$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa File: 4dec765a-fd07-492c-af7f-ec695090cc13.roa (raw, json) Hash identifier: MJN1JHEhaUwlTLPvrqtAMQ+VdxfLuvodxCCLO0JzdLY= Subject key identifier: F6:1A:9A:38:DE:6E:F7:E5:66:30:FD:13:95:64:1A:D8:2C:8B:F2:AD Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 770E16CF660CACD2C0780D161BA59E2AF8C3CCD0 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa Signing time: Sat 18 Oct 2025 00:10:13 +0000 ROA not before: Sat 18 Oct 2025 00:10:13 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:0e:16:cf:66:0c:ac:d2:c0:78:0d:16:1b:a5:9e:2a:f8:c3:cc:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Oct 18 00:10:13 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=2b49ad8e2286218790cd6e31a1e98d63baa9fbe5fd69db4ec52714e013849a36, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5c:94:69:ef:77:02:7d:3b:28:e6:3b:b7:01: 1a:ba:f7:b1:95:a9:c3:f6:6c:2e:99:bb:e3:24:50: f3:be:c2:5b:51:47:7d:fe:9a:fd:cb:24:ae:19:34: ff:ab:5c:36:f0:fb:4f:61:2b:ef:a4:1c:d4:84:2b: 53:35:a7:30:01:70:c2:a0:ff:5f:8e:70:f8:9e:0f: 65:3b:ed:9c:9c:f5:17:0d:65:e7:fb:4b:1a:9c:2a: 5d:b7:37:9f:93:0c:b7:69:de:bf:18:85:33:92:1d: 8b:1c:08:cf:fd:b6:bc:53:1d:d3:f8:4c:9a:8a:87: be:59:09:2d:09:1a:48:2e:20:77:76:99:bb:d7:0b: 06:ad:3a:38:74:03:cd:30:89:7c:67:04:c7:72:f7: 90:d7:30:13:8b:72:f9:0f:04:07:75:cb:bf:6b:ba: 4e:06:32:72:9b:2c:3f:a2:4b:87:45:76:01:b8:80: 25:b0:57:47:1f:17:48:94:d5:64:28:ea:d2:8d:81: 08:17:4e:ea:d6:bf:74:c0:15:7b:c8:e3:7b:7a:7f: 23:7e:e0:ac:a3:5e:78:50:fd:4b:e3:ea:8f:fa:f4: 92:18:c5:4e:ee:50:39:be:e2:23:45:97:bf:04:bc: 35:c9:c1:fb:a6:f1:be:74:0c:70:2b:94:1c:48:3f: 26:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:1A:9A:38:DE:6E:F7:E5:66:30:FD:13:95:64:1A:D8:2C:8B:F2:AD X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4dec765a-fd07-492c-af7f-ec695090cc13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption 03:8e:37:3b:f6:b1:11:df:24:58:00:e2:77:e5:53:41:b0:f8: 64:52:d7:8c:0b:59:31:6d:28:48:9d:86:98:72:a9:52:1a:4a: 60:84:3b:97:56:85:b7:b2:7d:df:28:92:cf:c7:2b:95:06:20: 50:dc:17:ed:05:5b:55:5c:96:6b:4d:db:d8:81:1c:7f:c8:5c: ff:ec:53:a6:1b:1d:9d:66:e6:54:16:13:80:bf:36:90:36:e0: 96:50:d8:48:0f:f2:3b:89:37:30:23:5d:e5:e6:11:f0:e3:68: ba:c3:c1:fd:aa:91:b1:be:bc:06:71:ec:13:c2:cf:6d:4f:78: fa:bd:0e:ff:43:28:6b:9c:24:a9:d2:72:1c:4b:dd:2d:92:ea: 55:04:88:be:e1:50:d1:ff:63:9b:80:26:79:62:e8:fe:b3:9e: c7:20:93:e7:a3:d7:c5:be:c1:39:b9:9a:ea:d0:0d:8e:d7:0d: 67:a1:91:22:2c:3b:c8:fc:33:55:3e:5e:98:75:da:b1:64:db: 09:6e:20:78:61:b2:be:14:d5:c7:38:62:52:ac:12:24:93:37: 60:57:1a:92:1c:db:44:f5:9d:2b:25:48:a7:66:21:80:69:be: e4:eb:2f:59:b7:de:dc:f9:01:d6:b4:55:65:2c:f3:0e:b1:a3: ba:71:04:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdw4Wz2YMrNLAeA0WG6WeKvjDzNAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMDE4MDAxMDEzWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjQ5YWQ4ZTIyODYyMTg3OTBjZDZlMzFhMWU5OGQ2M2Jh YTlmYmU1ZmQ2OWRiNGVjNTI3MTRlMDEzODQ5YTM2MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKXJRp73cCfTso5ju3ARq697GVqcP2bC6Zu+MkUPO+wltR R33+mv3LJK4ZNP+rXDbw+09hK++kHNSEK1M1pzABcMKg/1+OcPieD2U77Zyc9RcN Zef7SxqcKl23N5+TDLdp3r8YhTOSHYscCM/9trxTHdP4TJqKh75ZCS0JGkguIHd2 mbvXCwatOjh0A80wiXxnBMdy95DXMBOLcvkPBAd1y79ruk4GMnKbLD+iS4dFdgG4 gCWwV0cfF0iU1WQo6tKNgQgXTurWv3TAFXvI43t6fyN+4KyjXnhQ/Uvj6o/69JIY xU7uUDm+4iNFl78EvDXJwfum8b50DHArlBxIPyb5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9hqaON5u9+VmMP0TlWQa2CyL8q0wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRkZWM3NjVhLWZkMDctNDkyYy1hZjdmLWVjNjk1MDkwY2MxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBAAOONzv2sRHfJFgA4nflU0Gw+GRS 14wLWTFtKEidhphyqVIaSmCEO5dWhbeyfd8oks/HK5UGIFDcF+0FW1VclmtN29iB HH/IXP/sU6YbHZ1m5lQWE4C/NpA24JZQ2EgP8juJNzAjXeXmEfDjaLrDwf2qkbG+ vAZx7BPCz21PePq9Dv9DKGucJKnSchxL3S2S6lUEiL7hUNH/Y5uAJnli6P6znscg k+ej18W+wTm5murQDY7XDWehkSIsO8j8M1U+Xph12rFk2wluIHhhsr4U1cc4YlKs EiSTN2BXGpIc20T1nSslSKdmIYBpvuTrL1m33tz5Ada0VWUs8w6xo7pxBB0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:14:12 2025 by rpki-client