$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa File: 490da442-9a78-4422-8ee9-ded4482ab131.roa (raw, json) Hash identifier: OKF5yJL6u2iH9la6JjVpmTfWlwRTmkF4j8EEjAH5oUA= Subject key identifier: A2:02:BF:24:F6:65:F5:95:C6:5B:27:D2:AA:46:07:20:A3:8B:A5:6A Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 317521B55CDA858F2271B20ED546041D354525BF Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa Signing time: Mon 04 Aug 2025 15:00:05 +0000 ROA not before: Mon 04 Aug 2025 15:00:05 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:75:21:b5:5c:da:85:8f:22:71:b2:0e:d5:46:04:1d:35:45:25:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:05 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=cd7a9767765f43e34e07582c47069849e708328f3dab4356c40a19212b596558, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d9:1b:3a:22:52:4d:c0:8b:35:67:28:d3:d6: 85:08:15:ad:d2:14:c6:5c:8a:2c:8e:f3:1d:1f:9f: 7d:cd:f3:04:6d:6a:31:da:51:5e:4d:1a:f7:5d:2b: 36:8d:9e:00:42:f4:23:9a:49:55:34:f1:5f:a4:06: d7:ec:57:44:d8:d3:9a:27:33:46:38:39:b5:d3:91: 58:5a:14:f0:34:de:b2:62:eb:c8:0a:ea:59:3a:63: 73:6f:ad:ea:6b:fb:3d:e0:bf:8c:c7:45:51:fe:b4: 70:d5:66:3b:03:fc:24:87:8c:cd:51:30:ab:1b:aa: 40:bc:72:b3:d7:86:0f:40:53:2d:04:17:8f:5a:9d: 2b:8b:db:84:73:b8:0e:b4:88:54:cf:9a:89:51:e8: 7e:26:fd:b3:bc:cb:f3:60:be:cc:59:ca:3b:5e:7c: 21:71:e1:33:ff:5a:1e:5c:cb:80:05:9a:75:fb:e6: 59:2e:dd:7a:13:b5:a2:71:31:6c:1b:a7:90:5a:cf: 1d:e9:62:fa:bf:13:07:6e:58:45:dd:84:08:bd:35: e6:1a:ac:c5:68:f7:45:1f:cb:42:f8:9c:a8:c6:87: ee:87:e1:53:5b:10:f6:06:fa:77:73:4d:21:15:a4: 02:f8:de:09:e7:ec:0e:04:07:af:81:3b:04:35:15: e4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:02:BF:24:F6:65:F5:95:C6:5B:27:D2:AA:46:07:20:A3:8B:A5:6A X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption aa:f3:6e:c6:cf:b4:b8:de:40:1e:54:e2:3e:42:75:99:30:42: 91:ff:a7:f9:7c:8a:ed:a1:e6:49:ff:59:ae:69:16:bd:55:ab: 08:d4:d8:af:f8:2d:47:93:69:c1:77:aa:d5:62:f2:1e:a4:91: 7e:cb:c7:66:14:1f:03:5d:a7:f9:64:8d:3a:40:92:b7:71:a6: 93:07:96:ae:91:90:06:44:05:7a:e3:d2:04:49:9b:c4:69:54: be:71:5e:18:c7:0f:61:91:bb:c5:72:fa:c5:cb:71:cc:8f:e2: 66:43:f3:77:7a:54:2b:76:71:1b:47:0f:db:42:f8:9f:15:1c: 2a:6d:e1:29:25:07:67:33:e7:22:a7:78:0e:f7:df:cc:f1:a4: f5:1b:ca:bc:ae:ee:19:19:8b:68:29:51:63:0f:84:ea:a0:4a: 16:44:1e:05:2e:0d:9c:07:6b:a0:26:6f:7a:28:9e:56:5c:1f: 7e:22:5a:3c:75:e4:35:e5:f5:b0:3a:70:51:91:a1:c5:ed:fd: d2:fc:cc:c9:5f:e2:a2:44:57:88:51:3c:23:6e:10:8a:60:a3: df:1f:74:94:5f:97:01:da:e1:22:5c:dc:73:3f:71:fb:ae:50: f7:32:ef:86:d8:ba:e1:2e:1d:f1:68:30:71:3b:cf:99:af:c2: aa:0b:92:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMXUhtVzahY8icbIO1UYEHTVFJb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDA1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDdhOTc2Nzc2NWY0M2UzNGUwNzU4MmM0NzA2OTg0OWU3 MDgzMjhmM2RhYjQzNTZjNDBhMTkyMTJiNTk2NTU4MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP2Rs6IlJNwIs1ZyjT1oUIFa3SFMZciiyO8x0fn33N8wRt ajHaUV5NGvddKzaNngBC9COaSVU08V+kBtfsV0TY05onM0Y4ObXTkVhaFPA03rJi 68gK6lk6Y3Nvrepr+z3gv4zHRVH+tHDVZjsD/CSHjM1RMKsbqkC8crPXhg9AUy0E F49anSuL24RzuA60iFTPmolR6H4m/bO8y/NgvsxZyjtefCFx4TP/Wh5cy4AFmnX7 5lku3XoTtaJxMWwbp5Bazx3pYvq/EwduWEXdhAi9NeYarMVo90Ufy0L4nKjGh+6H 4VNbEPYG+ndzTSEVpAL43gnn7A4EB6+BOwQ1FeSfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUogK/JPZl9ZXGWyfSqkYHIKOLpWowHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzQ5MGRhNDQyLTlhNzgtNDQyMi04ZWU5LWRlZDQ0ODJhYjEzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAKrzbsbPtLjeQB5U4j5CdZkwQpH/ p/l8iu2h5kn/Wa5pFr1VqwjU2K/4LUeTacF3qtVi8h6kkX7Lx2YUHwNdp/lkjTpA krdxppMHlq6RkAZEBXrj0gRJm8RpVL5xXhjHD2GRu8Vy+sXLccyP4mZD83d6VCt2 cRtHD9tC+J8VHCpt4SklB2cz5yKneA7338zxpPUbyryu7hkZi2gpUWMPhOqgShZE HgUuDZwHa6Amb3oonlZcH34iWjx15DXl9bA6cFGRocXt/dL8zMlf4qJEV4hRPCNu EIpgo98fdJRflwHa4SJc3HM/cfuuUPcy74bYuuEuHfFoMHE7z5mvwqoLkqM= -----END CERTIFICATE-----Generated at Wed Aug 6 16:19:39 2025 by rpki-client