$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa File: ca3490d0-1e9e-400b-af5e-b8236be17139.roa (raw, json) Hash identifier: APYfWvu1xFC9Ovi89ocbMQkJz/K5ZW5SzDboNtulz48= Subject key identifier: 14:07:57:76:59:82:FC:CC:BD:66:C0:32:0D:55:D0:B1:46:1C:E4:6C Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 59E0DB51B98EEB34C93B34AC793C4A61875595A2 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa Signing time: Mon 19 May 2025 18:52:07 +0000 ROA not before: Mon 19 May 2025 18:52:07 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e0:db:51:b9:8e:eb:34:c9:3b:34:ac:79:3c:4a:61:87:55:95:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 19 18:52:07 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=d33ff5a2b8a666ad6dfd502fc7d284f92bc15f0475211b896499c1a7a3ac7f61, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:65:df:8f:9f:4d:a7:18:6f:02:a1:cf:f0:f9: 4e:59:67:98:1c:bd:46:0d:50:e9:65:13:4b:9c:86: f3:68:61:fe:15:2f:bb:0c:02:05:59:8d:35:bb:6b: 32:ab:53:07:7b:2e:3c:cf:91:87:48:95:5c:49:c0: 1c:3d:3c:9e:20:29:31:1e:c9:4e:3e:53:18:e3:7a: 81:fa:cb:3b:7e:40:90:fd:f6:03:07:09:31:17:8d: f1:57:a5:ad:5a:25:a2:32:e7:c0:fa:f0:ae:cb:af: cb:73:7d:12:3e:69:6b:7f:d0:f8:18:8b:7b:e4:ba: 16:8b:5b:27:c8:1b:54:20:67:c7:89:a2:84:7e:33: 68:fb:11:c0:f9:8b:71:ce:6e:8c:0d:27:81:38:f0: b9:eb:b2:0c:2f:28:57:91:f3:b1:3c:86:1d:07:20: 93:9a:26:20:da:f6:11:c2:5e:fd:87:1f:bd:01:00: ee:64:f0:f6:ae:84:a4:62:c7:3c:54:4c:50:ae:a8: ac:1e:c3:11:44:d4:06:9b:50:67:e0:19:10:5f:85: b2:6d:48:59:a3:71:4a:b8:21:6a:90:2e:2c:23:3e: af:a7:9b:ee:78:a3:fc:94:62:cc:a4:da:a9:90:bc: 0b:ac:e0:42:6c:37:23:2f:e2:5d:05:03:41:c5:40: 9e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:07:57:76:59:82:FC:CC:BD:66:C0:32:0D:55:D0:B1:46:1C:E4:6C X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 3e:97:ad:04:d9:09:29:75:3f:02:af:ec:87:c4:5a:6e:47:a6: f4:37:4a:29:5e:59:5c:28:47:a0:14:71:03:dc:d8:0d:c4:51: 54:14:4e:51:06:05:d2:3c:c6:f4:00:9e:fc:ca:ae:3e:f8:6c: 89:f3:d0:45:a0:28:de:a8:1d:a8:40:ab:f1:14:6a:46:d5:3c: 11:d3:5c:bb:5b:33:02:df:63:70:3c:8f:b1:c9:f3:18:d7:b7: 0a:05:95:87:3b:41:fd:d3:d6:06:89:9b:90:7f:3a:27:94:1a: 6b:7b:fd:7d:1f:dd:1c:35:54:e7:16:3a:ab:d1:73:2b:97:7a: 52:23:a4:9f:6d:77:2e:df:99:13:ec:78:1d:c4:2c:7e:ae:c6: 8d:d4:97:20:d5:b5:54:97:72:e1:fb:ab:a1:c6:02:78:41:b6: ec:78:75:41:bc:d9:d9:55:3f:dd:0b:bf:10:f5:1b:95:67:b0: 2a:ec:a2:6f:1f:4a:19:a9:ac:6b:17:6f:ec:38:85:56:5c:f0: 45:79:12:79:30:d5:f5:40:b9:9c:17:5a:fb:1e:de:09:0a:4d: c7:6b:ad:b8:e6:ca:1b:30:ee:09:6c:cb:db:0e:27:0c:18:03: 77:a0:6c:dd:51:d9:e0:26:9b:87:cc:dc:8c:14:18:16:7b:17: 02:b4:93:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWeDbUbmO6zTJOzSseTxKYYdVlaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNTE5MTg1MjA3WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzNmZjVhMmI4YTY2NmFkNmRmZDUwMmZjN2QyODRmOTJi YzE1ZjA0NzUyMTFiODk2NDk5YzFhN2EzYWM3ZjYxMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkZd+Pn02nGG8Coc/w+U5ZZ5gcvUYNUOllE0uchvNoYf4V L7sMAgVZjTW7azKrUwd7LjzPkYdIlVxJwBw9PJ4gKTEeyU4+UxjjeoH6yzt+QJD9 9gMHCTEXjfFXpa1aJaIy58D68K7Lr8tzfRI+aWt/0PgYi3vkuhaLWyfIG1QgZ8eJ ooR+M2j7EcD5i3HObowNJ4E48LnrsgwvKFeR87E8hh0HIJOaJiDa9hHCXv2HH70B AO5k8PauhKRixzxUTFCuqKwewxFE1AabUGfgGRBfhbJtSFmjcUq4IWqQLiwjPq+n m+54o/yUYsyk2qmQvAus4EJsNyMv4l0FA0HFQJ59AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFAdXdlmC/My9ZsAyDVXQsUYc5GwwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2NhMzQ5MGQwLTFlOWUtNDAwYi1hZjVlLWI4MjM2YmUxNzEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAD6XrQTZCSl1PwKv7IfEWm5HpvQ3 SileWVwoR6AUcQPc2A3EUVQUTlEGBdI8xvQAnvzKrj74bInz0EWgKN6oHahAq/EU akbVPBHTXLtbMwLfY3A8j7HJ8xjXtwoFlYc7Qf3T1gaJm5B/OieUGmt7/X0f3Rw1 VOcWOqvRcyuXelIjpJ9tdy7fmRPseB3ELH6uxo3UlyDVtVSXcuH7q6HGAnhBtux4 dUG82dlVP90LvxD1G5VnsCrsom8fShmprGsXb+w4hVZc8EV5Enkw1fVAuZwXWvse 3gkKTcdrrbjmyhsw7glsy9sOJwwYA3egbN1R2eAmm4fM3IwUGBZ7FwK0k4s= -----END CERTIFICATE-----Generated at Wed Jun 4 10:34:01 2025 by rpki-client