$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa File: 2788fd0d-0141-46b1-b160-e9916a5caddd.roa (raw, json) Hash identifier: aB8OWHYJQTjSid+rmosYhwmjOFK+11w4BB0aDSj6f1g= Subject key identifier: 7E:2C:4C:83:CB:52:0E:39:26:EA:5C:56:83:95:E5:53:0F:67:05:D2 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 574D444C6C0A9921024D1DB42C096B6F61CC3AF2 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa Signing time: Fri 25 Apr 2025 15:20:06 +0000 ROA not before: Fri 25 Apr 2025 15:20:06 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:4d:44:4c:6c:0a:99:21:02:4d:1d:b4:2c:09:6b:6f:61:cc:3a:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 25 15:20:06 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=564dabac4d37f504de1c3861413880bf4402b8d22208e558d497c37c0dc44b0e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:16:ec:96:45:fa:a1:0a:0e:e9:5e:67:23:2c: 96:1d:d2:aa:df:1c:23:c1:6a:05:3d:c6:3c:26:35: f7:0e:cd:f8:32:4e:95:36:8c:07:05:d5:8b:d4:73: 14:21:9c:fb:78:11:7b:89:40:53:13:5f:0d:8d:22: 6d:e2:bd:e4:6b:ef:15:7b:b3:03:a7:f0:82:c6:13: 31:d8:6a:d6:98:c0:63:20:9c:70:ed:d3:00:cc:e8: d7:af:c7:20:bb:54:b2:9e:0d:82:e1:c1:7c:52:37: a0:f9:0c:64:b5:84:7b:17:6e:5b:9d:61:38:8e:20: a0:b5:ec:a3:7f:f7:b5:b5:2b:b7:c9:9d:b0:60:29: 3f:78:fe:48:93:38:99:86:d5:c9:f5:56:e4:50:1c: 80:4e:78:65:60:3a:23:d1:59:13:b0:cf:82:f6:99: 50:2d:65:d2:38:e2:4e:ec:47:1a:79:6e:01:6f:31: 1d:12:47:7d:d1:93:90:46:62:0c:06:ba:db:db:cc: eb:5a:40:cd:81:b7:74:49:42:18:ba:ac:61:e3:c4: 91:11:de:ef:c7:d8:d0:51:d7:c5:a3:62:e8:bf:77: 0a:87:22:31:91:a5:e0:28:72:92:e5:c8:74:0f:7c: db:c9:34:ac:14:fe:59:2f:8d:92:9a:f4:d5:0c:f5: 09:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2C:4C:83:CB:52:0E:39:26:EA:5C:56:83:95:E5:53:0F:67:05:D2 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/24 Signature Algorithm: sha256WithRSAEncryption 42:b1:36:c8:c2:a2:fb:64:3f:60:b5:cb:ae:30:1a:45:de:7a: 4f:3a:16:ee:37:44:7b:a4:29:44:d2:23:b8:25:0a:92:5b:ce: 3b:0d:90:1f:eb:52:62:a7:4c:38:61:a4:2c:6c:bd:fc:84:42: 50:f4:0b:bb:71:3a:55:cc:aa:f5:84:7b:7e:40:ed:76:66:09: 49:6f:44:22:cb:15:ca:87:ef:66:6d:75:2d:e6:4d:86:e2:e0: e2:9d:4f:8c:b0:0a:ee:94:3d:04:2b:55:df:a0:53:a6:5b:45: 5a:f0:09:c7:52:03:cc:a4:6b:82:ea:33:ca:37:3a:a6:4f:8c: 80:93:89:e7:10:be:4f:bc:f2:de:37:05:56:42:12:f8:4d:c9: e4:e8:89:69:19:31:40:89:20:00:74:ad:3c:3a:f2:5e:c8:47: 4b:ad:c0:bb:a9:a1:8f:c2:b1:63:b6:78:fd:cc:e7:35:e1:cd: 9b:78:f0:79:ac:c2:55:58:54:99:e1:f1:1d:d9:93:65:93:12: ff:55:8d:25:42:ae:b8:20:4c:31:bf:1c:61:36:56:ac:f7:a1: 17:2f:f9:4e:6f:aa:80:b5:98:ca:e8:58:7e:34:78:8d:e7:e4: 8b:09:5c:bb:f7:d4:bd:74:6c:0d:8c:bc:c6:36:86:61:23:e7: 9c:98:d2:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV01ETGwKmSECTR20LAlrb2HMOvIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNDI1MTUyMDA2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjRkYWJhYzRkMzdmNTA0ZGUxYzM4NjE0MTM4ODBiZjQ0 MDJiOGQyMjIwOGU1NThkNDk3YzM3YzBkYzQ0YjBlMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFFuyWRfqhCg7pXmcjLJYd0qrfHCPBagU9xjwmNfcOzfgy TpU2jAcF1YvUcxQhnPt4EXuJQFMTXw2NIm3iveRr7xV7swOn8ILGEzHYataYwGMg nHDt0wDM6NevxyC7VLKeDYLhwXxSN6D5DGS1hHsXbludYTiOIKC17KN/97W1K7fJ nbBgKT94/kiTOJmG1cn1VuRQHIBOeGVgOiPRWROwz4L2mVAtZdI44k7sRxp5bgFv MR0SR33Rk5BGYgwGutvbzOtaQM2Bt3RJQhi6rGHjxJER3u/H2NBR18WjYui/dwqH IjGRpeAocpLlyHQPfNvJNKwU/lkvjZKa9NUM9QktAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfixMg8tSDjkm6lxWg5XlUw9nBdIwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzI3ODhmZDBkLTAxNDEtNDZiMS1iMTYwLWU5OTE2YTVjYWRkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAycAAwDQYJKoZIhvcNAQELBQADggEBAEKxNsjCovtkP2C1y64wGkXeek86 Fu43RHukKUTSI7glCpJbzjsNkB/rUmKnTDhhpCxsvfyEQlD0C7txOlXMqvWEe35A 7XZmCUlvRCLLFcqH72ZtdS3mTYbi4OKdT4ywCu6UPQQrVd+gU6ZbRVrwCcdSA8yk a4LqM8o3OqZPjICTiecQvk+88t43BVZCEvhNyeToiWkZMUCJIAB0rTw68l7IR0ut wLupoY/CsWO2eP3M5zXhzZt48HmswlVYVJnh8R3Zk2WTEv9VjSVCrrggTDG/HGE2 Vqz3oRcv+U5vqoC1mMroWH40eI3n5IsJXLv31L10bA2MvMY2hmEj55yY0lQ= -----END CERTIFICATE-----Generated at Sat Apr 26 19:24:21 2025 by rpki-client