$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa File: aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa (raw, json) Hash identifier: F/4GXpD+h63YLO3CR8UfTK/L0JHtgaTvd+xyFAYQCjo= Subject key identifier: 4D:F4:E2:78:60:3B:EC:F6:BA:A3:B1:94:0B:DE:17:5E:1E:23:08:90 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 36D56B4888C6B9DED25D2234B22CDE0DDC3F1286 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa Signing time: Sat 18 Oct 2025 00:10:06 +0000 ROA not before: Sat 18 Oct 2025 00:10:06 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:d5:6b:48:88:c6:b9:de:d2:5d:22:34:b2:2c:de:0d:dc:3f:12:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Oct 18 00:10:06 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=64b69c80d6a3c126f33e1d3bcc38845806ea2c82629387ec7c32b6adcaa4a133, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9b:88:bc:3d:d4:fb:58:4a:41:34:c6:23:db: b5:e1:e0:9a:85:e1:e7:b7:60:c2:00:20:71:60:f9: b4:21:6f:72:86:fd:7b:df:66:f8:bd:f0:e6:5e:96: 25:d2:cd:eb:68:83:4b:82:97:eb:3d:9f:45:cd:c2: c6:77:9b:be:e9:4b:86:58:5c:21:64:80:16:e6:1d: 90:7f:26:fa:30:f3:ef:c2:93:7e:96:3a:3f:f8:3d: 6d:9b:13:21:44:1f:dc:f7:ac:9e:9a:dd:0c:91:ae: af:d0:d5:13:b7:31:10:a0:1f:b6:06:52:38:dc:5d: 2d:f9:7b:e5:02:2e:9e:10:85:c3:f5:03:21:f6:0b: df:f3:bb:48:0e:e4:14:11:2f:de:5b:e4:19:7f:67: df:91:6d:72:02:94:db:31:73:f6:29:6e:99:5f:58: 62:ab:19:8b:e7:aa:d2:5c:8c:d1:bf:3e:d6:3a:50: c3:00:a8:3d:c9:37:67:74:97:19:13:d8:a0:5e:89: 83:72:70:07:89:90:e9:a2:5f:f6:22:90:58:2f:bc: 97:e4:6b:3a:86:ef:f8:4c:4a:d7:9c:3e:b9:5d:23: 52:04:41:f9:94:95:58:36:b6:7a:94:aa:5c:01:b8: 33:92:e7:55:77:75:d7:12:65:a9:c5:a9:e9:49:b3: 2c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F4:E2:78:60:3B:EC:F6:BA:A3:B1:94:0B:DE:17:5E:1E:23:08:90 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/aed76f17-5b47-4e5c-a9fb-b01c61d23c88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.101.0/24 Signature Algorithm: sha256WithRSAEncryption ad:44:2d:1c:e8:51:6e:93:ef:aa:91:c1:51:15:67:02:98:e9: a8:a9:0e:1d:3b:71:d0:7a:04:ba:85:c3:86:c9:bd:1f:ac:f5: 37:5a:ad:6e:ba:b2:36:34:4c:1c:87:3f:e5:54:d9:e1:2d:97: 43:a7:8c:87:60:e5:1c:bb:b8:44:48:fe:f1:2b:f2:09:41:99: 3a:27:31:46:14:32:d7:46:71:87:31:5b:85:b7:68:df:88:bd: a7:ef:00:ad:3d:8e:fd:c9:60:ee:88:36:72:8c:36:67:ef:2a: 51:7b:c5:5e:a2:c4:05:ba:7f:82:5d:c5:30:5f:19:29:d4:7f: 5d:16:4c:12:cb:7c:ba:09:d2:26:54:1d:04:99:e4:18:ec:d0: f0:6d:39:33:c4:95:0b:4b:27:29:da:46:f8:57:92:07:53:dd: 35:e0:9e:26:82:65:6e:04:9b:4f:1f:8f:ac:cd:06:a7:87:2a: f1:1a:f1:3a:06:c6:f6:56:70:6f:d1:fd:23:5e:89:13:8e:23: 19:b1:c0:bb:e9:78:3c:18:85:09:1d:c6:12:67:71:c8:de:bd: 1a:7d:fd:09:1a:94:41:20:75:bd:0f:bc:89:a6:8b:a6:9d:dc: b7:28:d6:42:e2:41:73:4f:05:f6:17:a9:05:1f:13:ec:ce:ec: 6b:4a:f1:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNtVrSIjGud7SXSI0sizeDdw/EoYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMDE4MDAxMDA2WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGI2OWM4MGQ2YTNjMTI2ZjMzZTFkM2JjYzM4ODQ1ODA2 ZWEyYzgyNjI5Mzg3ZWM3YzMyYjZhZGNhYTRhMTMzMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBm4i8PdT7WEpBNMYj27Xh4JqF4ee3YMIAIHFg+bQhb3KG /XvfZvi98OZeliXSzetog0uCl+s9n0XNwsZ3m77pS4ZYXCFkgBbmHZB/Jvow8+/C k36WOj/4PW2bEyFEH9z3rJ6a3QyRrq/Q1RO3MRCgH7YGUjjcXS35e+UCLp4QhcP1 AyH2C9/zu0gO5BQRL95b5Bl/Z9+RbXIClNsxc/YpbplfWGKrGYvnqtJcjNG/PtY6 UMMAqD3JN2d0lxkT2KBeiYNycAeJkOmiX/YikFgvvJfkazqG7/hMStecPrldI1IE QfmUlVg2tnqUqlwBuDOS51V3ddcSZanFqelJsyyHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTfTieGA77Pa6o7GUC94XXh4jCJAwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2FlZDc2ZjE3LTViNDctNGU1Yy1hOWZiLWIwMWM2MWQyM2M4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWUwDQYJKoZIhvcNAQELBQADggEBAK1ELRzoUW6T76qRwVEVZwKY6aip Dh07cdB6BLqFw4bJvR+s9TdarW66sjY0TByHP+VU2eEtl0OnjIdg5Ry7uERI/vEr 8glBmTonMUYUMtdGcYcxW4W3aN+IvafvAK09jv3JYO6INnKMNmfvKlF7xV6ixAW6 f4JdxTBfGSnUf10WTBLLfLoJ0iZUHQSZ5Bjs0PBtOTPElQtLJynaRvhXkgdT3TXg niaCZW4Em08fj6zNBqeHKvEa8ToGxvZWcG/R/SNeiROOIxmxwLvpeDwYhQkdxhJn ccjevRp9/QkalEEgdb0PvImmi6ad3Lco1kLiQXNPBfYXqQUfE+zO7GtK8cU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:16:23 2025 by rpki-client