$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa File: e0073d5a-9507-4588-b834-e01ed691ccb6.roa (raw, json) Hash identifier: vTZuKv2XNVIxtCNkGCOyLNbdNNauXssteslSE8ygy3M= Subject key identifier: A3:BA:70:13:6E:F9:C5:56:9B:13:AE:D7:80:EE:1A:78:26:AA:A7:3A Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 6FC0AF0F81FC9C25FF1632FE983AD3061B636D73 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa Signing time: Tue 23 Sep 2025 00:10:21 +0000 ROA not before: Tue 23 Sep 2025 00:10:21 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:c0:af:0f:81:fc:9c:25:ff:16:32:fe:98:3a:d3:06:1b:63:6d:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Sep 23 00:10:21 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=1bef0e599c22ec408de7ec7002c4b75b9f56b89096a6d2d3dff9328afe8c74c4, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:7d:02:20:ea:83:09:1f:af:f3:f9:28:93:62: 2a:e0:6a:aa:72:2e:37:ec:76:68:ef:a4:53:69:e7: 8e:22:a0:54:f6:e8:29:d9:cf:e4:32:ab:13:b9:91: 8a:02:a3:ae:ba:a5:94:8d:c5:25:b3:e1:84:2d:46: 44:76:1b:a2:0d:01:ad:fc:95:75:c1:2c:37:53:47: 57:71:42:92:58:a8:be:fc:e0:ba:91:4c:14:b1:80: ca:5c:35:4a:84:5b:ce:d3:8d:c5:23:cb:ee:3c:7d: f1:d5:2a:b3:74:e2:15:47:c3:f8:65:de:93:33:a1: be:0b:18:8e:ab:07:2e:2c:cc:a2:36:87:cb:f2:3d: cc:76:ad:b7:9c:37:aa:2e:9f:72:e1:24:f2:b1:95: ae:1a:a4:51:21:0b:01:af:75:54:3f:db:d4:e5:0e: 6e:e0:2b:9f:29:27:f3:e5:50:00:64:8d:a7:08:a0: f4:6e:92:54:cd:51:e2:17:d1:6b:3f:03:75:00:c5: 93:8d:12:4a:b4:39:0b:53:64:4d:90:d0:16:cb:c4: cb:3a:8b:66:15:06:7f:11:35:03:54:0f:78:f8:e2: 6c:53:b6:33:a5:d1:61:4e:e0:06:be:51:99:a5:9e: d2:04:50:41:4a:5c:49:11:7f:b1:24:28:6f:02:a5: 56:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BA:70:13:6E:F9:C5:56:9B:13:AE:D7:80:EE:1A:78:26:AA:A7:3A X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/e0073d5a-9507-4588-b834-e01ed691ccb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.102.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:6e:01:14:33:45:f8:5c:d0:05:62:f1:d4:77:d9:ac:ba:9a: 7b:c8:15:3d:b8:fc:95:44:2a:d3:5d:b4:19:78:77:63:7d:d1: b3:39:ef:a2:27:a0:b4:da:82:ec:05:b5:a5:06:42:82:fb:c6: da:24:dd:92:36:fb:d1:7f:03:40:67:d4:c0:07:20:c0:64:1a: 44:e3:e2:b3:76:a7:d8:82:ed:de:d3:54:bd:37:83:a8:e7:29: 4e:d1:e2:da:07:1f:1c:eb:d4:4e:52:5a:2f:af:8f:8d:3e:49: 1f:75:e1:f1:df:60:07:19:bd:9b:df:16:a8:cb:6c:0c:37:52: 6f:62:c3:70:9b:80:cd:d9:c2:24:ae:eb:84:15:8a:8c:21:ef: 63:5d:5b:f8:26:29:47:cb:5e:b5:e6:27:2a:05:ab:a4:de:93: 23:a7:f5:35:cb:24:31:fb:58:40:3f:ff:eb:e5:2a:2c:85:07: 4f:2c:8e:4e:71:86:26:c4:05:a4:da:95:d5:be:76:5e:99:01: 49:6b:74:32:80:a8:8b:81:ec:d0:ae:8b:6b:59:6e:41:b2:84: 3c:22:f1:b8:fa:fd:0e:df:e9:a1:f7:b7:8c:cf:b3:03:c7:4e: 34:e7:a4:72:95:51:52:11:cb:91:64:42:8e:8d:b6:87:ac:67: 40:7c:e6:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb8CvD4H8nCX/FjL+mDrTBhtjbXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwOTIzMDAxMDIxWhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYmVmMGU1OTljMjJlYzQwOGRlN2VjNzAwMmM0Yjc1Yjlm NTZiODkwOTZhNmQyZDNkZmY5MzI4YWZlOGM3NGM0MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6fQIg6oMJH6/z+SiTYirgaqpyLjfsdmjvpFNp544ioFT2 6CnZz+QyqxO5kYoCo666pZSNxSWz4YQtRkR2G6INAa38lXXBLDdTR1dxQpJYqL78 4LqRTBSxgMpcNUqEW87TjcUjy+48ffHVKrN04hVHw/hl3pMzob4LGI6rBy4szKI2 h8vyPcx2rbecN6oun3LhJPKxla4apFEhCwGvdVQ/29TlDm7gK58pJ/PlUABkjacI oPRuklTNUeIX0Ws/A3UAxZONEkq0OQtTZE2Q0BbLxMs6i2YVBn8RNQNUD3j44mxT tjOl0WFO4Aa+UZmlntIEUEFKXEkRf7EkKG8CpVYHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUo7pwE275xVabE67XgO4aeCaqpzowHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2UwMDczZDVhLTk1MDctNDU4OC1iODM0LWUwMWVkNjkxY2NiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWYwDQYJKoZIhvcNAQELBQADggEBAI9uARQzRfhc0AVi8dR32ay6mnvI FT24/JVEKtNdtBl4d2N90bM576InoLTaguwFtaUGQoL7xtok3ZI2+9F/A0Bn1MAH IMBkGkTj4rN2p9iC7d7TVL03g6jnKU7R4toHHxzr1E5SWi+vj40+SR914fHfYAcZ vZvfFqjLbAw3Um9iw3CbgM3ZwiSu64QViowh72NdW/gmKUfLXrXmJyoFq6TekyOn 9TXLJDH7WEA//+vlKiyFB08sjk5xhibEBaTaldW+dl6ZAUlrdDKAqIuB7NCui2tZ bkGyhDwi8bj6/Q7f6aH3t4zPswPHTjTnpHKVUVIRy5FkQo6NtoesZ0B85tA= -----END CERTIFICATE-----Generated at Thu Oct 9 01:23:03 2025 by rpki-client