$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa File: fd96e119-2761-4573-bdad-0f464228899f.roa (raw, json) Hash identifier: c8wthrkOpPnHnvAkpqr7NczH41rDxpPOWDnuYQVWT5Q= Subject key identifier: 05:1C:58:E2:AD:CC:42:21:A6:EE:8E:2A:9E:AF:3F:C8:15:0E:5B:D1 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 5739F9DDD2DE827D2F7234F742F639F9D9AFBA35 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa Signing time: Tue 23 Sep 2025 00:10:08 +0000 ROA not before: Tue 23 Sep 2025 00:10:08 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 401654 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:39:f9:dd:d2:de:82:7d:2f:72:34:f7:42:f6:39:f9:d9:af:ba:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Sep 23 00:10:08 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=c0454845fd04b6127babd1ee0c193816b431a6fa11c0bdef8ab69d23ea8e0fd0, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:be:77:cd:93:26:15:fd:ac:33:a6:af:a8:ca: 23:e1:cf:54:e6:40:c9:f5:f5:df:31:c3:33:1e:d0: 4c:b4:2f:57:22:fc:60:68:84:b8:49:e4:84:87:ba: c0:4d:05:6b:f3:b3:2c:3a:6d:26:30:8e:64:77:bc: c1:da:48:c8:f1:34:db:61:b1:2d:8e:57:b8:f0:fd: fe:14:15:ab:6d:39:c2:6e:cf:59:70:5d:44:85:2d: 43:79:2b:5d:8d:85:c0:d2:ed:7e:38:5f:24:41:9c: 1b:67:4e:32:bd:6c:24:6a:49:f8:da:12:6e:d4:7c: 92:e8:a0:69:c7:5b:4c:16:72:eb:a2:fc:27:2c:3b: f0:f7:38:eb:5e:d9:19:83:86:38:f0:45:16:2d:01: 13:71:5a:c9:53:4b:fb:a7:94:68:30:09:f7:4d:cc: 69:b7:42:c4:10:dc:d4:d1:b0:92:e0:16:bc:4a:06: 47:75:ea:dc:66:66:5e:42:93:7a:a0:a2:81:ba:10: 24:70:bd:30:a3:e7:cd:46:f0:73:38:b5:62:2e:c2: 7a:08:0f:ec:a3:06:58:8b:c1:e8:07:43:9f:9f:8d: 86:2e:9f:87:a7:cd:83:72:45:2a:93:a7:d5:f4:c7: 98:62:42:2c:a9:1a:8e:27:f0:36:03:52:a0:04:8d: 68:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:1C:58:E2:AD:CC:42:21:A6:EE:8E:2A:9E:AF:3F:C8:15:0E:5B:D1 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 15:ae:01:d2:26:51:ae:d4:93:54:90:4e:ba:c6:d3:e6:44:d8: cb:e5:02:c4:0c:1f:4b:5e:99:37:f4:b6:e3:5f:14:97:14:c9: be:20:b7:7c:fe:fb:6e:63:fd:52:fd:51:18:b3:4d:ca:1f:2c: 85:48:c4:63:e1:72:7d:1c:ae:3d:d0:8b:38:ed:fc:8c:cb:13: 73:c7:e5:a2:9b:e5:f9:f5:5e:f3:d5:0b:a8:64:fc:ed:89:42: de:48:f2:7d:69:ea:b7:7a:23:2e:eb:22:f3:3d:6c:1e:79:d1: 07:4f:75:df:c9:2d:f5:f8:08:c3:10:a2:21:26:6b:8d:42:84: 67:28:29:e3:0d:27:89:25:d1:28:bb:64:02:c7:27:53:0e:8b: 01:96:9f:f8:94:13:92:9a:31:60:e8:b8:2f:4f:52:36:0a:10: b0:52:be:a6:57:49:1e:77:02:fa:23:20:98:c8:a3:75:0b:ca: bc:ac:69:32:83:86:45:59:47:55:9b:a0:a3:52:87:e5:57:1e: 24:a5:1d:51:49:e1:1c:40:0b:6e:c0:0b:ec:c1:66:be:49:88: b3:bd:e6:5e:94:03:82:c0:29:57:1e:18:e3:b3:1c:8c:d2:de: c8:c2:a0:51:40:94:26:11:06:55:e0:0a:d0:46:24:ad:9a:9d: c9:b8:e1:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVzn53dLegn0vcjT3QvY5+dmvujUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwOTIzMDAxMDA4WhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDQ1NDg0NWZkMDRiNjEyN2JhYmQxZWUwYzE5MzgxNmI0 MzFhNmZhMTFjMGJkZWY4YWI2OWQyM2VhOGUwZmQwMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDyvnfNkyYV/awzpq+oyiPhz1TmQMn19d8xwzMe0Ey0L1ci /GBohLhJ5ISHusBNBWvzsyw6bSYwjmR3vMHaSMjxNNthsS2OV7jw/f4UFattOcJu z1lwXUSFLUN5K12NhcDS7X44XyRBnBtnTjK9bCRqSfjaEm7UfJLooGnHW0wWcuui /CcsO/D3OOte2RmDhjjwRRYtARNxWslTS/unlGgwCfdNzGm3QsQQ3NTRsJLgFrxK Bkd16txmZl5Ck3qgooG6ECRwvTCj581G8HM4tWIuwnoID+yjBliLwegHQ5+fjYYu n4enzYNyRSqTp9X0x5hiQiypGo4n8DYDUqAEjWipAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBRxY4q3MQiGm7o4qnq8/yBUOW9EwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2ZkOTZlMTE5LTI3NjEtNDU3My1iZGFkLTBmNDY0MjI4ODk5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBABWuAdImUa7Uk1SQTrrG0+ZE2Mvl AsQMH0temTf0tuNfFJcUyb4gt3z++25j/VL9URizTcofLIVIxGPhcn0crj3Qizjt /IzLE3PH5aKb5fn1XvPVC6hk/O2JQt5I8n1p6rd6Iy7rIvM9bB550QdPdd/JLfX4 CMMQoiEma41ChGcoKeMNJ4kl0Si7ZALHJ1MOiwGWn/iUE5KaMWDouC9PUjYKELBS vqZXSR53AvojIJjIo3ULyrysaTKDhkVZR1WboKNSh+VXHiSlHVFJ4RxAC27AC+zB Zr5JiLO95l6UA4LAKVceGOOzHIzS3sjCoFFAlCYRBlXgCtBGJK2ancm44eU= -----END CERTIFICATE-----Generated at Thu Oct 9 01:21:54 2025 by rpki-client