$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/beb0af32-61c3-4bc0-bda5-bcc144dd8f91.roa File: beb0af32-61c3-4bc0-bda5-bcc144dd8f91.roa (raw, json) Hash identifier: nULTXEJJUU34d1U2BVkrSyjXCzY77SzQSA6uAOViwmI= Subject key identifier: CD:50:8A:5D:4E:85:F3:F5:04:71:EF:A7:2F:2D:8C:1F:A0:DD:E2:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D661E78DA74012A992FD41F8194FD651C51035B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/beb0af32-61c3-4bc0-bda5-bcc144dd8f91.roa Signing time: Sat 06 Sep 2025 00:51:19 +0000 ROA not before: Sat 06 Sep 2025 00:51:19 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.77.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:66:1e:78:da:74:01:2a:99:2f:d4:1f:81:94:fd:65:1c:51:03:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:51:19 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=c70d53be82b176b9b879003e65367c4a635cfe3e44bd0b3d0366c23690286a6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0c:6c:7b:20:78:dc:ab:90:d8:c8:1d:31:89: 2b:b6:fe:36:25:0c:db:df:1f:c4:47:07:5a:0c:7a: 92:98:c2:b8:f7:c1:9c:80:f9:f4:91:16:64:bb:c5: cf:b0:b5:3b:76:14:d2:96:8b:37:70:92:c8:64:e1: ca:f5:74:47:cb:42:6c:42:ea:65:01:54:17:4d:3c: 0e:e8:dd:7e:8d:36:5d:18:3b:05:f5:58:d2:bf:c6: 31:88:95:4f:01:ca:d6:08:3a:b5:41:0f:a0:46:db: 06:13:cd:92:15:91:98:1d:46:59:58:69:cf:1a:4e: 75:9e:e5:38:81:30:4a:3a:51:6f:47:ad:73:ba:56: 6b:1c:6d:fb:b5:a0:5b:88:ef:d7:a1:29:0a:62:5a: 55:c8:58:35:bd:83:f0:37:2c:d7:6e:dd:9d:ec:c7: a6:29:c9:71:f3:70:fd:ab:fb:d6:57:2c:f4:e4:15: 91:3d:1e:03:60:35:4b:4f:e6:bc:60:13:96:2d:4b: a4:54:32:31:ae:96:f3:7f:6e:e3:df:9a:2a:30:62: f6:7f:81:a5:1c:82:a0:64:e3:c1:fd:46:34:2f:f6: 72:32:8f:da:3d:9a:d7:8e:de:a0:1c:34:4d:bb:30: 14:31:e3:56:a8:cf:2c:68:79:da:e7:57:9b:ab:a7: 89:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:50:8A:5D:4E:85:F3:F5:04:71:EF:A7:2F:2D:8C:1F:A0:DD:E2:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/beb0af32-61c3-4bc0-bda5-bcc144dd8f91.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:46:4a:70:6e:c6:10:0a:01:4f:6e:4e:45:ed:54:a4:60:c4: 6b:e8:b3:50:2e:62:21:9f:5e:22:45:f6:19:37:6d:32:89:70: 19:c6:a7:89:f8:bf:3a:f9:a8:aa:f0:7f:02:01:4d:b8:e2:26: ac:f2:f2:bd:d2:f6:4b:61:0a:74:e4:9f:a6:8f:94:cc:0e:c5: 56:ed:d7:32:ad:81:37:b3:86:4e:7f:e2:ff:56:79:19:ac:84: e9:03:fb:99:d2:50:36:16:70:4f:e7:ca:4d:cb:c0:f1:cd:05: 59:27:08:7e:a8:1d:7e:c4:d5:e6:54:ba:be:1a:dd:fe:88:6c: b8:a6:4a:49:de:5a:eb:69:d3:a1:d0:c4:52:f4:d5:5c:71:f4: db:87:b4:28:89:f9:ac:14:66:88:1a:4f:a4:29:4d:cf:a4:cb: 75:87:f6:51:be:e2:dc:61:28:d3:62:0d:49:5e:26:aa:6c:bd: 23:74:bd:28:ef:38:e3:ba:ad:79:fb:97:95:63:b2:40:46:46: 48:53:26:57:7d:d1:a2:47:2b:0a:3c:af:5a:8f:24:42:94:33: 54:aa:be:92:23:be:e2:cf:1b:e2:77:35:c1:a8:a3:9a:05:50: 2a:51:f8:a1:27:f1:5c:98:21:a4:6f:8c:cf:d1:13:42:8b:d7: 79:f2:13:1d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXWYeeNp0ASqZL9QfgZT9ZRxRA1swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA1MTE5WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzBkNTNiZTgyYjE3NmI5Yjg3OTAwM2U2NTM2N2M0YTYz NWNmZTNlNDRiZDBiM2QwMzY2YzIzNjkwMjg2YTZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQDGx7IHjcq5DYyB0xiSu2/jYlDNvfH8RHB1oMepKYwrj3 wZyA+fSRFmS7xc+wtTt2FNKWizdwkshk4cr1dEfLQmxC6mUBVBdNPA7o3X6NNl0Y OwX1WNK/xjGIlU8BytYIOrVBD6BG2wYTzZIVkZgdRllYac8aTnWe5TiBMEo6UW9H rXO6Vmscbfu1oFuI79ehKQpiWlXIWDW9g/A3LNdu3Z3sx6YpyXHzcP2r+9ZXLPTk FZE9HgNgNUtP5rxgE5YtS6RUMjGulvN/buPfmiowYvZ/gaUcgqBk48H9RjQv9nIy j9o9mteO3qAcNE27MBQx41aozyxoedrnV5urp4mbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzVCKXU6F8/UEce+nLy2MH6Dd4s8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlYjBhZjMyLTYxYzMtNGJjMC1iZGE1LWJjYzE0NGRkOGY5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBiTTANBgkqhkiG9w0BAQsFAAOCAQEAhEZKcG7GEAoBT25ORe1UpGDEa+iz UC5iIZ9eIkX2GTdtMolwGcanifi/OvmoqvB/AgFNuOImrPLyvdL2S2EKdOSfpo+U zA7FVu3XMq2BN7OGTn/i/1Z5GayE6QP7mdJQNhZwT+fKTcvA8c0FWScIfqgdfsTV 5lS6vhrd/ohsuKZKSd5a62nTodDEUvTVXHH024e0KIn5rBRmiBpPpClNz6TLdYf2 Ub7i3GEo02INSV4mqmy9I3S9KO8447qtefuXlWOyQEZGSFMmV33RokcrCjyvWo8k QpQzVKq+kiO+4s8b4nc1waijmgVQKlH4oSfxXJghpG+Mz9ETQovXefITHQ== -----END CERTIFICATE-----Generated at Mon Sep 15 20:53:02 2025 by rpki-client