$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa File: b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa (raw, json) Hash identifier: CDUUxDf7KxKhP4Ighuyr/dViwFNAUfpOGw2bRT2oyCk= Subject key identifier: 44:8B:7F:EF:DF:F2:31:4E:A2:A0:61:E4:68:EA:B6:74:B6:BF:3E:D1 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 42CDAB1297C778F7F7727B88AA90B22A2A202F66 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa Signing time: Sat 18 Oct 2025 00:10:13 +0000 ROA not before: Sat 18 Oct 2025 00:10:13 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:cd:ab:12:97:c7:78:f7:f7:72:7b:88:aa:90:b2:2a:2a:20:2f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Oct 18 00:10:13 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=0edd6d05124868594924c4fdf4343bdb9038e3fb832b544e5dfdd7fa4e7c200d, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ce:aa:63:7f:f9:01:cd:6f:50:ee:a2:1d:87: b8:2a:e7:b4:4d:7c:22:b6:c3:a4:cc:04:e8:bb:99: 2c:c8:02:b6:f1:67:2e:fa:56:e5:f8:f8:0e:fc:d9: 59:6b:0c:d4:38:57:27:e6:fc:59:99:f4:c3:75:c1: bf:34:43:8d:b5:7e:56:b1:26:93:f1:82:92:b1:24: 45:e7:49:c8:49:ec:03:ca:2a:73:64:9f:29:f0:9e: a4:8d:ff:bc:b1:4d:a6:42:c1:d3:e8:5b:fe:de:44: 63:fb:09:97:05:b7:d2:26:e2:e1:e3:f5:99:2d:18: 70:e6:23:6c:e1:aa:9b:14:d6:33:58:74:2f:f9:61: 6b:b8:02:d7:30:ee:e7:60:16:fd:99:0f:66:10:ed: 79:c3:ed:e9:7b:e9:b4:35:03:1c:d6:3c:c6:02:a8: 7e:8c:94:f4:96:f7:9d:44:a4:52:fb:71:a6:e4:2b: ee:53:f0:d2:d5:c1:23:ea:55:0c:4e:a3:83:38:cf: 81:ca:94:bb:19:64:1b:8e:75:c9:7f:72:00:66:e9: 13:8f:e1:7b:43:7e:bf:0f:4c:f7:3a:0c:28:13:c4: 6e:6c:26:f2:4b:b0:6a:eb:10:47:52:3d:f2:4f:64: ab:63:0d:77:7d:a8:57:6f:e4:ad:aa:2d:25:16:c7: 06:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:8B:7F:EF:DF:F2:31:4E:A2:A0:61:E4:68:EA:B6:74:B6:BF:3E:D1 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/b42257a0-4503-414c-9ee6-c20d4a3bf1ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.98.0/24 Signature Algorithm: sha256WithRSAEncryption 19:de:f2:60:a9:79:e4:42:ac:0d:48:05:7a:22:fc:93:68:35: 59:d4:a8:f1:aa:3d:35:2a:75:9f:7b:ca:6e:50:91:fa:36:e4: 51:76:b0:28:26:0a:07:ef:57:8e:e8:50:eb:e4:1c:82:6e:1d: 75:73:8e:e1:de:c1:34:d5:bb:24:1a:97:f9:3a:11:f7:e9:1e: e1:65:04:7a:95:e8:49:8b:c2:73:93:80:a4:bf:1f:e3:47:1c: 03:d6:59:49:69:04:cc:87:46:98:f3:23:10:65:9f:59:fa:e7: 2f:3e:26:8c:a7:c6:fe:b6:d0:53:7d:67:27:ee:b3:8f:4b:ec: e4:d4:80:73:1d:6a:d4:be:a4:02:35:76:02:ce:1a:84:0d:55: 88:97:2a:d0:f4:f5:de:87:bd:fa:c1:4a:6a:50:70:68:01:80: cc:01:8a:17:b1:eb:13:89:f0:68:9d:fe:a5:99:42:0e:5a:f0: d4:c6:c8:61:f2:ef:14:e5:f1:b3:60:f5:3e:ae:87:27:9b:00: 00:4a:22:74:47:03:98:63:2c:57:bc:1b:17:dc:8d:b3:97:d4: 97:bf:88:4f:c8:17:be:17:f4:eb:12:77:c6:b3:4d:7f:61:b4: f6:c8:7a:ea:1a:9c:9b:1a:dc:53:9a:6b:ef:eb:17:14:18:6d: f0:0f:b5:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQs2rEpfHePf3cnuIqpCyKiogL2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMDE4MDAxMDEzWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWRkNmQwNTEyNDg2ODU5NDkyNGM0ZmRmNDM0M2JkYjkw MzhlM2ZiODMyYjU0NGU1ZGZkZDdmYTRlN2MyMDBkMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhzqpjf/kBzW9Q7qIdh7gq57RNfCK2w6TMBOi7mSzIArbx Zy76VuX4+A782VlrDNQ4Vyfm/FmZ9MN1wb80Q421flaxJpPxgpKxJEXnSchJ7APK KnNknynwnqSN/7yxTaZCwdPoW/7eRGP7CZcFt9Im4uHj9ZktGHDmI2zhqpsU1jNY dC/5YWu4Atcw7udgFv2ZD2YQ7XnD7el76bQ1AxzWPMYCqH6MlPSW951EpFL7cabk K+5T8NLVwSPqVQxOo4M4z4HKlLsZZBuOdcl/cgBm6ROP4XtDfr8PTPc6DCgTxG5s JvJLsGrrEEdSPfJPZKtjDXd9qFdv5K2qLSUWxwYfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURIt/79/yMU6ioGHkaOq2dLa/PtEwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2I0MjI1N2EwLTQ1MDMtNDE0Yy05ZWU2LWMyMGQ0YTNiZjFhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWIwDQYJKoZIhvcNAQELBQADggEBABne8mCpeeRCrA1IBXoi/JNoNVnU qPGqPTUqdZ97ym5Qkfo25FF2sCgmCgfvV47oUOvkHIJuHXVzjuHewTTVuyQal/k6 EffpHuFlBHqV6EmLwnOTgKS/H+NHHAPWWUlpBMyHRpjzIxBln1n65y8+Joynxv62 0FN9Zyfus49L7OTUgHMdatS+pAI1dgLOGoQNVYiXKtD09d6HvfrBSmpQcGgBgMwB ihex6xOJ8Gid/qWZQg5a8NTGyGHy7xTl8bNg9T6uhyebAABKInRHA5hjLFe8Gxfc jbOX1Je/iE/IF74X9OsSd8azTX9htPbIeuoanJsa3FOaa+/rFxQYbfAPtbQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:14:47 2025 by rpki-client