$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa File: 4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa (raw, json) Hash identifier: 6tz2WoYEgJdALlaW9L6WAI5quBxS5hVl7KGt1Bb3eMg= Subject key identifier: A8:68:D2:38:67:9A:42:98:5B:DF:B0:9F:80:75:D5:40:C6:18:02:12 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 0320F137A16C29903A750E1E5594EAE446784EF0 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa Signing time: Sat 18 Oct 2025 00:10:12 +0000 ROA not before: Sat 18 Oct 2025 00:10:12 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:20:f1:37:a1:6c:29:90:3a:75:0e:1e:55:94:ea:e4:46:78:4e:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Oct 18 00:10:12 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=47c994745f9444645f659c772c654dd7bb138f0b2847b602073e7839f8a841ca, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4f:72:3f:b5:46:66:a7:98:bd:9d:3f:77:75: 80:16:11:37:9b:ab:88:7c:28:f9:41:88:7a:5f:e0: 43:0d:3b:9b:a3:81:40:31:d7:fc:7e:bc:69:5f:82: cb:a3:c2:77:dd:b7:1a:2a:27:e1:33:93:9b:d5:52: 4a:d8:8f:e3:4d:06:79:e0:e0:89:c3:3b:c7:6a:de: 1a:7b:89:b6:a8:1e:47:ad:cb:68:07:5f:fb:cf:18: 4f:a9:fc:56:fd:56:ff:ac:78:c3:0b:d6:cf:b8:19: 0d:be:0d:c1:9e:b9:08:43:f8:60:0c:4a:1d:c3:b6: f4:d1:59:03:66:d8:0e:b8:6e:f2:96:a5:6c:14:2f: 57:f9:21:d9:cc:69:23:a1:84:a5:05:ab:fd:d9:09: 14:72:47:4f:d7:4b:ab:d3:54:8b:30:ed:2d:5c:44: 81:06:6b:54:d3:1a:df:24:13:53:6a:fe:a8:97:db: fc:27:3d:da:a7:82:11:17:80:2c:c1:6c:99:b4:d5: 2f:74:d7:24:0d:c3:70:e6:76:09:3d:8e:71:db:48: a5:b3:9b:24:92:d0:ec:8d:9a:d1:84:bb:e4:6a:ff: 2e:eb:39:d9:77:12:8d:bf:36:4f:5d:23:c3:98:22: c8:ed:1c:a1:3c:b9:a6:83:5b:4f:3a:2d:4b:90:79: 64:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:68:D2:38:67:9A:42:98:5B:DF:B0:9F:80:75:D5:40:C6:18:02:12 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/4f8b332b-bd8e-4f4d-ba5e-c0edd64d9250.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 42:87:cb:cd:06:21:59:ac:b7:91:7c:af:4d:4c:e8:01:9f:d0: 1f:8c:81:38:ee:45:38:61:0a:e3:1d:8e:98:bb:de:c3:dc:41: 6a:8a:69:f3:2c:d5:3e:c1:fa:de:14:96:9c:b7:b4:02:20:8b: 34:58:b9:31:87:95:18:78:1e:03:a8:1e:84:57:d9:6f:d3:c5: 62:0c:23:8f:3f:27:fb:f5:38:ef:59:ab:66:d7:ae:7d:a5:8f: 5d:26:56:d2:3e:1c:c3:74:6e:d7:03:21:34:f7:c6:0e:46:0d: 9c:93:ac:d5:84:0c:c3:3b:f8:54:8d:9e:14:24:b7:ec:1e:c4: 73:fe:8e:42:0d:99:78:6c:31:b4:89:d1:e8:30:20:c4:a0:f8: 47:8a:7a:1c:d2:4e:20:04:04:c1:7d:8e:35:af:6d:63:83:ab: 0d:22:9c:90:c0:30:b5:41:3c:1a:2a:1b:e8:76:bf:b6:96:6d: 37:72:1a:0a:98:28:a3:fe:69:a8:93:39:74:87:81:b3:cf:18: 71:3f:ae:60:d0:a1:96:37:d1:75:1e:3f:17:a8:69:61:0b:ae: eb:a6:02:d8:08:7f:4b:aa:34:23:a8:e6:0c:f9:e4:86:51:a8: e9:5e:4f:65:67:3a:92:0a:f0:50:f3:b4:df:17:ae:61:5a:30: d7:e3:f8:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAyDxN6FsKZA6dQ4eVZTq5EZ4TvAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMDE4MDAxMDEyWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2M5OTQ3NDVmOTQ0NDY0NWY2NTljNzcyYzY1NGRkN2Ji MTM4ZjBiMjg0N2I2MDIwNzNlNzgzOWY4YTg0MWNhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBT3I/tUZmp5i9nT93dYAWETebq4h8KPlBiHpf4EMNO5uj gUAx1/x+vGlfgsujwnfdtxoqJ+Ezk5vVUkrYj+NNBnng4InDO8dq3hp7ibaoHket y2gHX/vPGE+p/Fb9Vv+seMML1s+4GQ2+DcGeuQhD+GAMSh3DtvTRWQNm2A64bvKW pWwUL1f5IdnMaSOhhKUFq/3ZCRRyR0/XS6vTVIsw7S1cRIEGa1TTGt8kE1Nq/qiX 2/wnPdqnghEXgCzBbJm01S901yQNw3Dmdgk9jnHbSKWzmySS0OyNmtGEu+Rq/y7r Odl3Eo2/Nk9dI8OYIsjtHKE8uaaDW086LUuQeWShAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqGjSOGeaQphb37CfgHXVQMYYAhIwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzRmOGIzMzJiLWJkOGUtNGY0ZC1iYTVlLWMwZWRkNjRkOTI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBAEKHy80GIVmst5F8r01M6AGf0B+M gTjuRThhCuMdjpi73sPcQWqKafMs1T7B+t4Ulpy3tAIgizRYuTGHlRh4HgOoHoRX 2W/TxWIMI48/J/v1OO9Zq2bXrn2lj10mVtI+HMN0btcDITT3xg5GDZyTrNWEDMM7 +FSNnhQkt+wexHP+jkINmXhsMbSJ0egwIMSg+EeKehzSTiAEBMF9jjWvbWODqw0i nJDAMLVBPBoqG+h2v7aWbTdyGgqYKKP+aaiTOXSHgbPPGHE/rmDQoZY30XUePxeo aWELruumAtgIf0uqNCOo5gz55IZRqOleT2VnOpIK8FDztN8XrmFaMNfj+NY= -----END CERTIFICATE-----Generated at Sun Oct 19 23:05:51 2025 by rpki-client