$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa File: 34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa (raw, json) Hash identifier: ypUDaUwECt84mUlQHkJmFDj76B8Iig3UdgFExvR7Kdk= Subject key identifier: 85:69:01:70:51:5D:75:DB:64:2D:EF:F1:A6:CD:F5:EE:BE:8A:23:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 520372097E50BD639EA3E6EAE3F24D0FC9B8F815 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa Signing time: Wed 13 Aug 2025 00:51:17 +0000 ROA not before: Wed 13 Aug 2025 00:51:17 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:03:72:09:7e:50:bd:63:9e:a3:e6:ea:e3:f2:4d:0f:c9:b8:f8:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:51:17 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=d8c01aad5bf6f7a9be558cfbfe0f2cd332a5cd18a82e451c15fbdc6ca9258719, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:89:64:55:4d:a1:e7:ef:6f:63:06:be:2e:e3: 53:38:93:cd:71:96:07:c0:a6:df:b6:ec:aa:f6:f8: ed:f8:90:45:54:1e:e2:c5:34:b5:27:ec:83:9a:54: b3:95:a2:4f:84:b3:cf:90:5d:0f:51:b5:c2:7e:6f: 60:49:f3:65:1a:5e:b3:3c:64:ae:ba:4e:6d:ca:ed: 60:a3:80:70:43:4d:c1:e7:7e:a7:af:f0:1a:bb:87: 0a:4d:61:61:4d:a3:b5:d0:f3:f8:8f:47:d1:b9:d8: 4c:7d:e7:22:6b:24:4d:d1:a8:ff:0d:49:37:75:78: c5:50:01:fa:6a:9d:fd:99:c4:f4:27:99:84:12:35: cc:6d:f6:22:bf:4c:a2:bd:eb:89:63:4f:7e:a7:1e: e4:3a:ac:5f:6a:28:c0:39:d3:85:0f:5d:26:e5:fb: cc:50:59:60:19:e0:96:7e:34:76:41:49:55:c8:73: e4:c0:85:9e:dc:38:ae:ae:05:91:c7:5b:2a:95:38: c1:39:71:5e:a4:41:59:47:6e:f3:bd:d7:98:9f:23: 79:44:98:03:59:41:aa:56:81:40:4f:fa:f2:c8:d7: 0b:cb:c3:0e:6b:51:27:19:60:ef:7e:c5:6b:06:b2: a8:40:f7:6d:8a:ec:6d:a0:50:1e:27:a6:9e:20:d7: d3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:69:01:70:51:5D:75:DB:64:2D:EF:F1:A6:CD:F5:EE:BE:8A:23:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34a80fd0-1d05-40ef-96b9-bc2d39948a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.189.0/24 Signature Algorithm: sha256WithRSAEncryption 41:57:f1:f7:b6:35:f7:b7:0b:9d:e4:10:23:20:0e:14:ad:c6: 3f:7b:75:1c:ab:c5:e9:e6:78:e0:71:ba:8c:17:9b:3c:e1:ad: a1:af:32:37:da:95:1d:cf:a8:a1:79:7c:9b:8d:dc:59:f7:57: c6:94:8d:47:c4:d7:7d:02:74:e7:3c:09:cb:fb:9d:b1:b6:7e: ef:81:0f:12:26:b2:d0:ec:c4:2e:7a:05:28:c9:0c:66:8f:03: 8e:8a:06:a8:40:2d:c1:13:eb:70:6b:3a:8b:64:3c:8e:9f:c6: 40:9f:48:c8:40:77:8b:16:bc:12:ac:ce:96:6e:6a:3c:1a:92: 3e:af:b9:c9:7e:2f:d1:a4:f7:41:e3:25:bb:e8:19:8a:c4:21: 8d:81:7f:7f:88:0c:09:de:c3:4f:8c:37:b0:8d:cf:19:1d:a3: 95:3a:7b:82:79:b6:10:6e:e1:04:83:8a:85:ca:49:38:0e:f3: fa:89:96:a1:dc:6a:82:c5:07:1a:cd:fe:2a:89:04:e2:0a:8a: 06:82:e1:48:a7:64:f4:53:b8:fe:de:f2:f7:20:28:ed:57:33: 41:46:1f:73:e4:a7:c4:cb:99:d7:b8:4f:0a:06:1e:34:dc:08: 70:75:1a:85:67:a3:44:ef:a2:ca:51:21:55:07:18:6f:b1:5f: b0:26:d3:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUgNyCX5QvWOeo+bq4/JND8m4+BUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA1MTE3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGMwMWFhZDViZjZmN2E5YmU1NThjZmJmZTBmMmNkMzMy YTVjZDE4YTgyZTQ1MWMxNWZiZGM2Y2E5MjU4NzE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/iWRVTaHn729jBr4u41M4k81xlgfApt+27Kr2+O34kEVU HuLFNLUn7IOaVLOVok+Es8+QXQ9RtcJ+b2BJ82UaXrM8ZK66Tm3K7WCjgHBDTcHn fqev8Bq7hwpNYWFNo7XQ8/iPR9G52Ex95yJrJE3RqP8NSTd1eMVQAfpqnf2ZxPQn mYQSNcxt9iK/TKK964ljT36nHuQ6rF9qKMA504UPXSbl+8xQWWAZ4JZ+NHZBSVXI c+TAhZ7cOK6uBZHHWyqVOME5cV6kQVlHbvO915ifI3lEmANZQapWgUBP+vLI1wvL ww5rUScZYO9+xWsGsqhA922K7G2gUB4npp4g19PXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhWkBcFFdddtkLe/xps317r6KIycwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0YTgwZmQwLTFkMDUtNDBlZi05NmI5LWJjMmQzOTk0OGE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTb0wDQYJKoZIhvcNAQELBQADggEBAEFX8fe2Nfe3C53kECMgDhStxj97 dRyrxenmeOBxuowXmzzhraGvMjfalR3PqKF5fJuN3Fn3V8aUjUfE130CdOc8Ccv7 nbG2fu+BDxImstDsxC56BSjJDGaPA46KBqhALcET63BrOotkPI6fxkCfSMhAd4sW vBKszpZuajwakj6vucl+L9Gk90HjJbvoGYrEIY2Bf3+IDAnew0+MN7CNzxkdo5U6 e4J5thBu4QSDioXKSTgO8/qJlqHcaoLFBxrN/iqJBOIKigaC4UinZPRTuP7e8vcg KO1XM0FGH3Pkp8TLmde4TwoGHjTcCHB1GoVno0TvospRIVUHGG+xX7Am0xU= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:24 2025 by rpki-client