$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa File: 2dde36c0-2f63-460e-82c0-69cf2908a539.roa (raw, json) Hash identifier: m74/Y7AXPmenm4HcEa34J/O3E1khAnnEthHqbf3xaW8= Subject key identifier: 8B:95:7E:BE:21:4F:8A:F4:04:CD:00:CD:F6:EF:6D:50:DB:3A:0C:45 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 0A8B980060F2B66A852DD7CAFB3B0F7567D3B352 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa Signing time: Sat 18 Oct 2025 00:10:13 +0000 ROA not before: Sat 18 Oct 2025 00:10:13 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8b:98:00:60:f2:b6:6a:85:2d:d7:ca:fb:3b:0f:75:67:d3:b3:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Oct 18 00:10:13 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=b479cb778de38533118321025a022135e2551692264c8b584def357fe3741c2b, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ee:df:21:42:83:d5:f5:a0:15:0a:4e:5e:8b: 82:c9:31:97:67:8e:1c:3c:af:18:32:3e:f9:cf:ae: 9e:04:c3:48:4b:60:48:d5:ee:ed:02:ca:5d:49:d2: 74:ca:fa:37:c7:87:96:42:bf:f5:19:a6:df:80:b1: 27:c1:6d:39:29:31:03:00:34:18:58:db:ab:1b:3b: ca:04:c9:08:5e:49:01:bb:8f:4f:f6:7b:05:de:c3: 8b:ea:83:0f:d5:a5:21:2a:aa:c2:5a:b9:ba:10:a9: b9:b6:13:9c:c6:43:bb:2b:14:c1:76:c3:97:b8:8b: 36:6e:e0:93:b0:24:1f:20:e0:81:db:0a:0a:ff:7c: a1:78:c0:c7:9b:f7:9a:11:c4:21:62:29:e7:bd:92: 77:aa:a1:04:3f:0e:d1:e2:82:10:29:03:28:12:63: 11:13:24:de:91:49:04:a6:89:f8:17:e8:c6:ea:eb: f3:77:a8:f3:39:11:79:4b:a1:25:50:14:6e:0e:d4: ba:7b:ca:46:11:a9:e9:7f:cd:55:0a:70:33:57:79: 06:c1:ce:eb:95:95:cf:20:d5:66:28:32:4c:0d:b1: 8d:ca:c6:b5:57:b6:8d:a8:ff:95:92:8f:cf:ba:42: 8e:c8:fc:a9:ba:4e:71:ec:9a:84:91:fc:82:31:2d: 59:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:95:7E:BE:21:4F:8A:F4:04:CD:00:CD:F6:EF:6D:50:DB:3A:0C:45 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption 90:05:ad:16:03:14:de:58:72:96:48:b3:d0:18:33:7f:e2:4b: 7a:ab:3c:3c:c3:57:91:c3:81:24:7b:cd:d7:02:b0:10:e1:38: a1:25:a7:49:e2:52:a1:ca:0f:1b:10:db:46:48:05:80:2f:70: fa:ca:a3:9d:46:fe:71:f3:11:b5:49:d7:80:73:f3:b8:00:c0: 18:2e:0a:73:02:20:51:fa:f4:96:da:17:fb:66:a6:59:37:00: 8f:35:da:b9:58:dc:d1:b9:03:ac:f2:d9:27:83:25:f7:9b:82: 30:1b:9d:5b:e0:31:54:5a:39:51:5e:af:88:2f:aa:90:05:09: ee:5b:86:c9:ea:40:54:9d:26:9b:75:59:f4:41:c4:b0:98:59: e1:14:4f:b5:e6:e3:05:c1:1b:f6:ec:4e:d9:40:cd:58:ec:db: b1:ad:bc:88:9d:2c:bc:c4:d0:27:20:75:59:b9:3a:93:4c:a2: 61:d0:3d:73:7b:33:39:67:c8:67:c1:82:03:1c:8c:f3:d0:59: de:7c:10:a3:86:eb:c8:6b:a5:1d:49:4a:2d:dd:08:d9:f4:9a: 7e:fd:90:6f:7c:13:e9:e4:a8:ed:41:0f:99:2d:67:59:e0:ff: ae:fb:14:d2:ec:f5:83:87:fa:31:a9:8c:38:69:df:4f:b7:53: 51:f1:27:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCouYAGDytmqFLdfK+zsPdWfTs1IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMDE4MDAxMDEzWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDc5Y2I3NzhkZTM4NTMzMTE4MzIxMDI1YTAyMjEzNWUy NTUxNjkyMjY0YzhiNTg0ZGVmMzU3ZmUzNzQxYzJiMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh7t8hQoPV9aAVCk5ei4LJMZdnjhw8rxgyPvnPrp4Ew0hL YEjV7u0Cyl1J0nTK+jfHh5ZCv/UZpt+AsSfBbTkpMQMANBhY26sbO8oEyQheSQG7 j0/2ewXew4vqgw/VpSEqqsJauboQqbm2E5zGQ7srFMF2w5e4izZu4JOwJB8g4IHb Cgr/fKF4wMeb95oRxCFiKee9kneqoQQ/DtHighApAygSYxETJN6RSQSmifgX6Mbq 6/N3qPM5EXlLoSVQFG4O1Lp7ykYRqel/zVUKcDNXeQbBzuuVlc8g1WYoMkwNsY3K xrVXto2o/5WSj8+6Qo7I/Km6TnHsmoSR/IIxLVnPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi5V+viFPivQEzQDN9u9tUNs6DEUwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzJkZGUzNmMwLTJmNjMtNDYwZS04MmMwLTY5Y2YyOTA4YTUzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBAJAFrRYDFN5YcpZIs9AYM3/iS3qr PDzDV5HDgSR7zdcCsBDhOKElp0niUqHKDxsQ20ZIBYAvcPrKo51G/nHzEbVJ14Bz 87gAwBguCnMCIFH69JbaF/tmplk3AI812rlY3NG5A6zy2SeDJfebgjAbnVvgMVRa OVFer4gvqpAFCe5bhsnqQFSdJpt1WfRBxLCYWeEUT7Xm4wXBG/bsTtlAzVjs27Gt vIidLLzE0CcgdVm5OpNMomHQPXN7MzlnyGfBggMcjPPQWd58EKOG68hrpR1JSi3d CNn0mn79kG98E+nkqO1BD5ktZ1ng/677FNLs9YOH+jGpjDhp30+3U1HxJ78= -----END CERTIFICATE-----Generated at Sun Oct 19 23:19:41 2025 by rpki-client