$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa File: 05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa (raw, json) Hash identifier: U8OoBero6NVL+eKfD9sG+dDRux6IzzWLgJA70SKtUCk= Subject key identifier: 54:EE:7C:72:1C:A1:79:58:71:CE:36:4A:83:66:E5:EA:91:CC:73:38 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 5A4F0C6727C90ACC56B5EB3599783E8EA48AB1B6 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa Signing time: Tue 23 Sep 2025 00:10:16 +0000 ROA not before: Tue 23 Sep 2025 00:10:16 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:4f:0c:67:27:c9:0a:cc:56:b5:eb:35:99:78:3e:8e:a4:8a:b1:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Sep 23 00:10:16 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=b3cee7de2a563708072eed2727b060981af1fa3dfda4c1c61f0907d40c2484de, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fb:e1:2d:49:fe:bb:a2:44:4a:7e:3c:74:6f: 60:05:54:d3:83:50:bd:37:4b:e4:47:81:e3:1f:a9: e9:26:fa:4c:db:9c:c1:24:cd:eb:6c:d7:0e:14:cd: 6c:6e:9f:b9:2f:19:7f:b9:2f:b0:ba:30:1f:21:60: 5a:86:fe:5b:c7:af:9a:86:98:41:b4:1d:b7:a6:7d: ac:c4:8a:a6:6d:44:86:cd:14:ec:6a:fb:aa:60:e4: 41:8f:7d:3c:b1:4c:6d:ff:ab:a1:ce:54:2d:c6:b2: 46:93:ec:eb:fc:e3:9a:03:1a:54:1e:35:d6:3b:39: 31:c3:ac:fc:0f:8b:7c:08:da:1d:61:fd:78:31:53: 0f:7e:a0:0a:83:d2:d4:6b:82:d6:70:1b:e3:a0:a9: 05:c8:45:b2:e3:3c:6a:94:4b:49:ab:d5:0f:e8:66: cb:29:ee:15:f0:77:7a:0a:35:25:1f:03:7a:74:21: fb:4b:e1:c8:43:66:2e:b0:55:17:94:7a:da:0e:72: 3a:75:b3:de:1d:17:d7:cf:12:ae:e4:ab:6f:06:f9: 2f:36:2e:40:91:fd:01:9f:ef:57:60:98:15:d3:48: a5:be:fd:d6:cd:39:ae:1e:d0:ad:6f:1a:ad:18:6a: 43:e6:29:19:c9:28:7e:86:6f:3f:84:db:8d:90:84: ca:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:EE:7C:72:1C:A1:79:58:71:CE:36:4A:83:66:E5:EA:91:CC:73:38 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:a0:11:e6:a8:29:fd:bb:61:70:00:4d:3b:7b:80:17:b3:4f: 3b:0c:c9:b7:d8:00:d2:3b:55:a6:d3:33:cf:11:2d:0c:8c:90: 5a:65:13:44:b2:39:ce:c2:00:3f:41:14:0c:9e:38:55:97:af: 35:c4:0f:c7:1e:1c:12:62:c9:c9:e1:5f:31:bf:39:8f:d7:5e: 1b:a4:94:62:2e:37:33:3e:e1:6f:4d:7b:aa:55:0e:0e:3c:24: c7:27:d4:01:c6:0e:5a:b0:96:3e:f3:7c:57:d2:51:0f:fa:4c: f6:31:f6:fc:7c:40:90:b1:4a:07:9d:ca:6c:d0:44:ec:cc:7f: 1a:2d:89:08:83:de:94:94:bd:ff:34:4f:a2:62:15:d2:d8:2c: 7b:e1:8e:ca:9a:74:f8:11:93:f8:31:09:15:7e:81:0e:cb:ad: e5:20:5c:3b:06:fd:b3:65:9f:3f:e5:2d:67:a5:43:47:ee:e1: 69:98:14:58:83:be:9c:3a:d7:e9:55:cc:18:c7:e0:8a:d0:d8: 70:b5:ad:5c:9f:30:e0:9a:45:1e:f9:9c:f9:18:20:52:9e:83: 7a:b2:20:25:42:5b:86:1d:52:c5:60:61:32:26:e0:02:25:d9: b7:ed:c1:78:fe:e3:34:a3:2e:01:f6:23:b0:14:0c:9a:d3:2a: 4b:c7:15:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWk8MZyfJCsxWtes1mXg+jqSKsbYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwOTIzMDAxMDE2WhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2NlZTdkZTJhNTYzNzA4MDcyZWVkMjcyN2IwNjA5ODFh ZjFmYTNkZmRhNGMxYzYxZjA5MDdkNDBjMjQ4NGRlMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC++EtSf67okRKfjx0b2AFVNODUL03S+RHgeMfqekm+kzb nMEkzets1w4UzWxun7kvGX+5L7C6MB8hYFqG/lvHr5qGmEG0HbemfazEiqZtRIbN FOxq+6pg5EGPfTyxTG3/q6HOVC3GskaT7Ov845oDGlQeNdY7OTHDrPwPi3wI2h1h /XgxUw9+oAqD0tRrgtZwG+OgqQXIRbLjPGqUS0mr1Q/oZssp7hXwd3oKNSUfA3p0 IftL4chDZi6wVReUetoOcjp1s94dF9fPEq7kq28G+S82LkCR/QGf71dgmBXTSKW+ /dbNOa4e0K1vGq0YakPmKRnJKH6Gbz+E242QhMoRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVO58chyheVhxzjZKg2bl6pHMczgwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzA1YmE5Y2E1LWE5YTktNGRlZi05YzcxLTBjZjQ3ZDA2ZmUyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAIygEeaoKf27YXAATTt7gBezTzsM ybfYANI7VabTM88RLQyMkFplE0SyOc7CAD9BFAyeOFWXrzXED8ceHBJiycnhXzG/ OY/XXhuklGIuNzM+4W9Ne6pVDg48JMcn1AHGDlqwlj7zfFfSUQ/6TPYx9vx8QJCx SgedymzQROzMfxotiQiD3pSUvf80T6JiFdLYLHvhjsqadPgRk/gxCRV+gQ7LreUg XDsG/bNlnz/lLWelQ0fu4WmYFFiDvpw61+lVzBjH4IrQ2HC1rVyfMOCaRR75nPkY IFKeg3qyICVCW4YdUsVgYTIm4AIl2bftwXj+4zSjLgH2I7AUDJrTKkvHFT4= -----END CERTIFICATE-----Generated at Wed Oct 8 21:30:04 2025 by rpki-client