$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa File: ca3490d0-1e9e-400b-af5e-b8236be17139.roa (raw, json) Hash identifier: 2lwB58UsF9WHsXXWxQ4wIgCalnXLOzk7FhDI0eM6IE4= Subject key identifier: 31:2B:38:1A:3B:54:36:53:EF:B2:68:C6:55:7E:09:44:07:A3:34:DF Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 1A202A0B09A306E2586CA3EF3B27E96AB2AF80D2 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa Signing time: Sat 18 Oct 2025 00:10:08 +0000 ROA not before: Sat 18 Oct 2025 00:10:08 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:20:2a:0b:09:a3:06:e2:58:6c:a3:ef:3b:27:e9:6a:b2:af:80:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Oct 18 00:10:08 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=416d3877b97e06e03038b696316fcdffdea36c0c1280966277d4fd3901b89890, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:39:57:28:11:1b:27:be:a5:01:0f:0e:6f:84: 9e:ab:b9:c0:f3:08:4c:48:7a:74:1d:12:b9:de:21: 69:50:b7:7a:df:d6:83:4d:14:ac:b0:b5:a4:e0:c8: 49:6a:0f:37:71:36:fa:4b:b7:f3:d5:39:18:29:2f: 02:c6:89:5a:87:ab:f6:ad:76:57:6a:64:c4:b1:50: 44:3e:1d:63:5e:31:fa:b4:63:70:7f:50:4c:f3:b6: 8c:1c:60:18:dc:82:93:2b:92:83:49:97:70:83:58: 60:d8:f8:40:64:12:0c:cc:93:f1:cb:85:94:16:8f: c1:98:d9:21:8a:46:92:39:28:d8:1b:6e:d0:67:0e: d9:9d:d9:82:a8:7d:27:e1:40:9e:e6:5d:64:4a:26: 8c:55:f6:e6:bf:32:e4:06:b6:d0:65:98:bc:a5:7c: 20:dd:a0:6b:d7:41:2a:46:ac:7d:19:ff:de:77:60: 52:1d:a4:9a:f8:e3:94:50:5d:7c:ee:17:1f:8d:1a: db:0b:bc:34:85:f2:4a:8c:27:74:d3:c4:71:cd:3f: 38:b3:df:8d:b0:3a:03:aa:73:9f:21:e6:8c:d5:f5: 13:e1:ee:39:26:4e:dc:1d:16:3d:65:e0:1e:31:82: 4e:b8:df:9d:c3:10:19:57:c7:16:1a:a8:08:6c:37: 2f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2B:38:1A:3B:54:36:53:EF:B2:68:C6:55:7E:09:44:07:A3:34:DF X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption a9:96:21:8f:d0:2d:b6:ff:94:f4:b8:b2:f2:fb:b8:42:ea:3d: f1:f2:1c:fc:cd:6e:b6:95:ae:9f:22:94:82:c7:de:6d:f6:6c: 87:c7:c4:da:73:4b:cb:9c:ae:6f:c8:be:aa:3e:4d:1e:ba:f2: 18:ef:ab:da:fa:71:22:0a:58:3f:2f:82:17:0f:e7:0d:d7:3d: 03:19:8b:31:a6:4e:00:9b:e3:94:42:57:55:9c:56:1d:5b:43: a2:f9:7b:e6:b7:b6:d4:e2:db:18:d7:95:57:7c:17:0f:5a:a8: 2f:0b:c1:a2:de:04:81:9b:46:62:39:ea:86:e9:70:f1:c6:aa: 25:d5:21:94:d3:86:c2:94:a8:4a:60:58:66:05:a8:3d:f4:f8: d5:f1:0f:1e:07:b6:91:7f:3e:74:63:ee:61:f7:0c:c9:af:86: 14:a6:a2:a3:64:ee:fa:5b:a6:59:23:ae:82:c9:16:99:b8:2c: 4d:37:48:b4:7f:f4:40:71:be:9d:07:14:e8:a1:9b:79:d9:9f: 63:2f:d3:3d:b4:81:3d:59:6d:2a:29:49:1e:8c:5f:03:23:42: 75:e0:a7:0e:92:6b:c5:92:79:a0:3a:3b:85:b2:a6:0c:7d:ff: 21:46:cf:fd:f3:14:fe:2d:1d:4f:cb:38:53:53:6a:9a:0e:5e: 02:b8:a9:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGiAqCwmjBuJYbKPvOyfparKvgNIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMDE4MDAxMDA4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTZkMzg3N2I5N2UwNmUwMzAzOGI2OTYzMTZmY2RmZmRl YTM2YzBjMTI4MDk2NjI3N2Q0ZmQzOTAxYjg5ODkwMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmOVcoERsnvqUBDw5vhJ6rucDzCExIenQdErneIWlQt3rf 1oNNFKywtaTgyElqDzdxNvpLt/PVORgpLwLGiVqHq/atdldqZMSxUEQ+HWNeMfq0 Y3B/UEzztowcYBjcgpMrkoNJl3CDWGDY+EBkEgzMk/HLhZQWj8GY2SGKRpI5KNgb btBnDtmd2YKofSfhQJ7mXWRKJoxV9ua/MuQGttBlmLylfCDdoGvXQSpGrH0Z/953 YFIdpJr445RQXXzuFx+NGtsLvDSF8kqMJ3TTxHHNPziz342wOgOqc58h5ozV9RPh 7jkmTtwdFj1l4B4xgk64353DEBlXxxYaqAhsNy/jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMSs4GjtUNlPvsmjGVX4JRAejNN8wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2NhMzQ5MGQwLTFlOWUtNDAwYi1hZjVlLWI4MjM2YmUxNzEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAKmWIY/QLbb/lPS4svL7uELqPfHy HPzNbraVrp8ilILH3m32bIfHxNpzS8ucrm/Ivqo+TR668hjvq9r6cSIKWD8vghcP 5w3XPQMZizGmTgCb45RCV1WcVh1bQ6L5e+a3ttTi2xjXlVd8Fw9aqC8LwaLeBIGb RmI56obpcPHGqiXVIZTThsKUqEpgWGYFqD30+NXxDx4HtpF/PnRj7mH3DMmvhhSm oqNk7vpbplkjroLJFpm4LE03SLR/9EBxvp0HFOihm3nZn2Mv0z20gT1ZbSopSR6M XwMjQnXgpw6Sa8WSeaA6O4Wypgx9/yFGz/3zFP4tHU/LOFNTapoOXgK4qYo= -----END CERTIFICATE-----Generated at Wed Nov 5 05:40:26 2025 by rpki-client