$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa File: e0073d5a-9507-4588-b834-e01ed691ccb6.roa (raw, json) Hash identifier: qHvIQRG+sIAbmBViAvGABnFuh+CD5hAx2PBtUkQ2VK0= Subject key identifier: D0:CB:9D:73:84:19:28:08:63:F3:B7:2F:E7:73:A9:72:96:32:D5:21 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 4B5C1B3B561FC1203145546E99435D3898545597 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa Signing time: Mon 04 Aug 2025 15:00:19 +0000 ROA not before: Mon 04 Aug 2025 15:00:19 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:5c:1b:3b:56:1f:c1:20:31:45:54:6e:99:43:5d:38:98:54:55:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:19 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=3b2b6047cdd7549b9617d72b7d0b4db2fa40dafbe1735b53b2f904e0e11a6aa5, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e0:2c:23:b7:9c:f6:c8:b7:b6:07:25:2a:2b: da:4b:8a:80:df:57:12:bc:90:cf:2a:5a:a6:bd:e4: 9c:c3:d9:1f:24:5c:0d:0d:87:0c:84:80:16:d8:7c: 2a:a8:b4:ff:0e:9d:fe:12:7b:90:22:8a:f8:f3:8c: 68:c2:07:af:ff:50:4d:dc:58:c0:bb:b6:fb:39:6c: d3:35:e1:d9:81:63:d6:b1:2c:8a:07:97:62:dc:4e: f5:5d:7f:8a:e3:b3:8c:79:92:ed:8e:ac:28:cc:aa: 1f:83:e6:9a:eb:9c:a1:83:75:79:d3:81:69:d7:a8: c5:85:82:36:09:87:8d:b8:17:14:46:5a:29:e0:78: 68:f8:77:af:83:76:7b:a1:47:2d:6f:59:c7:23:e6: 5b:da:c7:17:62:bb:e4:1d:1b:2a:c5:70:c3:12:94: 65:46:34:8a:80:91:15:ab:ac:f3:88:83:f0:82:28: a4:f5:eb:43:88:29:bb:ec:7b:db:a6:6c:ef:e4:67: bf:91:f5:89:f6:99:71:f6:2f:45:89:c3:cd:57:f0: 11:58:55:0b:8d:d8:67:c1:81:00:de:90:7f:a5:84: 6c:aa:ff:04:80:f8:20:48:be:af:3a:71:1a:1d:a3: 42:36:84:e2:cb:2b:ce:4d:26:4d:83:83:54:a0:10: db:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:CB:9D:73:84:19:28:08:63:F3:B7:2F:E7:73:A9:72:96:32:D5:21 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.102.0/24 Signature Algorithm: sha256WithRSAEncryption 42:6f:ef:1c:56:48:aa:49:af:06:59:f6:25:5d:43:f1:54:44: 0d:2b:1c:46:92:7d:d0:d8:b2:42:5e:9e:95:30:ac:40:66:47: 10:80:59:61:9f:00:c4:0d:10:67:56:62:38:b4:f7:67:9c:66: d6:a4:ac:14:2b:5f:f2:13:02:8f:b9:9a:aa:e8:1b:1f:d1:27: 42:97:f5:6d:7c:c5:d7:9a:2b:f4:be:0b:3b:ea:cf:a2:9a:20: d3:8d:a6:c7:31:e9:cb:9d:a6:67:69:5f:4a:51:e3:16:4e:f4: f8:11:0a:cf:d9:42:b6:a3:cb:b5:65:34:c1:ac:6b:c7:2c:f2: c4:9c:a8:a9:a2:b1:70:7b:76:1d:09:3d:c2:45:ce:52:d0:c2: ed:83:72:77:11:c6:e8:f4:83:17:a5:41:d1:39:06:b0:80:f2: b6:fb:22:77:fa:dc:74:0b:03:c5:ae:ef:b4:e1:e2:36:9d:95: a3:bf:11:21:c0:d9:4f:53:f7:36:8b:82:bc:c5:cd:67:82:e6: 8f:0c:90:22:49:1e:9a:18:5c:78:67:bb:b4:0e:38:2e:24:6c: 1a:fa:3d:83:28:3d:3f:83:77:39:d8:a6:26:1a:fa:86:5b:93: 18:d5:63:a3:3f:3f:1c:ff:58:2d:03:68:9e:99:e9:82:cc:d1: ac:17:1d:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS1wbO1YfwSAxRVRumUNdOJhUVZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDE5WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjJiNjA0N2NkZDc1NDliOTYxN2Q3MmI3ZDBiNGRiMmZh NDBkYWZiZTE3MzViNTNiMmY5MDRlMGUxMWE2YWE1MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDc4Cwjt5z2yLe2ByUqK9pLioDfVxK8kM8qWqa95JzD2R8k XA0NhwyEgBbYfCqotP8Onf4Se5AiivjzjGjCB6//UE3cWMC7tvs5bNM14dmBY9ax LIoHl2LcTvVdf4rjs4x5ku2OrCjMqh+D5prrnKGDdXnTgWnXqMWFgjYJh424FxRG WingeGj4d6+DdnuhRy1vWccj5lvaxxdiu+QdGyrFcMMSlGVGNIqAkRWrrPOIg/CC KKT160OIKbvse9umbO/kZ7+R9Yn2mXH2L0WJw81X8BFYVQuN2GfBgQDekH+lhGyq /wSA+CBIvq86cRodo0I2hOLLK85NJk2Dg1SgENu9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0Mudc4QZKAhj87cv53OpcpYy1SEwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2UwMDczZDVhLTk1MDctNDU4OC1iODM0LWUwMWVkNjkxY2NiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWYwDQYJKoZIhvcNAQELBQADggEBAEJv7xxWSKpJrwZZ9iVdQ/FURA0r HEaSfdDYskJenpUwrEBmRxCAWWGfAMQNEGdWYji092ecZtakrBQrX/ITAo+5mqro Gx/RJ0KX9W18xdeaK/S+Czvqz6KaINONpscx6cudpmdpX0pR4xZO9PgRCs/ZQraj y7VlNMGsa8cs8sScqKmisXB7dh0JPcJFzlLQwu2DcncRxuj0gxelQdE5BrCA8rb7 Inf63HQLA8Wu77Th4jadlaO/ESHA2U9T9zaLgrzFzWeC5o8MkCJJHpoYXHhnu7QO OC4kbBr6PYMoPT+DdznYpiYa+oZbkxjVY6M/Pxz/WC0DaJ6Z6YLM0awXHV8= -----END CERTIFICATE-----Generated at Wed Aug 6 10:21:19 2025 by rpki-client