$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa File: 8a0cac28-29b8-4996-b010-5eab278cc342.roa (raw, json) Hash identifier: wpgTnGlR65dJrXWX+LaapqS/Qg83Pe1vxoWFYxreMzg= Subject key identifier: 28:EF:AB:97:75:0A:65:9D:1E:1D:D9:82:E0:7F:18:92:6B:C7:21:1E Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 7E3C8F21D14592DBCEFE365C407F9A0A56AC4B82 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa Signing time: Tue 20 May 2025 21:37:05 +0000 ROA not before: Tue 20 May 2025 21:37:05 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:3c:8f:21:d1:45:92:db:ce:fe:36:5c:40:7f:9a:0a:56:ac:4b:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 20 21:37:05 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=fa6a293960546d0c77621d6bd82741afb5889716c0be0df21686d93ba5390541, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5c:8c:1b:60:ee:4e:fd:b5:43:a2:67:f8:b1: fb:22:dd:f8:ef:3a:fb:61:ed:48:cf:e8:2d:15:5f: ae:0a:ca:00:bc:c1:6d:9d:fb:63:65:2f:d7:72:87: d8:3d:6a:cc:53:0f:ab:9d:b6:98:8f:2d:2f:26:36: 32:7a:95:70:8a:65:9f:f4:fe:32:53:48:67:63:34: 4f:aa:6c:c8:d5:f2:48:d1:c1:2d:67:ff:d5:e3:da: 03:fc:2a:e2:58:60:2a:69:84:f2:d2:4b:5d:e6:eb: 3f:37:30:e0:be:09:47:88:1d:09:b5:03:d2:42:69: 80:b4:f1:b3:d6:5a:0c:a7:12:78:dc:a4:1d:e9:25: 39:19:9f:07:33:f0:e9:57:59:93:b0:09:38:0c:1e: 11:a3:38:f6:0b:5d:66:42:2d:91:40:fd:d7:f4:ef: 81:5d:1d:88:7d:f1:8f:fa:08:d3:26:01:57:aa:88: 06:69:de:4d:bd:64:ca:06:b0:69:f3:2f:08:ff:b0: 4e:0c:7b:25:cf:50:41:de:6a:aa:5e:bb:83:b7:31: 31:74:eb:ec:fe:34:00:28:98:b3:62:97:44:ea:84: f5:1e:58:02:6f:35:db:34:5e:f8:fe:07:24:ab:85: 50:b5:6b:20:ac:06:10:f9:f1:cc:15:73:10:16:83: e3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:EF:AB:97:75:0A:65:9D:1E:1D:D9:82:E0:7F:18:92:6B:C7:21:1E X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption 84:24:3e:f8:e9:cb:a2:da:41:e0:c8:b2:11:6f:08:eb:f8:1a: db:1e:ff:b0:42:46:23:54:0e:b7:1e:54:1e:45:c4:4a:69:32: c6:f9:91:c5:49:6c:14:0a:a0:5c:05:04:dd:28:b4:59:28:6a: 04:7a:e4:27:f8:3c:7b:1e:f6:10:fb:d4:6b:c5:7d:39:cc:b7: 7f:f1:81:a1:10:1e:80:71:a3:78:b7:0e:16:20:38:3a:f2:f2: 0e:61:24:ad:40:c3:07:eb:ef:9c:49:1f:ab:4c:78:09:34:c9: 04:23:80:a0:5d:09:6c:bc:f5:05:94:8d:b5:ee:81:25:3e:2f: 45:49:d8:6f:49:a2:80:2e:4e:fb:d5:dc:be:be:c7:95:d9:c1: d3:e1:43:a7:b6:d0:43:c2:6c:84:e4:d0:53:20:11:c5:f4:89: 13:03:86:20:3d:b3:fb:50:74:67:46:63:b9:10:f3:37:61:56: 4f:4e:0d:fe:1f:31:c7:f8:78:59:bb:37:d9:aa:11:9c:c4:f3: 7f:bf:2a:7e:ad:0c:b2:21:a9:bf:21:c9:a6:d2:b4:02:cb:23: c1:53:bc:1b:91:f7:31:cd:08:e3:a7:7b:62:27:6e:70:87:3c: 4f:ee:16:43:3d:ef:9f:e2:29:c7:52:e9:7b:b1:e6:59:fc:8d: ed:79:80:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfjyPIdFFktvO/jZcQH+aClasS4IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNTIwMjEzNzA1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTZhMjkzOTYwNTQ2ZDBjNzc2MjFkNmJkODI3NDFhZmI1 ODg5NzE2YzBiZTBkZjIxNjg2ZDkzYmE1MzkwNTQxMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoXIwbYO5O/bVDomf4sfsi3fjvOvth7UjP6C0VX64KygC8 wW2d+2NlL9dyh9g9asxTD6udtpiPLS8mNjJ6lXCKZZ/0/jJTSGdjNE+qbMjV8kjR wS1n/9Xj2gP8KuJYYCpphPLSS13m6z83MOC+CUeIHQm1A9JCaYC08bPWWgynEnjc pB3pJTkZnwcz8OlXWZOwCTgMHhGjOPYLXWZCLZFA/df074FdHYh98Y/6CNMmAVeq iAZp3k29ZMoGsGnzLwj/sE4MeyXPUEHeaqpeu4O3MTF06+z+NAAomLNil0TqhPUe WAJvNds0Xvj+BySrhVC1ayCsBhD58cwVcxAWg+MdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKO+rl3UKZZ0eHdmC4H8YkmvHIR4wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzhhMGNhYzI4LTI5YjgtNDk5Ni1iMDEwLTVlYWIyNzhjYzM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAIQkPvjpy6LaQeDIshFvCOv4Gtse /7BCRiNUDrceVB5FxEppMsb5kcVJbBQKoFwFBN0otFkoagR65Cf4PHse9hD71GvF fTnMt3/xgaEQHoBxo3i3DhYgODry8g5hJK1Awwfr75xJH6tMeAk0yQQjgKBdCWy8 9QWUjbXugSU+L0VJ2G9JooAuTvvV3L6+x5XZwdPhQ6e20EPCbITk0FMgEcX0iRMD hiA9s/tQdGdGY7kQ8zdhVk9ODf4fMcf4eFm7N9mqEZzE83+/Kn6tDLIhqb8hyabS tALLI8FTvBuR9zHNCOOne2InbnCHPE/uFkM975/iKcdS6Xux5ln8je15gAc= -----END CERTIFICATE-----Generated at Fri Jun 6 05:16:16 2025 by rpki-client