$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa File: ca3490d0-1e9e-400b-af5e-b8236be17139.roa (raw, json) Hash identifier: iaufOBzVD4BrhThX07vPB0q1uKorV89MpYEVOyMkBdk= Subject key identifier: DA:7D:7D:99:1A:E8:74:48:B8:7A:E5:D9:EE:F1:14:BF:F1:2C:17:33 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 7B72013D67D52D8E9E490275E685FB50717C86D9 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa Signing time: Mon 04 Aug 2025 15:00:06 +0000 ROA not before: Mon 04 Aug 2025 15:00:06 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:72:01:3d:67:d5:2d:8e:9e:49:02:75:e6:85:fb:50:71:7c:86:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:06 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=eee902eaa8c3484923082f7ac92a8f67e1e7d18d10436f26c320e25e470ab094, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:37:b0:7a:b0:9e:d9:d7:f8:af:eb:14:8e:26: 2f:96:15:31:a4:22:a0:38:b4:51:75:e0:03:26:7d: 0a:43:49:72:45:6f:55:3c:72:61:f9:6c:4d:cb:a9: 76:8a:5d:ec:c7:5f:d3:d1:02:97:98:02:3c:23:ab: cf:15:5c:41:63:60:2f:33:04:dd:c2:c7:0c:73:9c: 05:2a:03:b2:4c:f1:45:3a:b4:e2:df:14:04:3b:52: 28:b2:93:ea:25:e6:7f:e3:7d:74:ed:47:f4:51:a5: ac:c4:b6:50:c9:62:61:e5:39:f7:2e:d1:d1:45:9c: 65:6f:1b:37:e1:6b:5c:98:e2:70:d5:2e:3c:6e:54: a5:a1:14:1a:7a:6f:6b:25:cc:1d:98:5a:55:e5:06: 98:8c:a1:aa:49:a4:d6:96:f8:7d:47:3d:62:b0:7e: 90:0a:eb:f8:7e:bc:13:33:52:ee:67:70:0e:04:77: 01:e7:29:42:b9:da:e0:d0:af:19:b5:8e:15:b0:40: 8a:44:29:77:13:55:4d:1c:3a:ce:ba:a5:21:1b:e1: d4:7f:e4:88:7a:f8:2f:ab:3c:b6:8f:b6:6f:68:86: 72:fa:e0:f0:7a:e3:b5:39:07:2b:8d:1a:00:8d:b5: c3:bc:64:54:ca:30:9b:c0:79:cc:ac:2f:77:2d:f9: d2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7D:7D:99:1A:E8:74:48:B8:7A:E5:D9:EE:F1:14:BF:F1:2C:17:33 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 74:df:c7:36:36:72:c2:65:59:a3:02:28:e3:25:bf:4e:92:e7: 8e:49:30:eb:05:23:4b:9a:6c:bf:88:c5:be:a7:69:b1:81:68: 69:6d:d2:e0:36:23:d7:70:64:ff:f2:0e:6f:f3:e9:cd:9d:01: f0:ec:5a:68:e3:e5:39:d7:ce:fd:7d:d1:96:c6:83:bb:82:11: f9:93:fc:e4:40:15:8a:af:e3:f0:f2:c6:43:55:cd:a2:98:21: b2:83:f7:7f:dd:13:4e:16:ba:0b:f5:88:73:f5:8e:fc:9e:a6: 3c:f2:e6:f4:5b:b5:36:3c:33:db:05:8c:ac:4e:77:8f:99:59: f3:3c:e2:b5:8f:98:ff:a6:bf:16:09:0c:69:10:aa:8c:80:ac: 83:8c:e5:70:4e:4c:b7:24:60:67:74:39:7b:37:30:58:84:c2: 89:65:77:7f:74:9e:3b:9b:45:a0:4d:12:28:6a:1a:19:a5:22: 47:3e:74:8d:9f:c0:b2:6b:60:d8:d8:bb:06:ec:d0:5d:e5:29: 55:e8:f9:89:dc:49:cf:c0:b4:a0:3d:37:d7:39:89:45:49:ec: 18:7b:63:91:c2:18:5f:2e:de:1b:2f:14:a7:b1:e9:85:f5:42: d0:8b:49:20:4d:8f:c7:ae:2f:a5:ef:68:50:0e:37:ac:53:5c: 53:cf:42:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe3IBPWfVLY6eSQJ15oX7UHF8htkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDA2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWU5MDJlYWE4YzM0ODQ5MjMwODJmN2FjOTJhOGY2N2Ux ZTdkMThkMTA0MzZmMjZjMzIwZTI1ZTQ3MGFiMDk0MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxN7B6sJ7Z1/iv6xSOJi+WFTGkIqA4tFF14AMmfQpDSXJF b1U8cmH5bE3LqXaKXezHX9PRApeYAjwjq88VXEFjYC8zBN3CxwxznAUqA7JM8UU6 tOLfFAQ7Uiiyk+ol5n/jfXTtR/RRpazEtlDJYmHlOfcu0dFFnGVvGzfha1yY4nDV LjxuVKWhFBp6b2slzB2YWlXlBpiMoapJpNaW+H1HPWKwfpAK6/h+vBMzUu5ncA4E dwHnKUK52uDQrxm1jhWwQIpEKXcTVU0cOs66pSEb4dR/5Ih6+C+rPLaPtm9ohnL6 4PB647U5ByuNGgCNtcO8ZFTKMJvAecysL3ct+dIHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2n19mRrodEi4euXZ7vEUv/EsFzMwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2NhMzQ5MGQwLTFlOWUtNDAwYi1hZjVlLWI4MjM2YmUxNzEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAHTfxzY2csJlWaMCKOMlv06S545J MOsFI0uabL+Ixb6nabGBaGlt0uA2I9dwZP/yDm/z6c2dAfDsWmjj5TnXzv190ZbG g7uCEfmT/ORAFYqv4/DyxkNVzaKYIbKD93/dE04Wugv1iHP1jvyepjzy5vRbtTY8 M9sFjKxOd4+ZWfM84rWPmP+mvxYJDGkQqoyArIOM5XBOTLckYGd0OXs3MFiEwoll d390njubRaBNEihqGhmlIkc+dI2fwLJrYNjYuwbs0F3lKVXo+YncSc/AtKA9N9c5 iUVJ7Bh7Y5HCGF8u3hsvFKex6YX1QtCLSSBNj8euL6XvaFAON6xTXFPPQg0= -----END CERTIFICATE-----Generated at Mon Aug 4 22:16:40 2025 by rpki-client