$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa File: 2dde36c0-2f63-460e-82c0-69cf2908a539.roa (raw, json) Hash identifier: 9mYnwcFiE9UMPJBBfBeiKZPx8kch0oW+Io8i0Jj5fkw= Subject key identifier: AC:41:C5:95:6B:B0:0A:2C:67:A8:02:1B:89:52:EE:CF:84:0E:51:68 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 05788B904E014EBBE1D2BF3B8E6B3EC5517661FF Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa Signing time: Tue 20 May 2025 21:37:15 +0000 ROA not before: Tue 20 May 2025 21:37:15 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:78:8b:90:4e:01:4e:bb:e1:d2:bf:3b:8e:6b:3e:c5:51:76:61:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 20 21:37:15 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=242614624cd316e7dceb378b058e510498c5ac3cb58793bb6d7a59c8cdd9181a, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0c:6c:d6:4f:aa:f0:2e:ba:98:84:f6:f4:2f: 2d:8d:f8:5d:32:21:6a:ab:ac:64:df:84:78:1e:13: 8c:52:63:f0:bf:b6:01:9a:48:95:72:e8:82:1c:8f: 46:7a:92:24:aa:a8:bb:21:96:df:c6:d1:16:60:e9: db:87:5a:1e:84:5f:54:89:39:9f:13:28:a6:8e:ac: 8a:89:f5:7e:89:fa:ba:0d:93:14:3c:ec:6b:74:46: 39:c0:10:f8:7d:bc:ae:54:80:77:c2:d8:e4:bb:7c: 23:66:98:12:75:61:6c:83:31:2e:b6:cb:26:99:c7: 8d:01:25:f7:16:fc:cc:18:2b:00:1c:7e:3f:c5:91: 7e:9a:17:fe:b3:c1:70:fd:f5:6d:84:cc:9d:f7:17: f2:41:35:0c:0c:7d:71:9d:3c:07:88:ae:cd:f3:80: 30:d3:1b:af:58:00:8d:20:47:5f:95:0e:d6:dc:d6: 3b:99:5c:de:4a:be:12:f6:d6:2d:b5:b1:73:ce:63: 7b:01:ea:cc:14:d8:e3:4e:4c:05:ed:6d:b5:de:ea: d8:97:40:5e:cf:b7:1a:c0:3d:0e:03:c1:1c:25:00: ea:ec:30:8d:5d:13:c6:c5:47:bf:4f:96:9a:ef:65: da:dd:2b:00:ee:bf:2b:43:53:6f:19:d4:17:a6:35: 80:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:41:C5:95:6B:B0:0A:2C:67:A8:02:1B:89:52:EE:CF:84:0E:51:68 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption 70:3b:c1:c2:b2:22:32:b5:3d:b7:32:76:1a:ec:d0:f0:70:a4: a1:ba:b6:0e:ef:d3:00:7a:27:7b:3d:33:db:d8:a6:e7:24:70: 19:9c:54:af:94:27:75:b3:6d:f3:a9:eb:32:aa:dc:74:90:3e: b4:5b:e9:08:02:fa:8c:0a:a0:5b:de:75:d7:1f:78:5b:b8:9f: cb:ed:0c:cf:f7:15:e3:05:a2:fc:66:36:32:b5:95:00:06:9c: 31:78:b0:9c:a9:86:19:58:72:91:e0:51:10:e2:ca:dd:89:a8: 6e:0a:7b:2b:a8:ba:48:d3:bc:a3:86:83:91:f5:0b:51:92:6b: a4:a2:50:2d:f3:f2:27:7a:2d:d7:88:fa:d2:88:45:e5:85:2f: 03:bd:dd:f6:a7:03:1f:32:4c:01:75:f3:d6:0d:fe:0b:53:3a: 94:e3:a0:62:19:1e:bc:45:d4:9a:18:a2:d5:81:e4:6f:83:ea: ce:7a:28:dc:bf:11:29:04:af:4d:74:8d:de:b8:ef:6a:3a:59: 13:ac:ad:2e:42:70:8c:14:dc:9f:a9:54:93:82:e9:fa:99:15: d9:61:4b:22:56:9a:2e:43:6c:06:c8:8f:71:e2:01:b6:1d:31: 78:05:3d:fd:99:5a:a3:3a:6b:6d:d2:21:d6:c4:d4:35:45:52: 4f:96:33:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBXiLkE4BTrvh0r87jms+xVF2Yf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNTIwMjEzNzE1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDI2MTQ2MjRjZDMxNmU3ZGNlYjM3OGIwNThlNTEwNDk4 YzVhYzNjYjU4NzkzYmI2ZDdhNTljOGNkZDkxODFhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzDGzWT6rwLrqYhPb0Ly2N+F0yIWqrrGTfhHgeE4xSY/C/ tgGaSJVy6IIcj0Z6kiSqqLshlt/G0RZg6duHWh6EX1SJOZ8TKKaOrIqJ9X6J+roN kxQ87Gt0RjnAEPh9vK5UgHfC2OS7fCNmmBJ1YWyDMS62yyaZx40BJfcW/MwYKwAc fj/FkX6aF/6zwXD99W2EzJ33F/JBNQwMfXGdPAeIrs3zgDDTG69YAI0gR1+VDtbc 1juZXN5KvhL21i21sXPOY3sB6swU2ONOTAXtbbXe6tiXQF7PtxrAPQ4DwRwlAOrs MI1dE8bFR79PlprvZdrdKwDuvytDU28Z1BemNYBxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrEHFlWuwCixnqAIbiVLuz4QOUWgwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzJkZGUzNmMwLTJmNjMtNDYwZS04MmMwLTY5Y2YyOTA4YTUzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBAHA7wcKyIjK1Pbcydhrs0PBwpKG6 tg7v0wB6J3s9M9vYpuckcBmcVK+UJ3WzbfOp6zKq3HSQPrRb6QgC+owKoFveddcf eFu4n8vtDM/3FeMFovxmNjK1lQAGnDF4sJyphhlYcpHgURDiyt2JqG4KeyuoukjT vKOGg5H1C1GSa6SiUC3z8id6LdeI+tKIReWFLwO93fanAx8yTAF189YN/gtTOpTj oGIZHrxF1JoYotWB5G+D6s56KNy/ESkEr010jd6472o6WROsrS5CcIwU3J+pVJOC 6fqZFdlhSyJWmi5DbAbIj3HiAbYdMXgFPf2ZWqM6a23SIdbE1DVFUk+WM4k= -----END CERTIFICATE-----Generated at Fri Jun 6 18:20:12 2025 by rpki-client