$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa File: 99922d4f-b1fc-43d5-9674-a085ad312500.roa (raw, json) Hash identifier: VXJdEdPMHgaFPUyFymUMULAMBxyvYvU2PkEkGeDreLk= Subject key identifier: 72:5B:DC:3F:8A:0A:C0:67:DB:96:37:02:2F:3D:10:AC:2A:46:CD:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1514220B37CB49A9C5ACB9161BE62BEFAF39A350 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa Signing time: Wed 03 Sep 2025 00:01:27 +0000 ROA not before: Wed 03 Sep 2025 00:01:27 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:14:22:0b:37:cb:49:a9:c5:ac:b9:16:1b:e6:2b:ef:af:39:a3:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 3 00:01:27 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=b83124f6f299f9f4d29b00be60ed60a24b41252c9472ad472535686c810e2abb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:85:29:25:b5:49:42:b8:e8:3b:36:19:83:49: 1e:4f:fe:8b:60:c7:65:f3:df:7e:f4:4a:e6:e5:fd: f5:f5:27:74:71:35:04:46:b5:97:6a:bd:87:34:42: 4f:8f:b2:2b:af:0b:c2:a4:ec:bf:85:c4:26:7d:ab: 2b:52:00:b5:d9:f5:49:fc:30:1c:fd:21:0d:56:4a: cd:a5:47:60:34:03:72:f4:8b:4f:46:ba:ea:f8:cf: b0:d4:12:b7:bd:23:dd:f3:7f:cd:de:31:f7:91:17: 32:fa:09:8a:0f:73:77:fa:5f:d0:c9:ad:7c:c8:b6: 30:cc:b9:e1:0b:76:75:d8:7f:3c:d7:20:c4:57:cf: 8f:50:64:97:18:ac:66:5b:0d:e1:6d:fc:35:ea:d7: 57:00:ee:c7:cd:60:65:ec:8d:a8:d4:99:c4:ab:2b: 6f:f8:f1:5f:f2:7b:9a:33:84:fd:6c:ae:76:0e:e9: cf:10:23:39:02:1b:b0:45:33:54:64:e9:47:4c:b0: 79:ed:48:08:f4:59:8c:57:b7:65:b7:ba:be:cc:78: 2d:07:12:87:1a:c6:44:f3:5d:89:1c:15:99:06:0a: 0a:59:fb:b1:78:fc:51:67:b0:b3:97:29:bc:9b:ee: 1f:e8:52:16:ef:b6:ee:dd:71:e1:26:cc:83:fb:80: c2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5B:DC:3F:8A:0A:C0:67:DB:96:37:02:2F:3D:10:AC:2A:46:CD:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.118.0/24 Signature Algorithm: sha256WithRSAEncryption d3:91:b2:2e:ae:26:75:c8:b3:27:1a:de:80:21:bb:23:ff:0c: 4a:92:76:f4:57:61:32:6c:2f:4c:54:f9:98:ce:8b:52:7a:e6: 2d:60:c8:98:c4:fe:0c:4c:72:6a:c2:c7:e4:15:03:ec:c1:6a: a6:30:7f:ac:3f:35:76:a9:71:8f:41:8a:a0:43:80:e0:a5:fc: 64:18:00:39:25:55:15:9f:a5:57:cc:57:b1:fd:c1:85:7b:28: ec:f8:f5:81:da:72:2f:36:ff:9a:3d:8f:6e:be:11:7d:22:34: f6:16:57:92:ff:19:ad:20:ac:77:8b:e7:03:53:99:12:71:97: 18:5b:e2:4e:8a:be:a6:04:57:f8:c2:8a:b6:fc:f7:b1:eb:73: 6c:01:6f:0c:f5:c0:b9:0b:65:88:15:e9:20:0d:74:96:af:78: 89:33:75:15:35:e9:a5:9c:5f:eb:ed:d5:ba:28:98:54:b2:b4: d6:b3:ec:e9:46:cf:5d:64:7a:63:2b:9a:80:9b:14:06:33:94: 21:85:a0:f8:05:af:b2:ce:d4:89:67:b6:86:d9:86:ae:c1:d1: f4:3d:3e:78:89:20:b9:0d:cd:d4:61:f0:b5:d3:0c:a4:db:6b: 67:f5:a8:b1:1a:0d:71:c6:7d:ff:25:01:04:2b:c2:4b:27:0a: 93:0e:d5:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFRQiCzfLSanFrLkWG+Yr7685o1AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAzMDAwMTI3WhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiODMxMjRmNmYyOTlmOWY0ZDI5YjAwYmU2MGVkNjBhMjRi NDEyNTJjOTQ3MmFkNDcyNTM1Njg2YzgxMGUyYWJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0hSkltUlCuOg7NhmDSR5P/otgx2Xz3370Subl/fX1J3Rx NQRGtZdqvYc0Qk+PsiuvC8Kk7L+FxCZ9qytSALXZ9Un8MBz9IQ1WSs2lR2A0A3L0 i09Guur4z7DUEre9I93zf83eMfeRFzL6CYoPc3f6X9DJrXzItjDMueELdnXYfzzX IMRXz49QZJcYrGZbDeFt/DXq11cA7sfNYGXsjajUmcSrK2/48V/ye5ozhP1srnYO 6c8QIzkCG7BFM1Rk6UdMsHntSAj0WYxXt2W3ur7MeC0HEocaxkTzXYkcFZkGCgpZ +7F4/FFnsLOXKbyb7h/oUhbvtu7dceEmzIP7gMKJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUclvcP4oKwGfbljcCLz0QrCpGzcYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5OTIyZDRmLWIxZmMtNDNkNS05Njc0LWEwODVhZDMxMjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXYwDQYJKoZIhvcNAQELBQADggEBANORsi6uJnXIsyca3oAhuyP/DEqS dvRXYTJsL0xU+ZjOi1J65i1gyJjE/gxMcmrCx+QVA+zBaqYwf6w/NXapcY9BiqBD gOCl/GQYADklVRWfpVfMV7H9wYV7KOz49YHaci82/5o9j26+EX0iNPYWV5L/Ga0g rHeL5wNTmRJxlxhb4k6KvqYEV/jCirb897Hrc2wBbwz1wLkLZYgV6SANdJaveIkz dRU16aWcX+vt1boomFSytNaz7OlGz11kemMrmoCbFAYzlCGFoPgFr7LO1IlntobZ hq7B0fQ9PniJILkNzdRh8LXTDKTba2f1qLEaDXHGff8lAQQrwksnCpMO1X8= -----END CERTIFICATE-----Generated at Tue Sep 16 20:30:26 2025 by rpki-client