$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa File: 9e3973a0-6f9e-4d6a-981e-b0146a441803.roa (raw, json) Hash identifier: PH4xqNvNQshH6cpI74E5GgpAHK9+Gfat4ueQmO9h+Rk= Subject key identifier: 1C:67:90:C2:D2:32:6D:5A:B7:C0:BB:C7:06:4E:60:DA:73:F8:AF:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57B0AEA3B8C4F7F4D4EBF0AFAFB4B6FDBF657299 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa Signing time: Wed 13 Aug 2025 00:51:09 +0000 ROA not before: Wed 13 Aug 2025 00:51:09 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b0:ae:a3:b8:c4:f7:f4:d4:eb:f0:af:af:b4:b6:fd:bf:65:72:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:51:09 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=0d449ac36f9f1b1764fa959a9888a16e33a2b96cc23edf7fa4bd548ac549adea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:36:00:d5:30:d2:7d:8e:56:d2:c2:c2:fe:07: d0:9a:c7:f3:68:46:66:7b:1f:bc:6f:83:f1:1e:21: 2d:15:78:c8:98:fd:77:b5:2b:fb:63:43:58:95:5d: 8e:da:5e:9c:da:46:b9:df:fb:fc:4a:00:63:01:33: 32:c2:4b:fa:71:31:a6:82:7a:e9:79:d0:f9:0d:c8: 55:55:60:6a:06:b7:3b:97:c4:14:89:aa:37:ca:7d: bc:09:1a:78:71:45:40:4b:9a:cd:92:8e:45:65:b1: 2b:bb:e7:5f:49:c3:1a:47:6f:f8:71:bc:5b:4a:cb: 97:b3:fb:60:1d:42:bf:5e:36:23:3e:f5:80:67:12: ce:fc:4b:44:ee:e1:52:b2:63:c9:cb:cb:67:f2:dc: 8d:ff:71:ae:8c:db:af:fe:2e:af:83:e4:04:60:5c: a5:ad:8a:fe:7c:e4:05:f3:12:cc:f2:ef:1e:24:9a: df:0d:c8:61:02:5f:cd:f9:46:7d:0f:a6:e4:ae:0f: 8f:4b:51:22:8b:76:35:d5:20:fd:9b:3f:3e:c4:97: 79:18:c9:4d:a1:e8:13:98:cb:e4:34:cb:48:e6:f0: ce:93:fa:9f:2f:b6:0d:67:96:65:e5:d7:78:41:76: 91:72:5a:38:3b:86:24:d8:48:52:9c:76:06:f3:a3: bc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:67:90:C2:D2:32:6D:5A:B7:C0:BB:C7:06:4E:60:DA:73:F8:AF:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e3973a0-6f9e-4d6a-981e-b0146a441803.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.236.0/24 Signature Algorithm: sha256WithRSAEncryption 66:1f:4c:5b:71:b8:3e:d4:61:eb:a8:91:40:6f:b2:07:0f:3b: 4f:97:3c:e4:8f:8f:fc:35:f3:ef:0a:54:89:16:7a:60:93:78: e2:be:f6:51:af:ef:ff:56:14:67:0a:77:d8:f3:77:bb:b3:1c: 2c:fb:48:29:af:6b:e7:e7:3f:55:55:86:65:81:2e:55:2b:b7: 90:a6:53:8c:98:50:43:0c:37:7a:14:06:f9:04:66:9a:17:3b: 85:fd:e5:3e:32:4d:d6:61:3b:d5:1b:d8:37:6c:11:55:ce:a0: 85:51:d3:38:b7:43:e2:c8:89:87:42:ba:8b:c3:d9:48:80:ee: 5e:d0:13:db:ed:79:fa:41:23:1f:ef:2a:d5:f0:78:20:02:de: 7c:46:3e:1a:aa:e9:f4:79:47:6c:a9:4d:50:41:1c:94:77:6e: 87:38:86:59:ce:29:b8:3f:28:e0:d1:08:8e:3a:75:f9:2e:fd: 03:49:81:36:19:39:f4:77:19:20:c5:63:f6:93:54:46:05:04: 4e:b9:a3:35:6f:81:9e:a5:fc:d7:09:e0:3c:1a:cd:22:3e:8a: 0c:41:9b:34:2a:8d:40:8a:88:b2:45:be:e2:3b:99:7a:f7:be: 91:55:d1:f3:45:6a:fb:53:e5:7f:2e:1f:4a:98:77:2a:51:b1: db:78:4a:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV7Cuo7jE9/TU6/Cvr7S2/b9lcpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA1MTA5WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDQ0OWFjMzZmOWYxYjE3NjRmYTk1OWE5ODg4YTE2ZTMz YTJiOTZjYzIzZWRmN2ZhNGJkNTQ4YWM1NDlhZGVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7NgDVMNJ9jlbSwsL+B9Cax/NoRmZ7H7xvg/EeIS0VeMiY /Xe1K/tjQ1iVXY7aXpzaRrnf+/xKAGMBMzLCS/pxMaaCeul50PkNyFVVYGoGtzuX xBSJqjfKfbwJGnhxRUBLms2SjkVlsSu7519JwxpHb/hxvFtKy5ez+2AdQr9eNiM+ 9YBnEs78S0Tu4VKyY8nLy2fy3I3/ca6M26/+Lq+D5ARgXKWtiv585AXzEszy7x4k mt8NyGECX835Rn0PpuSuD49LUSKLdjXVIP2bPz7El3kYyU2h6BOYy+Q0y0jm8M6T +p8vtg1nlmXl13hBdpFyWjg7hiTYSFKcdgbzo7xfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHGeQwtIybVq3wLvHBk5g2nP4r1swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllMzk3M2EwLTZmOWUtNGQ2YS05ODFlLWIwMTQ2YTQ0MTgwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTewwDQYJKoZIhvcNAQELBQADggEBAGYfTFtxuD7UYeuokUBvsgcPO0+X POSPj/w18+8KVIkWemCTeOK+9lGv7/9WFGcKd9jzd7uzHCz7SCmva+fnP1VVhmWB LlUrt5CmU4yYUEMMN3oUBvkEZpoXO4X95T4yTdZhO9Ub2DdsEVXOoIVR0zi3Q+LI iYdCuovD2UiA7l7QE9vtefpBIx/vKtXweCAC3nxGPhqq6fR5R2ypTVBBHJR3boc4 hlnOKbg/KODRCI46dfku/QNJgTYZOfR3GSDFY/aTVEYFBE65ozVvgZ6l/NcJ4Dwa zSI+igxBmzQqjUCKiLJFvuI7mXr3vpFV0fNFavtT5X8uH0qYdypRsdt4Sp8= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:13 2025 by rpki-client