$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa File: 84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa (raw, json) Hash identifier: kbCx9Oe1P+cyMyblbFuQ+ePcjKClMv1dp5C/DbVl8tE= Subject key identifier: 0D:CE:48:4F:43:09:81:87:B1:25:95:83:0E:F5:E9:AF:B1:07:6D:8D Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 4ADCB8C00FBD48B41486F6FA56B6A6C5151B1BD8 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa Signing time: Mon 04 Aug 2025 15:00:18 +0000 ROA not before: Mon 04 Aug 2025 15:00:18 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:dc:b8:c0:0f:bd:48:b4:14:86:f6:fa:56:b6:a6:c5:15:1b:1b:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Aug 4 15:00:18 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=d599e72a3191a81b3e736fbc7474c1e5c881b5b095a90a7e2a72209d42435a81, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b4:c8:5a:ab:65:7f:28:23:41:7a:cd:57:1f: 5b:11:8f:fe:c6:ad:a8:37:ae:84:d1:50:f1:e3:57: a8:9d:c0:20:e6:e5:22:4e:ea:81:a5:b9:99:60:0a: b6:ec:37:3b:26:ea:48:c3:06:fd:7f:61:66:89:32: 2a:2e:4c:22:9b:cd:f6:a2:f6:75:5e:5d:a4:a7:01: 96:49:37:dc:52:19:0a:8f:7e:e2:04:40:be:2c:75: af:93:74:74:05:54:a3:78:e7:f0:76:0f:aa:5e:7d: 30:af:79:6c:2b:e6:56:7a:71:38:81:ee:07:f8:e5: be:02:f1:7f:0f:bc:68:1c:5f:57:b6:1a:ae:64:d4: f5:ac:77:8f:2f:3d:37:7f:04:1d:59:62:d4:e9:01: 4c:e5:9b:94:bd:24:a3:b7:85:f4:f1:12:67:a9:85: eb:f4:ec:18:ee:1e:9a:f6:33:df:0d:de:bf:60:f1: 05:0b:49:bd:34:b4:af:f7:d5:fd:e7:3f:d0:f4:f7: 17:5c:c9:38:67:23:06:e8:94:6b:51:05:7a:0a:7e: 3e:d0:07:38:85:0c:ba:a3:3b:43:c3:70:1c:95:d3: 43:e8:2f:e0:40:c7:ff:23:e5:78:79:5a:b0:4a:e1: 13:74:eb:18:b2:b7:92:4b:99:66:58:8c:df:54:69: da:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CE:48:4F:43:09:81:87:B1:25:95:83:0E:F5:E9:AF:B1:07:6D:8D X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.102.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:ca:7e:86:74:12:1b:19:6d:d2:ef:a7:56:b0:88:81:13:30: 46:a2:06:e5:59:c8:5e:84:2f:92:4a:09:a0:77:80:0c:a4:34: 32:25:30:2a:13:dc:e9:93:e6:09:0a:f0:29:f2:55:5c:a8:82: 32:fa:84:49:c7:5b:f0:8a:08:0d:d3:b8:71:39:90:e3:34:83: c0:71:25:ec:42:40:0c:dd:5a:1a:13:42:18:42:ed:17:d3:8b: 75:72:68:ab:d8:30:78:a3:56:2c:67:bf:a2:61:29:91:99:4b: e4:ac:a0:31:23:a4:b0:0d:1a:cd:84:14:90:7b:a7:6e:73:e3: 87:e6:f7:cf:06:2c:72:b2:07:cf:73:18:5a:ce:df:fa:12:64: af:a4:22:0b:3c:74:ae:c3:63:4a:78:5e:1c:3d:20:a9:9b:8a: f0:8d:25:c5:c9:46:9a:05:ff:06:83:57:4a:93:fd:d7:a5:6d: b7:b6:23:47:de:47:2c:e8:6a:97:43:c6:4b:bd:b5:59:e3:7b: 5b:b1:8e:f2:5b:e9:9d:fe:6e:2a:d5:68:77:ef:15:c9:01:ee: a0:d4:62:fb:d8:66:30:9c:56:fd:97:ce:e7:e8:2f:67:03:bc: 55:ba:dd:29:b2:8f:db:03:42:07:d7:01:de:74:19:d5:6b:c9: 85:05:ec:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSty4wA+9SLQUhvb6VramxRUbG9gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwODA0MTUwMDE4WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTk5ZTcyYTMxOTFhODFiM2U3MzZmYmM3NDc0YzFlNWM4 ODFiNWIwOTVhOTBhN2UyYTcyMjA5ZDQyNDM1YTgxMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0tMhaq2V/KCNBes1XH1sRj/7Grag3roTRUPHjV6idwCDm 5SJO6oGluZlgCrbsNzsm6kjDBv1/YWaJMiouTCKbzfai9nVeXaSnAZZJN9xSGQqP fuIEQL4sda+TdHQFVKN45/B2D6pefTCveWwr5lZ6cTiB7gf45b4C8X8PvGgcX1e2 Gq5k1PWsd48vPTd/BB1ZYtTpAUzlm5S9JKO3hfTxEmephev07BjuHpr2M98N3r9g 8QULSb00tK/31f3nP9D09xdcyThnIwbolGtRBXoKfj7QBziFDLqjO0PDcByV00Po L+BAx/8j5Xh5WrBK4RN06xiyt5JLmWZYjN9UadrPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDc5IT0MJgYexJZWDDvXpr7EHbY0wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzg0ZmEyMzYwLWI5YzYtNDdiZC04NWRjLWJlMzdjZjUyMDVjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWYwDQYJKoZIhvcNAQELBQADggEBAI3KfoZ0EhsZbdLvp1awiIETMEai BuVZyF6EL5JKCaB3gAykNDIlMCoT3OmT5gkK8CnyVVyogjL6hEnHW/CKCA3TuHE5 kOM0g8BxJexCQAzdWhoTQhhC7RfTi3VyaKvYMHijVixnv6JhKZGZS+SsoDEjpLAN Gs2EFJB7p25z44fm988GLHKyB89zGFrO3/oSZK+kIgs8dK7DY0p4Xhw9IKmbivCN JcXJRpoF/waDV0qT/delbbe2I0feRyzoapdDxku9tVnje1uxjvJb6Z3+birVaHfv FckB7qDUYvvYZjCcVv2XzufoL2cDvFW63Smyj9sDQgfXAd50GdVryYUF7PE= -----END CERTIFICATE-----Generated at Thu Aug 21 18:53:39 2025 by rpki-client