$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa File: e0073d5a-9507-4588-b834-e01ed691ccb6.roa (raw, json) Hash identifier: AeP/B3oSvu9UdzZ9OkKel8Yuk1XTSBttmY7dUQG7xbo= Subject key identifier: 5E:13:05:E9:0F:F7:B5:42:E1:1F:2A:7A:AD:A1:EA:A3:B3:ED:4A:C4 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 5C4EDB8446F8C2024F4D1088E33F66E312EB5F0E Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa Signing time: Sat 14 Jun 2025 00:10:18 +0000 ROA not before: Sat 14 Jun 2025 00:10:18 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4e:db:84:46:f8:c2:02:4f:4d:10:88:e3:3f:66:e3:12:eb:5f:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jun 14 00:10:18 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=de69c180d85dce13326450bc905a574e6fd537a22cb7ced0244ae23eaa40851f, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d5:ab:e2:56:4d:8d:2d:2e:df:3f:0e:8e:ed: d1:80:79:62:0a:b0:55:7d:db:02:41:75:36:88:98: a1:34:59:8b:46:08:fb:8e:e5:4d:b6:c3:de:cf:ed: a5:60:5e:d7:78:13:8c:9e:c0:75:e5:fe:33:72:d5: a8:65:51:26:7d:7c:1d:a3:e9:da:c0:69:6d:b0:2c: 08:4d:2f:1e:61:9c:53:05:98:8f:f4:a3:dd:2d:7e: 33:0b:4c:6a:99:d2:85:0d:3c:fe:87:11:35:df:9e: 20:2c:95:95:2a:da:05:3d:af:25:c9:d1:8a:77:dd: 8f:4a:a2:84:e1:c9:c3:15:38:9a:6a:69:f4:3a:80: 6d:da:d3:a4:1f:64:3a:4d:21:5a:66:46:e0:aa:fc: be:0c:64:85:21:61:6e:3c:23:5b:28:5c:cc:88:ae: 59:f9:e6:1d:87:93:6d:83:97:ca:56:b5:b6:04:d6: af:77:3f:8f:a3:81:7f:d1:37:c9:9d:88:6c:16:f3: 37:29:93:93:64:de:45:0b:c3:30:fd:f1:4f:a4:c9: 03:ed:be:1f:ae:b9:3a:47:23:63:a8:2d:6d:43:4c: d7:49:f9:63:ac:44:d7:b0:38:0c:eb:9d:d5:c6:62: 39:81:fd:3d:20:c4:9b:4c:99:16:9b:91:ea:2b:dc: 86:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:13:05:E9:0F:F7:B5:42:E1:1F:2A:7A:AD:A1:EA:A3:B3:ED:4A:C4 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.102.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:79:35:ec:48:68:e6:56:c6:99:f7:e5:14:36:0f:64:b7:3b: 1d:e3:57:2b:ea:e2:b2:34:b2:07:b3:99:d1:b2:45:59:04:de: bf:95:59:f1:0c:0c:d0:79:c8:0e:f7:e9:57:9e:e7:29:01:ae: 61:a4:64:64:bf:fc:2d:79:49:eb:c3:e4:56:27:ce:09:bc:3f: 9f:e4:49:92:5e:2e:a0:13:0b:91:69:4a:91:86:1a:8d:2f:f6: 80:84:ef:7b:fc:0f:fc:40:da:dd:d9:dd:13:73:a9:86:7b:79: 5e:76:cc:51:68:c6:d1:c2:a9:22:77:8e:8c:72:97:47:87:6c: 6e:27:22:a6:91:b4:82:5b:40:72:0c:95:2d:0c:13:48:1b:f2: 34:cf:82:79:8e:0d:a4:56:73:1d:24:53:9b:39:e5:c4:82:5d: 2a:2a:24:b6:cb:0b:8a:c0:7a:e8:01:4f:1d:74:f1:e0:cc:63: c8:bb:74:b3:70:5c:90:79:c2:ef:78:e3:45:5e:b9:19:3a:52: 53:e3:c0:19:ef:e7:1a:95:80:19:cf:80:da:c1:f8:03:cb:32: be:1a:f4:0c:7c:98:47:9e:d8:e5:be:5d:e3:de:67:24:ef:28: ef:3d:54:c8:2d:7d:70:65:d8:74:6c:8f:c1:f7:11:73:de:bf: b7:25:d7:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXE7bhEb4wgJPTRCI4z9m4xLrXw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNjE0MDAxMDE4WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTY5YzE4MGQ4NWRjZTEzMzI2NDUwYmM5MDVhNTc0ZTZm ZDUzN2EyMmNiN2NlZDAyNDRhZTIzZWFhNDA4NTFmMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI1aviVk2NLS7fPw6O7dGAeWIKsFV92wJBdTaImKE0WYtG CPuO5U22w97P7aVgXtd4E4yewHXl/jNy1ahlUSZ9fB2j6drAaW2wLAhNLx5hnFMF mI/0o90tfjMLTGqZ0oUNPP6HETXfniAslZUq2gU9ryXJ0Yp33Y9KooThycMVOJpq afQ6gG3a06QfZDpNIVpmRuCq/L4MZIUhYW48I1soXMyIrln55h2Hk22Dl8pWtbYE 1q93P4+jgX/RN8mdiGwW8zcpk5Nk3kULwzD98U+kyQPtvh+uuTpHI2OoLW1DTNdJ +WOsRNewOAzrndXGYjmB/T0gxJtMmRabkeor3IZTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXhMF6Q/3tULhHyp6raHqo7PtSsQwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2UwMDczZDVhLTk1MDctNDU4OC1iODM0LWUwMWVkNjkxY2NiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWYwDQYJKoZIhvcNAQELBQADggEBAFp5NexIaOZWxpn35RQ2D2S3Ox3j Vyvq4rI0sgezmdGyRVkE3r+VWfEMDNB5yA736Vee5ykBrmGkZGS//C15SevD5FYn zgm8P5/kSZJeLqATC5FpSpGGGo0v9oCE73v8D/xA2t3Z3RNzqYZ7eV52zFFoxtHC qSJ3joxyl0eHbG4nIqaRtIJbQHIMlS0ME0gb8jTPgnmODaRWcx0kU5s55cSCXSoq JLbLC4rAeugBTx108eDMY8i7dLNwXJB5wu9440VeuRk6UlPjwBnv5xqVgBnPgNrB +APLMr4a9Ax8mEee2OW+XePeZyTvKO89VMgtfXBl2HRsj8H3EXPev7cl13c= -----END CERTIFICATE-----Generated at Sat Jun 14 06:47:35 2025 by rpki-client