$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa File: 4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa (raw, json) Hash identifier: yAkX2WVCR/feJB46s4Kf+bu4hWyz8jLr3s33ayG0PrM= Subject key identifier: 6D:B0:16:88:E0:A3:00:2A:4D:A1:A5:E6:4E:B7:C7:31:43:57:C6:04 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 3A5BF87A3FF7192233582E7EDB10FE09E4A399B4 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa Signing time: Tue 23 Sep 2025 00:10:14 +0000 ROA not before: Tue 23 Sep 2025 00:10:14 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5b:f8:7a:3f:f7:19:22:33:58:2e:7e:db:10:fe:09:e4:a3:99:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Sep 23 00:10:14 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=57e23f82ca6c5aa6f6af898684123306988413248bcc095a2d9169d268f6718a, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2c:59:f9:bb:cd:ae:71:a1:08:0d:5f:f5:18: 87:5d:07:95:01:60:5f:6b:5b:b4:3e:03:80:9f:ba: 47:81:3d:16:11:d5:1a:f3:2f:7f:94:9b:36:73:39: c5:33:3d:76:da:1b:1f:b4:da:3b:9b:44:c0:27:29: 4e:47:79:ab:39:53:d4:62:41:de:4c:20:b1:6c:fd: 25:70:be:84:98:11:f1:cb:3e:cd:6f:c7:dc:b5:ea: d6:82:16:70:71:31:37:8f:34:27:6d:3d:8b:11:ee: e4:b5:9a:22:e6:52:16:12:f4:85:9f:02:af:cf:bb: 74:9a:b8:46:72:f6:e4:b3:6c:7e:b8:2b:18:ea:e1: a1:0d:c3:85:30:08:07:cd:92:6c:7d:5b:e5:28:b1: 38:9c:a0:f7:e6:5b:4b:dd:fe:f8:42:50:11:bf:a1: 0c:e9:c8:99:31:e5:c0:c4:a1:11:d1:3b:ec:87:f6: 77:cb:e9:b8:36:7f:d0:5f:da:81:6d:60:9f:c3:64: 11:a4:1c:87:0f:6c:be:d0:0c:93:ed:58:6a:8e:0b: f2:0e:f0:b4:62:1a:f5:19:b7:bc:ef:20:da:3e:d9: b9:74:2e:77:10:7a:4d:79:8f:d6:4f:92:80:5f:45: b9:7e:79:99:47:83:79:65:cb:2b:36:08:6f:f4:01: 83:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B0:16:88:E0:A3:00:2A:4D:A1:A5:E6:4E:B7:C7:31:43:57:C6:04 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 88:96:42:ac:1f:91:e1:a4:01:31:3c:03:b5:88:40:b6:66:35: 65:23:73:97:96:0c:77:e3:11:c4:e1:29:cd:00:53:77:2f:07: 26:4f:4f:ac:7e:c0:ea:c8:d5:3c:74:ff:4d:7e:6b:77:fe:bd: 89:3d:bd:af:54:b0:80:27:22:d3:80:44:e7:31:7c:21:45:2b: 76:3e:7c:62:cf:74:6e:04:38:c3:ae:7c:27:29:ea:49:3b:d4: 3c:0f:34:c4:f3:d0:b4:05:c1:a4:bf:9c:5b:3f:d1:fe:ee:2a: c6:e2:15:44:3e:6b:3c:a4:83:fa:85:21:ed:c4:d9:2c:7b:e8: 77:03:16:45:17:66:cd:b1:63:0f:46:70:12:04:3a:b0:9a:06: 86:5b:2c:67:d1:7a:85:fc:96:09:66:ca:b6:43:3c:41:f7:54: f3:d5:bd:8f:8f:df:c3:e1:7e:f1:1b:ef:f4:ea:19:42:af:52: c5:d2:df:b0:a9:6c:d3:60:79:81:f2:78:d9:bd:dc:04:ca:b8: 72:36:22:33:48:4a:ff:09:ca:b3:61:35:00:b6:40:8f:6e:55: 57:f9:e8:79:ca:96:a6:82:38:65:b0:56:34:72:c9:25:d2:a7: 21:67:94:41:34:6a:e2:00:58:f0:83:64:8f:78:b2:38:83:f2: e5:fd:b2:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOlv4ej/3GSIzWC5+2xD+CeSjmbQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwOTIzMDAxMDE0WhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2UyM2Y4MmNhNmM1YWE2ZjZhZjg5ODY4NDEyMzMwNjk4 ODQxMzI0OGJjYzA5NWEyZDkxNjlkMjY4ZjY3MThhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3LFn5u82ucaEIDV/1GIddB5UBYF9rW7Q+A4CfukeBPRYR 1RrzL3+UmzZzOcUzPXbaGx+02jubRMAnKU5Heas5U9RiQd5MILFs/SVwvoSYEfHL Ps1vx9y16taCFnBxMTePNCdtPYsR7uS1miLmUhYS9IWfAq/Pu3SauEZy9uSzbH64 Kxjq4aENw4UwCAfNkmx9W+UosTicoPfmW0vd/vhCUBG/oQzpyJkx5cDEoRHRO+yH 9nfL6bg2f9Bf2oFtYJ/DZBGkHIcPbL7QDJPtWGqOC/IO8LRiGvUZt7zvINo+2bl0 LncQek15j9ZPkoBfRbl+eZlHg3llyys2CG/0AYMpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbbAWiOCjACpNoaXmTrfHMUNXxgQwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRmOGIzMzJiLWJkOGUtNGY0ZC1iYTVlLWMwZWRkNjRkOTI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAIiWQqwfkeGkATE8A7WIQLZmNWUj c5eWDHfjEcThKc0AU3cvByZPT6x+wOrI1Tx0/01+a3f+vYk9va9UsIAnItOAROcx fCFFK3Y+fGLPdG4EOMOufCcp6kk71DwPNMTz0LQFwaS/nFs/0f7uKsbiFUQ+azyk g/qFIe3E2Sx76HcDFkUXZs2xYw9GcBIEOrCaBoZbLGfReoX8lglmyrZDPEH3VPPV vY+P38PhfvEb7/TqGUKvUsXS37CpbNNgeYHyeNm93ATKuHI2IjNISv8JyrNhNQC2 QI9uVVf56HnKlqaCOGWwVjRyySXSpyFnlEE0auIAWPCDZI94sjiD8uX9sj0= -----END CERTIFICATE-----Generated at Wed Oct 8 21:30:54 2025 by rpki-client