$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa File: 4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa (raw, json) Hash identifier: 9Xe9jyVrdsOnFwuXpAFeQLuvqUQYP+kS2uYjzUriM58= Subject key identifier: 47:7F:76:A1:A2:19:CB:41:C5:C6:E0:E9:F5:32:06:91:89:BD:91:4F Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 2AD1745E4EA77DD7CFD181219F3F8378D96DFC6D Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa Signing time: Tue 20 May 2025 21:37:13 +0000 ROA not before: Tue 20 May 2025 21:37:13 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d1:74:5e:4e:a7:7d:d7:cf:d1:81:21:9f:3f:83:78:d9:6d:fc:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 20 21:37:13 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=8b7ae5be342aac4026598685becb13b6bdbfbd86c90ee6a93516e854486f4634, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d4:50:cc:0e:0b:68:7e:2d:fb:f2:f8:b9:5f: 15:3e:f4:f0:ef:1a:92:e1:f0:e2:52:a2:55:d0:97: be:90:3c:8c:10:1f:ac:ce:7c:54:80:5e:cd:27:8f: 93:e5:53:e1:46:fc:2b:bf:69:e6:2c:14:2c:e9:04: f7:2d:fa:1c:22:eb:14:72:38:da:57:e5:0b:04:07: 6e:6d:a1:b0:cb:10:6d:31:d0:9d:ad:8e:ff:a1:08: b2:10:f2:d3:01:36:56:35:15:07:9e:6d:33:f7:2b: 12:bb:c0:e2:4b:8a:8b:70:1c:e7:11:4e:7d:72:07: 6d:fd:c4:f1:9d:6e:6e:0e:30:7a:13:6b:79:26:67: ea:36:12:51:9f:ed:1f:9c:c6:0c:9e:90:6c:76:8e: 1a:53:cb:28:73:c1:70:96:92:7d:9e:2a:a3:17:22: c3:7b:9e:a6:7c:28:2f:ba:a2:51:b9:ea:7f:42:c7: 52:62:2f:79:5b:d9:3a:89:3c:a8:93:8a:d8:b5:4c: e1:f3:55:3c:33:58:42:8e:7b:98:ac:af:7c:aa:5d: ed:ca:6a:73:a6:da:dd:00:d2:d6:e7:6a:56:97:ec: 3c:97:9c:1f:61:81:27:69:f0:90:7f:af:59:20:1d: 3d:7e:b2:08:71:15:45:3c:5c:55:ab:6b:6a:9e:ac: eb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7F:76:A1:A2:19:CB:41:C5:C6:E0:E9:F5:32:06:91:89:BD:91:4F X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 15:d5:90:e6:50:d4:91:17:70:3e:8e:da:17:69:3b:22:b8:6f: 5a:26:70:58:e1:90:f4:d0:74:3e:d3:07:5d:41:0e:28:91:a2: df:34:50:2c:36:c7:f1:71:b9:e6:43:4d:99:d0:d2:3b:90:ce: a7:21:ef:68:5b:d4:dc:12:69:e8:dc:49:c5:c1:c2:9e:f6:d9: 2b:a0:5a:e9:6a:d1:72:98:aa:9c:ea:4c:76:98:70:a1:67:ff: 8f:bd:e4:41:5e:a5:5d:ac:c2:ff:99:d4:b1:c2:79:de:57:b4: c7:a5:82:3c:24:96:d6:46:5e:42:2a:13:92:35:bd:75:79:19: 3e:7d:a1:e9:4a:36:6b:b3:92:fd:52:42:3e:e8:90:86:4b:2e: c1:0f:b4:20:a7:be:8f:0a:55:5d:a5:6e:9e:b1:5f:94:c0:6f: 1f:9c:29:ac:d0:ef:31:f7:c2:0b:64:0c:fd:69:f2:73:1e:62: 25:db:d6:4b:b1:5b:0c:ab:44:2e:4c:91:23:a6:8b:3d:cc:88: 8d:13:cf:27:70:64:ff:42:9d:cb:0f:35:54:3d:eb:d4:9e:73: b4:3f:60:92:8d:44:53:74:b0:a2:d9:b5:87:23:de:56:ab:1f: 99:ac:32:58:fc:7e:e8:b2:76:fa:39:25:d8:0e:7d:54:06:e6: 1c:6e:40:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKtF0Xk6nfdfP0YEhnz+DeNlt/G0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNTIwMjEzNzEzWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjdhZTViZTM0MmFhYzQwMjY1OTg2ODViZWNiMTNiNmJk YmZiZDg2YzkwZWU2YTkzNTE2ZTg1NDQ4NmY0NjM0MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ1FDMDgtofi378vi5XxU+9PDvGpLh8OJSolXQl76QPIwQ H6zOfFSAXs0nj5PlU+FG/Cu/aeYsFCzpBPct+hwi6xRyONpX5QsEB25tobDLEG0x 0J2tjv+hCLIQ8tMBNlY1FQeebTP3KxK7wOJLiotwHOcRTn1yB239xPGdbm4OMHoT a3kmZ+o2ElGf7R+cxgyekGx2jhpTyyhzwXCWkn2eKqMXIsN7nqZ8KC+6olG56n9C x1JiL3lb2TqJPKiTiti1TOHzVTwzWEKOe5isr3yqXe3KanOm2t0A0tbnalaX7DyX nB9hgSdp8JB/r1kgHT1+sghxFUU8XFWra2qerOspAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR392oaIZy0HFxuDp9TIGkYm9kU8wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRmOGIzMzJiLWJkOGUtNGY0ZC1iYTVlLWMwZWRkNjRkOTI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBABXVkOZQ1JEXcD6O2hdpOyK4b1om cFjhkPTQdD7TB11BDiiRot80UCw2x/FxueZDTZnQ0juQzqch72hb1NwSaejcScXB wp722SugWulq0XKYqpzqTHaYcKFn/4+95EFepV2swv+Z1LHCed5XtMelgjwkltZG XkIqE5I1vXV5GT59oelKNmuzkv1SQj7okIZLLsEPtCCnvo8KVV2lbp6xX5TAbx+c KazQ7zH3wgtkDP1p8nMeYiXb1kuxWwyrRC5MkSOmiz3MiI0TzydwZP9CncsPNVQ9 69Sec7Q/YJKNRFN0sKLZtYcj3larH5msMlj8fuiydvo5JdgOfVQG5hxuQM8= -----END CERTIFICATE-----Generated at Fri Jun 6 04:14:03 2025 by rpki-client