$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa File: 490da442-9a78-4422-8ee9-ded4482ab131.roa (raw, json) Hash identifier: 9OM8KMPdNuQjQeB+6VVjTObX2r3L99F+7xJCKpVxJTs= Subject key identifier: 4C:61:8D:A2:94:2A:DB:42:73:96:0D:CA:08:50:AE:70:0E:7A:48:2F Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 7714149E5C8C68C391BAD5ABBB39A65FCC3A30D9 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa Signing time: Sat 18 Oct 2025 00:10:08 +0000 ROA not before: Sat 18 Oct 2025 00:10:08 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:14:14:9e:5c:8c:68:c3:91:ba:d5:ab:bb:39:a6:5f:cc:3a:30:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Oct 18 00:10:08 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=a715c688b1b784d0c60a523370ca99d76fdc37e0a7c1edb301c4ba4e17b33d63, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:35:b4:90:2e:41:56:eb:89:8b:e3:a8:57:e1: 99:2b:8e:a4:d4:03:37:81:66:c9:a6:1f:ed:28:a1: 82:56:71:c9:8d:6b:76:6a:e2:71:75:60:06:eb:76: 64:f0:46:6c:7b:26:04:6f:c0:5d:71:05:21:c9:30: 36:2b:75:37:6d:1e:38:73:2b:7e:1b:d4:e8:94:8c: c9:b9:5c:bd:a8:9f:33:7e:6b:d2:22:8d:57:5a:dd: 37:11:d1:fb:28:bd:98:34:6f:3f:c9:69:2b:08:de: a5:31:90:7c:34:af:fd:a1:3a:f9:c5:36:ae:3a:b0: e9:32:6c:57:50:ae:a7:25:2d:d8:c4:32:1a:2a:53: 12:ef:c6:7d:9b:42:71:ec:41:54:2d:12:6e:46:b4: e8:80:75:a2:39:30:df:d6:c1:3b:9f:ac:a3:5f:67: ad:70:fe:46:be:59:c1:cf:1d:3f:4b:41:de:fa:34: b5:58:1a:70:c2:a7:49:5a:e2:e3:45:a7:e0:0e:58: b0:90:14:73:fa:a7:17:6f:92:b6:fe:04:ca:3b:04: 84:98:16:c5:4c:70:4c:f4:30:df:ea:e4:f6:84:ce: 0d:ab:b7:87:7f:9c:d6:62:3e:20:d1:6c:3f:3f:a5: 7d:2d:a4:69:1b:8f:d8:0d:74:e0:24:0f:d3:14:20: f7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:61:8D:A2:94:2A:DB:42:73:96:0D:CA:08:50:AE:70:0E:7A:48:2F X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption a9:8a:1f:ed:de:ce:92:e0:fc:74:45:03:6a:44:70:c9:ff:03: ca:3c:51:3e:c5:1b:af:25:d6:62:ea:cc:de:72:13:6c:79:78: f3:75:6c:da:0f:f7:42:4b:77:84:90:5b:36:49:0f:92:66:2d: c7:2d:cc:4d:8d:48:3f:38:c7:0d:83:db:a4:14:c1:9a:db:64: 2e:3b:ef:d7:4d:f9:0a:b0:0c:39:65:82:18:3e:a1:28:bb:e4: 2c:82:8e:c7:d5:5d:de:de:2d:2f:4a:7a:cc:77:a1:59:9e:0b: 57:c8:37:d1:6f:f2:e4:2d:ab:d9:55:a7:2e:3c:61:b3:10:95: 6d:3d:35:69:51:d1:20:95:6b:8f:22:48:c9:74:d4:31:b1:a0: 58:1a:e5:39:05:2d:fc:b4:70:91:6f:6a:10:18:fd:44:30:26: 59:8d:d7:3a:eb:71:d5:90:bb:ea:ef:92:87:5e:14:f5:c9:76: e3:f1:f7:a6:dc:f8:52:14:05:29:42:01:22:7a:52:21:33:66: f7:43:19:1d:a1:3b:ba:02:9e:ea:ce:41:c4:2f:e1:0d:08:ef: 36:d5:a1:f7:75:b5:8a:18:3d:1a:3c:d6:20:69:4d:eb:85:7a: 15:55:cb:29:56:f6:03:2e:a5:c7:d0:eb:5e:07:64:28:f6:5c: fd:93:46:40 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdxQUnlyMaMORutWruzmmX8w6MNkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMDE4MDAxMDA4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzE1YzY4OGIxYjc4NGQwYzYwYTUyMzM3MGNhOTlkNzZm ZGMzN2UwYTdjMWVkYjMwMWM0YmE0ZTE3YjMzZDYzMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDNbSQLkFW64mL46hX4ZkrjqTUAzeBZsmmH+0ooYJWccmN a3Zq4nF1YAbrdmTwRmx7JgRvwF1xBSHJMDYrdTdtHjhzK34b1OiUjMm5XL2onzN+ a9IijVda3TcR0fsovZg0bz/JaSsI3qUxkHw0r/2hOvnFNq46sOkybFdQrqclLdjE MhoqUxLvxn2bQnHsQVQtEm5GtOiAdaI5MN/WwTufrKNfZ61w/ka+WcHPHT9LQd76 NLVYGnDCp0la4uNFp+AOWLCQFHP6pxdvkrb+BMo7BISYFsVMcEz0MN/q5PaEzg2r t4d/nNZiPiDRbD8/pX0tpGkbj9gNdOAkD9MUIPeXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTGGNopQq20Jzlg3KCFCucA56SC8wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzQ5MGRhNDQyLTlhNzgtNDQyMi04ZWU5LWRlZDQ0ODJhYjEzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAKmKH+3ezpLg/HRFA2pEcMn/A8o8 UT7FG68l1mLqzN5yE2x5ePN1bNoP90JLd4SQWzZJD5JmLcctzE2NSD84xw2D26QU wZrbZC4779dN+QqwDDllghg+oSi75CyCjsfVXd7eLS9Kesx3oVmeC1fIN9Fv8uQt q9lVpy48YbMQlW09NWlR0SCVa48iSMl01DGxoFga5TkFLfy0cJFvahAY/UQwJlmN 1zrrcdWQu+rvkodeFPXJduPx96bc+FIUBSlCASJ6UiEzZvdDGR2hO7oCnurOQcQv 4Q0I7zbVofd1tYoYPRo81iBpTeuFehVVyylW9gMupcfQ614HZCj2XP2TRkA= -----END CERTIFICATE-----Generated at Wed Nov 5 08:00:34 2025 by rpki-client