$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa File: 45c2e527-9738-4594-aadb-f5b7380f4d86.roa (raw, json) Hash identifier: SyAcXHIkyTCx7GmE6U7BvgPNjUQInS64yyVadNbHnFk= Subject key identifier: 9A:C0:71:C5:18:D0:4D:F3:18:20:16:A2:B2:06:AA:31:1D:DB:DE:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 733C52D72DEFA5454A41CDD1378CF28534FD5A3A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa Signing time: Tue 02 Sep 2025 00:31:09 +0000 ROA not before: Tue 02 Sep 2025 00:31:09 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:3c:52:d7:2d:ef:a5:45:4a:41:cd:d1:37:8c:f2:85:34:fd:5a:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:31:09 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=55838788ad7d5644914ba9edb63e9193e39acad9e88997d1c063432d2f5c4dbc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3a:a9:bc:65:eb:25:e9:38:eb:ce:a2:6c:66: 40:86:38:e3:72:cf:e6:a1:c1:49:01:67:7f:cd:98: ce:08:71:43:a2:48:51:c1:b7:91:6c:4b:8c:7a:e6: dd:7b:6d:fe:32:b4:08:06:a4:4f:32:98:e6:f8:44: 2d:97:b9:e0:89:3c:88:3d:de:c5:19:fe:ab:56:a3: 45:aa:9e:a3:3c:50:f6:ac:15:5f:37:de:7b:b1:9f: c1:0a:0c:7f:91:29:37:9f:0d:8d:3c:e7:52:40:24: 48:d0:d9:56:23:79:5f:e8:e1:13:b4:90:28:43:e2: 25:79:b3:52:90:b8:ce:07:26:9a:3b:75:2f:c2:46: fa:1d:51:c0:c2:ae:b8:89:e3:3e:f8:39:19:7d:cd: bb:bb:e6:98:7f:fe:75:b4:3e:16:e3:2d:7b:cd:d3: 1e:d8:5e:45:c2:39:e0:f3:48:12:c7:20:9f:d9:48: b6:33:71:c7:a2:85:b0:5d:33:ec:9b:a2:9e:ff:85: e2:b6:17:5b:2f:4d:57:e4:4f:1e:73:b6:8c:d3:b3: 3c:20:ea:dc:25:b0:83:44:cd:33:7c:b9:e0:44:3e: f7:dd:85:d6:99:be:a8:1f:70:0a:74:1b:5a:cc:c3: 0a:d2:f1:68:94:11:d8:c1:6c:13:c4:be:0e:cc:88: 12:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C0:71:C5:18:D0:4D:F3:18:20:16:A2:B2:06:AA:31:1D:DB:DE:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.152.0/24 Signature Algorithm: sha256WithRSAEncryption 84:30:2b:c0:51:15:fc:d4:8b:a9:f5:00:4b:80:bf:36:9a:7a: 02:91:eb:b8:be:9c:83:c7:8d:cf:0e:09:08:cb:45:6e:10:4d: 0a:3f:14:9a:2d:21:e3:07:6a:40:4c:d9:e3:9a:dc:c2:14:b1: 39:de:40:64:8e:62:c1:0b:a5:fe:f3:7f:1e:24:cd:3d:f3:ca: c9:a3:26:11:a6:3d:2e:94:3c:e3:d2:c4:cf:52:84:ba:0d:c1: ae:76:7b:7a:06:be:90:14:f6:56:7c:b0:66:75:b0:21:2f:71: ce:19:6e:eb:a2:d7:36:9d:7c:40:3d:0e:e4:8e:4d:1e:6f:52: 04:6a:09:3d:5a:53:7a:de:70:e9:18:2f:2a:37:17:ba:c9:eb: c0:7c:1c:7d:9c:85:64:d4:a7:6e:15:b8:21:c8:c0:d8:c2:61: 4a:ec:0d:56:57:3d:6b:91:fd:c5:6d:43:27:e5:ae:c9:0c:65: 77:63:20:81:65:02:00:eb:85:17:49:bd:62:71:9d:a2:d9:f2: 69:24:aa:cd:86:e3:f4:52:24:4f:d5:b7:1b:9a:55:09:8b:7c: bb:40:14:65:4c:a1:ec:61:ab:67:19:a2:1c:63:41:53:4d:f5: ae:76:86:49:45:20:23:4d:60:c1:f9:4f:42:01:e8:f3:e7:b9: 88:2c:72:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUczxS1y3vpUVKQc3RN4zyhTT9WjowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAzMTA5WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTgzODc4OGFkN2Q1NjQ0OTE0YmE5ZWRiNjNlOTE5M2Uz OWFjYWQ5ZTg4OTk3ZDFjMDYzNDMyZDJmNWM0ZGJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Oqm8Zesl6TjrzqJsZkCGOONyz+ahwUkBZ3/NmM4IcUOi SFHBt5FsS4x65t17bf4ytAgGpE8ymOb4RC2XueCJPIg93sUZ/qtWo0WqnqM8UPas FV833nuxn8EKDH+RKTefDY0851JAJEjQ2VYjeV/o4RO0kChD4iV5s1KQuM4HJpo7 dS/CRvodUcDCrriJ4z74ORl9zbu75ph//nW0PhbjLXvN0x7YXkXCOeDzSBLHIJ/Z SLYzcceihbBdM+ybop7/heK2F1svTVfkTx5ztozTszwg6twlsINEzTN8ueBEPvfd hdaZvqgfcAp0G1rMwwrS8WiUEdjBbBPEvg7MiBIJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmsBxxRjQTfMYIBaisgaqMR3b3mQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1YzJlNTI3LTk3MzgtNDU5NC1hYWRiLWY1YjczODBmNGQ4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZgwDQYJKoZIhvcNAQELBQADggEBAIQwK8BRFfzUi6n1AEuAvzaaegKR 67i+nIPHjc8OCQjLRW4QTQo/FJotIeMHakBM2eOa3MIUsTneQGSOYsELpf7zfx4k zT3zysmjJhGmPS6UPOPSxM9ShLoNwa52e3oGvpAU9lZ8sGZ1sCEvcc4Zbuui1zad fEA9DuSOTR5vUgRqCT1aU3recOkYLyo3F7rJ68B8HH2chWTUp24VuCHIwNjCYUrs DVZXPWuR/cVtQyflrskMZXdjIIFlAgDrhRdJvWJxnaLZ8mkkqs2G4/RSJE/Vtxua VQmLfLtAFGVMoexhq2cZohxjQVNN9a52hklFICNNYMH5T0IB6PPnuYgscq4= -----END CERTIFICATE-----Generated at Sat Sep 6 16:54:32 2025 by rpki-client