$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa File: 9410b7d2-baa7-4841-a665-55298df4e7b6.roa (raw, json) Hash identifier: YKdE4wI/TZalbm4acqfbjGz2qAE69fX6sV5TJxdOSis= Subject key identifier: CC:8D:24:65:9C:FD:CB:13:43:B1:6C:6B:3E:49:37:12:21:A8:70:CA Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 12D6ED266FE7116630FB5528E7F51C664F8478A4 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa Signing time: Sat 14 Jun 2025 00:10:10 +0000 ROA not before: Sat 14 Jun 2025 00:10:10 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d6:ed:26:6f:e7:11:66:30:fb:55:28:e7:f5:1c:66:4f:84:78:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jun 14 00:10:10 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=56db5311fd3dc737157889e6749b33a0556568e8e77cf49304d669649fb8fe77, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:31:76:b3:9d:60:c4:a6:9e:75:6d:ef:5e:f3: 16:5f:c1:51:16:5a:b5:d3:52:f2:bb:77:3b:9a:a9: 38:0f:68:67:1c:99:53:d4:60:cd:82:61:4a:22:f3: ac:20:03:04:3b:ce:79:32:6c:0e:12:d3:17:c9:7e: a4:76:ee:39:be:41:aa:9b:75:79:84:da:75:68:39: d7:d7:e5:b5:1f:d2:76:98:c5:d4:8e:2b:8b:a7:18: d9:ae:b7:5b:10:6a:25:cb:40:d5:58:37:bf:c3:aa: ef:10:0f:1b:01:96:cc:6d:c8:00:44:57:b0:9c:c6: 73:dc:ae:02:67:b5:b8:fe:eb:70:61:b6:20:21:2f: 9a:0f:72:84:f9:99:89:9a:12:2a:b9:fa:da:b9:b9: 1c:82:63:25:0e:d4:69:d4:1e:67:77:de:1d:d9:12: 7a:8f:ef:56:ed:82:5c:86:04:ea:e7:e2:07:4b:b1: 83:54:aa:4f:11:e9:43:70:6f:d3:d9:b8:46:be:b9: 37:fd:06:c3:26:24:bc:a6:af:66:37:3c:fa:98:bf: 7b:bc:55:82:83:10:75:81:40:7d:c7:12:ef:77:a5: 30:a7:47:13:54:b6:9b:26:49:54:30:d8:ed:cd:63: 12:19:43:10:64:1d:41:53:22:09:79:d5:f4:70:44: c0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:8D:24:65:9C:FD:CB:13:43:B1:6C:6B:3E:49:37:12:21:A8:70:CA X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/9410b7d2-baa7-4841-a665-55298df4e7b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.97.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:ca:6a:d3:26:2f:0d:98:ff:53:46:87:d2:b7:3b:d3:81:5b: f6:f0:90:af:13:21:51:24:9c:38:97:5a:7f:95:72:d0:55:6c: 7f:1a:e5:7a:af:7e:67:bd:aa:7d:5a:22:ee:ac:24:fa:a4:0f: 2a:87:11:97:e5:81:a5:ef:73:d9:a2:ba:02:2a:cb:77:49:77: 64:9e:d9:34:d8:99:b3:10:49:7a:ab:44:3a:d2:64:72:f3:d4: dc:05:a4:26:1c:4f:a2:52:97:93:6f:69:35:b0:9f:6f:cd:e1: c2:49:95:e7:da:36:50:ce:07:b4:6d:76:8e:be:9d:87:0f:5a: 47:cc:ad:c1:da:e5:47:9a:fc:6b:26:c0:9a:d2:ca:6c:43:a2: d9:b6:b2:c4:0c:f4:73:4a:f7:79:d4:0e:75:21:c8:3d:97:5d: 5f:97:0e:8f:d6:7a:0d:ec:43:c2:0a:26:de:55:32:d2:a1:88: 55:59:f7:87:75:b1:9e:6c:1b:fe:d0:e3:64:66:d2:c4:71:f4: b7:44:fb:10:aa:27:94:32:69:37:90:5a:9b:2b:5a:04:b0:d6: 46:83:4d:2b:99:cb:e0:c7:9f:94:9a:15:2c:da:ee:43:be:c0: d6:27:fe:79:fc:be:c9:8a:97:d7:43:20:98:71:ae:59:31:ce: 63:3f:a9:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEtbtJm/nEWYw+1Uo5/UcZk+EeKQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNjE0MDAxMDEwWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmRiNTMxMWZkM2RjNzM3MTU3ODg5ZTY3NDliMzNhMDU1 NjU2OGU4ZTc3Y2Y0OTMwNGQ2Njk2NDlmYjhmZTc3MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvMXaznWDEpp51be9e8xZfwVEWWrXTUvK7dzuaqTgPaGcc mVPUYM2CYUoi86wgAwQ7znkybA4S0xfJfqR27jm+QaqbdXmE2nVoOdfX5bUf0naY xdSOK4unGNmut1sQaiXLQNVYN7/Dqu8QDxsBlsxtyABEV7CcxnPcrgJntbj+63Bh tiAhL5oPcoT5mYmaEiq5+tq5uRyCYyUO1GnUHmd33h3ZEnqP71btglyGBOrn4gdL sYNUqk8R6UNwb9PZuEa+uTf9BsMmJLymr2Y3PPqYv3u8VYKDEHWBQH3HEu93pTCn RxNUtpsmSVQw2O3NYxIZQxBkHUFTIgl51fRwRMCLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzI0kZZz9yxNDsWxrPkk3EiGocMowHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzk0MTBiN2QyLWJhYTctNDg0MS1hNjY1LTU1Mjk4ZGY0ZTdiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWEwDQYJKoZIhvcNAQELBQADggEBAJ3KatMmLw2Y/1NGh9K3O9OBW/bw kK8TIVEknDiXWn+VctBVbH8a5Xqvfme9qn1aIu6sJPqkDyqHEZflgaXvc9miugIq y3dJd2Se2TTYmbMQSXqrRDrSZHLz1NwFpCYcT6JSl5NvaTWwn2/N4cJJlefaNlDO B7Rtdo6+nYcPWkfMrcHa5Uea/GsmwJrSymxDotm2ssQM9HNK93nUDnUhyD2XXV+X Do/Weg3sQ8IKJt5VMtKhiFVZ94d1sZ5sG/7Q42Rm0sRx9LdE+xCqJ5QyaTeQWpsr WgSw1kaDTSuZy+DHn5SaFSza7kO+wNYn/nn8vsmKl9dDIJhxrlkxzmM/qUg= -----END CERTIFICATE-----Generated at Sun Jun 15 20:48:40 2025 by rpki-client