$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa File: b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa (raw, json) Hash identifier: 2Fd1vvXUqI9WNi6xZDNFOFSMsUu5DVOKj4eiBS1nXkA= Subject key identifier: 43:F4:89:78:5D:FF:04:6D:C1:60:1C:D8:D6:58:E6:D7:E2:C6:17:E6 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 2ADD966BF9DBB63A4A7EA624D319B8C73E92E40D Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa Signing time: Tue 23 Sep 2025 00:10:15 +0000 ROA not before: Tue 23 Sep 2025 00:10:15 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:dd:96:6b:f9:db:b6:3a:4a:7e:a6:24:d3:19:b8:c7:3e:92:e4:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Sep 23 00:10:15 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=35d87a141fe713f9c20744c82af0af7e1d05e852f1d8de9f9d5a91b1ec57a6c6, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:44:33:7e:be:69:ac:8b:cd:88:3d:6d:c4:a5: 7e:19:0a:e8:b0:09:2f:7f:7f:d9:ee:af:67:e7:0e: 22:71:eb:43:a3:73:26:89:54:cd:cc:63:5b:ff:95: d6:cc:74:c9:87:3f:ce:f6:fa:49:e4:e3:c5:04:ea: bc:e1:08:fe:56:2c:92:af:b6:78:ed:a0:f4:8e:c1: c8:b5:9a:87:74:60:d4:22:bb:d7:89:3b:b5:c6:71: 23:23:df:53:13:e5:44:50:5a:01:34:fc:99:c8:0a: 1b:57:6a:90:5f:d9:89:ab:c2:ae:39:3c:fc:31:b4: be:84:55:0f:c5:ff:63:9c:3d:1c:22:8d:c6:e7:f8: 9f:cb:e9:3b:9c:bf:1b:85:df:4a:d3:88:4d:f4:c9: 84:d3:48:33:19:55:81:79:95:d8:91:7d:32:da:b5: 99:6d:65:07:5d:43:50:a7:37:da:fb:23:8c:a5:cb: 21:59:fa:d9:3e:25:a3:ef:15:65:1d:76:d5:13:dc: 2a:a2:f6:d4:23:69:94:62:a2:09:e6:04:c3:94:cd: 70:ee:b8:7c:c5:94:8a:39:0e:4f:33:4e:d4:45:30: 69:6f:3e:47:fa:93:63:fb:cb:93:1f:06:1c:0d:d0: 4e:ae:03:4b:f0:f9:95:ba:f3:4f:21:5b:17:05:c9: 5d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F4:89:78:5D:FF:04:6D:C1:60:1C:D8:D6:58:E6:D7:E2:C6:17:E6 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:b1:f2:a9:f1:87:4e:0e:9d:83:67:37:77:02:ed:82:30:c8: 1a:67:22:1f:1a:62:3a:b9:fd:73:e2:88:6a:c6:e0:2b:00:49: 93:98:79:a8:f6:bf:5e:37:4c:78:de:62:8d:38:a3:be:5b:7f: 5a:0c:12:2b:48:e5:a7:64:14:ae:48:2e:8c:7b:1b:b6:42:4b: 06:1b:19:f7:bf:9a:77:6d:b5:d3:3b:c6:2c:d8:f1:ff:a7:5b: 45:b6:b6:ab:7f:4e:05:51:18:37:97:ab:6b:bf:ec:65:c8:65: 2c:96:e3:40:e4:41:e3:6d:4b:ec:56:29:0e:99:37:fc:96:08: a2:75:32:bc:e4:27:fa:c7:a8:a0:8e:50:dc:7b:6d:93:b8:b9: 7d:3c:e1:fb:f0:bc:d3:53:39:01:6b:28:8a:46:88:c3:5a:d8: a5:ad:2e:68:e9:7e:b9:46:95:85:8c:ee:99:43:dd:5c:b8:c8: a8:13:7b:91:67:88:73:0e:1d:22:ce:fa:82:a0:9a:0d:3f:96: 23:9d:35:5c:c7:79:ba:c5:ba:07:ba:b5:aa:53:5e:c0:8d:40: 66:ba:fa:3c:1a:79:30:8b:12:56:78:3f:63:1f:83:a3:ec:7d: c5:f8:14:8a:05:c5:10:ba:e2:91:a9:74:dd:ab:ca:48:a3:9e: 88:c9:44:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKt2Wa/nbtjpKfqYk0xm4xz6S5A0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwOTIzMDAxMDE1WhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWQ4N2ExNDFmZTcxM2Y5YzIwNzQ0YzgyYWYwYWY3ZTFk MDVlODUyZjFkOGRlOWY5ZDVhOTFiMWVjNTdhNmM2MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfRDN+vmmsi82IPW3EpX4ZCuiwCS9/f9nur2fnDiJx60Oj cyaJVM3MY1v/ldbMdMmHP872+knk48UE6rzhCP5WLJKvtnjtoPSOwci1mod0YNQi u9eJO7XGcSMj31MT5URQWgE0/JnIChtXapBf2Ymrwq45PPwxtL6EVQ/F/2OcPRwi jcbn+J/L6TucvxuF30rTiE30yYTTSDMZVYF5ldiRfTLatZltZQddQ1CnN9r7I4yl yyFZ+tk+JaPvFWUddtUT3Cqi9tQjaZRiognmBMOUzXDuuHzFlIo5Dk8zTtRFMGlv Pkf6k2P7y5MfBhwN0E6uA0vw+ZW6808hWxcFyV3LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ/SJeF3/BG3BYBzY1ljm1+LGF+YwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2I0MjI1N2EwLTQ1MDMtNDE0Yy05ZWU2LWMyMGQ0YTNiZjFhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAA6x8qnxh04OnYNnN3cC7YIwyBpn Ih8aYjq5/XPiiGrG4CsASZOYeaj2v143THjeYo04o75bf1oMEitI5adkFK5ILox7 G7ZCSwYbGfe/mndttdM7xizY8f+nW0W2tqt/TgVRGDeXq2u/7GXIZSyW40DkQeNt S+xWKQ6ZN/yWCKJ1MrzkJ/rHqKCOUNx7bZO4uX084fvwvNNTOQFrKIpGiMNa2KWt LmjpfrlGlYWM7plD3Vy4yKgTe5FniHMOHSLO+oKgmg0/liOdNVzHebrFuge6tapT XsCNQGa6+jwaeTCLElZ4P2Mfg6PsfcX4FIoFxRC64pGpdN2rykijnojJRNg= -----END CERTIFICATE-----Generated at Thu Oct 9 01:18:58 2025 by rpki-client