$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa File: 490da442-9a78-4422-8ee9-ded4482ab131.roa (raw, json) Hash identifier: IgcND4WAlOXI9q2oWF/sTb2vucTB7/bTSUXqjBKi8j0= Subject key identifier: 84:D8:10:47:08:F5:1E:0E:82:77:D5:B6:40:0D:41:A6:87:6D:A5:55 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 36CE254550B2A22C16A507AC786BEE6C4DCFE315 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa Signing time: Tue 23 Sep 2025 00:10:06 +0000 ROA not before: Tue 23 Sep 2025 00:10:06 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ce:25:45:50:b2:a2:2c:16:a5:07:ac:78:6b:ee:6c:4d:cf:e3:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Sep 23 00:10:06 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=dd604354576564a84318cb4e0766ccd012f1108d371d0d840a19cd808f5424aa, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:61:53:81:ce:06:24:7d:ae:2a:43:6a:7c:93: 2f:aa:c8:dc:0c:06:68:cc:ea:4e:7b:8e:15:e4:ae: 49:f6:70:16:fe:71:30:26:39:1c:f3:97:0d:a6:fa: d7:86:28:21:e5:fb:23:23:53:6f:ff:f0:a2:07:2f: 53:18:39:f5:f4:7e:fd:bf:82:79:23:65:80:72:78: a3:b1:ce:72:39:60:2f:2e:8e:06:91:64:06:b2:56: b3:b0:01:eb:aa:c3:75:b4:c0:3f:c9:e5:05:9e:31: 24:ee:4a:e8:ad:0d:9a:eb:ed:ba:43:9d:7b:8c:8f: 6a:d0:a6:cd:f9:91:25:2b:0e:69:e6:83:2c:07:8d: c1:62:a2:17:1e:f9:6f:d7:4a:26:35:e1:0f:3d:50: f1:39:41:3b:e2:31:ed:46:64:c4:2b:91:75:f8:02: 9e:75:21:79:3a:3d:cd:97:a2:5f:46:22:9c:15:a4: 2a:a6:d4:50:51:f7:33:64:ba:ac:5f:53:6f:96:55: 77:98:75:f4:73:78:a5:6a:ea:29:99:83:af:f7:cb: 0a:9d:fb:94:73:a8:a1:79:9e:e2:2f:4f:3b:46:2f: 53:8c:60:9b:33:07:09:79:8d:08:97:79:30:ef:af: aa:11:37:91:c1:78:79:2a:d4:a6:e7:70:45:c5:df: db:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D8:10:47:08:F5:1E:0E:82:77:D5:B6:40:0D:41:A6:87:6D:A5:55 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 94:83:3e:7b:2c:34:66:6c:5c:a2:5f:5b:c8:d9:4f:07:c5:e9: 19:6d:d9:3e:ea:ab:28:ac:94:65:01:a1:f5:3b:90:f4:c0:ef: de:31:9c:42:5f:33:21:21:10:93:4f:96:d1:c3:6c:ff:d8:55: 5e:75:55:c1:a1:5f:ce:c8:29:f6:60:c5:46:75:d8:c2:83:00: d3:d8:68:39:8f:2d:d7:7f:af:07:b7:5e:36:ef:6d:be:11:90: 74:b1:b0:e6:b4:b8:9b:71:a9:85:12:71:27:10:ee:35:c8:92: c6:8c:1e:fc:39:bf:15:48:b4:a3:f1:57:aa:81:40:8b:d7:a7: 0e:01:fe:76:e5:e7:3c:89:82:83:4c:a4:09:7c:7b:8a:7e:68: a9:e5:ba:df:3d:2a:81:9e:a3:65:ac:8a:2c:68:91:ad:0f:b5: df:81:c1:97:2d:8d:ae:44:ce:de:22:2c:26:64:83:4a:43:15: 70:9e:e1:69:68:c0:e2:d3:7d:e0:38:4a:68:c2:2d:91:4d:62: cc:ac:e5:b8:ab:1b:86:3b:27:71:d5:e2:6f:2f:26:dc:f2:51: 14:8b:d2:90:61:c4:b0:ff:5d:12:3c:47:67:47:cd:7b:73:08: ef:14:61:83:c3:6f:74:db:8b:44:87:fe:c4:16:bc:14:d6:30: 30:64:76:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNs4lRVCyoiwWpQeseGvubE3P4xUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwOTIzMDAxMDA2WhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDYwNDM1NDU3NjU2NGE4NDMxOGNiNGUwNzY2Y2NkMDEy ZjExMDhkMzcxZDBkODQwYTE5Y2Q4MDhmNTQyNGFhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7YVOBzgYkfa4qQ2p8ky+qyNwMBmjM6k57jhXkrkn2cBb+ cTAmORzzlw2m+teGKCHl+yMjU2//8KIHL1MYOfX0fv2/gnkjZYByeKOxznI5YC8u jgaRZAayVrOwAeuqw3W0wD/J5QWeMSTuSuitDZrr7bpDnXuMj2rQps35kSUrDmnm gywHjcFiohce+W/XSiY14Q89UPE5QTviMe1GZMQrkXX4Ap51IXk6Pc2Xol9GIpwV pCqm1FBR9zNkuqxfU2+WVXeYdfRzeKVq6imZg6/3ywqd+5RzqKF5nuIvTztGL1OM YJszBwl5jQiXeTDvr6oRN5HBeHkq1KbncEXF39vRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhNgQRwj1Hg6Cd9W2QA1BpodtpVUwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzQ5MGRhNDQyLTlhNzgtNDQyMi04ZWU5LWRlZDQ0ODJhYjEzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAJSDPnssNGZsXKJfW8jZTwfF6Rlt 2T7qqyislGUBofU7kPTA794xnEJfMyEhEJNPltHDbP/YVV51VcGhX87IKfZgxUZ1 2MKDANPYaDmPLdd/rwe3Xjbvbb4RkHSxsOa0uJtxqYUScScQ7jXIksaMHvw5vxVI tKPxV6qBQIvXpw4B/nbl5zyJgoNMpAl8e4p+aKnlut89KoGeo2Wsiixoka0Ptd+B wZctja5Ezt4iLCZkg0pDFXCe4WlowOLTfeA4SmjCLZFNYsys5birG4Y7J3HV4m8v JtzyURSL0pBhxLD/XRI8R2dHzXtzCO8UYYPDb3Tbi0SH/sQWvBTWMDBkdv0= -----END CERTIFICATE-----Generated at Wed Oct 8 19:42:53 2025 by rpki-client