$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d8fc77-2869-4b60-a712-41b7854d5fd5.roa File: 94d8fc77-2869-4b60-a712-41b7854d5fd5.roa (raw, json) Hash identifier: hqQd+KuG1arghSM8cPGGWQx8XHAr0MZ0pwHAmovqIPI= Subject key identifier: B5:1F:2E:57:84:A1:78:AC:30:00:2A:2A:F2:03:F4:CD:77:AF:62:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 227C73B4B7928E35AA0A7695BE36988D7CA00FF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d8fc77-2869-4b60-a712-41b7854d5fd5.roa Signing time: Wed 13 Aug 2025 00:50:45 +0000 ROA not before: Wed 13 Aug 2025 00:50:45 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:7c:73:b4:b7:92:8e:35:aa:0a:76:95:be:36:98:8d:7c:a0:0f:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:50:45 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=97b2d59b1255f206e391a8163227f5402a11a2fabf7678f2b701c918d862cbb6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:77:e3:76:bf:ab:16:d7:c1:bf:80:a5:da:d2: 70:a6:ee:7f:76:8f:b6:c9:ea:9f:cf:de:d9:03:6e: 93:27:02:6c:64:87:25:e4:a7:c3:5b:ad:18:b1:91: 5c:be:26:52:a7:0b:5a:d5:26:a3:2d:b0:9a:29:d1: 10:0c:3d:bd:06:47:b6:c2:62:a4:78:f3:2d:34:14: ff:77:aa:81:f4:92:10:db:3d:0a:3a:2d:40:16:6f: 9e:d2:7d:c5:0e:09:cf:bc:fc:da:a5:90:89:28:cd: 80:d0:28:45:f0:03:58:b2:77:5f:0a:8e:7d:0b:8e: 44:a7:32:8f:ce:ab:04:1f:6d:9c:e3:37:63:bd:d8: a2:d3:87:ae:e4:d1:f9:b5:2f:0b:e0:8c:a5:60:37: 61:db:62:7d:44:80:ac:a1:36:a2:fd:35:9f:d4:ce: 23:a3:48:6d:96:bd:1f:ae:a1:ed:a2:97:f5:ba:bf: 14:5d:ed:65:eb:f7:7b:b9:76:f6:f8:c5:77:4c:e3: 45:bc:1a:25:66:e4:f3:fe:93:46:b5:cf:11:dc:75: ed:4d:19:0d:eb:98:45:09:6a:de:a1:b6:87:d7:64: 71:29:9f:7d:18:46:1f:51:d6:4c:5b:f7:e0:f4:66: 85:e5:1a:18:90:18:26:a9:a3:1c:65:11:73:4b:70: d3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:1F:2E:57:84:A1:78:AC:30:00:2A:2A:F2:03:F4:CD:77:AF:62:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d8fc77-2869-4b60-a712-41b7854d5fd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.156.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:54:39:69:6f:a0:28:9c:fe:55:70:80:1b:72:fa:f0:89:b4: bb:40:2e:d5:8f:9d:1a:d1:62:87:90:57:08:04:93:fb:c9:e3: ca:53:d2:74:e8:87:88:d0:66:62:97:33:38:59:0d:77:f9:88: 2b:27:79:7f:c7:ae:89:51:01:88:94:f2:5c:ab:68:b0:0b:8c: 8b:96:f3:f9:18:e6:f1:b1:d2:59:9f:0a:e0:b0:ad:b1:31:8c: ec:08:e7:1b:09:f4:b5:38:4b:e9:f8:c0:60:af:e3:9f:d6:dd: 29:e5:50:ca:91:c2:45:6e:92:2b:03:e4:b3:27:10:fa:d2:d7: 61:fb:3b:6f:54:43:b1:ff:02:da:98:81:8e:14:04:eb:c5:cd: 37:aa:23:15:3c:ed:4a:f7:27:08:ae:ac:98:e2:c6:b1:22:1e: bb:70:66:6e:41:4d:40:5f:2e:2b:c2:60:7e:af:a1:17:cb:6f: bd:70:99:f2:bf:55:0e:d1:15:c6:eb:c0:bf:86:af:d3:40:21: 17:dd:c8:db:37:87:6c:cb:dc:23:03:a9:3a:a2:c8:d5:3d:1f: d6:f9:32:19:ba:14:a5:62:9a:5f:8e:38:a3:80:36:c2:42:bf: f3:8f:1f:af:9d:27:52:a5:4d:1f:12:5c:75:23:34:12:ca:38: a7:83:16:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUInxztLeSjjWqCnaVvjaYjXygD/MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA1MDQ1WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2IyZDU5YjEyNTVmMjA2ZTM5MWE4MTYzMjI3ZjU0MDJh MTFhMmZhYmY3Njc4ZjJiNzAxYzkxOGQ4NjJjYmI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfd+N2v6sW18G/gKXa0nCm7n92j7bJ6p/P3tkDbpMnAmxk hyXkp8NbrRixkVy+JlKnC1rVJqMtsJop0RAMPb0GR7bCYqR48y00FP93qoH0khDb PQo6LUAWb57SfcUOCc+8/NqlkIkozYDQKEXwA1iyd18Kjn0LjkSnMo/OqwQfbZzj N2O92KLTh67k0fm1LwvgjKVgN2HbYn1EgKyhNqL9NZ/UziOjSG2WvR+uoe2il/W6 vxRd7WXr93u5dvb4xXdM40W8GiVm5PP+k0a1zxHcde1NGQ3rmEUJat6htofXZHEp n30YRh9R1kxb9+D0ZoXlGhiQGCapoxxlEXNLcNNpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtR8uV4SheKwwACoq8gP0zXevYk8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0ZDhmYzc3LTI4NjktNGI2MC1hNzEyLTQxYjc4NTRkNWZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZwwDQYJKoZIhvcNAQELBQADggEBAG1UOWlvoCic/lVwgBty+vCJtLtA LtWPnRrRYoeQVwgEk/vJ48pT0nToh4jQZmKXMzhZDXf5iCsneX/HrolRAYiU8lyr aLALjIuW8/kY5vGx0lmfCuCwrbExjOwI5xsJ9LU4S+n4wGCv45/W3SnlUMqRwkVu kisD5LMnEPrS12H7O29UQ7H/AtqYgY4UBOvFzTeqIxU87Ur3JwiurJjixrEiHrtw Zm5BTUBfLivCYH6voRfLb71wmfK/VQ7RFcbrwL+Gr9NAIRfdyNs3h2zL3CMDqTqi yNU9H9b5Mhm6FKViml+OOKOANsJCv/OPH6+dJ1KlTR8SXHUjNBLKOKeDFq4= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:50 2025 by rpki-client