$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa File: 4dec765a-fd07-492c-af7f-ec695090cc13.roa (raw, json) Hash identifier: YLxvnGH2T70UVOoWQzxitZxwJhkdw4afivmuj3UEA6U= Subject key identifier: 5B:29:29:9E:B4:19:3C:0B:58:85:7A:9A:AF:89:F5:E2:D8:A4:B1:DB Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 46C2FC261E2015F97408F83CC028FC60A40A20FA Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa Signing time: Tue 20 May 2025 21:37:17 +0000 ROA not before: Tue 20 May 2025 21:37:17 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:c2:fc:26:1e:20:15:f9:74:08:f8:3c:c0:28:fc:60:a4:0a:20:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 20 21:37:17 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c72255d9f0606cd4dc9b5d53c6fb4d7a5b1dd2ac2459a9932d5a0e2f4ac93653, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:39:36:67:4d:b9:58:26:a9:08:3e:f5:be:aa: 23:a6:79:0c:5c:76:dc:7b:61:1d:21:4f:f6:f5:44: 10:95:2b:d7:8e:ed:70:25:1a:57:d4:87:2c:79:03: 2c:08:19:c3:e3:77:ea:da:b3:66:86:2c:17:40:27: e2:98:7e:38:da:b1:23:b3:f4:50:08:17:cb:1a:ca: 91:4d:41:cf:f9:bd:9f:75:ba:04:14:99:a4:1d:48: 3e:de:13:b0:1b:8e:89:e2:ee:52:70:69:79:bc:f7: 9e:94:ae:dd:31:9b:2e:1b:36:28:43:ef:5d:30:ba: 97:88:0b:e3:41:a9:49:fb:7f:32:6f:55:0b:a4:92: 0c:92:93:55:f4:96:52:6f:74:99:06:eb:fc:7f:27: 98:08:9b:3b:20:6c:f2:b4:7d:58:50:19:19:65:94: 7b:40:2a:c2:9a:5a:c2:3a:5f:f7:e4:7a:ae:fa:74: 74:27:f4:f6:e2:45:34:41:21:86:91:ec:f2:1e:c2: 70:a5:2c:45:ab:34:20:78:ce:ec:21:42:4c:aa:42: b3:a4:07:77:5f:17:5a:63:ca:76:24:61:8e:26:46: fe:56:32:39:99:87:68:82:ca:be:fa:bb:d9:69:f5: c9:37:45:34:0a:13:92:ce:6b:f5:85:7d:2b:58:54: 38:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:29:29:9E:B4:19:3C:0B:58:85:7A:9A:AF:89:F5:E2:D8:A4:B1:DB X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption ae:80:8a:50:32:a0:67:0e:0e:71:13:47:fe:23:ef:49:e4:68: bc:6c:60:00:e0:5d:01:3d:3a:d2:35:a1:fe:f5:7f:90:98:d7: 87:f6:34:4c:e8:86:ae:79:14:98:8f:32:d5:e4:2a:80:34:63: 77:ea:39:8c:11:87:43:45:5e:29:74:e5:ee:b9:08:2f:22:f2: 51:7a:91:ab:01:bb:b2:7c:c1:b9:12:5a:19:dd:f1:dc:67:03: ac:23:d2:fc:31:36:6d:92:07:85:92:8f:09:9e:25:69:b9:bd: d7:6e:41:5f:5e:e7:82:80:1c:0a:e6:eb:b1:e0:7e:2b:15:29: 8e:91:3d:d2:29:8f:ee:67:fa:69:a9:bc:40:7f:15:2c:6d:89: 33:5d:85:40:d9:cd:26:c3:ef:a1:0a:44:bd:85:52:71:1d:e7: c1:c2:9d:d7:d1:33:b0:86:18:93:1e:ef:58:5e:70:97:78:a6: e2:47:b7:a7:2f:e4:ae:af:a0:13:80:bf:86:cf:60:b5:09:e4: d0:63:e9:a7:87:b0:43:bb:4f:49:21:fb:36:e4:5b:04:8b:46: 56:7d:c5:57:90:40:01:2a:f1:0a:14:ec:ea:c4:34:2a:92:80: e4:65:cf:86:0e:ae:bc:25:16:b7:36:cc:7c:eb:60:e7:fa:ee: b2:31:3d:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURsL8Jh4gFfl0CPg8wCj8YKQKIPowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNTIwMjEzNzE3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzIyNTVkOWYwNjA2Y2Q0ZGM5YjVkNTNjNmZiNGQ3YTVi MWRkMmFjMjQ1OWE5OTMyZDVhMGUyZjRhYzkzNjUzMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtOTZnTblYJqkIPvW+qiOmeQxcdtx7YR0hT/b1RBCVK9eO 7XAlGlfUhyx5AywIGcPjd+ras2aGLBdAJ+KYfjjasSOz9FAIF8saypFNQc/5vZ91 ugQUmaQdSD7eE7Abjoni7lJwaXm8956Urt0xmy4bNihD710wupeIC+NBqUn7fzJv VQukkgySk1X0llJvdJkG6/x/J5gImzsgbPK0fVhQGRlllHtAKsKaWsI6X/fkeq76 dHQn9PbiRTRBIYaR7PIewnClLEWrNCB4zuwhQkyqQrOkB3dfF1pjynYkYY4mRv5W MjmZh2iCyr76u9lp9ck3RTQKE5LOa/WFfStYVDh5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWykpnrQZPAtYhXqar4n14tiksdswHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRkZWM3NjVhLWZkMDctNDkyYy1hZjdmLWVjNjk1MDkwY2MxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBAK6AilAyoGcODnETR/4j70nkaLxs YADgXQE9OtI1of71f5CY14f2NEzohq55FJiPMtXkKoA0Y3fqOYwRh0NFXil05e65 CC8i8lF6kasBu7J8wbkSWhnd8dxnA6wj0vwxNm2SB4WSjwmeJWm5vdduQV9e54KA HArm67HgfisVKY6RPdIpj+5n+mmpvEB/FSxtiTNdhUDZzSbD76EKRL2FUnEd58HC ndfRM7CGGJMe71hecJd4puJHt6cv5K6voBOAv4bPYLUJ5NBj6aeHsEO7T0kh+zbk WwSLRlZ9xVeQQAEq8QoU7OrENCqSgORlz4YOrrwlFrc2zHzrYOf67rIxPWk= -----END CERTIFICATE-----Generated at Mon Jun 2 16:30:26 2025 by rpki-client