$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa File: aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa (raw, json) Hash identifier: i19CqhuzNMGIsj/rd37jYFj9ljxoW8q+69Cn2Khpt4Y= Subject key identifier: 06:91:F6:C0:F5:F3:AB:63:38:CA:E8:BC:AB:0B:8C:41:6E:A8:7C:29 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 4E1C69EADF9E53A20A73309FD6D899C29210BDA9 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa Signing time: Tue 23 Sep 2025 00:10:04 +0000 ROA not before: Tue 23 Sep 2025 00:10:04 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:1c:69:ea:df:9e:53:a2:0a:73:30:9f:d6:d8:99:c2:92:10:bd:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Sep 23 00:10:04 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=4a4c72d8ad3a6504e8e7fcaa7d3fe77d513459d595786748242b9ffb9b392322, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ad:8f:d5:d6:d5:3b:9a:9b:89:73:ec:0f:5a: 1d:a6:b1:f5:4e:3e:3a:4a:e3:7b:9d:22:39:2a:7e: 36:dd:b5:6d:d2:62:64:bf:01:30:98:8c:86:d6:60: 26:17:4d:78:0b:0a:a1:35:c4:51:d5:c6:e3:1b:b9: 96:25:1a:4a:f0:a2:b9:88:51:e3:51:fb:4d:61:84: 17:09:0a:3d:ec:05:8b:e9:4e:f1:77:fd:37:a2:70: 46:0c:5c:b3:ff:88:61:86:1b:6f:5a:ff:7e:fe:65: 88:7e:0a:89:9f:d6:96:5b:82:64:76:c5:86:0d:e5: ef:15:86:6f:89:4c:88:be:2d:d9:61:38:d4:ec:09: ce:aa:49:bd:43:b2:da:49:d0:fd:68:05:90:bd:36: ba:06:55:0f:d9:3e:15:74:e2:18:a5:ec:10:4f:90: db:c0:4c:fb:f0:a8:85:f5:32:44:e9:f8:95:d9:08: 4e:3f:39:21:61:4a:51:91:13:ae:e8:b3:68:5e:bf: d6:96:05:eb:fe:67:4c:7b:3e:05:d1:ed:ff:af:c8: db:14:83:f5:50:71:cc:4d:a9:05:5a:6a:8c:9d:15: 89:a2:e4:82:2f:1b:d5:cc:7f:77:a6:de:91:41:6b: 9e:67:7e:31:12:44:e6:92:87:40:69:da:5e:f1:47: 50:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:91:F6:C0:F5:F3:AB:63:38:CA:E8:BC:AB:0B:8C:41:6E:A8:7C:29 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.101.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:aa:5c:84:11:de:bc:75:60:e1:47:8e:49:61:ba:1a:7d:26: 4a:1a:df:e3:ed:30:4e:98:4a:d2:59:71:d6:33:c9:79:4b:3a: 40:c0:09:a0:39:89:c4:cc:7e:2d:cb:40:08:b8:cd:33:a9:e4: f5:6b:43:cb:f0:43:24:31:9d:d6:24:a0:47:00:0d:cc:82:27: 29:2d:00:57:ad:84:66:e7:88:33:07:a4:d7:97:ba:b9:c7:dc: f5:39:d0:2f:31:83:ca:aa:fa:74:ec:97:b6:92:40:b6:86:52: c6:e1:23:6c:31:74:ff:45:11:32:02:dd:cd:40:18:c7:11:e7: 04:1f:4b:65:9f:fb:7b:d2:50:a7:b3:38:4d:51:9d:34:75:08: 99:83:66:93:8d:a0:41:1f:95:9f:81:6d:56:f5:1f:44:c4:74: f4:15:b3:4d:68:6d:b8:ee:71:12:0c:6c:19:af:da:21:f2:07: eb:32:4a:0b:fd:3c:40:e0:f9:04:7e:b5:67:36:61:d3:8a:a4: a6:0f:cc:4b:3f:1f:93:51:07:15:64:3b:79:e8:96:03:9c:d5: 4e:27:b8:a0:15:5f:f5:e2:e3:16:3b:ee:9d:6b:95:e0:fc:cc: 1f:97:a7:0a:f3:4a:5b:3a:9a:75:a5:04:dc:e7:a2:62:d6:d0: db:02:aa:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUThxp6t+eU6IKczCf1tiZwpIQvakwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwOTIzMDAxMDA0WhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTRjNzJkOGFkM2E2NTA0ZThlN2ZjYWE3ZDNmZTc3ZDUx MzQ1OWQ1OTU3ODY3NDgyNDJiOWZmYjliMzkyMzIyMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWrY/V1tU7mpuJc+wPWh2msfVOPjpK43udIjkqfjbdtW3S YmS/ATCYjIbWYCYXTXgLCqE1xFHVxuMbuZYlGkrwormIUeNR+01hhBcJCj3sBYvp TvF3/TeicEYMXLP/iGGGG29a/37+ZYh+Comf1pZbgmR2xYYN5e8Vhm+JTIi+Ldlh ONTsCc6qSb1DstpJ0P1oBZC9NroGVQ/ZPhV04hil7BBPkNvATPvwqIX1MkTp+JXZ CE4/OSFhSlGRE67os2hev9aWBev+Z0x7PgXR7f+vyNsUg/VQccxNqQVaaoydFYmi 5IIvG9XMf3em3pFBa55nfjESROaSh0Bp2l7xR1AJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBpH2wPXzq2M4yui8qwuMQW6ofCkwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2FlZDc2ZjE3LTViNDctNGU1Yy1hOWZiLWIwMWM2MWQyM2M4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWUwDQYJKoZIhvcNAQELBQADggEBACqqXIQR3rx1YOFHjklhuhp9Jkoa 3+PtME6YStJZcdYzyXlLOkDACaA5icTMfi3LQAi4zTOp5PVrQ8vwQyQxndYkoEcA DcyCJyktAFethGbniDMHpNeXurnH3PU50C8xg8qq+nTsl7aSQLaGUsbhI2wxdP9F ETIC3c1AGMcR5wQfS2Wf+3vSUKezOE1RnTR1CJmDZpONoEEflZ+BbVb1H0TEdPQV s01obbjucRIMbBmv2iHyB+sySgv9PEDg+QR+tWc2YdOKpKYPzEs/H5NRBxVkO3no lgOc1U4nuKAVX/Xi4xY77p1rleD8zB+XpwrzSls6mnWlBNznomLW0NsCqtQ= -----END CERTIFICATE-----Generated at Thu Oct 9 01:18:59 2025 by rpki-client