$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa File: 4dec765a-fd07-492c-af7f-ec695090cc13.roa (raw, json) Hash identifier: G39pew0WoWf6hc2AkTCVnBa8CU5SimlyF/pGO7Rg6yE= Subject key identifier: 86:7E:51:CF:B0:EA:08:14:18:25:8A:16:9A:D0:0D:3F:6F:BD:7F:A8 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 660512F1CB49B64D9B47460E8AB98469EE703D18 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa Signing time: Sat 14 Jun 2025 00:10:09 +0000 ROA not before: Sat 14 Jun 2025 00:10:09 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:05:12:f1:cb:49:b6:4d:9b:47:46:0e:8a:b9:84:69:ee:70:3d:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jun 14 00:10:09 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=55d51fca171e17aee4796aad5647b8e69b1c4f5632eb74d154556ed244ffa3b2, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c1:d8:35:8d:6b:e3:dc:81:43:37:20:fe:fb: 8e:87:54:72:0d:6c:06:58:7d:2b:ab:58:fe:39:2b: 6b:0c:0f:1c:d0:bf:6d:38:9c:68:66:5a:32:5c:7d: 17:a3:8f:09:15:07:a6:1c:73:f4:c9:98:cc:3c:d9: 0b:e1:da:40:db:d0:ab:01:33:07:34:31:7c:f1:c9: 23:83:3d:87:52:68:06:ef:1b:2b:0f:c2:8c:fc:de: 94:d2:1f:d7:03:ed:0c:ee:27:32:d4:df:e1:c9:96: 0a:d0:07:8c:34:69:a5:e2:82:49:f3:18:0f:6f:97: 6e:e4:4e:18:7d:2f:0a:c4:b5:70:09:ae:c8:41:ff: aa:1b:43:0c:0f:82:df:14:2d:0f:bc:34:fd:87:91: 30:cf:2a:3b:f2:7c:da:b3:a5:a0:24:88:10:8a:a2: c2:82:af:7d:fc:bc:e8:a5:df:c7:97:6d:de:51:f5: 4b:06:5c:4d:8a:a7:01:91:2c:df:47:94:19:fa:8c: 96:9c:45:2f:88:4f:c2:da:99:fc:5c:cf:13:9b:e9: e6:bd:f5:97:d4:89:d3:cc:a5:26:68:59:c6:10:dd: b1:02:49:c3:2b:02:58:7a:0b:6c:f2:1c:8b:bd:d2: e2:ad:f2:99:6b:18:8a:38:51:a7:3a:3c:24:0e:12: 29:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7E:51:CF:B0:EA:08:14:18:25:8A:16:9A:D0:0D:3F:6F:BD:7F:A8 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption 25:f7:64:7e:ce:9b:e4:f7:52:de:a0:3c:b5:c5:35:13:7a:88: c5:04:49:09:5e:3b:92:f9:92:e2:0a:b8:57:fc:f7:7a:45:79: 5b:71:4c:f1:3d:d0:99:13:31:44:1e:53:24:41:37:a3:d1:90: 5f:0b:86:03:d9:eb:3a:83:61:c3:8a:13:e6:03:87:70:22:c5: eb:a6:17:13:e1:b0:f6:8b:a6:fb:f8:5a:d5:5e:85:57:39:f1: 17:37:02:cc:a8:0e:4d:16:cc:a1:ba:bd:31:5e:4b:ed:b5:a2: 0e:86:92:66:a3:a3:82:37:28:c2:bc:58:65:91:32:6a:db:de: b6:de:93:39:0a:8b:43:6d:f6:25:3a:37:49:30:6e:a6:b9:c2: d5:56:a8:80:bd:07:20:6b:ad:b7:91:83:cb:9e:aa:4d:4e:2a: 6a:5d:36:74:e6:3e:3c:a5:6e:32:a5:6e:60:6f:a0:a6:a2:8f: 30:bc:9e:e6:fe:d0:dd:e7:53:59:f3:c4:a8:a2:30:4b:fc:d6: c1:83:eb:f2:9b:82:22:6c:54:23:d0:70:49:31:22:8e:9c:15: dc:ed:be:d4:9d:7d:85:3e:24:b6:1c:b1:6a:1a:32:1e:1d:0d: 17:23:8b:f9:37:d9:d1:c3:46:da:61:a8:be:ed:76:2f:d1:ce: e3:67:77:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZgUS8ctJtk2bR0YOirmEae5wPRgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNjE0MDAxMDA5WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWQ1MWZjYTE3MWUxN2FlZTQ3OTZhYWQ1NjQ3YjhlNjli MWM0ZjU2MzJlYjc0ZDE1NDU1NmVkMjQ0ZmZhM2IyMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIwdg1jWvj3IFDNyD++46HVHINbAZYfSurWP45K2sMDxzQ v204nGhmWjJcfRejjwkVB6Ycc/TJmMw82Qvh2kDb0KsBMwc0MXzxySODPYdSaAbv GysPwoz83pTSH9cD7QzuJzLU3+HJlgrQB4w0aaXigknzGA9vl27kThh9LwrEtXAJ rshB/6obQwwPgt8ULQ+8NP2HkTDPKjvyfNqzpaAkiBCKosKCr338vOil38eXbd5R 9UsGXE2KpwGRLN9HlBn6jJacRS+IT8LamfxczxOb6ea99ZfUidPMpSZoWcYQ3bEC ScMrAlh6C2zyHIu90uKt8plrGIo4Uac6PCQOEintAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhn5Rz7DqCBQYJYoWmtANP2+9f6gwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRkZWM3NjVhLWZkMDctNDkyYy1hZjdmLWVjNjk1MDkwY2MxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBACX3ZH7Om+T3Ut6gPLXFNRN6iMUE SQleO5L5kuIKuFf893pFeVtxTPE90JkTMUQeUyRBN6PRkF8LhgPZ6zqDYcOKE+YD h3AixeumFxPhsPaLpvv4WtVehVc58Rc3AsyoDk0WzKG6vTFeS+21og6Gkmajo4I3 KMK8WGWRMmrb3rbekzkKi0Nt9iU6N0kwbqa5wtVWqIC9ByBrrbeRg8ueqk1OKmpd NnTmPjylbjKlbmBvoKaijzC8nub+0N3nU1nzxKiiMEv81sGD6/KbgiJsVCPQcEkx Io6cFdztvtSdfYU+JLYcsWoaMh4dDRcji/k32dHDRtphqL7tdi/RzuNnd5M= -----END CERTIFICATE-----Generated at Sat Jun 14 05:58:05 2025 by rpki-client