$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa File: 24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa (raw, json) Hash identifier: DkkW4pzV1L6AN/xb+SbOW841xnhtGlvOyPVo7MAcTxk= Subject key identifier: CC:33:6B:9E:61:F7:3F:EE:35:DC:8D:C5:43:81:13:52:3F:E7:D6:83 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 186CA134C08C311B41ECB0D8B5666E26D10DEDDF Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa Signing time: Tue 21 Oct 2025 00:20:03 +0000 ROA not before: Tue 21 Oct 2025 00:20:03 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:6c:a1:34:c0:8c:31:1b:41:ec:b0:d8:b5:66:6e:26:d1:0d:ed:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Oct 21 00:20:03 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=b8f9c040df814551df44e5e6261d9531de9ddbd708f4c06ee986de85b0646a40, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:75:44:2e:85:fb:cf:65:70:0e:d0:d0:d6:51: 2a:ec:36:b9:df:2b:5a:65:24:cc:32:b7:45:bc:b1: d7:fb:bb:cc:8c:12:4a:d2:db:60:cc:fd:3a:46:63: 2e:8a:0b:fb:f2:f4:95:58:2e:40:ed:88:e8:f5:f5: 96:f3:34:09:85:a4:13:aa:67:1f:76:89:50:02:16: 99:64:f5:14:1c:cd:51:fb:0e:c2:18:78:9c:01:fb: 59:20:01:6d:fa:4d:29:14:47:16:d7:47:dd:9f:4f: 27:b8:3a:f4:5b:11:01:76:ca:28:7d:ac:4e:d8:73: 47:95:f8:47:55:61:bc:bf:a5:c2:ac:7e:33:dc:4b: 58:88:1d:55:5b:b4:9c:ac:9a:79:b5:af:32:3b:6d: 88:b2:7d:5b:6d:d4:8e:8b:2b:f6:3b:1c:3b:95:15: e0:07:da:5a:70:e8:48:1b:68:8f:0b:ae:ae:68:20: 39:4d:c2:c8:56:6a:df:0f:b5:a2:03:43:4b:25:99: d1:c3:b1:b5:b8:93:ee:5e:5a:a6:e6:9e:a4:3b:d6: 87:1c:16:a2:71:d0:b5:22:d6:4f:e4:b9:49:14:09: 5b:1c:eb:6f:8f:a9:8e:98:44:a5:57:22:7a:90:f1: 28:b0:df:be:db:e7:ff:45:65:b7:15:78:47:08:8f: 4c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:33:6B:9E:61:F7:3F:EE:35:DC:8D:C5:43:81:13:52:3F:E7:D6:83 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.32.0/19 Signature Algorithm: sha256WithRSAEncryption 3e:dc:a3:1e:68:78:0b:e7:76:7c:aa:a1:8e:8f:3f:03:0f:24: 80:7d:d7:1b:d3:49:78:a6:ee:3e:13:57:a2:9f:d3:be:a6:4c: 32:0f:f4:4b:fb:3c:95:49:5b:fa:a6:d4:3f:5e:d1:12:fb:e9: 31:8c:9d:0d:20:e9:04:c1:cb:32:f8:83:3d:56:9b:30:42:b7: 1e:8f:00:d8:ad:81:3a:7e:ec:b9:16:cd:0e:ca:75:33:47:47: f5:99:b1:fa:6d:dd:39:1d:a1:76:cd:f1:58:3a:ab:75:e4:9d: 59:38:9e:62:84:ed:6b:0a:51:ec:5b:10:9c:1a:c1:25:27:0f: b2:72:f3:39:2c:33:63:17:b3:28:5a:33:61:25:a8:67:e0:98: 84:3b:77:dc:9c:15:a7:c2:8f:3f:50:2d:7c:1e:e2:62:c9:39: fc:c5:82:7c:51:33:5d:ae:45:02:ef:0f:48:3f:27:2c:13:9f: 59:52:a9:55:a1:37:76:4c:05:86:ff:88:13:eb:dc:f2:e3:05: c5:7d:c2:4f:13:64:bb:0b:f1:23:a5:c7:2b:1a:9e:42:1c:b9: a1:f3:e0:99:df:25:bc:ff:ff:09:3f:0e:4e:36:ca:ec:34:3f: af:00:87:01:19:f0:78:d0:9c:7b:f2:39:85:53:ae:38:a5:80: 38:1a:84:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGGyhNMCMMRtB7LDYtWZuJtEN7d8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUxMDIxMDAyMDAzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGY5YzA0MGRmODE0NTUxZGY0NGU1ZTYyNjFkOTUzMWRl OWRkYmQ3MDhmNGMwNmVlOTg2ZGU4NWIwNjQ2YTQwMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9dUQuhfvPZXAO0NDWUSrsNrnfK1plJMwyt0W8sdf7u8yM EkrS22DM/TpGYy6KC/vy9JVYLkDtiOj19ZbzNAmFpBOqZx92iVACFplk9RQczVH7 DsIYeJwB+1kgAW36TSkURxbXR92fTye4OvRbEQF2yih9rE7Yc0eV+EdVYby/pcKs fjPcS1iIHVVbtJysmnm1rzI7bYiyfVtt1I6LK/Y7HDuVFeAH2lpw6EgbaI8Lrq5o IDlNwshWat8PtaIDQ0slmdHDsbW4k+5eWqbmnqQ71occFqJx0LUi1k/kuUkUCVsc 62+PqY6YRKVXInqQ8Siw377b5/9FZbcVeEcIj0x/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzDNrnmH3P+413I3FQ4ETUj/n1oMwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzI0ZGZlNjgwLWQzZTYtNGQzZC04ZjI4LWNlMmY5OWUwMmRiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUycCAwDQYJKoZIhvcNAQELBQADggEBAD7cox5oeAvndnyqoY6PPwMPJIB9 1xvTSXim7j4TV6Kf076mTDIP9Ev7PJVJW/qm1D9e0RL76TGMnQ0g6QTByzL4gz1W mzBCtx6PANitgTp+7LkWzQ7KdTNHR/WZsfpt3TkdoXbN8Vg6q3XknVk4nmKE7WsK UexbEJwawSUnD7Jy8zksM2MXsyhaM2ElqGfgmIQ7d9ycFafCjz9QLXwe4mLJOfzF gnxRM12uRQLvD0g/JywTn1lSqVWhN3ZMBYb/iBPr3PLjBcV9wk8TZLsL8SOlxysa nkIcuaHz4JnfJbz//wk/Dk42yuw0P68AhwEZ8HjQnHvyOYVTrjilgDgahDk= -----END CERTIFICATE-----Generated at Wed Nov 5 14:05:54 2025 by rpki-client