$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa File: 4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa (raw, json) Hash identifier: JGIaUoZ0341B+ZRGkoUy2UB+sA7pG40x4VpDqKIaorY= Subject key identifier: F6:CB:CC:A2:D9:8F:E7:99:88:89:B9:AD:33:09:14:8C:59:08:39:32 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 39E0642990CBC8FB488DCE673B49A894CFEC001C Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa Signing time: Wed 09 Jul 2025 00:10:14 +0000 ROA not before: Wed 09 Jul 2025 00:10:14 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e0:64:29:90:cb:c8:fb:48:8d:ce:67:3b:49:a8:94:cf:ec:00:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jul 9 00:10:14 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=b9f685d7a5ef8def7129426c478a23430fc09931992548e86dbb6743df030b7d, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:1c:ea:75:14:a7:b6:1f:3c:10:8d:cc:df: 6c:03:7b:d1:3e:04:ca:38:02:51:7b:c6:fd:aa:81: f1:62:03:74:56:b5:5a:a8:eb:f3:07:cd:1a:fc:38: 1f:fb:ed:22:01:62:55:c8:a1:a5:43:d8:87:b8:0e: e1:6d:23:71:75:ce:17:79:fb:c4:b6:2f:03:33:e8: 13:93:ad:4d:36:cd:ae:06:d0:ea:46:e1:c3:1b:bf: 9c:38:b8:23:bf:01:71:22:95:38:51:aa:7e:70:5f: e5:b5:8e:d2:f4:bc:d4:bf:b1:d0:a5:e3:f9:6e:37: 3e:ce:f3:f5:c2:d9:21:4a:8e:0c:05:c7:7c:01:52: ab:42:ed:80:21:a0:36:5c:df:3a:cd:b1:74:af:4c: 2d:d1:a2:de:02:fe:c0:03:54:e3:31:aa:11:ed:24: 06:05:a2:c2:dc:c6:e6:9e:8b:07:19:25:20:a7:79: 8d:27:b5:6b:51:a2:6d:4e:4b:49:34:d7:1f:04:33: 8a:49:e7:3a:dc:26:c3:3c:64:8f:17:ef:4c:57:87: 8a:2b:63:41:b3:e6:63:7f:84:78:29:fb:1e:8a:3c: 02:0c:6d:3c:7e:f9:00:60:ba:9d:3d:6a:b0:c4:68: 07:c5:07:0c:15:c3:ad:34:73:6f:6c:f7:d0:14:fd: 79:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CB:CC:A2:D9:8F:E7:99:88:89:B9:AD:33:09:14:8C:59:08:39:32 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 51:83:01:75:ed:25:35:38:ba:73:bb:08:8b:1d:16:f6:11:7c: bd:47:04:53:ec:87:6a:0b:cc:4a:03:9c:fb:2f:b9:a8:c7:13: 77:6b:6d:41:07:34:ab:0c:a3:29:f4:01:c7:ab:3b:f9:10:3d: 1a:38:a3:cc:e1:9b:c1:6e:46:fc:b3:7c:05:34:9b:30:bb:1f: ba:a8:58:2c:ba:50:70:23:04:54:8c:3a:00:1d:62:c1:78:9c: 63:a9:f6:c8:3e:2a:95:e4:60:0b:fa:fc:b3:82:ed:1b:5b:c3: 18:1a:d5:7f:b3:81:f2:78:cc:70:ae:41:7f:b6:e8:13:75:4b: 50:b7:79:74:80:9b:53:bd:3f:d1:ea:ce:99:60:d5:23:ee:1a: b7:61:7c:44:a2:01:25:4a:6c:70:89:13:79:0c:6a:30:5d:92: 7a:de:05:2c:62:fb:38:57:ac:87:72:fe:22:d6:5c:fb:0b:f9: 50:0f:92:61:4e:c2:39:fa:a8:fa:e2:85:50:11:42:64:61:b1: 13:c6:cb:48:e7:37:28:e9:2c:d1:d9:c2:e6:c4:5d:00:15:8c: 44:b9:15:05:63:e1:86:ed:e5:2c:33:9b:e9:e6:7e:d7:ff:1e: 17:70:00:2e:01:2e:a8:2a:98:e9:54:14:c6:54:60:df:55:aa: c6:1e:2f:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOeBkKZDLyPtIjc5nO0molM/sABwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNzA5MDAxMDE0WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWY2ODVkN2E1ZWY4ZGVmNzEyOTQyNmM0NzhhMjM0MzBm YzA5OTMxOTkyNTQ4ZTg2ZGJiNjc0M2RmMDMwYjdkMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQKhzqdRSnth88EI3M32wDe9E+BMo4AlF7xv2qgfFiA3RW tVqo6/MHzRr8OB/77SIBYlXIoaVD2Ie4DuFtI3F1zhd5+8S2LwMz6BOTrU02za4G 0OpG4cMbv5w4uCO/AXEilThRqn5wX+W1jtL0vNS/sdCl4/luNz7O8/XC2SFKjgwF x3wBUqtC7YAhoDZc3zrNsXSvTC3Rot4C/sADVOMxqhHtJAYFosLcxuaeiwcZJSCn eY0ntWtRom1OS0k01x8EM4pJ5zrcJsM8ZI8X70xXh4orY0Gz5mN/hHgp+x6KPAIM bTx++QBgup09arDEaAfFBwwVw600c29s99AU/XmbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9svMotmP55mIibmtMwkUjFkIOTIwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRmOGIzMzJiLWJkOGUtNGY0ZC1iYTVlLWMwZWRkNjRkOTI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAFGDAXXtJTU4unO7CIsdFvYRfL1H BFPsh2oLzEoDnPsvuajHE3drbUEHNKsMoyn0AcerO/kQPRo4o8zhm8FuRvyzfAU0 mzC7H7qoWCy6UHAjBFSMOgAdYsF4nGOp9sg+KpXkYAv6/LOC7Rtbwxga1X+zgfJ4 zHCuQX+26BN1S1C3eXSAm1O9P9Hqzplg1SPuGrdhfESiASVKbHCJE3kMajBdknre BSxi+zhXrIdy/iLWXPsL+VAPkmFOwjn6qPrihVARQmRhsRPGy0jnNyjpLNHZwubE XQAVjES5FQVj4Ybt5Swzm+nmftf/HhdwAC4BLqgqmOlUFMZUYN9VqsYeL2k= -----END CERTIFICATE-----Generated at Mon Aug 4 14:55:45 2025 by rpki-client