$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa File: f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa (raw, json) Hash identifier: 0Ne++b4splq1HGdau+n8GkeaBce5K76iLG+eOZexl6o= Subject key identifier: 1A:CD:B3:10:91:2C:78:86:59:95:9E:2B:CF:E0:A1:3D:38:5B:26:07 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 0B1653A7EDDAD9860A5FA53097E0002AEB580FF3 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa Signing time: Sat 14 Jun 2025 00:10:01 +0000 ROA not before: Sat 14 Jun 2025 00:10:01 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:16:53:a7:ed:da:d9:86:0a:5f:a5:30:97:e0:00:2a:eb:58:0f:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jun 14 00:10:01 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=7376190dfa461ab8aeb725aa30cc2a29b6e1ae4d767363c6d45bf5cba02cc39a, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:eb:2c:e2:20:ac:0a:21:9b:14:69:c9:f3:15: 8f:fb:04:95:d5:51:8c:24:fd:b7:09:ec:2c:3f:70: ea:a3:05:a8:5d:d0:e5:60:51:da:b5:5a:a7:4e:35: 31:b2:31:8f:00:b9:9b:f6:ee:cd:95:74:97:d2:08: 02:25:dd:01:c9:27:17:4a:24:1a:00:ba:47:06:c4: ce:ca:0e:83:31:4b:a2:69:e0:e8:90:87:15:73:ca: 41:80:4c:bd:07:7d:e9:b2:a0:51:d3:d3:a8:ce:10: 3d:11:d2:90:7a:f7:b4:f8:38:c9:6f:fa:0d:a4:b9: fc:2e:6c:29:8a:a0:57:46:d6:86:d1:fe:5f:6f:d6: be:bd:b9:f0:9d:c4:7c:9b:7f:bd:57:15:90:f4:6d: 11:b3:ab:be:8e:15:55:6a:a8:cb:d0:bd:aa:cd:18: 00:ab:ab:18:ea:72:4f:f7:b1:0b:d0:36:99:a2:ff: a0:02:fa:3f:fa:7b:65:17:f4:70:8b:b1:18:62:0c: db:b7:e4:a5:4a:3c:58:9f:dd:94:91:92:ba:98:4d: 6e:cf:0b:b2:1b:dd:c7:b0:9a:48:4b:13:03:af:41: 8d:99:5a:a7:f0:04:4e:3f:1b:0b:10:32:ba:68:62: 40:92:93:5f:97:ca:ad:68:13:f4:a9:d0:43:49:39: 6b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CD:B3:10:91:2C:78:86:59:95:9E:2B:CF:E0:A1:3D:38:5B:26:07 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.101.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:a1:cf:40:7a:4c:94:46:b2:8e:77:26:34:90:3d:7f:e9:5c: bf:1e:4a:ec:e3:f6:d4:11:82:91:a4:fa:ed:ed:40:42:fe:78: 2e:06:1e:b5:4f:61:03:3a:c6:f0:c0:4f:36:41:ce:8d:3d:75: 0c:e9:3c:64:e2:fa:9a:5c:05:ea:19:48:8e:f7:a5:7b:19:69: 8a:74:20:90:e9:6b:3a:04:8e:ec:44:db:f7:10:90:5c:1a:11: 19:5a:2f:8c:88:22:32:a4:4a:1b:1e:43:81:02:aa:46:6a:00: 6b:0a:74:39:ba:4d:22:5e:cc:c3:32:c0:29:8c:47:8c:a7:e7: f7:c2:b7:f8:fc:7e:4c:16:ac:f6:32:19:28:e5:a1:55:ad:46: fd:fb:40:a7:96:18:20:52:44:64:0a:23:62:a5:07:c8:72:f9: f5:47:e1:c5:12:55:6b:79:a3:d6:f4:ad:8f:d5:95:53:e2:58: cc:3a:22:2b:98:4e:25:ba:88:ae:cc:d4:b1:10:f2:e9:77:9d: 9e:69:07:14:f2:9f:e3:28:01:b5:db:26:6d:e8:21:c2:59:dc: f8:87:b6:ed:31:7e:59:48:ff:24:a3:2a:03:f1:69:3d:7e:7c: 66:b6:64:05:d8:d4:16:42:c6:2d:1b:48:b9:77:c4:13:f1:de: 31:33:5a:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCxZTp+3a2YYKX6Uwl+AAKutYD/MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNjE0MDAxMDAxWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Mzc2MTkwZGZhNDYxYWI4YWViNzI1YWEzMGNjMmEyOWI2 ZTFhZTRkNzY3MzYzYzZkNDViZjVjYmEwMmNjMzlhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT6yziIKwKIZsUacnzFY/7BJXVUYwk/bcJ7Cw/cOqjBahd 0OVgUdq1WqdONTGyMY8AuZv27s2VdJfSCAIl3QHJJxdKJBoAukcGxM7KDoMxS6Jp 4OiQhxVzykGATL0HfemyoFHT06jOED0R0pB697T4OMlv+g2kufwubCmKoFdG1obR /l9v1r69ufCdxHybf71XFZD0bRGzq76OFVVqqMvQvarNGACrqxjqck/3sQvQNpmi /6AC+j/6e2UX9HCLsRhiDNu35KVKPFif3ZSRkrqYTW7PC7Ib3cewmkhLEwOvQY2Z WqfwBE4/GwsQMrpoYkCSk1+Xyq1oE/Sp0ENJOWuTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGs2zEJEseIZZlZ4rz+ChPThbJgcwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2YwMmVmYjFmLThhMTctNGRjNy05YWI0LTljYzIzYmM2OWI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWUwDQYJKoZIhvcNAQELBQADggEBADyhz0B6TJRGso53JjSQPX/pXL8e Suzj9tQRgpGk+u3tQEL+eC4GHrVPYQM6xvDATzZBzo09dQzpPGTi+ppcBeoZSI73 pXsZaYp0IJDpazoEjuxE2/cQkFwaERlaL4yIIjKkShseQ4ECqkZqAGsKdDm6TSJe zMMywCmMR4yn5/fCt/j8fkwWrPYyGSjloVWtRv37QKeWGCBSRGQKI2KlB8hy+fVH 4cUSVWt5o9b0rY/VlVPiWMw6IiuYTiW6iK7M1LEQ8ul3nZ5pBxTyn+MoAbXbJm3o IcJZ3PiHtu0xfllI/ySjKgPxaT1+fGa2ZAXY1BZCxi0bSLl3xBPx3jEzWpU= -----END CERTIFICATE-----Generated at Sat Jun 14 23:44:46 2025 by rpki-client