$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa File: ae8d221b-7c83-4dd1-ba17-96784666216f.roa (raw, json) Hash identifier: SCip4iozGD3vX607GHUnzHqNnIgx+j6MLB9I8KusotI= Subject key identifier: 7F:32:E1:DC:59:E2:D5:A8:0B:9F:F0:C0:C8:C8:54:9F:DB:C8:9F:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71A8A51C2E7D3F3560C9A0933608E42183E5AEC7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa Signing time: Mon 08 Sep 2025 16:00:27 +0000 ROA not before: Mon 08 Sep 2025 16:00:27 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.83.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a8:a5:1c:2e:7d:3f:35:60:c9:a0:93:36:08:e4:21:83:e5:ae:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 16:00:27 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=64a0ee0901785560413f835314e7d71ea0d93c1a10ebca068b1c019c2556e2ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c8:68:f7:5c:49:e9:e8:b6:42:3d:38:46:01: 42:70:9d:a9:ef:25:9e:5e:8a:6c:bf:27:e0:17:43: 68:9c:30:fb:32:80:90:32:5f:d3:63:a9:29:b4:e3: 5c:88:f0:82:08:2f:b6:87:53:18:d6:37:fd:4d:a1: c8:dd:10:aa:07:c7:12:3b:de:34:a9:b8:e6:23:62: c1:34:fb:a0:26:f3:98:2c:02:67:87:a2:76:ac:f3: b2:55:e4:2c:90:fa:59:99:25:ae:64:48:55:69:b9: fb:47:cc:c7:b4:a6:94:cb:28:2c:41:40:62:bd:52: f4:1f:73:1e:9a:d0:b8:1e:e0:06:b0:74:a5:7b:2d: cf:f1:0c:9d:1c:85:3a:b5:f8:20:c6:8f:7d:0d:8f: 23:1d:72:99:1d:8b:08:cf:51:d5:08:03:9c:10:e6: 19:fe:dd:7f:57:08:e3:54:1e:5e:ac:ec:48:e8:1c: 25:70:de:4c:74:97:97:76:af:06:13:6e:57:2d:19: 89:d3:3f:4e:8d:1c:ea:ac:ee:0c:c6:99:d5:36:e8: b1:7e:19:08:cc:11:39:df:cb:ce:5f:c8:ee:04:5f: b1:ac:05:0b:e5:89:b0:3f:c6:af:28:3a:80:77:8d: 43:7b:89:08:24:07:8a:e5:c2:c4:46:03:f5:b0:5b: 60:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:32:E1:DC:59:E2:D5:A8:0B:9F:F0:C0:C8:C8:54:9F:DB:C8:9F:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.83.64.0/18 Signature Algorithm: sha256WithRSAEncryption 95:bb:dd:dc:99:42:8f:24:89:d8:a3:41:77:41:2a:b9:10:ab: 36:80:bb:a6:8d:0a:89:c5:3e:18:32:f0:f5:7b:ba:96:c4:59: 7f:80:ee:41:bc:c7:4e:30:57:cc:35:b5:ac:43:af:48:cf:d5: 5f:86:3a:8b:8c:c0:a9:fb:04:20:79:92:ab:36:f2:a1:09:10: c5:b0:e9:75:e6:b1:1f:d4:fb:6d:89:d1:a2:32:cb:2c:47:4d: 29:0f:10:5d:5b:4c:4e:16:1c:e6:a1:0c:78:11:7b:c6:df:23: c3:41:1b:83:8b:da:a3:7e:64:a4:d4:71:87:6f:09:41:c5:fc: a2:fd:87:04:43:05:fc:c5:b5:c7:7a:b1:e7:c6:39:e3:50:d9: 40:76:3e:d1:ad:49:be:db:00:4c:1e:a4:c9:7b:7c:13:41:fb: 2f:2c:4b:5f:22:48:11:71:28:ba:af:89:65:74:a1:a4:5c:c2: 0d:4d:bd:9a:cc:ea:45:6b:05:82:13:ed:a7:7d:5e:86:12:7e: 59:4f:97:90:97:b1:d6:d5:ae:9c:19:4a:fa:a5:fc:9f:d6:39: 75:41:fe:ac:74:01:8d:12:8c:71:40:af:5a:a1:07:59:db:0b: dd:ec:5a:27:a6:3d:27:e6:d5:de:ce:a2:90:80:80:7f:05:33: 5f:2a:5d:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcailHC59PzVgyaCTNgjkIYPlrscwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTYwMDI3WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGEwZWUwOTAxNzg1NTYwNDEzZjgzNTMxNGU3ZDcxZWEw ZDkzYzFhMTBlYmNhMDY4YjFjMDE5YzI1NTZlMmNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+yGj3XEnp6LZCPThGAUJwnanvJZ5eimy/J+AXQ2icMPsy gJAyX9NjqSm041yI8IIIL7aHUxjWN/1NocjdEKoHxxI73jSpuOYjYsE0+6Am85gs AmeHonas87JV5CyQ+lmZJa5kSFVpuftHzMe0ppTLKCxBQGK9UvQfcx6a0Lge4Aaw dKV7Lc/xDJ0chTq1+CDGj30NjyMdcpkdiwjPUdUIA5wQ5hn+3X9XCONUHl6s7Ejo HCVw3kx0l5d2rwYTblctGYnTP06NHOqs7gzGmdU26LF+GQjMETnfy85fyO4EX7Gs BQvlibA/xq8oOoB3jUN7iQgkB4rlwsRGA/WwW2BtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfzLh3Fni1agLn/DAyMhUn9vIn2IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlOGQyMjFiLTdjODMtNGRkMS1iYTE3LTk2Nzg0NjY2MjE2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjU0AwDQYJKoZIhvcNAQELBQADggEBAJW73dyZQo8kidijQXdBKrkQqzaA u6aNConFPhgy8PV7upbEWX+A7kG8x04wV8w1taxDr0jP1V+GOouMwKn7BCB5kqs2 8qEJEMWw6XXmsR/U+22J0aIyyyxHTSkPEF1bTE4WHOahDHgRe8bfI8NBG4OL2qN+ ZKTUcYdvCUHF/KL9hwRDBfzFtcd6sefGOeNQ2UB2PtGtSb7bAEwepMl7fBNB+y8s S18iSBFxKLqviWV0oaRcwg1NvZrM6kVrBYIT7ad9XoYSfllPl5CXsdbVrpwZSvql /J/WOXVB/qx0AY0SjHFAr1qhB1nbC93sWiemPSfm1d7OopCAgH8FM18qXS0= -----END CERTIFICATE-----Generated at Thu Sep 18 10:35:11 2025 by rpki-client