$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa File: 8a0cac28-29b8-4996-b010-5eab278cc342.roa (raw, json) Hash identifier: 08C8VT4Qv4kksrxdIn3DIEQhzYjWwtVvCACaRx1pHGs= Subject key identifier: 1B:C0:1F:53:B4:78:70:6D:65:89:C8:81:D4:69:F8:BF:FA:32:99:84 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 0C605E4C01AC837E71A21AB2C27C4DD61B521302 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa Signing time: Mon 04 Aug 2025 15:00:16 +0000 ROA not before: Mon 04 Aug 2025 15:00:16 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:60:5e:4c:01:ac:83:7e:71:a2:1a:b2:c2:7c:4d:d6:1b:52:13:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:16 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=1ee1e04331f448b130449d8c141ac4aa615bc33b173af2ca62d87d9db89b5ac7, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:aa:b0:1a:62:3f:c2:25:80:26:02:ff:d3:a5: 59:ca:e6:15:f4:f9:7b:2c:54:2c:ee:13:aa:fb:f2: 49:47:ae:e1:bc:89:1f:2b:b9:64:b6:42:cc:ca:12: 2f:3b:8a:67:fc:e4:be:f6:04:95:db:dd:6e:6a:d5: fa:b6:83:df:15:1c:0f:6f:b0:d2:7f:70:b8:26:01: 97:ea:bc:0d:34:5d:e5:4d:af:56:87:00:c8:ac:5f: 42:c9:cd:91:74:6d:bb:b7:7d:ba:7b:2a:0e:d4:51: 1d:fe:6c:a0:a4:3c:ea:37:1f:64:40:6b:84:ec:22: e6:73:ea:f4:7f:c7:82:23:a7:fb:8d:66:64:9b:72: a0:77:49:48:6a:86:6c:40:38:a3:c2:e6:dc:d5:bf: 97:84:73:e4:e9:86:f2:24:55:00:fb:45:66:ee:78: fc:34:bf:07:0e:13:5f:76:50:49:a0:ab:c1:49:53: 82:ef:d0:4b:ec:11:42:54:5a:19:1a:22:45:53:c4: 16:63:ce:3c:b1:ce:ad:76:df:35:55:dc:04:51:fc: 7d:4e:ca:57:9f:7e:12:17:3e:d3:57:b7:0d:36:fb: 6f:b7:20:03:29:cf:7a:dc:9c:8b:2f:39:2a:27:e1: f5:cc:6d:5d:e8:3a:fd:4c:03:78:ad:24:1c:ff:28: 42:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C0:1F:53:B4:78:70:6D:65:89:C8:81:D4:69:F8:BF:FA:32:99:84 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:62:f5:91:5f:cc:7c:6f:a3:a6:bb:63:a1:84:29:f2:be:29: 02:0d:dd:80:02:8c:f8:ed:c3:4b:45:2c:45:29:c7:0f:b1:a3: f7:68:24:87:e7:3e:0c:28:66:c1:d0:0e:b5:84:63:f7:8c:59: 6a:3c:7b:6e:8f:4c:73:48:55:cd:69:59:8b:46:3b:ef:48:e9: c7:df:ff:fa:66:75:da:23:94:c2:e5:65:64:16:de:e6:01:e0: 36:7d:70:a8:fb:d7:d2:fb:a7:1d:bb:c3:27:1f:b4:ab:93:e6: ba:c5:02:5d:8f:84:3e:4b:23:e1:de:95:6d:a3:b7:46:9f:7c: 95:86:16:fe:95:93:4c:ed:69:0d:e9:16:8b:51:88:ab:89:e5: 21:33:ef:54:fb:cc:1e:22:73:35:93:86:54:20:70:d7:ca:13: 0c:78:e3:98:95:0b:38:9e:c4:85:7f:29:c7:16:37:9e:e4:f8: 44:35:02:83:10:84:35:97:ee:22:e9:58:6e:41:c0:74:1d:db: f2:d6:a8:89:c9:52:69:62:e5:e9:f5:a2:73:81:d1:54:0f:c8: d7:40:76:ff:59:ab:1e:9a:98:a9:45:b5:d5:20:1b:5d:e7:ac: d5:b0:8b:80:03:20:8c:8a:9a:0f:51:bd:1a:a0:75:24:28:46: 55:c5:88:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDGBeTAGsg35xohqywnxN1htSEwIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDE2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWUxZTA0MzMxZjQ0OGIxMzA0NDlkOGMxNDFhYzRhYTYx NWJjMzNiMTczYWYyY2E2MmQ4N2Q5ZGI4OWI1YWM3MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRqrAaYj/CJYAmAv/TpVnK5hX0+XssVCzuE6r78klHruG8 iR8ruWS2QszKEi87imf85L72BJXb3W5q1fq2g98VHA9vsNJ/cLgmAZfqvA00XeVN r1aHAMisX0LJzZF0bbu3fbp7Kg7UUR3+bKCkPOo3H2RAa4TsIuZz6vR/x4Ijp/uN ZmSbcqB3SUhqhmxAOKPC5tzVv5eEc+TphvIkVQD7RWbuePw0vwcOE192UEmgq8FJ U4Lv0EvsEUJUWhkaIkVTxBZjzjyxzq123zVV3ARR/H1OyleffhIXPtNXtw02+2+3 IAMpz3rcnIsvOSon4fXMbV3oOv1MA3itJBz/KEInAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG8AfU7R4cG1liciB1Gn4v/oymYQwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzhhMGNhYzI4LTI5YjgtNDk5Ni1iMDEwLTVlYWIyNzhjYzM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAEti9ZFfzHxvo6a7Y6GEKfK+KQIN 3YACjPjtw0tFLEUpxw+xo/doJIfnPgwoZsHQDrWEY/eMWWo8e26PTHNIVc1pWYtG O+9I6cff//pmddojlMLlZWQW3uYB4DZ9cKj719L7px27wycftKuT5rrFAl2PhD5L I+HelW2jt0affJWGFv6Vk0ztaQ3pFotRiKuJ5SEz71T7zB4iczWThlQgcNfKEwx4 45iVCziexIV/KccWN57k+EQ1AoMQhDWX7iLpWG5BwHQd2/LWqInJUmli5en1onOB 0VQPyNdAdv9Zqx6amKlFtdUgG13nrNWwi4ADIIyKmg9RvRqgdSQoRlXFiOA= -----END CERTIFICATE-----Generated at Wed Aug 6 10:20:09 2025 by rpki-client