$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/82100f84-33b5-43a7-a078-7090448b8504.roa File: 82100f84-33b5-43a7-a078-7090448b8504.roa (raw, json) Hash identifier: ReEmrmuRQsFuRQ4rrvH94TV/xsHrr/QLlUAYKzQ2rJc= Subject key identifier: 43:D1:F3:03:71:D0:36:9D:3F:96:FE:41:93:D3:02:1C:CC:C6:9D:52 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 1DB4AEFC9C305EB7820D2719F24075118463CAE4 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/82100f84-33b5-43a7-a078-7090448b8504.roa Signing time: Mon 04 Aug 2025 15:00:18 +0000 ROA not before: Mon 04 Aug 2025 15:00:18 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b4:ae:fc:9c:30:5e:b7:82:0d:27:19:f2:40:75:11:84:63:ca:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:18 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=874feea669aa29ee82f74fbe35185b2e01d7428c1656c417c4233fb626a54e4a, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2a:f1:2a:f0:c4:b5:fb:5c:2d:24:8c:9a:e8: 2e:b9:82:4d:05:cd:d6:7d:0f:d3:2d:53:f5:cf:2d: 15:e5:e4:3e:3c:e8:47:56:dd:84:2d:07:63:82:65: 6b:c2:6d:5a:b2:8f:ee:e1:87:5c:e9:7d:a1:07:cb: ac:86:7f:f1:9e:5c:a5:2a:3d:1f:f4:8b:d0:12:50: 52:29:fa:7d:3e:3e:3f:c8:45:20:ed:61:49:59:b3: 46:8f:6d:7c:ab:a9:14:45:85:a9:f8:80:ef:b1:48: 93:80:f1:4c:b3:6b:80:66:37:a8:cb:eb:be:57:24: e4:bb:df:c0:67:fe:d5:84:8a:b4:5d:11:e4:57:98: 19:09:98:5d:3c:5e:91:c7:21:40:22:4d:a5:35:59: 60:13:3c:c8:f7:81:ae:ec:7e:a7:fc:56:8e:17:ad: f3:4b:e6:64:27:f6:2e:3a:fb:6a:09:91:36:e2:c6: d4:52:15:45:e9:db:aa:44:a6:7e:ce:68:b8:af:db: 14:3a:95:3c:af:e2:8e:32:1e:86:ba:05:86:09:50: bb:ac:69:92:ff:c1:00:e8:b1:32:8c:fc:9a:bb:b9: 62:4d:51:32:1e:69:f6:a6:c2:14:6e:a0:e3:da:c8: b3:e4:9b:43:b4:1f:ed:16:41:78:da:e7:0e:e2:c2: 0a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D1:F3:03:71:D0:36:9D:3F:96:FE:41:93:D3:02:1C:CC:C6:9D:52 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/82100f84-33b5-43a7-a078-7090448b8504.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/24 Signature Algorithm: sha256WithRSAEncryption 31:7c:b9:7b:7d:d1:02:0d:2b:fc:d4:7d:02:78:1d:53:71:33: 10:bb:a3:f3:08:95:6f:67:32:a5:d2:46:07:5c:91:fe:77:4a: 3b:b2:b7:21:54:c6:7d:23:fe:95:ee:89:65:ad:c4:45:20:d3: ce:73:33:3a:af:62:3d:77:c7:15:19:2e:25:76:9a:74:ac:87: dd:5a:83:e2:2d:ae:98:17:b4:bc:f8:bc:5d:5a:3f:73:cb:0d: 1f:1a:d8:fb:6b:3b:d8:9f:3a:c3:f2:cb:f7:32:af:8a:a3:32: 5e:90:a3:5b:82:12:9a:da:32:2d:42:8f:31:e0:66:b3:35:c4: 71:6d:bd:6b:ce:24:86:91:55:f6:25:fe:6b:21:c8:db:f6:bd: cb:75:3c:71:04:46:43:32:4e:87:10:2a:a6:05:ac:92:ab:28: 8a:80:a0:9d:2d:02:7a:e1:b0:5c:61:3c:36:c6:6e:25:0c:49: a9:81:f1:28:04:c3:61:ce:6a:18:da:74:25:ae:79:2d:11:53: 0e:8b:3a:be:a4:18:6b:f1:c4:47:ba:3b:ee:52:10:81:6d:b3: 99:c4:1c:4f:00:6c:ac:ff:11:f8:b5:53:28:d8:0a:0d:73:ba: f1:04:fd:aa:73:ef:6e:74:28:99:fa:9c:13:89:9e:71:2f:67: bf:18:e8:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHbSu/JwwXreCDScZ8kB1EYRjyuQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDE4WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzRmZWVhNjY5YWEyOWVlODJmNzRmYmUzNTE4NWIyZTAx ZDc0MjhjMTY1NmM0MTdjNDIzM2ZiNjI2YTU0ZTRhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfKvEq8MS1+1wtJIya6C65gk0FzdZ9D9MtU/XPLRXl5D48 6EdW3YQtB2OCZWvCbVqyj+7hh1zpfaEHy6yGf/GeXKUqPR/0i9ASUFIp+n0+Pj/I RSDtYUlZs0aPbXyrqRRFhan4gO+xSJOA8Uyza4BmN6jL675XJOS738Bn/tWEirRd EeRXmBkJmF08XpHHIUAiTaU1WWATPMj3ga7sfqf8Vo4XrfNL5mQn9i46+2oJkTbi xtRSFUXp26pEpn7OaLiv2xQ6lTyv4o4yHoa6BYYJULusaZL/wQDosTKM/Jq7uWJN UTIeafamwhRuoOPayLPkm0O0H+0WQXja5w7iwgqTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ9HzA3HQNp0/lv5Bk9MCHMzGnVIwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzgyMTAwZjg0LTMzYjUtNDNhNy1hMDc4LTcwOTA0NDhiODUwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWAwDQYJKoZIhvcNAQELBQADggEBADF8uXt90QINK/zUfQJ4HVNxMxC7 o/MIlW9nMqXSRgdckf53SjuytyFUxn0j/pXuiWWtxEUg085zMzqvYj13xxUZLiV2 mnSsh91ag+ItrpgXtLz4vF1aP3PLDR8a2PtrO9ifOsPyy/cyr4qjMl6Qo1uCEpra Mi1CjzHgZrM1xHFtvWvOJIaRVfYl/mshyNv2vct1PHEERkMyTocQKqYFrJKrKIqA oJ0tAnrhsFxhPDbGbiUMSamB8SgEw2HOahjadCWueS0RUw6LOr6kGGvxxEe6O+5S EIFts5nEHE8AbKz/Efi1UyjYCg1zuvEE/apz7250KJn6nBOJnnEvZ78Y6CM= -----END CERTIFICATE-----Generated at Wed Aug 6 00:44:57 2025 by rpki-client