$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa File: ca3490d0-1e9e-400b-af5e-b8236be17139.roa (raw, json) Hash identifier: HE5sw0m9K+BfsGI3j9/18N7aCGgZT8x9zpfeD5nXpT0= Subject key identifier: EA:90:68:1A:27:24:85:F3:CC:BF:65:00:9E:42:5D:D0:FC:4F:7B:50 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 6C971C26446DB349980953C5C742C5E50B33CDCD Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa Signing time: Sat 14 Jun 2025 00:10:05 +0000 ROA not before: Sat 14 Jun 2025 00:10:05 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:97:1c:26:44:6d:b3:49:98:09:53:c5:c7:42:c5:e5:0b:33:cd:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jun 14 00:10:05 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=e80dfc69a6e2ae5a8d06618284fade48cdd31e9f6cdbf2ad2d76e4709468d29b, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e9:bf:ec:88:68:20:a7:95:a3:e4:a9:f9:93: ad:78:6c:c6:51:ba:3f:52:5e:8f:47:cb:69:cd:01: 53:da:96:19:25:ed:35:75:2e:31:f2:fd:ee:91:1f: cb:74:5e:e6:c1:a4:02:98:8f:f9:bb:a3:9f:0c:97: cf:cf:8e:f2:a1:39:29:f2:97:3e:b9:d5:4f:cc:71: a6:dd:36:3b:f4:b3:bd:ed:f5:d6:bd:f6:c5:7e:78: 1c:cf:5d:07:c2:25:56:6b:af:ca:50:bf:cd:5b:fb: 89:ee:f9:d3:ca:57:3f:d9:5c:5c:4c:05:6a:eb:2a: e5:dd:f4:0d:87:ab:75:4c:4d:89:4b:fe:68:88:4e: bc:90:59:09:de:2f:6e:bd:85:3f:17:21:a0:09:99: 00:c2:cd:a3:3f:e0:03:b7:81:de:11:0a:90:28:55: de:ad:5f:ae:6c:60:70:d3:56:dc:13:66:9c:22:74: e1:a0:a4:9b:a2:ca:63:49:d0:42:55:6b:a0:45:6b: bb:33:ff:a1:d1:69:b6:1a:6d:55:77:48:93:7f:d7: 5b:a7:70:c2:f8:86:28:72:09:9b:37:75:8f:5f:89: a8:0f:ac:c3:c6:41:86:80:29:7d:2d:d6:dd:b5:11: 12:d9:2c:ad:87:48:21:73:1e:02:32:a7:c8:01:84: 05:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:90:68:1A:27:24:85:F3:CC:BF:65:00:9E:42:5D:D0:FC:4F:7B:50 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 33:18:54:f7:f5:f0:0f:e2:53:4d:5e:0e:cf:24:84:25:18:d3: c7:0f:d7:f7:7c:6c:2b:f4:d9:dc:e2:ec:3c:a0:09:bb:63:9e: 1b:56:fe:84:93:0c:69:7d:0e:7b:dc:13:6e:68:18:3b:7f:da: 62:12:06:b3:66:35:8a:5b:72:dd:af:dd:45:19:ab:5d:59:ef: 3a:7d:03:90:f4:0b:b1:07:5b:1c:49:a9:6d:63:53:b0:21:41: 2b:e0:69:40:64:e1:f4:57:9b:c4:8e:ff:db:1c:e0:eb:d9:46: 44:85:56:2f:6d:ee:ba:80:39:6c:09:34:4e:34:45:cd:f6:05: 2b:1e:f6:1b:68:ed:91:64:55:0d:f2:6f:26:d5:58:67:6c:f6: 94:93:f5:e4:8c:18:88:f8:e3:12:09:5b:cb:c1:64:8c:31:79: 1a:b5:cc:fd:8d:41:2c:ea:2b:97:07:fe:0a:f7:8a:47:16:dd: 2d:68:ac:d0:c1:f9:a5:4a:b9:f1:ef:c4:3f:31:00:02:16:92: a5:ec:76:31:8d:39:e1:ad:60:7f:c3:95:8f:40:4d:2d:71:51: 3a:45:7e:9a:df:c5:96:2b:ad:86:83:a6:6a:2b:94:2a:e2:ba: 55:ae:43:80:9c:23:2f:4a:2f:bb:db:18:9c:23:f6:43:c0:54: 29:2c:5c:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbJccJkRts0mYCVPFx0LF5Qszzc0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNjE0MDAxMDA1WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlODBkZmM2OWE2ZTJhZTVhOGQwNjYxODI4NGZhZGU0OGNk ZDMxZTlmNmNkYmYyYWQyZDc2ZTQ3MDk0NjhkMjliMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk6b/siGggp5Wj5Kn5k614bMZRuj9SXo9Hy2nNAVPalhkl 7TV1LjHy/e6RH8t0XubBpAKYj/m7o58Ml8/PjvKhOSnylz651U/McabdNjv0s73t 9da99sV+eBzPXQfCJVZrr8pQv81b+4nu+dPKVz/ZXFxMBWrrKuXd9A2Hq3VMTYlL /miITryQWQneL269hT8XIaAJmQDCzaM/4AO3gd4RCpAoVd6tX65sYHDTVtwTZpwi dOGgpJuiymNJ0EJVa6BFa7sz/6HRabYabVV3SJN/11uncML4hihyCZs3dY9fiagP rMPGQYaAKX0t1t21ERLZLK2HSCFzHgIyp8gBhAVjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6pBoGickhfPMv2UAnkJd0PxPe1AwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2NhMzQ5MGQwLTFlOWUtNDAwYi1hZjVlLWI4MjM2YmUxNzEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBADMYVPf18A/iU01eDs8khCUY08cP 1/d8bCv02dzi7DygCbtjnhtW/oSTDGl9DnvcE25oGDt/2mISBrNmNYpbct2v3UUZ q11Z7zp9A5D0C7EHWxxJqW1jU7AhQSvgaUBk4fRXm8SO/9sc4OvZRkSFVi9t7rqA OWwJNE40Rc32BSse9hto7ZFkVQ3ybybVWGds9pST9eSMGIj44xIJW8vBZIwxeRq1 zP2NQSzqK5cH/gr3ikcW3S1orNDB+aVKufHvxD8xAAIWkqXsdjGNOeGtYH/DlY9A TS1xUTpFfprfxZYrrYaDpmorlCriulWuQ4CcIy9KL7vbGJwj9kPAVCksXB4= -----END CERTIFICATE-----Generated at Sat Jun 14 06:15:09 2025 by rpki-client