$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa File: 2788fd0d-0141-46b1-b160-e9916a5caddd.roa (raw, json) Hash identifier: 5n22ffIpnjOJP6akvUrQesryvNGjbVnNdDzAl8kFXl4= Subject key identifier: 75:7E:90:E4:6A:97:EA:C1:A2:D0:F5:A6:2F:1C:50:FB:6B:1B:30:10 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 7E97046382A57D86EBBA88DD630BBFFC2D055D5E Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa Signing time: Tue 21 Oct 2025 00:20:02 +0000 ROA not before: Tue 21 Oct 2025 00:20:02 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:97:04:63:82:a5:7d:86:eb:ba:88:dd:63:0b:bf:fc:2d:05:5d:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Oct 21 00:20:02 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=835bdf019eb521494c2a056312cf02f8effef5646ecd7780ffa6595f298716e3, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:a1:ed:e1:bf:a1:70:0c:71:48:8a:4a:37:6b: a5:a4:16:59:fb:d4:ab:51:93:34:b2:fe:da:5a:6f: 3b:8e:dd:bf:63:d9:a2:f0:7b:44:8c:3f:04:9e:e3: 5c:4b:be:37:24:55:06:de:ec:99:de:eb:29:7b:b0: 4a:07:7e:4d:01:9d:93:df:6b:f0:0d:fa:c7:1b:25: 4f:e1:da:de:04:d6:84:ea:46:c2:80:83:3c:34:33: 26:35:19:0f:74:7c:e1:2e:57:9b:98:ec:b3:19:06: 89:eb:17:09:da:1d:70:a0:d9:74:7d:53:06:26:2b: 27:c2:ff:61:4b:82:2e:c1:aa:76:c4:01:f8:6c:19: bd:ab:86:a8:9a:5e:f8:f1:80:70:ad:7b:10:b6:31: da:ca:1b:ba:8a:d1:78:37:15:fc:9f:42:36:8f:8c: 95:24:83:bf:73:46:29:d8:1e:59:f1:4e:0a:bd:f0: 81:ed:2d:66:28:44:d4:3f:de:7a:e8:9a:b0:15:70: d6:51:92:69:0c:6b:e9:fb:46:23:33:ad:db:be:5b: 34:03:95:66:bb:c7:51:fb:76:81:18:79:a3:de:4b: ab:40:79:9f:cd:ce:6d:99:6d:11:36:6a:30:ab:b3: e3:96:97:e3:ca:14:91:cc:fa:02:21:17:61:c9:e9: 08:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7E:90:E4:6A:97:EA:C1:A2:D0:F5:A6:2F:1C:50:FB:6B:1B:30:10 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/24 Signature Algorithm: sha256WithRSAEncryption 33:db:80:88:24:28:af:0e:37:41:6d:5f:01:ba:a5:28:f7:ab: 96:f5:04:a2:ff:8c:c1:2d:e6:e6:f4:16:46:1f:83:c6:6a:4f: 32:1e:45:66:be:b1:6c:c0:5c:b7:99:19:7b:d0:82:89:e6:e9: f5:1e:e9:2f:5b:db:6f:d5:af:2d:d1:11:32:56:b7:69:f2:cf: 36:5e:f4:5e:83:19:6d:1d:44:39:70:b9:af:77:2a:af:61:df: 3f:be:f5:b3:70:a3:9a:a8:20:5a:fa:db:a0:3b:fc:94:f5:c8: e3:ad:bd:af:ba:56:fc:2d:e5:59:8a:12:a5:fc:9a:8a:2f:97: bd:45:0c:82:5e:f0:3c:d1:06:32:ca:79:17:d9:5c:18:38:40: b1:df:dd:01:0e:90:c7:58:4a:d0:4a:70:19:fd:2b:c7:c5:35: e1:76:3f:b8:02:b9:76:3f:1e:13:16:33:77:f6:45:5a:73:f9: 6c:bc:04:04:b8:fc:a8:3e:3f:db:49:fb:55:40:b4:f1:97:75: e3:29:25:8e:f2:83:cc:4a:04:b3:39:1d:dc:d5:c4:bc:a8:d5: f9:c3:02:aa:18:5a:f1:41:d7:8e:00:31:95:32:c0:81:df:7c: 28:46:be:df:0b:31:24:00:f9:2a:c8:42:ed:46:5a:0f:e1:80: 3b:5c:c0:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfpcEY4KlfYbruojdYwu//C0FXV4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUxMDIxMDAyMDAyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzViZGYwMTllYjUyMTQ5NGMyYTA1NjMxMmNmMDJmOGVm ZmVmNTY0NmVjZDc3ODBmZmE2NTk1ZjI5ODcxNmUzMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSoe3hv6FwDHFIiko3a6WkFln71KtRkzSy/tpabzuO3b9j 2aLwe0SMPwSe41xLvjckVQbe7Jne6yl7sEoHfk0BnZPfa/AN+scbJU/h2t4E1oTq RsKAgzw0MyY1GQ90fOEuV5uY7LMZBonrFwnaHXCg2XR9UwYmKyfC/2FLgi7BqnbE AfhsGb2rhqiaXvjxgHCtexC2MdrKG7qK0Xg3FfyfQjaPjJUkg79zRinYHlnxTgq9 8IHtLWYoRNQ/3nromrAVcNZRkmkMa+n7RiMzrdu+WzQDlWa7x1H7doEYeaPeS6tA eZ/Nzm2ZbRE2ajCrs+OWl+PKFJHM+gIhF2HJ6QjvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdX6Q5GqX6sGi0PWmLxxQ+2sbMBAwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzI3ODhmZDBkLTAxNDEtNDZiMS1iMTYwLWU5OTE2YTVjYWRkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAycAAwDQYJKoZIhvcNAQELBQADggEBADPbgIgkKK8ON0FtXwG6pSj3q5b1 BKL/jMEt5ub0FkYfg8ZqTzIeRWa+sWzAXLeZGXvQgonm6fUe6S9b22/Vry3RETJW t2nyzzZe9F6DGW0dRDlwua93Kq9h3z++9bNwo5qoIFr626A7/JT1yOOtva+6Vvwt 5VmKEqX8moovl71FDIJe8DzRBjLKeRfZXBg4QLHf3QEOkMdYStBKcBn9K8fFNeF2 P7gCuXY/HhMWM3f2RVpz+Wy8BAS4/Kg+P9tJ+1VAtPGXdeMpJY7yg8xKBLM5HdzV xLyo1fnDAqoYWvFB144AMZUywIHffChGvt8LMSQA+SrIQu1GWg/hgDtcwIU= -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:00 2025 by rpki-client