$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa File: aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa (raw, json) Hash identifier: SxqCgcIAY7pohCYlLTJMraEQVmj1fIvhpBnVbVu4ju4= Subject key identifier: 04:88:B2:CF:3F:20:5E:1C:DA:72:B0:E7:44:D4:8F:16:32:B7:56:AA Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 1FCE49D55FF2BA9BCBAEC410538AAC914059CB88 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa Signing time: Sat 14 Jun 2025 00:10:03 +0000 ROA not before: Sat 14 Jun 2025 00:10:03 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ce:49:d5:5f:f2:ba:9b:cb:ae:c4:10:53:8a:ac:91:40:59:cb:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jun 14 00:10:03 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=c37c3af1927a0e995cd595c2bedbdcf1f9676463e499ec40c647999e85a2ac23, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:11:0e:8c:11:7a:e4:6c:8a:fa:d1:66:9b:d6: 60:3a:08:7e:1d:2f:34:cb:d8:17:9c:7b:9f:ee:ed: bb:72:c7:d8:f9:09:a3:8d:ee:b2:5a:5e:af:77:e2: b3:b7:f5:5f:73:4c:a1:18:3b:19:21:0f:3e:5f:fa: 24:e1:23:07:87:33:6a:07:83:00:35:3c:ee:1f:b1: ba:92:36:b9:c7:7a:c5:db:76:12:7b:d6:53:5c:2a: 84:74:68:ad:c6:39:f5:d2:3b:18:ee:de:62:24:83: d7:68:85:78:37:6b:2c:29:b0:8e:ee:b8:a7:4f:4e: 45:73:8a:43:e0:c5:2c:77:b0:01:6d:ae:4b:9c:9d: 33:eb:40:9c:d4:76:5c:0a:0d:8d:92:ee:d4:07:fc: 10:9e:d4:28:a1:2f:1c:be:36:a6:90:53:95:a4:22: 9c:55:5b:25:90:be:3b:93:53:05:d9:e1:f6:81:11: 79:76:0c:3b:4a:7f:d7:9d:08:d6:8e:91:c1:ee:d7: ea:33:17:22:66:30:d7:7d:ac:85:fd:a2:80:08:af: 8a:09:a3:b2:23:a9:5d:df:15:5b:ac:8f:12:7a:1c: 12:be:d7:cc:c3:c7:53:69:9c:cb:3e:e0:8d:cf:69: ea:7b:fb:9f:97:7e:79:ac:1a:11:09:18:20:ac:7a: 25:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:88:B2:CF:3F:20:5E:1C:DA:72:B0:E7:44:D4:8F:16:32:B7:56:AA X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.101.0/24 Signature Algorithm: sha256WithRSAEncryption 26:74:c3:97:7f:f9:75:c5:ea:22:bc:e4:19:35:1c:2d:04:6a: 36:be:ce:e9:0b:6c:94:5b:6d:70:14:a4:9f:4f:64:b2:8e:3b: 3f:9e:ed:f3:26:44:80:9b:17:9e:37:e1:3b:a8:ff:56:8b:df: 6c:6b:03:8b:ad:5b:5d:73:4a:6b:76:10:f8:fe:03:d8:7c:48: cf:ce:5a:a5:d6:a0:93:ba:2b:4a:22:a2:d5:07:f5:d7:b5:db: d9:af:76:24:78:b1:40:f1:d5:8d:02:4c:55:70:1d:11:78:e9: 9e:b4:25:d9:3d:f8:8e:e7:c1:4f:64:cf:a0:e2:92:bd:55:df: b1:1b:ce:97:8d:45:d4:6d:73:9e:b9:19:60:74:de:28:15:28: 9b:2d:03:68:61:23:50:2b:9a:ca:90:f9:61:db:bb:50:65:97: 91:71:a7:44:21:20:73:1d:dc:c7:ab:4b:98:65:6e:78:95:69: 56:4f:18:7a:c7:d2:1c:d7:5d:58:ab:90:e9:d7:24:a7:aa:f4: fd:8c:f7:ee:e0:47:bb:e7:42:16:e3:57:3c:66:51:7b:88:3e: e4:e9:a2:88:06:34:e9:f6:e7:ee:14:c6:b5:2c:80:4e:04:a3: f9:d3:89:db:5b:f5:78:fc:66:b2:9d:e7:80:91:ee:97:8a:9b: ae:6b:93:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH85J1V/yupvLrsQQU4qskUBZy4gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNjE0MDAxMDAzWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzdjM2FmMTkyN2EwZTk5NWNkNTk1YzJiZWRiZGNmMWY5 Njc2NDYzZTQ5OWVjNDBjNjQ3OTk5ZTg1YTJhYzIzMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtEQ6MEXrkbIr60Wab1mA6CH4dLzTL2Bece5/u7btyx9j5 CaON7rJaXq934rO39V9zTKEYOxkhDz5f+iThIweHM2oHgwA1PO4fsbqSNrnHesXb dhJ71lNcKoR0aK3GOfXSOxju3mIkg9dohXg3aywpsI7uuKdPTkVzikPgxSx3sAFt rkucnTPrQJzUdlwKDY2S7tQH/BCe1CihLxy+NqaQU5WkIpxVWyWQvjuTUwXZ4faB EXl2DDtKf9edCNaOkcHu1+ozFyJmMNd9rIX9ooAIr4oJo7IjqV3fFVusjxJ6HBK+ 18zDx1NpnMs+4I3Paep7+5+XfnmsGhEJGCCseiUhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBIiyzz8gXhzacrDnRNSPFjK3VqowHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2FlZDc2ZjE3LTViNDctNGU1Yy1hOWZiLWIwMWM2MWQyM2M4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWUwDQYJKoZIhvcNAQELBQADggEBACZ0w5d/+XXF6iK85Bk1HC0Eaja+ zukLbJRbbXAUpJ9PZLKOOz+e7fMmRICbF5434Tuo/1aL32xrA4utW11zSmt2EPj+ A9h8SM/OWqXWoJO6K0oiotUH9de129mvdiR4sUDx1Y0CTFVwHRF46Z60Jdk9+I7n wU9kz6Dikr1V37EbzpeNRdRtc565GWB03igVKJstA2hhI1ArmsqQ+WHbu1Bll5Fx p0QhIHMd3MerS5hlbniVaVZPGHrH0hzXXVirkOnXJKeq9P2M9+7gR7vnQhbjVzxm UXuIPuTpoogGNOn25+4UxrUsgE4Eo/nTidtb9Xj8ZrKd54CR7peKm65rk4g= -----END CERTIFICATE-----Generated at Sat Jun 14 05:39:17 2025 by rpki-client