$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/98c3f9f8-9ee3-4909-8d41-7ac2181f6379.roa File: 98c3f9f8-9ee3-4909-8d41-7ac2181f6379.roa (raw, json) Hash identifier: Fl5cDJ1oz0YJyKifN+tXbaclEC3Mv0Av5NXNlt0kbfs= Subject key identifier: 8E:74:C3:FC:63:07:F0:17:93:67:46:EF:64:7F:71:25:66:DF:C1:AC Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 0D1C3A7EC4444E2905FF7B7DF62F588DDD722E72 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/98c3f9f8-9ee3-4909-8d41-7ac2181f6379.roa Signing time: Tue 23 Sep 2025 00:10:13 +0000 ROA not before: Tue 23 Sep 2025 00:10:13 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:1c:3a:7e:c4:44:4e:29:05:ff:7b:7d:f6:2f:58:8d:dd:72:2e:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Sep 23 00:10:13 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=0f0038dad99dfa95b89dcc2990cd44ea1e90ca9cb9150486b5ee93a6ee2480a9, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1a:d9:31:c8:a5:86:17:db:bf:cb:32:39:eb: 61:cd:c5:1c:bc:24:21:e3:f1:03:b9:68:c1:eb:a9: dd:7c:fb:df:aa:61:43:e6:ed:47:88:74:13:39:d2: 7c:25:66:5a:e5:ea:23:21:eb:6f:cc:a8:a2:f3:f5: e5:a6:2c:e3:33:c3:6e:ac:af:90:65:bd:70:46:df: 36:20:5b:7a:da:90:06:92:ca:35:1e:fc:be:e1:94: f5:d6:7e:9c:d4:f6:2e:84:ff:96:4e:ab:6d:82:88: 5a:fa:d2:a2:ee:4b:ce:c0:65:56:14:3f:34:be:bb: 47:43:6e:a2:3d:0a:4f:03:fb:84:2e:b1:29:5f:28: 40:92:87:4a:83:0c:3d:a1:4a:1f:40:95:24:3d:2f: 31:be:41:3d:75:4c:5b:48:cd:30:e7:4e:04:f5:d4: 9e:6a:17:85:2c:e3:2a:51:24:0d:2d:44:d8:03:e7: 77:d3:a0:2a:70:b8:ff:69:3d:88:78:6a:49:16:ea: 82:64:87:fd:41:83:c2:c7:1b:6b:16:20:d4:06:c1: 4a:70:d0:13:bc:6b:ca:fb:00:1b:1a:fd:5c:58:21: 64:20:76:2b:55:45:5c:9c:a2:3c:77:9e:ef:49:ba: 52:0b:aa:9c:95:65:5e:01:26:56:de:ff:5e:bd:a2: f4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:74:C3:FC:63:07:F0:17:93:67:46:EF:64:7F:71:25:66:DF:C1:AC X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/98c3f9f8-9ee3-4909-8d41-7ac2181f6379.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.97.0/24 Signature Algorithm: sha256WithRSAEncryption 71:cf:62:72:7e:f4:98:22:a4:04:b1:5f:cb:44:b0:7d:e8:f1: 7e:d4:dd:37:11:64:ca:c2:a0:87:dc:9d:10:3b:94:cf:6d:33: b9:95:f7:90:b8:1e:69:5f:a1:68:26:63:77:b5:8e:91:91:ea: b6:6d:95:6c:e7:94:4f:ad:df:3c:32:c7:7d:81:6a:ad:b2:ff: 18:2b:06:d4:89:9c:ed:74:58:5a:ad:69:54:9b:4a:d5:05:7d: dd:f3:ec:ec:7c:b0:02:13:53:e2:c7:c9:2f:96:69:40:1b:1f: 90:a5:a2:0b:29:18:68:c8:92:5f:3f:a3:a4:84:00:89:42:b1: dc:e6:42:14:d5:bb:5c:84:24:aa:0b:d8:00:a6:cd:df:9f:87: 26:55:d3:04:da:b1:a2:ad:b2:cb:56:e6:30:f5:88:08:b9:59: 33:92:bd:4b:4f:5a:4e:c5:1f:74:5f:60:98:33:0b:a8:83:5a: 29:b8:8a:95:dd:dd:b4:a3:d0:c5:09:7f:cd:d9:85:18:2a:1d: 4e:1a:81:b2:82:74:63:22:f3:c1:c3:64:11:0d:a1:b2:12:97: 8c:fc:d5:73:91:4d:f4:0b:3b:98:32:d7:59:9d:86:da:e7:c7: f8:60:8d:e3:5b:e9:a5:3b:57:cd:d3:50:b5:2e:7a:26:ca:96: 8a:d1:bc:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDRw6fsRETikF/3t99i9Yjd1yLnIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwOTIzMDAxMDEzWhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjAwMzhkYWQ5OWRmYTk1Yjg5ZGNjMjk5MGNkNDRlYTFl OTBjYTljYjkxNTA0ODZiNWVlOTNhNmVlMjQ4MGE5MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsGtkxyKWGF9u/yzI562HNxRy8JCHj8QO5aMHrqd18+9+q YUPm7UeIdBM50nwlZlrl6iMh62/MqKLz9eWmLOMzw26sr5BlvXBG3zYgW3rakAaS yjUe/L7hlPXWfpzU9i6E/5ZOq22CiFr60qLuS87AZVYUPzS+u0dDbqI9Ck8D+4Qu sSlfKECSh0qDDD2hSh9AlSQ9LzG+QT11TFtIzTDnTgT11J5qF4Us4ypRJA0tRNgD 53fToCpwuP9pPYh4akkW6oJkh/1Bg8LHG2sWINQGwUpw0BO8a8r7ABsa/VxYIWQg ditVRVycojx3nu9JulILqpyVZV4BJlbe/169ovSFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjnTD/GMH8BeTZ0bvZH9xJWbfwawwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzk4YzNmOWY4LTllZTMtNDkwOS04ZDQxLTdhYzIxODFmNjM3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWEwDQYJKoZIhvcNAQELBQADggEBAHHPYnJ+9JgipASxX8tEsH3o8X7U 3TcRZMrCoIfcnRA7lM9tM7mV95C4HmlfoWgmY3e1jpGR6rZtlWznlE+t3zwyx32B aq2y/xgrBtSJnO10WFqtaVSbStUFfd3z7Ox8sAITU+LHyS+WaUAbH5ClogspGGjI kl8/o6SEAIlCsdzmQhTVu1yEJKoL2ACmzd+fhyZV0wTasaKtsstW5jD1iAi5WTOS vUtPWk7FH3RfYJgzC6iDWim4ipXd3bSj0MUJf83ZhRgqHU4agbKCdGMi88HDZBEN obISl4z81XORTfQLO5gy11mdhtrnx/hgjeNb6aU7V83TULUueibKlorRvHs= -----END CERTIFICATE-----Generated at Thu Oct 9 01:25:15 2025 by rpki-client