$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa File: e718f292-3534-48a9-a800-2739137ff5ea.roa (raw, json) Hash identifier: eyhugDokjZWKUIgmu3kuFbTJW/SF6czK+Ca8HUMTa08= Subject key identifier: 34:D9:1B:18:9C:F8:55:78:4D:5F:45:FE:D8:DC:5D:1D:9D:3D:1C:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02C57F5CEC22B89B8160AEEF16ECDBE9D907730D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa Signing time: Mon 08 Sep 2025 15:50:26 +0000 ROA not before: Mon 08 Sep 2025 15:50:26 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c5:7f:5c:ec:22:b8:9b:81:60:ae:ef:16:ec:db:e9:d9:07:73:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:50:26 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=096ebe48caef2579e47cdb46272cbae2e85f68b91b5a845a386266f06173c137, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:92:2f:8b:06:57:aa:e2:68:19:6b:a0:71:0d: 41:73:3f:32:65:ae:94:f8:ce:4a:b9:6b:1b:e5:c2: c4:45:b7:05:4b:03:c4:92:0a:21:a1:e0:ad:1b:6d: 7f:13:fd:33:04:b0:6a:ce:59:f4:18:f0:e4:da:3c: fa:57:db:d5:b0:03:d8:2e:fd:c9:66:f0:08:a0:3a: 69:6c:cd:87:01:64:9a:3f:6a:07:2d:2b:40:eb:80: 81:4d:0a:8e:94:3c:32:b2:e0:82:e9:27:12:bf:3f: 70:74:f9:84:f9:31:64:33:f4:91:26:06:c9:4b:58: 17:0d:78:67:10:c2:62:7b:0f:92:05:d9:a3:99:af: c5:33:f9:45:1e:d4:28:9c:ab:9a:8d:63:bf:bf:94: 89:fd:06:a5:a1:7d:71:37:f9:71:89:54:0d:4b:b6: 2c:1f:32:96:52:c6:2f:13:2e:7c:52:20:4f:5f:53: fd:25:09:d5:98:02:ad:81:dc:0e:0a:2e:0d:b0:90: fe:eb:39:74:fd:05:3a:93:f5:29:b9:71:10:3a:a3: b3:69:1b:2b:95:42:9d:74:59:ad:f9:9b:cb:29:ef: 65:00:b3:40:fe:b6:eb:eb:e4:c8:c7:1a:6b:67:19: 0a:70:bc:e4:d7:e1:0c:ae:12:60:37:a3:2b:9b:f5: 0e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:D9:1B:18:9C:F8:55:78:4D:5F:45:FE:D8:DC:5D:1D:9D:3D:1C:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.246.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:12:48:82:16:4d:11:b3:21:3d:31:11:8c:1d:60:2b:94:c9: c6:ac:be:b0:3e:ac:d5:d9:d9:e4:8f:75:8c:58:2a:d0:ba:c1: 5e:1e:6f:b7:3a:75:4b:8f:0d:6a:26:2a:a4:a1:c8:cc:eb:08: cb:ab:33:25:6d:10:ee:d3:69:70:d6:ae:89:08:98:d9:b7:a2: b9:a9:88:93:e7:04:3f:43:70:e4:52:98:05:68:cc:10:f0:80: f1:c0:96:75:5c:92:66:6c:fc:86:39:6f:87:1c:6f:4a:e2:41: 6f:93:19:f9:44:a5:0d:e0:24:ef:c9:43:a5:1c:a8:e9:89:0b: 75:04:44:0d:e9:88:fd:8c:39:f0:75:86:b1:64:db:b7:f5:2d: ca:09:ed:95:fc:99:5e:d5:fd:d7:14:c5:ed:c6:00:2e:02:c0: b0:43:62:42:72:14:f4:4c:67:28:0f:ba:2c:ec:60:4c:11:cf: c6:20:29:9b:7e:cc:58:99:67:b9:36:3c:60:4a:77:3d:7d:60: 3c:52:fb:31:21:81:3a:4a:a0:36:9b:d9:aa:57:7d:22:89:76: 2a:e1:5a:10:c7:7e:fb:0d:72:8d:a9:40:8c:7e:b1:3f:b7:3b: d3:ac:51:0a:82:7d:50:aa:d1:2b:d1:59:04:ec:26:fd:9a:72: 8d:6e:a3:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAsV/XOwiuJuBYK7vFuzb6dkHcw0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTU1MDI2WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTZlYmU0OGNhZWYyNTc5ZTQ3Y2RiNDYyNzJjYmFlMmU4 NWY2OGI5MWI1YTg0NWEzODYyNjZmMDYxNzNjMTM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+ki+LBleq4mgZa6BxDUFzPzJlrpT4zkq5axvlwsRFtwVL A8SSCiGh4K0bbX8T/TMEsGrOWfQY8OTaPPpX29WwA9gu/clm8AigOmlszYcBZJo/ agctK0DrgIFNCo6UPDKy4ILpJxK/P3B0+YT5MWQz9JEmBslLWBcNeGcQwmJ7D5IF 2aOZr8Uz+UUe1Cicq5qNY7+/lIn9BqWhfXE3+XGJVA1LtiwfMpZSxi8TLnxSIE9f U/0lCdWYAq2B3A4KLg2wkP7rOXT9BTqT9Sm5cRA6o7NpGyuVQp10Wa35m8sp72UA s0D+tuvr5MjHGmtnGQpwvOTX4QyuEmA3oyub9Q6zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNNkbGJz4VXhNX0X+2NxdHZ09HEowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U3MThmMjkyLTM1MzQtNDhhOS1hODAwLTI3MzkxMzdmZjVlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfYwDQYJKoZIhvcNAQELBQADggEBAH4SSIIWTRGzIT0xEYwdYCuUycas vrA+rNXZ2eSPdYxYKtC6wV4eb7c6dUuPDWomKqShyMzrCMurMyVtEO7TaXDWrokI mNm3ormpiJPnBD9DcORSmAVozBDwgPHAlnVckmZs/IY5b4ccb0riQW+TGflEpQ3g JO/JQ6UcqOmJC3UERA3piP2MOfB1hrFk27f1LcoJ7ZX8mV7V/dcUxe3GAC4CwLBD YkJyFPRMZygPuizsYEwRz8YgKZt+zFiZZ7k2PGBKdz19YDxS+zEhgTpKoDab2apX fSKJdirhWhDHfvsNco2pQIx+sT+3O9OsUQqCfVCq0SvRWQTsJv2aco1uo8Q= -----END CERTIFICATE-----Generated at Fri Sep 19 11:36:29 2025 by rpki-client