$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/82100f84-33b5-43a7-a078-7090448b8504.roa File: 82100f84-33b5-43a7-a078-7090448b8504.roa (raw, json) Hash identifier: M3CslnyqrKAFWNDU/0FCHqpAGbKbt0BEnZkXgjQtbwc= Subject key identifier: CD:32:FA:4C:9E:92:A8:7C:BF:1C:0A:B1:DB:6A:A0:9B:6E:86:5B:EC Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 0B82691BFC9876C93B547365ADD481EE9D57AB8D Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/82100f84-33b5-43a7-a078-7090448b8504.roa Signing time: Sat 14 Jun 2025 00:10:16 +0000 ROA not before: Sat 14 Jun 2025 00:10:16 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:82:69:1b:fc:98:76:c9:3b:54:73:65:ad:d4:81:ee:9d:57:ab:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jun 14 00:10:16 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=4c2da57fcf9597da54249c2721de3280af8bcf7cfe383c1c988fd69166ad93d2, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:68:79:56:4a:7a:2d:a1:fb:9c:c9:7f:f3:27: 11:59:16:9e:d0:4d:83:aa:9b:d4:40:8a:27:48:1c: 10:6f:7c:0f:3e:10:b6:57:58:e7:13:b3:0a:f2:b8: e9:65:4f:a3:64:1f:ee:38:23:bd:a8:96:b2:33:a0: 4f:74:cc:32:94:bc:fa:6d:1c:58:3b:db:a9:59:a4: b0:7a:77:af:2d:f8:2d:44:e4:b2:90:6c:0e:b7:d9: 47:bc:19:2d:96:01:7f:f1:87:22:f5:83:c4:4a:9d: 61:0a:78:bd:19:cd:5e:57:03:15:7c:2f:c0:a7:5a: 9a:9c:0b:97:c2:5c:07:a0:8b:98:cc:c2:69:bb:5f: 94:6a:b7:0d:10:22:4c:be:94:33:3f:bc:70:b8:30: 8f:26:80:0c:91:8a:aa:1f:eb:c1:b2:fa:a7:80:20: 97:92:63:43:29:d6:11:79:a8:ad:eb:ae:93:74:fa: 5a:2c:97:de:bf:e9:31:ce:e9:4c:72:65:8b:f8:8f: 96:f5:b2:76:58:7c:c2:80:22:1b:da:de:7b:09:35: fc:73:a1:b8:19:8d:68:0c:5f:d9:fa:da:1f:a4:98: ad:30:dc:45:16:ee:d5:52:ff:8b:92:75:ae:fa:b4: ba:d7:17:b6:bb:eb:15:6b:12:95:22:e4:87:7f:67: a4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:32:FA:4C:9E:92:A8:7C:BF:1C:0A:B1:DB:6A:A0:9B:6E:86:5B:EC X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/82100f84-33b5-43a7-a078-7090448b8504.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:0d:7c:8e:80:38:f4:b1:cd:62:13:6b:45:45:1a:94:3c:3b: e7:91:9e:73:ee:b8:bd:11:04:61:5b:f8:6a:3b:ec:3c:0c:0a: ac:21:63:d5:6b:83:c6:e6:21:b6:a6:ce:d6:2f:d4:f4:69:78: fc:28:ee:97:91:50:bf:c1:53:21:f0:a2:82:7a:a9:55:3e:08: 9b:64:fe:8c:6a:45:9c:b6:6d:11:78:23:34:e9:67:f7:ba:74: ed:26:30:b2:0b:bf:db:35:8a:55:ad:96:e0:a7:f5:af:df:c0: 3f:1f:e3:b1:33:88:0a:75:03:61:96:ff:f3:80:07:68:59:f7: 9e:98:85:a3:3c:cb:3d:cb:c4:ac:bd:9a:dd:40:c5:ce:5c:16: a0:a0:fa:4b:0f:33:da:23:94:ee:36:b6:b3:5c:58:24:23:78: fd:02:db:60:ba:c7:71:6b:c8:eb:c0:32:eb:ca:17:6e:44:77: ec:84:d3:a4:60:47:2e:15:3b:74:d4:64:97:61:12:73:f8:f7: 2e:ea:26:3a:c1:9f:ca:14:af:f1:5d:d5:a8:ba:08:c8:60:25: 25:b2:ae:f7:14:17:b4:3d:e2:1f:ad:41:60:87:d6:8c:a8:75: 63:3a:c9:ed:f6:48:cc:4f:bf:14:c9:90:1e:88:24:b8:e5:b8: b9:9c:7c:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC4JpG/yYdsk7VHNlrdSB7p1Xq40wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNjE0MDAxMDE2WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzJkYTU3ZmNmOTU5N2RhNTQyNDljMjcyMWRlMzI4MGFm OGJjZjdjZmUzODNjMWM5ODhmZDY5MTY2YWQ5M2QyMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUaHlWSnotofucyX/zJxFZFp7QTYOqm9RAiidIHBBvfA8+ ELZXWOcTswryuOllT6NkH+44I72olrIzoE90zDKUvPptHFg726lZpLB6d68t+C1E 5LKQbA632Ue8GS2WAX/xhyL1g8RKnWEKeL0ZzV5XAxV8L8CnWpqcC5fCXAegi5jM wmm7X5Rqtw0QIky+lDM/vHC4MI8mgAyRiqof68Gy+qeAIJeSY0Mp1hF5qK3rrpN0 +losl96/6THO6UxyZYv4j5b1snZYfMKAIhva3nsJNfxzobgZjWgMX9n62h+kmK0w 3EUW7tVS/4uSda76tLrXF7a76xVrEpUi5Id/Z6R9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzTL6TJ6SqHy/HAqx22qgm26GW+wwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzgyMTAwZjg0LTMzYjUtNDNhNy1hMDc4LTcwOTA0NDhiODUwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWAwDQYJKoZIhvcNAQELBQADggEBAH8NfI6AOPSxzWITa0VFGpQ8O+eR nnPuuL0RBGFb+Go77DwMCqwhY9Vrg8bmIbamztYv1PRpePwo7peRUL/BUyHwooJ6 qVU+CJtk/oxqRZy2bRF4IzTpZ/e6dO0mMLILv9s1ilWtluCn9a/fwD8f47EziAp1 A2GW//OAB2hZ956YhaM8yz3LxKy9mt1Axc5cFqCg+ksPM9ojlO42trNcWCQjeP0C 22C6x3FryOvAMuvKF25Ed+yE06RgRy4VO3TUZJdhEnP49y7qJjrBn8oUr/Fd1ai6 CMhgJSWyrvcUF7Q94h+tQWCH1oyodWM6ye32SMxPvxTJkB6IJLjluLmcfFM= -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:31 2025 by rpki-client