$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa File: b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa (raw, json) Hash identifier: oTJcRDFYYdv4QYfj5kE0hgS4yNA3P0bqHG+rD6JGNDs= Subject key identifier: BE:0D:49:F0:35:D2:2E:AA:FF:E2:64:3E:BA:C7:D1:E1:2A:84:DB:24 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 71C996E0F9DD0028F7D8A8B24220C75D2CAF8489 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa Signing time: Tue 20 May 2025 21:37:14 +0000 ROA not before: Tue 20 May 2025 21:37:14 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:c9:96:e0:f9:dd:00:28:f7:d8:a8:b2:42:20:c7:5d:2c:af:84:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 20 21:37:14 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=70b2b8c2d1bc9740575c62fb8dc2ec49969bcf590b594282f0c87e1ce5cd6333, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0c:97:f8:08:ae:47:ed:9a:b0:9e:40:1a:57: 89:68:76:91:56:c3:96:94:43:40:55:cc:4f:53:8a: fd:fc:59:6f:8a:14:b4:04:d3:72:08:1d:3a:f2:27: fb:1d:e7:5c:56:6c:97:79:c6:46:bb:cf:58:b7:84: 6e:13:32:d7:fe:f7:d3:84:1c:a5:39:46:1c:de:c2: 31:ff:16:67:a0:3b:4a:dc:b9:f6:56:60:29:13:81: c4:8d:bd:9e:a4:70:e0:44:fd:a0:8d:31:c2:f5:82: 2a:f9:2b:06:9c:fa:b8:da:c5:17:6c:1c:98:64:24: 3e:5d:a4:8e:d4:18:31:aa:a2:bb:70:18:49:6f:e4: a2:6e:09:64:d6:4f:eb:17:d6:e6:4b:d8:ae:6d:5c: c0:bc:98:39:c4:09:0c:2c:a8:5f:b1:74:56:b6:d3: 90:a9:01:c1:7f:30:1e:75:f2:dc:b4:6e:ff:99:94: f4:b5:c3:3e:e9:47:0b:9a:e5:b3:9a:46:b5:5d:3c: 8a:51:9f:99:85:92:4b:59:97:e5:62:dc:ba:2f:c5: b8:3d:00:5e:1f:2c:ac:59:b4:43:cf:33:4e:82:bd: c1:87:6d:b4:a0:67:d5:d3:f3:e5:ca:f0:fc:3d:4a: 2d:48:29:ef:82:64:d2:39:b5:d6:67:d2:36:b4:d2: c6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0D:49:F0:35:D2:2E:AA:FF:E2:64:3E:BA:C7:D1:E1:2A:84:DB:24 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:02:2f:54:c0:e5:12:84:63:ea:55:31:c0:10:f2:c2:1b:6c: 62:d9:3d:ed:ea:39:20:2b:ce:d4:65:12:ad:fd:f1:a4:65:a4: 02:3a:24:5b:7f:91:c8:6d:59:70:aa:2c:a4:27:4e:93:1e:75: 57:ca:d5:3f:a8:ba:89:e2:15:ea:ac:3a:42:71:d2:de:7a:ce: d2:dd:18:b3:08:63:2d:f8:89:55:30:32:fa:c6:c0:72:e7:b8: 73:b7:c2:6a:54:9b:f6:86:ca:ea:e1:92:9c:cd:09:9d:73:77: b7:d0:cc:82:fe:da:48:a4:ca:38:11:cf:42:fc:19:6c:a8:22: a9:e1:22:e3:c7:02:b3:8a:2a:fb:59:9b:c9:3a:7b:17:1b:b9: 24:62:c9:1b:5b:92:cc:27:4e:23:fd:99:df:85:eb:e1:14:23: 9e:5b:7a:8d:17:eb:4f:8e:d3:6e:fa:ff:48:f1:5c:9a:3c:64: 27:2c:fd:91:6d:92:30:48:c5:94:21:8e:7a:01:fa:d6:b2:1d: 54:ae:93:39:f2:1c:08:cf:d8:83:91:b4:a3:1b:84:2e:80:96: c4:4e:05:90:29:db:ad:a7:fe:0b:64:f8:21:1f:d4:d4:41:7a: 85:08:50:63:6d:12:49:4b:d8:b0:6e:b9:7d:55:d7:78:10:79: a9:65:d0:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUccmW4PndACj32KiyQiDHXSyvhIkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNTIwMjEzNzE0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MGIyYjhjMmQxYmM5NzQwNTc1YzYyZmI4ZGMyZWM0OTk2 OWJjZjU5MGI1OTQyODJmMGM4N2UxY2U1Y2Q2MzMzMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+DJf4CK5H7ZqwnkAaV4lodpFWw5aUQ0BVzE9Tiv38WW+K FLQE03IIHTryJ/sd51xWbJd5xka7z1i3hG4TMtf+99OEHKU5RhzewjH/FmegO0rc ufZWYCkTgcSNvZ6kcOBE/aCNMcL1gir5Kwac+rjaxRdsHJhkJD5dpI7UGDGqortw GElv5KJuCWTWT+sX1uZL2K5tXMC8mDnECQwsqF+xdFa205CpAcF/MB518ty0bv+Z lPS1wz7pRwua5bOaRrVdPIpRn5mFkktZl+Vi3Lovxbg9AF4fLKxZtEPPM06CvcGH bbSgZ9XT8+XK8Pw9Si1IKe+CZNI5tdZn0ja00sZRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvg1J8DXSLqr/4mQ+usfR4SqE2yQwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2I0MjI1N2EwLTQ1MDMtNDE0Yy05ZWU2LWMyMGQ0YTNiZjFhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAGwCL1TA5RKEY+pVMcAQ8sIbbGLZ Pe3qOSArztRlEq398aRlpAI6JFt/kchtWXCqLKQnTpMedVfK1T+ouoniFeqsOkJx 0t56ztLdGLMIYy34iVUwMvrGwHLnuHO3wmpUm/aGyurhkpzNCZ1zd7fQzIL+2kik yjgRz0L8GWyoIqnhIuPHArOKKvtZm8k6excbuSRiyRtbkswnTiP9md+F6+EUI55b eo0X60+O0276/0jxXJo8ZCcs/ZFtkjBIxZQhjnoB+tayHVSukznyHAjP2IORtKMb hC6AlsROBZAp262n/gtk+CEf1NRBeoUIUGNtEklL2LBuuX1V13gQeall0Lc= -----END CERTIFICATE-----Generated at Mon Jun 2 16:28:53 2025 by rpki-client