$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa File: f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa (raw, json) Hash identifier: g2frmtVqQKA0YP9+AqrAVBQQwSgK1hlqThk2Aw84AcE= Subject key identifier: 8C:8A:95:05:E0:BC:05:B7:CF:C6:E3:F7:53:6F:13:6F:5A:AA:26:12 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 08759857DFFB9405FA0F7155F27629EBA824AB48 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa Signing time: Wed 09 Jul 2025 00:10:03 +0000 ROA not before: Wed 09 Jul 2025 00:10:03 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:75:98:57:df:fb:94:05:fa:0f:71:55:f2:76:29:eb:a8:24:ab:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jul 9 00:10:03 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=fc278af523b2e9d3831165a2815c86ce70cf684d514d801da6f7f6d0ee7b156b, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:53:59:ce:1c:14:cc:33:a1:1e:96:aa:c0:96: 71:5c:59:9a:10:85:6b:e2:43:f5:24:86:2a:69:b2: 8e:28:93:22:73:c4:43:3e:72:3f:86:ee:9a:d2:fa: 85:b2:ec:dc:f4:27:5c:97:7a:37:2a:8c:ef:01:ca: c4:bb:f9:f3:eb:25:a7:a3:0f:8f:b7:db:28:3b:76: 10:74:1d:76:92:94:f5:2f:55:0a:8c:05:f6:17:96: 35:34:3b:6c:ad:bc:ae:fb:fe:8f:8d:13:28:70:cd: 9b:45:8a:ed:c8:ce:23:b0:60:6f:91:cb:a5:3d:2f: 82:2a:f0:4f:22:c9:36:44:c2:5e:3e:65:1c:41:54: 2a:1e:2a:47:01:55:8c:a3:e1:6e:8f:43:f3:af:54: f7:31:5d:2e:49:0f:85:de:c8:8d:54:91:0b:a5:8c: 88:18:87:eb:a3:af:24:2a:c4:c5:9c:96:8d:66:03: 12:f3:52:b7:2a:25:64:8d:02:13:8d:02:30:62:93: 0c:cf:f6:ff:bc:c8:f2:dd:67:e6:1f:ca:69:fd:76: 8c:5e:50:c8:b9:c0:ce:57:7c:68:7f:30:3d:27:ed: 3d:d8:56:be:ad:70:88:c5:31:4d:ec:db:a4:89:3b: 64:c3:4d:20:db:05:ac:f1:94:12:dd:38:90:b6:f2: c2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:8A:95:05:E0:BC:05:B7:CF:C6:E3:F7:53:6F:13:6F:5A:AA:26:12 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.101.0/24 Signature Algorithm: sha256WithRSAEncryption 12:f5:34:41:83:1d:f0:22:2b:9b:fa:34:a4:42:5b:21:a0:a7: 0e:58:96:69:86:26:b1:57:20:b9:01:83:6f:27:8c:06:ad:10: 49:8c:72:2c:71:71:4f:b1:39:15:6d:b3:1a:aa:d5:9f:dd:bf: b6:0a:90:37:cd:89:2a:ae:65:29:5f:ce:23:e6:89:78:22:93: 92:21:4f:a6:b4:70:3c:19:77:5e:f4:9f:28:49:12:e4:83:e1: 28:1e:74:d0:df:f0:c6:d4:1f:e9:d7:13:29:53:a8:93:1e:8a: e7:d9:32:8d:89:9b:b2:ee:0c:ad:35:3f:7f:95:cd:f3:c1:55: 70:0e:de:80:a2:77:8e:a6:7a:b5:13:8b:52:9b:d0:59:4d:c7: ee:fc:d2:12:a1:a9:f2:10:03:ba:ef:2e:47:03:5d:da:30:97: 6d:95:63:e8:3e:df:04:ee:d6:24:d8:51:76:b4:40:2f:33:1c: 3d:a4:5c:44:87:fb:a5:4e:aa:33:ef:b9:15:12:eb:68:7c:f2: 70:6a:1a:aa:0b:3e:f0:f0:a6:0a:6d:2b:04:8d:2c:81:83:f7: f7:7f:fe:8b:d3:d9:2a:69:a8:64:54:60:71:9f:58:66:be:62: 47:16:46:f0:c9:61:e7:83:f7:a5:01:8c:d0:c4:0b:5a:c2:db: 49:da:0a:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCHWYV9/7lAX6D3FV8nYp66gkq0gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNzA5MDAxMDAzWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzI3OGFmNTIzYjJlOWQzODMxMTY1YTI4MTVjODZjZTcw Y2Y2ODRkNTE0ZDgwMWRhNmY3ZjZkMGVlN2IxNTZiMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/U1nOHBTMM6EelqrAlnFcWZoQhWviQ/Ukhippso4okyJz xEM+cj+G7prS+oWy7Nz0J1yXejcqjO8BysS7+fPrJaejD4+32yg7dhB0HXaSlPUv VQqMBfYXljU0O2ytvK77/o+NEyhwzZtFiu3IziOwYG+Ry6U9L4Iq8E8iyTZEwl4+ ZRxBVCoeKkcBVYyj4W6PQ/OvVPcxXS5JD4XeyI1UkQuljIgYh+ujryQqxMWclo1m AxLzUrcqJWSNAhONAjBikwzP9v+8yPLdZ+Yfymn9doxeUMi5wM5XfGh/MD0n7T3Y Vr6tcIjFMU3s26SJO2TDTSDbBazxlBLdOJC28sJbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjIqVBeC8BbfPxuP3U28Tb1qqJhIwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2YwMmVmYjFmLThhMTctNGRjNy05YWI0LTljYzIzYmM2OWI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWUwDQYJKoZIhvcNAQELBQADggEBABL1NEGDHfAiK5v6NKRCWyGgpw5Y lmmGJrFXILkBg28njAatEEmMcixxcU+xORVtsxqq1Z/dv7YKkDfNiSquZSlfziPm iXgik5IhT6a0cDwZd170nyhJEuSD4SgedNDf8MbUH+nXEylTqJMeiufZMo2Jm7Lu DK01P3+VzfPBVXAO3oCid46merUTi1Kb0FlNx+780hKhqfIQA7rvLkcDXdowl22V Y+g+3wTu1iTYUXa0QC8zHD2kXESH+6VOqjPvuRUS62h88nBqGqoLPvDwpgptKwSN LIGD9/d//ovT2SppqGRUYHGfWGa+YkcWRvDJYeeD96UBjNDEC1rC20naCsw= -----END CERTIFICATE-----Generated at Mon Aug 4 14:02:27 2025 by rpki-client