$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa File: 84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa (raw, json) Hash identifier: uS+lMAUEuvqQXEECcfQ26SpvdZCO+umjmstzoX/oHH0= Subject key identifier: 62:D3:4A:94:5F:42:A9:E2:87:67:6F:AB:8E:6C:FF:EF:F2:86:91:45 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 6AE547F300167237891C5B07362DB01FB583863E Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa Signing time: Tue 20 May 2025 21:37:08 +0000 ROA not before: Tue 20 May 2025 21:37:08 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:e5:47:f3:00:16:72:37:89:1c:5b:07:36:2d:b0:1f:b5:83:86:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 20 21:37:08 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=2e30988d3a87d6ee6fdec1cf01c430a1aeef8373a9b2e34bfcecf4203e29c5d3, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:59:81:b8:5b:3b:a5:72:e2:4f:91:15:c8:50: d0:21:6d:d5:cd:89:6b:f3:e0:74:70:22:fd:0d:42: 1d:c3:aa:80:88:2f:42:a6:2c:35:9a:df:f4:e9:ea: 26:89:8a:86:b0:ff:d2:39:14:22:14:4e:fc:dd:33: b0:ab:3c:94:c7:a7:88:33:ba:63:1c:3b:e6:d4:98: 21:3a:20:4b:ab:11:d5:81:e1:25:08:aa:13:fa:27: 4b:a3:7b:36:95:e5:9f:16:1b:f9:ae:29:eb:14:29: 7d:d2:55:e1:93:18:89:39:ef:10:42:da:23:6c:91: 33:e6:1f:9f:3f:4c:18:38:56:74:c0:78:53:f0:5f: 7e:82:d2:8c:a2:b9:c7:48:f4:9a:a0:84:3d:fb:df: 72:d1:44:a3:12:92:d6:3b:9f:92:02:2e:04:cc:95: 84:65:d4:fe:b7:db:38:74:2f:6a:19:f6:49:91:67: 20:2a:98:67:4f:1a:22:10:59:37:e4:42:e4:87:a5: dc:ab:0a:c6:01:95:23:cd:fa:38:6a:f7:69:39:e4: 00:b0:b4:bf:c4:b2:43:71:21:51:bd:fd:9f:13:df: 4d:2e:17:39:ff:01:67:45:91:41:32:f9:30:d0:68: 13:e3:5d:dd:57:f0:bf:53:2f:ab:60:64:e0:bb:4d: db:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D3:4A:94:5F:42:A9:E2:87:67:6F:AB:8E:6C:FF:EF:F2:86:91:45 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/84fa2360-b9c6-47bd-85dc-be37cf5205c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.102.0/24 Signature Algorithm: sha256WithRSAEncryption 24:12:a4:a6:ff:91:09:3a:f7:dc:b2:65:02:37:d9:db:56:53: 06:73:4a:7e:cd:41:cf:66:0a:81:66:36:4b:e1:9e:da:b5:cf: b6:8d:8e:14:d5:7d:48:00:4d:2a:5a:7e:df:fa:1b:5f:36:bd: d3:28:a6:30:44:42:f0:8b:24:1a:a8:34:2b:68:8f:22:94:8f: 15:2a:4d:c4:b1:03:1a:64:df:6a:29:2b:16:9a:9f:d5:90:19: ff:6d:78:c7:19:41:24:a1:05:80:a5:c6:8c:7e:a6:2f:f8:24: 35:ef:07:00:ed:2f:b7:bc:1e:05:82:60:4f:29:27:1f:5c:a6: 03:10:35:db:a2:12:2a:7e:91:3b:a2:b4:55:c7:26:ba:be:b4: 33:05:18:03:c6:57:ea:cf:41:f0:08:65:8b:d5:f5:e7:c0:37: 88:ac:22:c1:a9:a1:62:c5:51:41:de:15:35:b9:cf:f8:f7:9b: e4:6e:5d:cd:74:c8:f1:78:6a:da:f8:95:ee:15:cf:89:3e:3d: 65:ba:2c:2c:91:49:ce:00:1e:bf:da:45:d5:78:db:e4:b7:64: aa:93:7a:68:57:77:14:00:16:11:34:13:c5:ba:0d:0e:db:9b: 90:bd:fc:82:d4:f7:f7:08:b6:08:ca:ab:85:c2:01:cc:25:ac: cd:86:98:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUauVH8wAWcjeJHFsHNi2wH7WDhj4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNTIwMjEzNzA4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTMwOTg4ZDNhODdkNmVlNmZkZWMxY2YwMWM0MzBhMWFl ZWY4MzczYTliMmUzNGJmY2VjZjQyMDNlMjljNWQzMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSWYG4WzulcuJPkRXIUNAhbdXNiWvz4HRwIv0NQh3DqoCI L0KmLDWa3/Tp6iaJioaw/9I5FCIUTvzdM7CrPJTHp4gzumMcO+bUmCE6IEurEdWB 4SUIqhP6J0ujezaV5Z8WG/muKesUKX3SVeGTGIk57xBC2iNskTPmH58/TBg4VnTA eFPwX36C0oyiucdI9JqghD3733LRRKMSktY7n5ICLgTMlYRl1P632zh0L2oZ9kmR ZyAqmGdPGiIQWTfkQuSHpdyrCsYBlSPN+jhq92k55ACwtL/EskNxIVG9/Z8T300u Fzn/AWdFkUEy+TDQaBPjXd1X8L9TL6tgZOC7TdtFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYtNKlF9CqeKHZ2+rjmz/7/KGkUUwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzg0ZmEyMzYwLWI5YzYtNDdiZC04NWRjLWJlMzdjZjUyMDVjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWYwDQYJKoZIhvcNAQELBQADggEBACQSpKb/kQk699yyZQI32dtWUwZz Sn7NQc9mCoFmNkvhntq1z7aNjhTVfUgATSpaft/6G182vdMopjBEQvCLJBqoNCto jyKUjxUqTcSxAxpk32opKxaan9WQGf9teMcZQSShBYClxox+pi/4JDXvBwDtL7e8 HgWCYE8pJx9cpgMQNduiEip+kTuitFXHJrq+tDMFGAPGV+rPQfAIZYvV9efAN4is IsGpoWLFUUHeFTW5z/j3m+RuXc10yPF4atr4le4Vz4k+PWW6LCyRSc4AHr/aRdV4 2+S3ZKqTemhXdxQAFhE0E8W6DQ7bm5C9/ILU9/cItgjKq4XCAcwlrM2GmAE= -----END CERTIFICATE-----Generated at Sat Jun 7 04:18:27 2025 by rpki-client