$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa File: 99c8e082-8d94-40aa-ab10-227e1c1538ab.roa (raw, json) Hash identifier: mgatJvNEi25TvQVwprYiFBtzHwH+n2+JEI+VRKtPi+4= Subject key identifier: 8C:BA:D2:F7:90:B5:7A:96:4C:96:73:F9:93:D4:CE:50:65:91:2E:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 392E2DB3EB2431C89460DA2FEADDBF9C66161763 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa Signing time: Sat 30 Aug 2025 00:50:24 +0000 ROA not before: Sat 30 Aug 2025 00:50:24 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 75.101.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:2e:2d:b3:eb:24:31:c8:94:60:da:2f:ea:dd:bf:9c:66:16:17:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:50:24 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=c1b3c5aa301cea4821bcf1591ecec3116f6b9d831266d068f6dfe646713dc8c0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f0:a5:d6:e2:c2:64:4b:d0:33:9c:9f:93:b9: c8:9d:82:7c:d2:08:48:b0:6f:75:a8:ab:97:db:4f: 74:28:f8:4a:32:c2:44:60:fe:7c:30:63:6b:95:4a: a3:15:53:b2:63:45:13:19:a6:98:b2:90:6c:b2:a9: 71:fa:d9:f3:fd:e6:d2:9f:a1:b5:64:cf:5f:d5:5b: d6:4e:31:ad:c0:8d:ae:d7:6c:1e:15:d9:a4:cc:bd: c0:a3:ad:e4:89:88:18:d4:ed:70:cb:38:89:d7:ed: f9:37:69:c0:e3:09:f8:02:7a:83:b9:ab:7e:f2:e7: 3e:01:41:e8:33:58:c9:c1:87:2a:dc:90:3b:93:eb: 8e:6c:58:2d:ce:2b:6c:30:03:45:9f:fe:57:26:b1: 1c:f7:8f:03:bf:2e:0c:a6:65:db:cb:23:bb:b0:39: 7f:cb:2d:09:78:e6:cd:b7:7a:d1:f2:6a:a9:5c:f8: a2:f7:08:91:6e:91:1d:80:e1:29:65:c2:14:38:90: bc:c8:fc:72:a7:1e:39:9f:aa:55:39:8a:15:30:9e: 16:b3:56:8b:b2:b6:c2:e3:57:a8:1f:97:8d:1f:e2: 3d:72:53:cd:da:de:59:d2:7e:2f:0f:e5:38:97:01: 32:a9:80:75:63:8d:de:63:35:e1:f8:1b:5a:b0:f3: e2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BA:D2:F7:90:B5:7A:96:4C:96:73:F9:93:D4:CE:50:65:91:2E:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.162.0/23 Signature Algorithm: sha256WithRSAEncryption 43:33:86:c7:1b:54:97:c6:ea:92:d3:78:4d:b7:63:cc:c1:99: 23:f3:46:3b:6e:c8:e9:ea:f2:35:2e:d1:23:da:f2:97:01:8b: 5d:25:8d:2b:f9:4d:3e:69:6e:65:b7:e9:bc:67:11:a8:15:82: 57:81:52:32:e9:4f:2b:e9:b7:6e:92:5a:fa:eb:c6:02:5e:db: 27:f3:30:b0:2f:d8:b0:6c:72:5a:ca:10:2c:a0:29:b9:ff:0f: 5b:23:38:12:3e:9c:f5:04:85:21:e7:a4:72:6e:56:be:3c:ff: f6:84:58:d6:ec:8b:2a:69:c9:84:e1:97:21:cc:43:88:66:6a: 13:77:b8:f2:8a:d9:f8:9a:a5:54:4f:38:7a:eb:09:ea:08:83: cc:44:d4:bd:ed:62:b9:19:84:88:46:55:8d:6b:5c:96:70:86: 24:2f:62:84:ca:e1:78:35:d1:18:7d:49:24:35:64:81:7d:da: 28:ca:ff:15:21:83:0c:b3:2f:53:74:fb:72:a9:19:93:bd:1d: ab:63:1f:31:46:5e:86:d0:ad:02:d2:e6:6b:e0:54:37:c2:15: 51:e8:8f:d3:bd:a5:e6:c6:bd:c8:17:b0:4f:a3:bc:86:b8:76: 02:c7:4e:8d:1d:8f:2e:62:45:6d:bf:78:d3:f5:29:73:43:ee: 67:27:86:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOS4ts+skMciUYNov6t2/nGYWF2MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDA1MDI0WhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWIzYzVhYTMwMWNlYTQ4MjFiY2YxNTkxZWNlYzMxMTZm NmI5ZDgzMTI2NmQwNjhmNmRmZTY0NjcxM2RjOGMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo8KXW4sJkS9AznJ+TucidgnzSCEiwb3Woq5fbT3Qo+Eoy wkRg/nwwY2uVSqMVU7JjRRMZppiykGyyqXH62fP95tKfobVkz1/VW9ZOMa3Aja7X bB4V2aTMvcCjreSJiBjU7XDLOInX7fk3acDjCfgCeoO5q37y5z4BQegzWMnBhyrc kDuT645sWC3OK2wwA0Wf/lcmsRz3jwO/LgymZdvLI7uwOX/LLQl45s23etHyaqlc +KL3CJFukR2A4SllwhQ4kLzI/HKnHjmfqlU5ihUwnhazVouytsLjV6gfl40f4j1y U83a3lnSfi8P5TiXATKpgHVjjd5jNeH4G1qw8+INAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjLrS95C1epZMlnP5k9TOUGWRLvswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5YzhlMDgyLThkOTQtNDBhYS1hYjEwLTIyN2UxYzE1MzhhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFLZaIwDQYJKoZIhvcNAQELBQADggEBAEMzhscbVJfG6pLTeE23Y8zBmSPz RjtuyOnq8jUu0SPa8pcBi10ljSv5TT5pbmW36bxnEagVgleBUjLpTyvpt26SWvrr xgJe2yfzMLAv2LBsclrKECygKbn/D1sjOBI+nPUEhSHnpHJuVr48//aEWNbsiypp yYThlyHMQ4hmahN3uPKK2fiapVRPOHrrCeoIg8xE1L3tYrkZhIhGVY1rXJZwhiQv YoTK4Xg10Rh9SSQ1ZIF92ijK/xUhgwyzL1N0+3KpGZO9HatjHzFGXobQrQLS5mvg VDfCFVHoj9O9pebGvcgXsE+jvIa4dgLHTo0djy5iRW2/eNP1KXND7mcnhvc= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:25 2025 by rpki-client