$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa File: f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa (raw, json) Hash identifier: 9MAWyxl8OSjTpr5G41Au4Ao90yyTgPQT21TrA83cC6o= Subject key identifier: A1:A5:3F:88:7E:0C:1B:B3:BC:5F:60:81:69:4E:12:FE:01:53:68:09 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 21F4FBB5F3BAE84A25F08DF9708FCC19763B58CE Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa Signing time: Sat 18 Oct 2025 00:10:06 +0000 ROA not before: Sat 18 Oct 2025 00:10:06 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f4:fb:b5:f3:ba:e8:4a:25:f0:8d:f9:70:8f:cc:19:76:3b:58:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Oct 18 00:10:06 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=2a7ff766c69c37930e4244336d73a429434ce96bd9ef12aad4a3a58bb4ab55f7, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c5:6e:dc:35:98:7b:23:d0:b5:6e:33:9d:73: 59:6b:82:bd:82:78:06:a5:c1:a6:fe:d8:d1:35:20: c1:95:4f:ab:aa:91:21:96:14:d8:f9:a3:0e:23:80: 6c:3d:93:47:24:35:e4:65:80:9c:65:96:fb:60:75: 00:a5:e7:fa:aa:31:e0:75:fe:3c:c4:35:a2:bc:46: 7d:63:63:88:23:f1:05:6d:15:a8:74:3c:a4:b0:07: ef:5c:81:d2:62:56:22:47:a0:51:d8:1b:40:f3:35: 77:56:41:0d:e0:83:7e:9a:30:a7:a3:4e:ff:7b:10: 09:73:38:7c:95:bb:8b:6e:fb:ca:5e:e8:f9:24:1f: 74:46:22:d8:c3:db:49:09:a2:e9:69:ea:cf:b6:88: 36:ab:4e:61:de:59:a8:f5:3c:58:37:1b:e6:38:ed: f3:1e:f6:49:f0:9a:43:15:26:28:3c:b2:33:9d:db: 27:11:2d:ee:8f:8d:5b:fa:9e:5b:3d:25:c6:cd:86: 48:38:bb:64:ad:48:8f:b5:b8:ba:09:27:d7:0d:13: 9e:6f:b5:96:dd:0a:25:4e:69:d7:65:33:dc:24:70: 0c:24:b8:eb:41:d9:7d:36:02:d8:ed:42:e5:54:f7: e5:d7:38:58:7e:7d:13:a4:0d:e4:01:cf:b5:4f:b6: 85:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A5:3F:88:7E:0C:1B:B3:BC:5F:60:81:69:4E:12:FE:01:53:68:09 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/f02efb1f-8a17-4dc7-9ab4-9cc23bc69b9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.101.0/24 Signature Algorithm: sha256WithRSAEncryption 34:72:a4:1a:2d:08:58:2f:c6:7d:51:67:11:be:02:3b:b4:fa: 0c:03:1d:e2:5e:12:fd:e9:1c:cc:ad:17:74:40:b4:e0:19:fc: 29:87:5a:58:92:de:8c:4f:69:b0:0a:40:36:f5:c0:04:4f:c4: 9d:d4:36:fd:a3:2b:6c:3e:21:c8:32:c8:df:76:d7:e9:1e:79: fd:ab:7a:e9:cc:73:3b:b7:ed:f6:ad:c3:0d:5b:76:72:c9:39: 51:d2:7c:7d:c6:5a:a0:53:9a:fe:76:dd:58:38:64:da:3d:d2: 53:63:d0:e4:e2:78:14:5f:68:e0:13:26:1d:e2:a3:2a:91:a6: 87:8b:3a:63:13:be:ae:8c:93:c4:a7:da:7e:7a:b1:ef:c7:e1: e6:77:2b:a1:37:ae:5e:a8:d1:61:38:09:56:2d:91:7a:03:5f: 00:d3:aa:2a:12:fa:79:6a:88:0b:1a:77:a7:cd:8f:84:9f:c3: b8:a1:0a:71:6a:66:f2:91:20:4d:59:e6:2e:cb:9c:4e:94:1a: b4:0e:60:b8:e1:62:8a:25:60:0b:a4:0c:67:c2:5f:63:5c:21: 6d:41:a2:52:a4:94:58:c1:06:81:e2:2c:23:41:13:15:36:ba: 69:67:00:aa:a6:3e:84:05:31:a1:bb:ed:cd:f6:db:b6:a3:ec: a6:75:5d:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIfT7tfO66Eol8I35cI/MGXY7WM4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMDE4MDAxMDA2WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTdmZjc2NmM2OWMzNzkzMGU0MjQ0MzM2ZDczYTQyOTQz NGNlOTZiZDllZjEyYWFkNGEzYTU4YmI0YWI1NWY3MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgxW7cNZh7I9C1bjOdc1lrgr2CeAalwab+2NE1IMGVT6uq kSGWFNj5ow4jgGw9k0ckNeRlgJxllvtgdQCl5/qqMeB1/jzENaK8Rn1jY4gj8QVt Fah0PKSwB+9cgdJiViJHoFHYG0DzNXdWQQ3gg36aMKejTv97EAlzOHyVu4tu+8pe 6PkkH3RGItjD20kJoulp6s+2iDarTmHeWaj1PFg3G+Y47fMe9knwmkMVJig8sjOd 2ycRLe6PjVv6nls9JcbNhkg4u2StSI+1uLoJJ9cNE55vtZbdCiVOaddlM9wkcAwk uOtB2X02AtjtQuVU9+XXOFh+fROkDeQBz7VPtoVZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoaU/iH4MG7O8X2CBaU4S/gFTaAkwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2YwMmVmYjFmLThhMTctNGRjNy05YWI0LTljYzIzYmM2OWI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWUwDQYJKoZIhvcNAQELBQADggEBADRypBotCFgvxn1RZxG+Aju0+gwD HeJeEv3pHMytF3RAtOAZ/CmHWliS3oxPabAKQDb1wARPxJ3UNv2jK2w+IcgyyN92 1+keef2reunMczu37fatww1bdnLJOVHSfH3GWqBTmv523Vg4ZNo90lNj0OTieBRf aOATJh3ioyqRpoeLOmMTvq6Mk8Sn2n56se/H4eZ3K6E3rl6o0WE4CVYtkXoDXwDT qioS+nlqiAsad6fNj4Sfw7ihCnFqZvKRIE1Z5i7LnE6UGrQOYLjhYoolYAukDGfC X2NcIW1BolKklFjBBoHiLCNBExU2umlnAKqmPoQFMaG77c3227aj7KZ1XaU= -----END CERTIFICATE-----Generated at Sun Oct 19 22:59:46 2025 by rpki-client