$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa File: fd96e119-2761-4573-bdad-0f464228899f.roa (raw, json) Hash identifier: zDk3Ag8jlLmpRZkODK1eW81Ju9tTzfqOLr1/4I/egPA= Subject key identifier: F1:60:B5:2A:29:A5:B3:1F:29:1E:66:ED:14:BC:85:D9:01:87:BE:44 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 6154F23E14273166E3671736BB349F7092545F7F Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa Signing time: Mon 04 Aug 2025 15:00:08 +0000 ROA not before: Mon 04 Aug 2025 15:00:08 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 401654 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:54:f2:3e:14:27:31:66:e3:67:17:36:bb:34:9f:70:92:54:5f:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:08 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=a3d417ebf5f887701a36b94c3730561bd1d253b64956626d2ef8f3a2eb648174, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fc:f0:e6:16:b1:1b:5b:57:05:8e:f2:30:43: 03:61:96:a7:eb:7f:51:3d:a9:20:d9:1f:95:0d:a1: 06:3c:f8:c9:e1:cb:b9:3f:ec:71:54:c2:e6:05:ef: 49:4e:bf:72:c0:e8:79:c8:7d:ff:90:b9:3c:80:77: 01:ed:80:8a:26:c8:71:48:81:84:dd:cf:59:8d:62: ca:2c:22:3c:c8:0c:ce:64:1e:f4:27:6f:dc:ce:38: e6:12:c6:e6:f3:4f:66:1f:b7:1a:87:ef:05:00:9c: 88:69:df:4c:78:cb:8c:ba:82:5a:1a:44:5b:93:ec: 76:58:0f:d8:4e:ea:c2:76:dc:64:56:0b:7c:3b:e2: b1:04:55:a1:f8:77:3f:6b:a8:64:b4:f8:98:60:72: e9:ab:48:bc:9b:74:0b:92:dd:70:07:81:a8:23:0a: 56:e2:08:d1:cb:fe:a1:00:c4:b7:8d:8e:07:e3:85: 2b:53:e4:a5:d7:ea:dd:23:5d:c7:67:2d:48:fd:c2: b1:8f:47:67:10:fd:b5:9d:69:32:14:ce:86:71:4f: 28:53:3f:28:cd:e3:1b:35:d5:07:fb:27:96:91:57: eb:05:9a:15:6d:d9:67:47:f0:7a:dc:ad:56:82:7d: a8:42:33:f4:8e:30:fc:28:0b:ea:fc:a8:ba:e5:09: 56:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:60:B5:2A:29:A5:B3:1F:29:1E:66:ED:14:BC:85:D9:01:87:BE:44 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 4e:31:02:26:59:1d:6e:1c:2e:53:c1:43:74:f2:df:9e:45:54: 36:21:48:40:3f:57:29:96:9f:c2:f7:ca:33:6a:ca:ff:ec:b4: d4:ad:e0:4a:ad:81:0f:1a:77:84:8f:f5:09:f0:94:eb:7c:3b: fa:06:51:66:3f:7d:d9:9d:15:88:3c:ce:4a:c2:9a:a4:a1:c0: 54:a4:6f:4b:b2:f8:33:df:02:28:51:7f:9d:e5:68:12:d6:15: 48:37:bc:9d:d8:c2:78:da:48:fc:94:10:db:40:57:c9:2f:2b: 9a:8d:7e:e2:d0:a6:72:c0:79:69:82:99:b0:9c:ff:63:e5:5a: 19:f5:d4:78:4c:eb:24:61:e0:2f:fb:44:93:79:c3:88:ff:69: ef:93:3c:b3:eb:30:36:d4:2c:fc:d9:67:a8:16:26:49:ea:2d: ec:6c:83:d0:a2:17:b0:1b:d7:f4:c3:b1:b5:7b:67:d4:46:b8: df:fc:ee:49:1c:03:60:e9:30:79:80:d4:ca:0a:0a:79:0d:4c: 92:f1:47:0e:67:e2:94:05:5e:8a:a0:53:da:45:24:8f:f2:27: df:ca:de:3c:ec:b8:97:2a:5b:99:77:81:eb:c4:b5:a0:b4:89: 12:38:f7:df:44:06:07:1d:ff:dc:08:cd:ca:cf:71:09:4e:1d: 0b:46:c8:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYVTyPhQnMWbjZxc2uzSfcJJUX38wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDA4WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhM2Q0MTdlYmY1Zjg4NzcwMWEzNmI5NGMzNzMwNTYxYmQx ZDI1M2I2NDk1NjYyNmQyZWY4ZjNhMmViNjQ4MTc0MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz/PDmFrEbW1cFjvIwQwNhlqfrf1E9qSDZH5UNoQY8+Mnh y7k/7HFUwuYF70lOv3LA6HnIff+QuTyAdwHtgIomyHFIgYTdz1mNYsosIjzIDM5k HvQnb9zOOOYSxubzT2YftxqH7wUAnIhp30x4y4y6gloaRFuT7HZYD9hO6sJ23GRW C3w74rEEVaH4dz9rqGS0+JhgcumrSLybdAuS3XAHgagjClbiCNHL/qEAxLeNjgfj hStT5KXX6t0jXcdnLUj9wrGPR2cQ/bWdaTIUzoZxTyhTPyjN4xs11Qf7J5aRV+sF mhVt2WdH8HrcrVaCfahCM/SOMPwoC+r8qLrlCVahAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8WC1Kimlsx8pHmbtFLyF2QGHvkQwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2ZkOTZlMTE5LTI3NjEtNDU3My1iZGFkLTBmNDY0MjI4ODk5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAE4xAiZZHW4cLlPBQ3Ty355FVDYh SEA/VymWn8L3yjNqyv/stNSt4EqtgQ8ad4SP9QnwlOt8O/oGUWY/fdmdFYg8zkrC mqShwFSkb0uy+DPfAihRf53laBLWFUg3vJ3YwnjaSPyUENtAV8kvK5qNfuLQpnLA eWmCmbCc/2PlWhn11HhM6yRh4C/7RJN5w4j/ae+TPLPrMDbULPzZZ6gWJknqLexs g9CiF7Ab1/TDsbV7Z9RGuN/87kkcA2DpMHmA1MoKCnkNTJLxRw5n4pQFXoqgU9pF JI/yJ9/K3jzsuJcqW5l3gevEtaC0iRI4999EBgcd/9wIzcrPcQlOHQtGyGw= -----END CERTIFICATE-----Generated at Wed Aug 6 09:27:18 2025 by rpki-client