$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b19e5975-1e99-4224-8288-ed3afb4fc704.roa File: b19e5975-1e99-4224-8288-ed3afb4fc704.roa (raw, json) Hash identifier: izDKDy45L4T5je1YdnWy/DF/isRSWK4pkS60IQLFfq4= Subject key identifier: 49:26:76:20:05:69:97:1D:FD:00:42:1A:82:11:7F:B1:C4:47:C0:83 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 6789EF0856ACAFD5786203150C6C3B5C366F8351 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b19e5975-1e99-4224-8288-ed3afb4fc704.roa Signing time: Mon 04 Aug 2025 15:00:17 +0000 ROA not before: Mon 04 Aug 2025 15:00:17 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:89:ef:08:56:ac:af:d5:78:62:03:15:0c:6c:3b:5c:36:6f:83:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:17 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=2c9b86d35cb90d083e7fb3d02e96f3c65dd66ac6157973e9943bab6c3357110b, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c0:05:6d:17:3f:41:09:6a:28:17:09:f6:1b: f6:6c:d1:11:35:5c:df:45:86:7a:cc:f8:4f:e6:d3: 5f:a7:5d:78:1d:e1:1b:a8:00:28:66:37:e3:31:e2: fe:98:4c:f3:6e:1f:4e:9a:1e:bc:ea:b3:2b:aa:ed: c5:4f:26:99:d2:c3:f0:93:35:d5:74:fc:01:c1:ae: c8:d4:28:8a:1c:86:27:45:4a:4c:fe:1b:7a:af:16: f2:21:ca:08:14:e1:34:f8:4a:ad:47:ab:ac:20:32: 43:2e:67:69:ca:eb:86:8b:f2:60:dc:27:71:35:ed: b8:d9:23:f4:24:af:3f:7d:4b:f7:47:1a:74:22:38: 26:07:b6:10:9b:42:b4:ba:f9:91:a5:95:6a:b8:b2: 51:a5:37:92:8a:f6:ff:b2:e2:87:e4:fb:30:2a:5d: 58:5e:67:98:df:11:31:42:62:5d:d7:3d:17:20:f1: 19:40:80:f5:e1:50:d1:9b:5c:eb:4d:93:25:cb:a8: 95:84:9f:b3:3c:bc:3c:ef:d8:00:7c:f5:0b:9d:72: ae:ad:8c:a0:53:0f:5c:3c:27:5e:8d:c3:0d:b6:69: 82:f6:46:23:f5:c1:83:98:49:14:2b:39:66:95:51: 6c:fc:2c:f8:e6:59:59:05:42:b1:28:16:bc:e5:7e: 88:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:26:76:20:05:69:97:1D:FD:00:42:1A:82:11:7F:B1:C4:47:C0:83 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b19e5975-1e99-4224-8288-ed3afb4fc704.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/24 Signature Algorithm: sha256WithRSAEncryption 29:6d:cd:a5:ca:7c:cb:9a:79:20:60:22:90:11:21:2a:ef:85: 82:99:53:06:fe:23:b1:49:3e:a4:31:be:7d:2b:5c:a2:b0:56: 32:ae:17:c4:5f:fa:a2:53:0f:8a:20:41:6d:8c:8c:27:41:65: 42:5a:02:43:46:1b:5e:be:c8:85:c4:9b:63:a5:c2:06:00:ff: 29:f1:e2:b9:e6:19:46:d1:b2:90:5f:57:a5:97:19:b7:2f:54: ff:4b:e5:aa:3b:7c:44:f1:8a:e4:6a:33:df:9a:09:db:66:24: 1e:91:f9:28:26:21:b0:63:88:48:0d:18:d0:77:e0:2d:bb:2e: e5:a5:74:d6:1c:00:9b:93:50:46:75:50:0a:62:6d:96:1c:97: f0:46:d6:0f:5f:de:1b:d5:4d:8e:ac:64:31:21:96:ad:7a:16: 56:8c:9b:2c:dd:be:0b:02:b9:5f:a2:67:1b:88:cd:a6:20:9f: 0f:b6:0d:3c:c3:d1:34:e7:41:d8:0e:89:96:b0:d3:0d:cd:c7: 23:95:20:62:a6:7b:5b:b6:f8:69:02:cf:fd:d9:31:09:36:6c: 8f:55:25:00:76:82:b7:26:fa:af:a9:dc:ae:61:ba:d3:6b:fb: 9d:61:79:19:08:28:27:23:58:71:c6:bb:4c:7a:ae:30:d7:17: b9:da:ab:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ4nvCFasr9V4YgMVDGw7XDZvg1EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDE3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzliODZkMzVjYjkwZDA4M2U3ZmIzZDAyZTk2ZjNjNjVk ZDY2YWM2MTU3OTczZTk5NDNiYWI2YzMzNTcxMTBiMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKwAVtFz9BCWooFwn2G/Zs0RE1XN9FhnrM+E/m01+nXXgd 4RuoAChmN+Mx4v6YTPNuH06aHrzqsyuq7cVPJpnSw/CTNdV0/AHBrsjUKIochidF Skz+G3qvFvIhyggU4TT4Sq1Hq6wgMkMuZ2nK64aL8mDcJ3E17bjZI/Qkrz99S/dH GnQiOCYHthCbQrS6+ZGllWq4slGlN5KK9v+y4ofk+zAqXVheZ5jfETFCYl3XPRcg 8RlAgPXhUNGbXOtNkyXLqJWEn7M8vDzv2AB89Qudcq6tjKBTD1w8J16Nww22aYL2 RiP1wYOYSRQrOWaVUWz8LPjmWVkFQrEoFrzlfohFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSSZ2IAVplx39AEIaghF/scRHwIMwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2IxOWU1OTc1LTFlOTktNDIyNC04Mjg4LWVkM2FmYjRmYzcwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWAwDQYJKoZIhvcNAQELBQADggEBACltzaXKfMuaeSBgIpARISrvhYKZ Uwb+I7FJPqQxvn0rXKKwVjKuF8Rf+qJTD4ogQW2MjCdBZUJaAkNGG16+yIXEm2Ol wgYA/ynx4rnmGUbRspBfV6WXGbcvVP9L5ao7fETxiuRqM9+aCdtmJB6R+SgmIbBj iEgNGNB34C27LuWldNYcAJuTUEZ1UApibZYcl/BG1g9f3hvVTY6sZDEhlq16FlaM myzdvgsCuV+iZxuIzaYgnw+2DTzD0TTnQdgOiZaw0w3NxyOVIGKme1u2+GkCz/3Z MQk2bI9VJQB2grcm+q+p3K5hutNr+51heRkIKCcjWHHGu0x6rjDXF7naq/A= -----END CERTIFICATE-----Generated at Mon Aug 4 19:06:53 2025 by rpki-client