$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa File: 2788fd0d-0141-46b1-b160-e9916a5caddd.roa (raw, json) Hash identifier: lHAUyW3qlmuVzClO2vhcT19/C0G7rcmbflrP+9a20QY= Subject key identifier: 8C:3A:CE:98:59:FD:9A:06:62:1A:83:2F:71:39:10:75:AC:A7:33:A0 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 693414986BCD5A65CF3C4BDB858A785DFAD2BE51 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa Signing time: Tue 05 Aug 2025 15:00:17 +0000 ROA not before: Tue 05 Aug 2025 15:00:17 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:34:14:98:6b:cd:5a:65:cf:3c:4b:db:85:8a:78:5d:fa:d2:be:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Aug 5 15:00:17 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=3f736fdc6a4d988b7004f8d24af33971de70c97d79fe88399a671e1b8268fc1e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:ef:50:79:c0:a7:c6:c1:fd:68:e2:45:94:35: 84:4f:58:2a:ac:f8:5c:6e:bd:1e:f4:53:20:ad:c8: a1:99:cf:cb:5c:d1:27:19:bc:72:f8:e8:83:b0:c8: 2d:44:17:76:5c:05:db:5c:ff:3c:bc:bc:36:1c:e8: 7d:a3:44:40:30:2c:21:c4:47:76:eb:a9:99:6d:20: 31:22:20:64:74:5b:98:6c:db:b2:37:7f:62:1d:0d: 7b:b2:36:5c:33:fc:b8:29:9b:86:b3:ed:57:37:08: d2:1e:a2:2a:f1:66:d2:d8:ff:d0:b1:30:77:f6:16: 6d:30:f9:fd:77:8b:22:7b:2d:b5:ee:8e:6d:24:4f: 16:ef:9f:c2:3d:43:26:1d:99:ee:ac:fb:da:72:f9: e0:a8:52:fe:b7:7d:37:c8:ab:8a:5e:d4:ad:52:e2: d4:78:de:91:73:ea:f4:8f:7c:3a:a8:f3:f3:36:b5: 7c:93:57:19:1d:0d:2b:22:4b:e7:98:31:de:49:14: 5e:2d:76:86:67:81:4b:d0:4b:57:28:87:5a:89:71: 83:cf:57:cd:a4:f4:d7:9e:35:8e:8a:53:89:7e:d2: 40:f8:7a:1c:2f:44:7e:51:f1:1e:a6:c8:ad:c8:c1: 44:a7:22:a3:c1:ed:25:c6:dc:31:91:71:56:89:c6: 57:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:3A:CE:98:59:FD:9A:06:62:1A:83:2F:71:39:10:75:AC:A7:33:A0 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/24 Signature Algorithm: sha256WithRSAEncryption a8:68:c6:b2:ee:c5:62:a9:e6:87:11:13:f9:02:0f:7c:a4:b3: 42:35:6a:27:74:00:0f:d7:7d:69:ff:62:3e:65:39:47:cc:10: 3c:a7:38:17:c8:15:2a:2c:fd:a0:d1:b2:0c:55:74:58:43:b3: e4:c5:13:20:18:d5:35:d9:50:b0:7e:9e:e1:11:90:05:eb:50: 5d:4a:2c:e6:53:67:b7:cc:a9:35:5e:93:82:73:9a:eb:40:6c: ad:22:12:ae:e8:bd:db:d8:a8:ec:dd:36:3f:33:59:80:fc:2d: 39:f8:89:36:b4:83:7d:dc:06:6a:01:2f:13:09:a2:39:37:d9: 62:c0:63:af:8e:4c:82:15:3b:c7:ae:2c:61:d2:78:b0:8f:55: 76:c3:0a:f5:82:52:0b:9d:1d:76:8e:35:cf:64:59:e6:7a:cb: 3f:0f:32:be:37:a8:66:65:7a:8a:02:2b:75:26:32:4b:2d:bf: 67:53:78:0c:93:51:08:68:d1:cb:e7:32:9a:67:c6:38:2f:82: 3b:a9:a2:a8:b5:49:8e:2b:77:10:76:c5:2f:88:94:97:0d:72: f6:99:d0:1b:1c:5c:bf:b1:04:1e:85:f3:d0:1f:73:2b:47:0c: ce:fd:dc:dd:ec:e6:48:b0:99:8d:0d:92:ca:b0:a6:ab:3a:aa: 4d:bc:6e:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaTQUmGvNWmXPPEvbhYp4XfrSvlEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwODA1MTUwMDE3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjczNmZkYzZhNGQ5ODhiNzAwNGY4ZDI0YWYzMzk3MWRl NzBjOTdkNzlmZTg4Mzk5YTY3MWUxYjgyNjhmYzFlMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD171B5wKfGwf1o4kWUNYRPWCqs+FxuvR70UyCtyKGZz8tc 0ScZvHL46IOwyC1EF3ZcBdtc/zy8vDYc6H2jREAwLCHER3brqZltIDEiIGR0W5hs 27I3f2IdDXuyNlwz/Lgpm4az7Vc3CNIeoirxZtLY/9CxMHf2Fm0w+f13iyJ7LbXu jm0kTxbvn8I9QyYdme6s+9py+eCoUv63fTfIq4pe1K1S4tR43pFz6vSPfDqo8/M2 tXyTVxkdDSsiS+eYMd5JFF4tdoZngUvQS1coh1qJcYPPV82k9NeeNY6KU4l+0kD4 ehwvRH5R8R6myK3IwUSnIqPB7SXG3DGRcVaJxleRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjDrOmFn9mgZiGoMvcTkQdaynM6AwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzI3ODhmZDBkLTAxNDEtNDZiMS1iMTYwLWU5OTE2YTVjYWRkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAycAAwDQYJKoZIhvcNAQELBQADggEBAKhoxrLuxWKp5ocRE/kCD3yks0I1 aid0AA/XfWn/Yj5lOUfMEDynOBfIFSos/aDRsgxVdFhDs+TFEyAY1TXZULB+nuER kAXrUF1KLOZTZ7fMqTVek4JzmutAbK0iEq7ovdvYqOzdNj8zWYD8LTn4iTa0g33c BmoBLxMJojk32WLAY6+OTIIVO8euLGHSeLCPVXbDCvWCUgudHXaONc9kWeZ6yz8P Mr43qGZleooCK3UmMkstv2dTeAyTUQho0cvnMppnxjgvgjupoqi1SY4rdxB2xS+I lJcNcvaZ0BscXL+xBB6F89AfcytHDM793N3s5kiwmY0Nksqwpqs6qk28blg= -----END CERTIFICATE-----Generated at Wed Aug 6 06:06:11 2025 by rpki-client