$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa File: 8a0cac28-29b8-4996-b010-5eab278cc342.roa (raw, json) Hash identifier: t0tTY48UZx2KqHw2rqhgfeuXnDGPmkri0uZ3uIMvAsc= Subject key identifier: D6:C7:EA:F1:CC:9D:ED:0C:77:7F:D6:F2:6F:EC:A4:87:25:A8:F8:7A Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 2D9231E99D34F61B73B53AC8F0E61A87BA8F4D1A Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa Signing time: Sat 14 Jun 2025 00:10:14 +0000 ROA not before: Sat 14 Jun 2025 00:10:14 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:92:31:e9:9d:34:f6:1b:73:b5:3a:c8:f0:e6:1a:87:ba:8f:4d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Jun 14 00:10:14 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=3b585d2ebb9047c624e297691895987cdfb3ef5a54d32dc5d52abfe8161d03fb, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:23:92:48:5c:e4:98:c7:a1:a3:2e:67:a3:1b: 61:36:22:a8:6f:c1:11:82:73:0f:d2:89:05:87:07: ae:2d:2c:cf:39:ad:66:e3:ae:b9:29:0e:f9:16:9a: 4e:1d:21:4b:10:eb:31:8a:87:d6:b0:6d:c2:03:19: dd:b8:45:ab:08:46:52:9d:ab:90:3e:1d:79:bb:f7: 87:98:06:99:3a:9c:32:68:34:98:78:3a:d8:38:3e: ad:76:98:bf:73:27:4b:94:66:8a:12:04:f6:a3:63: 31:29:7a:bc:fc:ca:1e:07:d2:62:2d:e1:11:ca:50: ec:48:52:3d:aa:d5:b2:41:47:59:be:f0:d2:03:48: 73:c6:1a:a0:f2:72:09:27:ba:da:43:fa:fb:65:23: 7a:58:f1:e1:69:92:92:1f:96:6f:a3:15:f7:7f:8b: 80:c2:98:c2:32:5d:9f:b0:e5:aa:78:d0:77:2d:b0: 28:a9:01:a5:c3:21:65:d4:3d:36:fd:87:5c:5d:25: 4f:9e:3d:8f:68:89:14:42:61:ff:8c:75:1c:8f:31: ad:e3:ad:34:1b:17:da:b4:de:59:87:1d:20:46:2c: 79:cb:b3:e4:8a:b3:b5:13:ff:6e:23:c4:17:15:42: f6:29:fb:84:aa:72:cc:bb:1a:42:d3:66:3e:01:0a: 76:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C7:EA:F1:CC:9D:ED:0C:77:7F:D6:F2:6F:EC:A4:87:25:A8:F8:7A X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption 21:a2:07:fa:8d:de:b3:41:3a:33:de:6a:71:8d:bc:7c:d4:48: c9:87:3e:67:da:7d:49:a2:bc:b2:fd:57:38:24:a1:87:24:af: 90:cb:a0:31:65:28:74:07:a6:43:e5:89:9f:e8:c6:97:d9:e1: 51:e5:e5:25:39:11:d9:00:cd:03:72:3a:6e:8a:a4:18:5c:3b: 45:99:35:1c:df:ef:e7:13:49:30:ee:20:ea:c9:00:3a:73:92: 6f:f5:ba:77:7a:d0:dc:9f:f1:b8:9b:68:5d:f2:0c:c0:1a:d8: 93:4e:ef:64:0e:25:c4:75:8d:57:60:37:7f:e3:bf:99:52:33: 77:3d:f4:d9:7d:91:27:71:af:77:ed:e0:08:0e:81:b8:e9:5c: 6c:54:9f:6e:bf:8f:5c:a1:a8:bf:ec:f5:08:75:0a:20:b4:88: 17:7d:0e:15:fc:46:89:de:5a:b3:6b:06:0d:ff:7b:9f:db:f9: 70:00:34:6c:d7:6b:86:5a:3d:8a:bb:d4:71:56:1e:8a:c0:e4: c7:50:de:97:6b:dc:ff:e1:85:48:1d:f1:3b:65:58:5b:f6:e5: 11:c3:5d:42:50:de:0a:a1:a0:84:16:3f:7f:98:50:f6:a3:0d: b7:fd:b2:0c:bb:15:eb:6c:1e:8c:34:db:07:9f:83:02:b0:b3: 27:eb:d1:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULZIx6Z009htztTrI8OYah7qPTRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUwNjE0MDAxMDE0WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjU4NWQyZWJiOTA0N2M2MjRlMjk3NjkxODk1OTg3Y2Rm YjNlZjVhNTRkMzJkYzVkNTJhYmZlODE2MWQwM2ZiMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBI5JIXOSYx6GjLmejG2E2IqhvwRGCcw/SiQWHB64tLM85 rWbjrrkpDvkWmk4dIUsQ6zGKh9awbcIDGd24RasIRlKdq5A+HXm794eYBpk6nDJo NJh4Otg4Pq12mL9zJ0uUZooSBPajYzEperz8yh4H0mIt4RHKUOxIUj2q1bJBR1m+ 8NIDSHPGGqDycgknutpD+vtlI3pY8eFpkpIflm+jFfd/i4DCmMIyXZ+w5ap40Hct sCipAaXDIWXUPTb9h1xdJU+ePY9oiRRCYf+MdRyPMa3jrTQbF9q03lmHHSBGLHnL s+SKs7UT/24jxBcVQvYp+4Sqcsy7GkLTZj4BCna9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1sfq8cyd7Qx3f9byb+ykhyWo+HowHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzhhMGNhYzI4LTI5YjgtNDk5Ni1iMDEwLTVlYWIyNzhjYzM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBACGiB/qN3rNBOjPeanGNvHzUSMmH PmfafUmivLL9VzgkoYckr5DLoDFlKHQHpkPliZ/oxpfZ4VHl5SU5EdkAzQNyOm6K pBhcO0WZNRzf7+cTSTDuIOrJADpzkm/1und60Nyf8bibaF3yDMAa2JNO72QOJcR1 jVdgN3/jv5lSM3c99Nl9kSdxr3ft4AgOgbjpXGxUn26/j1yhqL/s9Qh1CiC0iBd9 DhX8RoneWrNrBg3/e5/b+XAANGzXa4ZaPYq71HFWHorA5MdQ3pdr3P/hhUgd8Ttl WFv25RHDXUJQ3gqhoIQWP3+YUPajDbf9sgy7FetsHow02wefgwKwsyfr0UQ= -----END CERTIFICATE-----Generated at Tue Jul 1 08:49:06 2025 by rpki-client