$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa File: 05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa (raw, json) Hash identifier: tM4dtxf5TpAzCDMbETz5eWDUj1tCP3qQGVTF7zF933M= Subject key identifier: 3D:B3:15:3F:F0:80:E7:DB:6A:8D:82:39:D3:10:5F:28:DE:71:9E:34 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 364A512C91F2DE23038BDFA3E6A130AB9DFB9953 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa Signing time: Mon 04 Aug 2025 15:00:15 +0000 ROA not before: Mon 04 Aug 2025 15:00:15 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:4a:51:2c:91:f2:de:23:03:8b:df:a3:e6:a1:30:ab:9d:fb:99:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:15 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=07cedc1e78d7c1ce8ff2f21becf7e9235184b24909d6ba6e897ac47073df17f2, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c1:16:56:4d:a6:bb:18:11:2a:ab:14:dc:e0: 87:d9:0d:6d:33:e4:7d:4a:99:44:61:97:6f:fc:6f: a9:e7:0c:fb:17:b3:d9:18:40:b4:97:73:3d:27:86: 86:f9:26:83:2d:0c:b2:22:ee:14:aa:5a:ae:59:de: 8a:5e:e6:64:53:31:99:2e:4f:4a:2b:be:74:6d:f2: 43:32:68:cd:e1:2e:d1:fc:16:0f:aa:31:86:5a:55: 93:e2:17:69:4c:96:8a:64:61:39:ae:4d:03:dc:f3: bc:0e:21:e2:53:9a:e2:c9:e3:06:a5:eb:45:7a:62: b2:e8:da:01:89:61:ed:88:83:bd:65:0d:fa:5a:94: 14:2d:05:39:25:4b:7c:b3:25:9a:43:a3:cc:43:9d: 50:c1:f3:94:dd:f4:7b:f5:d1:2f:e7:ef:fc:55:be: e8:81:26:bd:06:1e:41:9a:d1:f9:12:18:26:9b:47: d8:85:ba:d3:be:0e:56:1e:09:94:e3:df:7a:3f:39: 58:af:0e:ae:ec:96:85:37:fd:46:1b:15:96:e3:22: bb:59:cf:22:22:22:2e:85:6d:d0:5d:b6:0f:db:6f: ac:8a:bc:ef:c1:ad:29:5e:c9:a8:40:9f:32:26:3c: b7:2f:28:92:7c:f0:21:9f:81:90:91:a8:9d:32:bf: 64:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B3:15:3F:F0:80:E7:DB:6A:8D:82:39:D3:10:5F:28:DE:71:9E:34 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/05ba9ca5-a9a9-4def-9c71-0cf47d06fe22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:dc:5f:9c:29:77:68:2a:1b:54:e4:44:a5:74:3d:8c:17:76: 10:4e:c5:11:f6:dd:97:a2:d9:f7:21:13:33:b6:80:73:71:3b: 06:4b:8e:a5:f3:08:89:02:1b:1c:87:ea:2e:2e:99:dd:64:57: 2d:96:c4:04:9f:a1:37:2a:12:46:f8:c7:b3:34:c6:d2:76:d1: e1:3e:bd:f9:5e:f4:38:5e:f0:d4:72:59:78:65:5a:86:7e:cd: d5:ee:04:04:27:a1:ed:24:6d:db:15:b0:43:18:b0:65:38:1a: 35:1c:d2:98:8a:bd:dd:40:16:5b:ef:63:28:00:43:47:8a:1b: bc:37:77:94:7d:f8:bb:de:80:f5:d0:f9:13:5c:8c:c2:04:10: 35:b9:24:87:17:46:20:b8:f9:b5:ef:4e:fc:d3:de:41:67:fb: 07:d9:69:9e:b3:49:a3:ad:1c:95:1c:d5:e3:1f:16:1a:36:75: 59:91:13:99:4b:1b:87:ff:8b:1d:a1:95:e3:26:6e:4e:55:91: 79:34:53:20:fc:32:08:04:67:ee:99:be:54:1e:2d:91:8f:23: d7:2e:f6:d0:48:30:d3:63:4a:06:3d:0a:0c:84:fb:c5:0f:56: 40:01:c9:60:33:1f:67:a9:53:87:ba:1d:02:d2:65:71:bf:96: e3:23:63:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNkpRLJHy3iMDi9+j5qEwq537mVMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDE1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwN2NlZGMxZTc4ZDdjMWNlOGZmMmYyMWJlY2Y3ZTkyMzUx ODRiMjQ5MDlkNmJhNmU4OTdhYzQ3MDczZGYxN2YyMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnwRZWTaa7GBEqqxTc4IfZDW0z5H1KmURhl2/8b6nnDPsX s9kYQLSXcz0nhob5JoMtDLIi7hSqWq5Z3ope5mRTMZkuT0orvnRt8kMyaM3hLtH8 Fg+qMYZaVZPiF2lMlopkYTmuTQPc87wOIeJTmuLJ4wal60V6YrLo2gGJYe2Ig71l DfpalBQtBTklS3yzJZpDo8xDnVDB85Td9Hv10S/n7/xVvuiBJr0GHkGa0fkSGCab R9iFutO+DlYeCZTj33o/OVivDq7sloU3/UYbFZbjIrtZzyIiIi6FbdBdtg/bb6yK vO/BrSleyahAnzImPLcvKJJ88CGfgZCRqJ0yv2TfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPbMVP/CA59tqjYI50xBfKN5xnjQwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzA1YmE5Y2E1LWE5YTktNGRlZi05YzcxLTBjZjQ3ZDA2ZmUyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAI/cX5wpd2gqG1TkRKV0PYwXdhBO xRH23Zei2fchEzO2gHNxOwZLjqXzCIkCGxyH6i4umd1kVy2WxASfoTcqEkb4x7M0 xtJ20eE+vfle9Dhe8NRyWXhlWoZ+zdXuBAQnoe0kbdsVsEMYsGU4GjUc0piKvd1A FlvvYygAQ0eKG7w3d5R9+LvegPXQ+RNcjMIEEDW5JIcXRiC4+bXvTvzT3kFn+wfZ aZ6zSaOtHJUc1eMfFho2dVmRE5lLG4f/ix2hleMmbk5VkXk0UyD8MggEZ+6ZvlQe LZGPI9cu9tBIMNNjSgY9CgyE+8UPVkAByWAzH2epU4e6HQLSZXG/luMjY8M= -----END CERTIFICATE-----Generated at Thu Aug 21 18:52:03 2025 by rpki-client