df:7f:86:83:51:0d:f9:c2:cd:60:51:e9:bf: 29:e0:e6:22:1e:a3:52:ee:eb:49:a1:39:c2:ad:0e: 12:1b:f2:fb:6e:85:52:f7:1e:61:48:09:7e:2e:18: a9:5a:60:47:27:fa:da:b8:76:86:94:45:63:e0:03: db:fd:e6:6d:5b:31:e6:e6:82:54:76:b6:37:27:83: ad:c9:d5:9d:11:a8:11:ef:78:42:a2:da:aa:34:14: 07:a9:5f:87:29:b9:3d:92:ec:b1:81:aa:dc:84:17: cb:7a:79:97:e6:ee:4c:74:40:c1:45:2d:67:a6:8e: 3d:72:98:d4:42:e2:bf:30:ab:b4:1b:fd:c1:8e:68: 79:dc:04:26:c2:04:5d:21:c1:9d:c7:32:8a:4a:be: 95:cf:c3:82:ac:9b:aa:7d:9d:92:e5:22:76:8d:05: ea:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3D:17:59:69:55:83:6E:EE:93:66:92:C6:DF:68:6C:22:C2:43:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.189.0/24 Signature Algorithm: sha256WithRSAEncryption 98:cb:ca:b0:4e:51:8b:90:49:17:b0:79:ac:5d:8a:f4:6d:72: 41:bf:43:60:65:61:a0:b8:72:13:4e:63:5a:cb:9e:80:37:27: 19:71:3e:8f:60:16:09:39:95:65:57:c8:66:dc:c1:1e:3d:67: 2b:ba:5e:fe:28:5e:07:68:eb:aa:db:1b:65:8a:0a:83:99:43: 81:74:be:5e:12:ec:3b:55:1e:e2:e8:70:c0:c5:6c:7e:5d:b9: 02:b4:d1:68:ae:30:71:b0:0e:fd:b3:21:b6:21:58:6c:a7:9d: 73:2e:20:3d:17:fb:46:8f:5c:4e:22:a9:c9:11:53:bb:42:41: af:e5:7c:f3:ab:60:98:c0:58:58:d5:bf:ce:cd:34:80:e6:54: f2:d3:7b:3b:b4:4c:59:75:0a:f3:5f:71:76:a2:5c:4f:e8:1e: 6c:fc:9e:21:49:fb:31:5b:c8:70:9f:48:da:9c:97:1d:d0:d8: 2c:d9:3d:16:e4:51:0f:1a:6c:58:23:57:52:75:c0:9b:05:f9: af:bb:ef:48:bc:b7:8b:bb:a9:5e:e2:60:01:06:2b:92:9d:9e: 53:e0:e2:c7:24:6f:15:b3:5b:08:90:ff:5c:88:bd:d2:7e:8f: 11:1d:11:b2:fc:e7:1c:a8:f7:96:2a:a9:6b:4a:4a:47:6d:c5: 64:c6:bc:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUISnL1BX4LjRMHwlPUz1hfEn84bQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTU1MTU4WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjJmYzk2MzM1ODI0NDMyZDY4OWFjYjE0ZGM2NjM3ODYw YWQyMTg4MTNhNjIwZTRkZDA0Yjg3YzFiYWU0Y2ViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRIXGwSx4CNM7bUrCfM3AnYE/KoLPLvC9Um0L3rEbi08Dv Kpy5u2WjOaHOk3GkV0RrOLHmKsIO8PtRmN1CZHQcE5C4DMEMUBEc1r2R6WE3xIIt xYL0Tx8PQ7gz33+Gg1EN+cLNYFHpvyng5iIeo1Lu60mhOcKtDhIb8vtuhVL3HmFI CX4uGKlaYEcn+tq4doaURWPgA9v95m1bMebmglR2tjcng63J1Z0RqBHveEKi2qo0 FAepX4cpuT2S7LGBqtyEF8t6eZfm7kx0QMFFLWemjj1ymNRC4r8wq7Qb/cGOaHnc BCbCBF0hwZ3HMopKvpXPw4Ksm6p9nZLlInaNBeorAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5z0XWWlVg27uk2aSxt9obCLCQ3owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0YTgwZmQwLTFkMDUtNDBlZi05NmI5LWJjMmQzOTk0OGE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTb0wDQYJKoZIhvcNAQELBQADggEBAJjLyrBOUYuQSReweaxdivRtckG/ Q2BlYaC4chNOY1rLnoA3JxlxPo9gFgk5lWVXyGbcwR49Zyu6Xv4oXgdo66rbG2WK CoOZQ4F0vl4S7DtVHuLocMDFbH5duQK00WiuMHGwDv2zIbYhWGynnXMuID0X+0aP XE4iqckRU7tCQa/lfPOrYJjAWFjVv87NNIDmVPLTezu0TFl1CvNfcXaiXE/oHmz8 niFJ+zFbyHCfSNqclx3Q2CzZPRbkUQ8abFgjV1J1wJsF+a+770i8t4u7qV7iYAEG K5KdnlPg4sckbxWzWwiQ/1yIvdJ+jxEdEbL85xyo95YqqWtKSkdtxWTGvLc= -----END CERTIFICATE-----Generated at Mon Sep 15 04:42:57 2025 by rpki-client