$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa File: 4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa (raw, json) Hash identifier: dNcgHoxpUat6/6qJt+AsnILJJ5ICMITS9h+/SKKIuJA= Subject key identifier: B6:A5:2F:BB:D6:AB:1E:24:65:27:80:5A:EF:CE:86:C4:B0:6C:E8:08 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 7A83B8D07DD0F9655B76239E7AD3CFC677AC4974 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa Signing time: Mon 04 Aug 2025 15:00:13 +0000 ROA not before: Mon 04 Aug 2025 15:00:13 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:83:b8:d0:7d:d0:f9:65:5b:76:23:9e:7a:d3:cf:c6:77:ac:49:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:13 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=4cb283cef1aba665aadd30854c6effc438bbd9231973d06b093b74869dd754ad, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:98:3f:7a:85:29:a3:11:bf:c1:83:d4:8d:5e: df:a1:35:e6:4a:b5:ce:1f:4a:04:42:f0:4d:f8:05: 75:3b:1f:51:a3:7e:6f:27:97:9d:d7:63:73:37:7f: 59:14:b0:96:e9:fd:7b:48:27:c1:fb:65:a0:7b:c0: 40:3c:97:88:bb:38:2e:53:e0:26:ac:3f:52:2f:5a: ab:5a:8e:fa:9f:43:f3:07:5d:81:05:52:9b:9b:d3: 54:59:53:3a:55:f1:ae:9e:4d:2c:8f:c7:2c:3a:87: 7d:73:63:4d:5b:7d:09:16:61:5d:6e:b0:3c:73:a7: e6:c1:06:13:d7:55:fc:3c:ff:92:97:a0:55:0a:ef: b7:a7:7d:f3:1b:c7:65:4e:11:70:8a:6c:19:b8:bf: 8f:ab:bb:a7:fd:d9:27:c4:1a:56:3c:fe:33:b3:fd: 5a:86:8d:de:e3:b4:21:a9:45:e3:be:43:dc:78:62: 4c:1d:9d:5c:05:0d:01:6c:27:4b:67:03:46:4c:e8: 55:88:04:17:dd:0d:5d:2a:af:36:a1:5f:ea:e1:f5: 77:fa:e4:f2:8e:cc:10:71:32:05:84:c6:03:e4:81: 49:10:3b:63:fd:ae:09:c7:81:d1:6a:f0:9d:c7:87: 45:d5:85:11:78:43:d5:81:b2:13:ac:d1:c1:82:9b: 0e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A5:2F:BB:D6:AB:1E:24:65:27:80:5A:EF:CE:86:C4:B0:6C:E8:08 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 77:6b:54:3d:2a:1d:79:34:6a:45:57:b8:8a:d3:a9:51:e0:1e: e9:ba:44:c4:87:41:fe:4c:98:8b:0b:54:dd:56:be:c0:c1:be: 42:5d:a9:20:6a:eb:1c:78:65:1a:cd:c7:c8:be:9f:97:8e:a8: c6:d4:ff:74:9f:ae:70:63:9e:94:b5:4a:a9:94:1a:f5:a1:19: 74:7e:17:e2:31:32:c5:ab:d1:e3:be:3c:1d:94:5d:5d:3f:72: 2f:a1:d6:c0:17:0a:a2:70:2c:4f:9e:9b:e9:44:5a:4b:27:ac: ae:ae:31:1c:c7:ca:c1:5e:87:86:2a:8b:fd:4a:62:5f:d5:4e: c0:4e:50:84:b3:65:a6:16:a9:a1:ef:2c:fc:f7:d5:25:af:3c: e3:ca:97:c7:ea:bf:04:22:ed:c1:fe:90:83:9c:f3:71:bd:b0: 80:42:fd:27:f0:32:3f:32:c6:a4:45:aa:25:e1:d9:fe:a4:4a: 17:64:81:93:e9:ef:83:fa:c9:7a:24:6c:b6:17:0a:f2:84:66: fa:57:7e:fc:d1:cd:92:be:89:fb:6f:77:fe:10:d2:9d:ab:16: c9:b6:7f:eb:ae:78:7f:25:54:3b:b4:32:d4:f2:e8:37:aa:cb: c4:5b:a9:f6:69:f4:a3:4a:64:d0:7c:12:4d:aa:48:d4:17:d8: 00:cb:a6:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeoO40H3Q+WVbdiOeetPPxnesSXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDEzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2IyODNjZWYxYWJhNjY1YWFkZDMwODU0YzZlZmZjNDM4 YmJkOTIzMTk3M2QwNmIwOTNiNzQ4NjlkZDc1NGFkMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrmD96hSmjEb/Bg9SNXt+hNeZKtc4fSgRC8E34BXU7H1Gj fm8nl53XY3M3f1kUsJbp/XtIJ8H7ZaB7wEA8l4i7OC5T4CasP1IvWqtajvqfQ/MH XYEFUpub01RZUzpV8a6eTSyPxyw6h31zY01bfQkWYV1usDxzp+bBBhPXVfw8/5KX oFUK77enffMbx2VOEXCKbBm4v4+ru6f92SfEGlY8/jOz/VqGjd7jtCGpReO+Q9x4 YkwdnVwFDQFsJ0tnA0ZM6FWIBBfdDV0qrzahX+rh9Xf65PKOzBBxMgWExgPkgUkQ O2P9rgnHgdFq8J3Hh0XVhRF4Q9WBshOs0cGCmw51AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtqUvu9arHiRlJ4Ba786GxLBs6AgwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRmOGIzMzJiLWJkOGUtNGY0ZC1iYTVlLWMwZWRkNjRkOTI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAHdrVD0qHXk0akVXuIrTqVHgHum6 RMSHQf5MmIsLVN1WvsDBvkJdqSBq6xx4ZRrNx8i+n5eOqMbU/3SfrnBjnpS1SqmU GvWhGXR+F+IxMsWr0eO+PB2UXV0/ci+h1sAXCqJwLE+em+lEWksnrK6uMRzHysFe h4Yqi/1KYl/VTsBOUISzZaYWqaHvLPz31SWvPOPKl8fqvwQi7cH+kIOc83G9sIBC /SfwMj8yxqRFqiXh2f6kShdkgZPp74P6yXokbLYXCvKEZvpXfvzRzZK+iftvd/4Q 0p2rFsm2f+uueH8lVDu0MtTy6Deqy8RbqfZp9KNKZNB8Ek2qSNQX2ADLpp4= -----END CERTIFICATE-----Generated at Thu Aug 21 18:52:19 2025 by rpki-client