$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa File: fd96e119-2761-4573-bdad-0f464228899f.roa (raw, json) Hash identifier: Wz7XbhhqPvn+ys2gVAPuZoADzuwoztitjFF28sFf9CM= Subject key identifier: 22:26:E1:C2:67:4B:A5:4B:0B:D3:0E:76:F3:4C:A8:67:FA:2B:73:D7 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 2E20154D947C73721488CD84317A7E357B50C620 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa Signing time: Mon 19 May 2025 18:52:08 +0000 ROA not before: Mon 19 May 2025 18:52:08 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 401654 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:20:15:4d:94:7c:73:72:14:88:cd:84:31:7a:7e:35:7b:50:c6:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: May 19 18:52:08 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=c87d97f36cfd679fee2e527dba9ad0022a7913b7bef9fb186550bb4d55de8ed7, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:43:e7:e1:77:d7:63:a3:9e:40:09:ca:27:13: a0:16:6b:f2:37:70:88:c6:e1:6b:0c:3b:30:86:63: 35:5a:21:42:54:5b:aa:73:d0:53:21:96:a6:8a:74: 71:47:a5:92:3a:31:f9:5b:34:e2:29:4a:da:46:1c: 2c:15:04:31:15:2e:40:02:70:69:e1:7b:f5:1e:90: 3d:1a:31:70:91:d1:f3:0f:03:29:00:32:0e:9a:fc: a3:69:50:cd:05:1c:14:bb:3c:28:01:9c:e6:b6:e8: fc:35:08:2c:cf:64:97:31:8c:5e:e5:37:43:3a:26: dd:87:b3:b7:6b:59:ad:d5:34:e3:f8:79:c7:c0:08: 04:12:56:b6:de:a1:b0:37:40:76:0e:38:2f:34:db: c9:06:40:be:78:b6:2b:e7:25:be:d3:fa:c3:fc:1a: 1c:aa:14:40:45:7b:16:2a:ab:1d:d9:e4:bc:17:8b: 93:8a:00:5a:b8:d6:df:3f:dc:e0:46:f6:26:8f:29: 2c:87:70:65:57:c1:53:f1:62:c2:36:a2:00:51:c8: 99:dc:ec:79:b7:dc:54:5c:5f:ba:16:d0:c8:96:d4: f3:54:19:4d:f4:1a:a1:b4:72:fb:23:8a:f7:66:1e: cf:f2:76:1b:95:b4:6d:dc:c5:9f:1d:2e:15:7c:08: ce:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:26:E1:C2:67:4B:A5:4B:0B:D3:0E:76:F3:4C:A8:67:FA:2B:73:D7 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/fd96e119-2761-4573-bdad-0f464228899f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 81:8d:fa:f5:bb:4b:d9:2f:2a:6f:98:cf:14:e8:29:aa:d4:b5: f6:9d:7e:c3:f1:71:61:b1:e0:aa:d5:61:f6:6a:18:d4:d7:dd: 23:b4:c9:23:97:79:cb:6b:33:57:7a:ad:04:3e:cd:30:ef:06: ba:be:34:95:32:21:03:ec:ed:45:7b:57:41:ef:bd:fe:bb:bf: 4d:93:d3:43:31:d9:6e:3d:b1:b8:97:c9:01:df:f1:95:ae:65: 41:82:2a:d1:d1:97:7f:bf:9d:51:19:e5:1d:e5:73:02:70:2a: 2c:29:69:f7:15:a3:e9:39:db:50:12:38:b7:ce:4e:73:7b:41: a9:65:b4:e4:69:9e:01:09:6c:0f:c6:9f:50:df:78:a2:89:ef: 3b:9d:63:6c:49:52:f8:d3:e4:bf:c5:a7:64:70:a1:88:ae:74: 47:82:97:68:ef:3a:5b:43:53:38:0e:23:54:f7:be:1a:09:06: e3:7e:85:22:48:b6:5c:d7:8e:00:c3:c4:47:e6:7e:d6:54:75: 5c:60:bf:6d:59:7f:76:bc:ca:f0:af:5b:79:6e:bf:c1:78:bf: 62:37:f0:97:67:3d:01:11:80:96:d3:1c:f0:d3:d8:2d:32:a5: 73:f2:9b:03:84:22:1f:b6:be:a8:22:11:5f:39:73:b7:8a:3d: 35:27:8e:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULiAVTZR8c3IUiM2EMXp+NXtQxiAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNTE5MTg1MjA4WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjODdkOTdmMzZjZmQ2NzlmZWUyZTUyN2RiYTlhZDAwMjJh NzkxM2I3YmVmOWZiMTg2NTUwYmI0ZDU1ZGU4ZWQ3MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXQ+fhd9djo55ACconE6AWa/I3cIjG4WsMOzCGYzVaIUJU W6pz0FMhlqaKdHFHpZI6MflbNOIpStpGHCwVBDEVLkACcGnhe/UekD0aMXCR0fMP AykAMg6a/KNpUM0FHBS7PCgBnOa26Pw1CCzPZJcxjF7lN0M6Jt2Hs7drWa3VNOP4 ecfACAQSVrbeobA3QHYOOC8028kGQL54tivnJb7T+sP8GhyqFEBFexYqqx3Z5LwX i5OKAFq41t8/3OBG9iaPKSyHcGVXwVPxYsI2ogBRyJnc7Hm33FRcX7oW0MiW1PNU GU30GqG0cvsjivdmHs/ydhuVtG3cxZ8dLhV8CM5dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIibhwmdLpUsL0w5280yoZ/orc9cwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2ZkOTZlMTE5LTI3NjEtNDU3My1iZGFkLTBmNDY0MjI4ODk5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAIGN+vW7S9kvKm+YzxToKarUtfad fsPxcWGx4KrVYfZqGNTX3SO0ySOXectrM1d6rQQ+zTDvBrq+NJUyIQPs7UV7V0Hv vf67v02T00Mx2W49sbiXyQHf8ZWuZUGCKtHRl3+/nVEZ5R3lcwJwKiwpafcVo+k5 21ASOLfOTnN7QalltORpngEJbA/Gn1DfeKKJ7zudY2xJUvjT5L/Fp2RwoYiudEeC l2jvOltDUzgOI1T3vhoJBuN+hSJItlzXjgDDxEfmftZUdVxgv21Zf3a8yvCvW3lu v8F4v2I38JdnPQERgJbTHPDT2C0ypXPymwOEIh+2vqgiEV85c7eKPTUnjo4= -----END CERTIFICATE-----Generated at Sat Jun 7 17:26:46 2025 by rpki-client