$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa File: 24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa (raw, json) Hash identifier: foupKMM2MFYs8JErAs0b/tP6QE5E31PFE5v5ZDtmk2A= Subject key identifier: 29:7E:CA:BA:43:29:83:EE:85:23:E6:78:DA:4B:12:C1:A8:66:DF:F1 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 5A10E2F46DF17B67160E85975CDD3F891144CDD3 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa Signing time: Fri 25 Apr 2025 15:20:32 +0000 ROA not before: Fri 25 Apr 2025 15:20:32 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:10:e2:f4:6d:f1:7b:67:16:0e:85:97:5c:dd:3f:89:11:44:cd:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 25 15:20:32 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=fb4db1638c4c2ffb0559e56ba51045c859a263f56f99697daa93ddb567b24196, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9d:bf:9b:63:60:53:55:93:75:47:f6:3b:29: ad:67:36:45:cd:d7:9f:46:03:c1:ba:9f:f0:e4:d9: 57:5a:33:36:91:ce:62:2c:c1:16:8c:e2:9a:11:22: 20:6e:10:b9:59:e1:b3:5c:1c:8d:5b:53:72:0a:42: e5:49:18:b5:da:d9:17:56:a8:22:5a:0d:00:9f:e4: a4:01:95:e2:cc:2b:be:d8:77:b4:2d:49:5b:05:ef: 23:de:8b:e5:5d:96:cc:03:6a:34:19:6d:91:40:0f: 66:3e:d6:e1:35:bc:12:c8:8a:5a:87:9a:27:30:31: ee:32:8c:be:d6:44:f9:19:2b:d5:19:a1:34:35:3f: fd:dd:a3:71:2d:40:65:16:21:85:c8:0f:17:3b:ad: f4:6f:47:ad:e5:86:37:de:82:a4:50:c7:f8:0c:34: 7e:37:69:04:40:6a:63:65:51:d6:a4:18:43:a4:98: 1e:6f:d9:d9:df:89:00:ef:af:9a:4d:00:44:17:96: 7e:90:5f:8b:11:e9:77:ca:4c:db:16:2d:fe:98:6e: 26:c4:89:8e:07:05:e4:69:0c:e2:ba:30:5e:74:bf: 8a:91:d6:16:8e:62:36:22:5f:cc:12:45:85:d2:47: 14:7c:47:0f:01:97:30:64:3a:b5:63:52:81:79:d8: f1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:7E:CA:BA:43:29:83:EE:85:23:E6:78:DA:4B:12:C1:A8:66:DF:F1 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.32.0/19 Signature Algorithm: sha256WithRSAEncryption 96:19:21:47:5b:11:73:2a:fd:c9:af:cc:22:85:d1:82:6d:0b: a2:12:4f:26:1c:57:eb:82:40:1d:1c:d1:08:86:30:4c:64:3a: 20:c0:a1:22:96:e0:59:b0:3d:5d:54:70:df:1f:10:ed:ea:6e: 73:d0:d8:9c:76:05:38:7d:98:79:fd:a2:5d:7b:76:5e:1f:18: 93:ee:b7:ed:2b:7d:ac:3e:0d:bf:c1:61:64:75:b1:1a:a8:6a: d5:71:f2:88:55:c3:94:bc:8b:da:fb:82:bb:12:9c:41:bc:67: c1:eb:39:ab:e7:d1:f4:f1:10:c2:14:e3:04:b7:a2:2c:91:93: 13:74:e7:dc:18:44:2a:7b:3d:be:a2:0c:de:42:35:35:4e:a6: 51:08:2f:f9:b1:f5:5a:57:d0:47:e7:dd:42:a4:09:b1:f0:ee: a1:1a:c2:71:c2:b0:06:25:3d:af:db:da:e1:93:61:a0:3d:e1: 0a:51:0a:a8:8a:9e:44:37:c4:1f:d7:aa:a9:d1:b3:5b:7a:93: ed:2e:3c:f2:9b:86:de:e6:d4:a5:2e:0e:4a:69:00:fe:c6:f3: d4:30:6e:62:8a:20:ae:7f:29:a9:f2:bb:d9:5f:ec:92:d4:5d: e5:8b:37:6b:3e:94:d7:d0:63:1d:86:7f:4f:56:74:a8:c2:1d: c6:be:99:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWhDi9G3xe2cWDoWXXN0/iRFEzdMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNDI1MTUyMDMyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjRkYjE2MzhjNGMyZmZiMDU1OWU1NmJhNTEwNDVjODU5 YTI2M2Y1NmY5OTY5N2RhYTkzZGRiNTY3YjI0MTk2MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsnb+bY2BTVZN1R/Y7Ka1nNkXN159GA8G6n/Dk2VdaMzaR zmIswRaM4poRIiBuELlZ4bNcHI1bU3IKQuVJGLXa2RdWqCJaDQCf5KQBleLMK77Y d7QtSVsF7yPei+VdlswDajQZbZFAD2Y+1uE1vBLIilqHmicwMe4yjL7WRPkZK9UZ oTQ1P/3do3EtQGUWIYXIDxc7rfRvR63lhjfegqRQx/gMNH43aQRAamNlUdakGEOk mB5v2dnfiQDvr5pNAEQXln6QX4sR6XfKTNsWLf6YbibEiY4HBeRpDOK6MF50v4qR 1haOYjYiX8wSRYXSRxR8Rw8BlzBkOrVjUoF52PHPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKX7KukMpg+6FI+Z42ksSwahm3/EwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzI0ZGZlNjgwLWQzZTYtNGQzZC04ZjI4LWNlMmY5OWUwMmRiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUycCAwDQYJKoZIhvcNAQELBQADggEBAJYZIUdbEXMq/cmvzCKF0YJtC6IS TyYcV+uCQB0c0QiGMExkOiDAoSKW4FmwPV1UcN8fEO3qbnPQ2Jx2BTh9mHn9ol17 dl4fGJPut+0rfaw+Db/BYWR1sRqoatVx8ohVw5S8i9r7grsSnEG8Z8HrOavn0fTx EMIU4wS3oiyRkxN059wYRCp7Pb6iDN5CNTVOplEIL/mx9VpX0Efn3UKkCbHw7qEa wnHCsAYlPa/b2uGTYaA94QpRCqiKnkQ3xB/XqqnRs1t6k+0uPPKbht7m1KUuDkpp AP7G89QwbmKKIK5/Kanyu9lf7JLUXeWLN2s+lNfQYx2Gf09WdKjCHca+mfI= -----END CERTIFICATE-----Generated at Sat Apr 26 18:32:13 2025 by rpki-client