$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa File: aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa (raw, json) Hash identifier: OHcvzEWWhz8CLGZLM4X5VIC/uKRrDXOtkHsfRJbS1Zw= Subject key identifier: 77:58:86:27:DE:77:50:FD:0B:D2:C9:71:D3:B0:FE:7F:90:31:42:B9 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 313A9D084B56B20BF899936DB06C35AF6E67C619 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa Signing time: Mon 04 Aug 2025 15:00:05 +0000 ROA not before: Mon 04 Aug 2025 15:00:05 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:3a:9d:08:4b:56:b2:0b:f8:99:93:6d:b0:6c:35:af:6e:67:c6:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:05 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=f2c57be7b18c023dad1488ed97ee07662e4e5acaac113ac2785620edb6ff3648, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:2d:b9:fd:5f:8e:23:43:f6:36:65:6c:6c: 4a:d5:fa:25:66:ff:82:ef:88:88:c9:34:14:38:06: 52:d7:4c:e2:d0:61:7e:15:ba:37:d7:85:b8:0f:23: af:ae:be:bf:81:33:82:81:fc:b7:d9:d8:6e:be:64: 50:21:18:a0:db:d6:fd:40:58:75:bf:dd:ae:6d:e0: 5d:c3:6e:9b:e1:ae:e1:a9:75:0c:0f:e6:3f:10:97: 89:39:d0:be:1f:83:db:25:11:a5:d9:95:be:ef:24: 43:64:30:65:17:93:d3:e4:ce:95:1a:f7:49:a8:68: 2a:47:79:3d:32:f9:cf:39:da:92:54:4f:49:5d:e8: 57:a4:3c:a0:00:8f:9e:f7:1b:be:e8:4f:f7:99:a5: f5:4f:0b:50:c9:bd:0b:3f:83:61:ff:97:48:74:c2: a2:61:27:00:a3:35:5e:fa:7b:ba:98:d6:95:f8:ec: f9:92:a3:b1:0d:83:ff:37:b3:6e:8e:19:87:90:43: 64:07:d7:53:ad:49:78:89:03:db:45:23:8b:4e:98: 29:5d:6c:ac:2e:5d:93:d2:80:bb:98:5d:8d:f1:22: 88:a3:06:26:24:4d:26:df:37:b5:a7:fc:2e:01:42: fd:73:25:56:c5:f1:d0:2b:36:77:29:62:c0:06:bb: 6c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:58:86:27:DE:77:50:FD:0B:D2:C9:71:D3:B0:FE:7F:90:31:42:B9 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.101.0/24 Signature Algorithm: sha256WithRSAEncryption 74:07:1b:0e:e2:14:ca:43:aa:6d:04:c1:38:bb:af:2d:a4:9d: 0e:27:d7:b8:91:ce:19:59:bf:2a:e7:c3:fa:c0:76:ca:e9:df: 39:8b:49:fc:99:a6:e8:d5:a3:8f:e3:ff:fb:b7:39:46:af:52: 88:cf:8a:0e:8e:51:03:80:00:70:44:f4:f7:71:8e:f1:10:27: b2:23:b8:5c:b4:6d:fb:07:9f:b6:90:53:70:40:c6:60:f0:37: c8:c1:fc:77:5b:76:ea:42:2b:ff:da:a6:c6:73:4c:78:21:13: 74:79:db:31:c8:49:10:69:50:3b:69:22:30:22:1f:c6:a9:10: 0e:30:6d:15:11:d3:12:8d:6a:0a:09:3a:8c:d8:87:99:d9:ea: 64:5a:5d:ab:37:3d:b6:e9:5a:12:e7:b2:c5:ae:ae:3d:3d:16: 33:3c:7a:28:06:69:7d:22:9b:ac:50:7f:26:97:4c:59:68:ca: 83:c4:19:f9:0a:b7:a7:12:30:d0:2a:f5:58:2d:21:f8:10:76: e4:ae:b3:3b:ca:22:b0:72:04:28:05:c9:ee:1c:d8:2d:7d:6d: 47:14:35:e9:4f:59:e4:68:d9:06:a4:5e:50:43:42:a7:24:c4: cc:8c:52:d7:f5:13:14:5b:38:29:c3:fb:81:50:38:4d:8d:20: df:0e:3a:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMTqdCEtWsgv4mZNtsGw1r25nxhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDA1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmM1N2JlN2IxOGMwMjNkYWQxNDg4ZWQ5N2VlMDc2NjJl NGU1YWNhYWMxMTNhYzI3ODU2MjBlZGI2ZmYzNjQ4MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEii25/V+OI0P2NmVsbErV+iVm/4LviIjJNBQ4BlLXTOLQ YX4VujfXhbgPI6+uvr+BM4KB/LfZ2G6+ZFAhGKDb1v1AWHW/3a5t4F3DbpvhruGp dQwP5j8Ql4k50L4fg9slEaXZlb7vJENkMGUXk9PkzpUa90moaCpHeT0y+c852pJU T0ld6FekPKAAj573G77oT/eZpfVPC1DJvQs/g2H/l0h0wqJhJwCjNV76e7qY1pX4 7PmSo7ENg/83s26OGYeQQ2QH11OtSXiJA9tFI4tOmCldbKwuXZPSgLuYXY3xIoij BiYkTSbfN7Wn/C4BQv1zJVbF8dArNncpYsAGu2wtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUd1iGJ953UP0L0slx07D+f5AxQrkwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2FlZDc2ZjE3LTViNDctNGU1Yy1hOWZiLWIwMWM2MWQyM2M4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWUwDQYJKoZIhvcNAQELBQADggEBAHQHGw7iFMpDqm0EwTi7ry2knQ4n 17iRzhlZvyrnw/rAdsrp3zmLSfyZpujVo4/j//u3OUavUojPig6OUQOAAHBE9Pdx jvEQJ7IjuFy0bfsHn7aQU3BAxmDwN8jB/HdbdupCK//apsZzTHghE3R52zHISRBp UDtpIjAiH8apEA4wbRUR0xKNagoJOozYh5nZ6mRaXas3PbbpWhLnssWurj09FjM8 eigGaX0im6xQfyaXTFloyoPEGfkKt6cSMNAq9VgtIfgQduSuszvKIrByBCgFye4c 2C19bUcUNelPWeRo2QakXlBDQqckxMyMUtf1ExRbOCnD+4FQOE2NIN8OOo8= -----END CERTIFICATE-----Generated at Mon Aug 4 21:29:34 2025 by rpki-client