$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa File: e718f292-3534-48a9-a800-2739137ff5ea.roa (raw, json) Hash identifier: cw+whGiNW89E9egtGfgnAyAcd0Glb71Y327lBa5xMm4= Subject key identifier: C7:19:96:12:44:C3:C7:89:8B:D4:06:1A:62:DC:83:99:02:4C:EC:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BF1516B87F05DB5157EA749D0E176F949B028DA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa Signing time: Wed 13 Aug 2025 00:50:47 +0000 ROA not before: Wed 13 Aug 2025 00:50:47 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f1:51:6b:87:f0:5d:b5:15:7e:a7:49:d0:e1:76:f9:49:b0:28:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:50:47 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=6e4260c551cda309352fb0d2358c393b9846c2ac0d8ad4f64ce7ba6b146d5c93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4f:79:79:6b:05:8b:44:ed:20:4a:3b:71:76: 7c:a4:80:63:52:eb:48:8c:23:60:40:de:6b:74:4f: f0:c3:e7:e9:ec:3f:1c:d8:9b:da:b6:3c:27:82:d2: ab:f9:fa:a6:ad:92:9c:19:bb:a2:fe:7c:84:4a:cb: bd:0b:5a:6e:c6:fe:a7:dd:31:21:46:50:f9:47:41: fa:5b:ed:a0:26:46:eb:ea:43:05:4e:c3:a2:db:79: 77:cd:49:f7:c4:5a:77:79:b9:f7:17:94:d3:6c:1c: 1f:11:fb:17:61:d9:2d:00:10:ed:ba:9d:60:34:c5: e3:a1:6d:ab:a2:fb:30:80:9d:c9:bb:62:a8:7c:70: 9a:71:38:80:1f:cf:33:e5:5c:62:0e:82:58:be:e8: f9:d5:22:e4:8e:07:cc:ad:f6:f0:0f:ec:5a:e3:11: 45:89:7f:88:bc:7c:50:57:52:6a:b7:57:c2:22:f6: 05:91:ec:00:5b:42:09:f8:69:6a:32:16:d6:10:35: 32:68:61:fa:39:aa:e5:44:63:18:56:4f:63:11:97: 8e:be:2f:98:69:74:c2:f4:9d:42:e8:06:e0:91:60: 83:b6:05:50:11:98:7a:d0:8b:88:89:24:bf:84:71: 27:c9:35:5d:2e:98:22:3a:fc:ee:1c:8b:da:e4:c0: 2e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:19:96:12:44:C3:C7:89:8B:D4:06:1A:62:DC:83:99:02:4C:EC:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.246.0/24 Signature Algorithm: sha256WithRSAEncryption a3:88:9d:93:17:66:7b:84:02:f2:e8:b1:de:c9:3a:64:f5:7b: a7:74:64:69:70:42:eb:12:7f:ca:08:4a:6a:40:a7:99:dc:68: a8:b9:17:3a:ca:43:d6:f4:8b:76:e4:d8:94:8f:3d:cb:3b:fb: 52:34:c3:02:17:ef:53:eb:05:d5:58:b8:98:a0:80:c0:00:67: 39:a8:bf:95:2d:c0:d4:fe:8d:23:7a:da:de:35:de:a9:1d:67: 1e:6e:f2:3a:e2:13:db:e1:d1:f9:dc:7d:f6:0d:65:d3:c4:de: 07:f7:c2:9d:66:19:37:39:cc:3c:09:0a:4e:82:98:4d:28:11: 30:e8:31:c2:d9:b0:87:25:30:a5:8d:03:bc:87:97:72:73:79: d3:97:f0:f1:4d:3d:87:ff:68:6c:72:ea:94:a6:64:0c:16:ec: 78:3a:72:43:30:02:0c:0f:fd:42:a7:98:61:76:34:e9:6e:89: fe:78:79:a6:03:39:7f:6c:05:bc:b2:17:83:9d:b9:a0:72:73: bb:f0:0a:76:86:a9:c3:b5:2f:6a:cb:cd:95:4c:fe:dd:0a:47: aa:c3:8c:0b:da:a1:da:d2:e0:bb:2f:9a:ef:ce:de:18:92:6b: 69:60:22:e8:76:09:75:10:f5:8d:13:01:ee:79:54:55:62:89: 9c:ba:dd:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW/FRa4fwXbUVfqdJ0OF2+UmwKNowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA1MDQ3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTQyNjBjNTUxY2RhMzA5MzUyZmIwZDIzNThjMzkzYjk4 NDZjMmFjMGQ4YWQ0ZjY0Y2U3YmE2YjE0NmQ1YzkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiT3l5awWLRO0gSjtxdnykgGNS60iMI2BA3mt0T/DD5+ns PxzYm9q2PCeC0qv5+qatkpwZu6L+fIRKy70LWm7G/qfdMSFGUPlHQfpb7aAmRuvq QwVOw6LbeXfNSffEWnd5ufcXlNNsHB8R+xdh2S0AEO26nWA0xeOhbaui+zCAncm7 Yqh8cJpxOIAfzzPlXGIOgli+6PnVIuSOB8yt9vAP7FrjEUWJf4i8fFBXUmq3V8Ii 9gWR7ABbQgn4aWoyFtYQNTJoYfo5quVEYxhWT2MRl46+L5hpdML0nULoBuCRYIO2 BVARmHrQi4iJJL+EcSfJNV0umCI6/O4ci9rkwC6DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxxmWEkTDx4mL1AYaYtyDmQJM7BEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U3MThmMjkyLTM1MzQtNDhhOS1hODAwLTI3MzkxMzdmZjVlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfYwDQYJKoZIhvcNAQELBQADggEBAKOInZMXZnuEAvLosd7JOmT1e6d0 ZGlwQusSf8oISmpAp5ncaKi5FzrKQ9b0i3bk2JSPPcs7+1I0wwIX71PrBdVYuJig gMAAZzmov5UtwNT+jSN62t413qkdZx5u8jriE9vh0fncffYNZdPE3gf3wp1mGTc5 zDwJCk6CmE0oETDoMcLZsIclMKWNA7yHl3JzedOX8PFNPYf/aGxy6pSmZAwW7Hg6 ckMwAgwP/UKnmGF2NOluif54eaYDOX9sBbyyF4OduaByc7vwCnaGqcO1L2rLzZVM /t0KR6rDjAvaodrS4Lsvmu/O3hiSa2lgIuh2CXUQ9Y0TAe55VFViiZy63fw= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:22 2025 by rpki-client