$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/3af7659c-c364-4492-bd08-bb9e6b8fdf43.roa File: 3af7659c-c364-4492-bd08-bb9e6b8fdf43.roa (raw, json) Hash identifier: lUDW72+SuxIBHPTmBFyOgBhcaRLxCM0tZf0k50TuW80= Subject key identifier: B5:82:D5:D6:B1:76:45:A7:E3:8B:CD:47:EA:7C:A1:29:D5:8A:C3:D7 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 083AF0E22FD102436ADD2689A72166BD63477216 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/3af7659c-c364-4492-bd08-bb9e6b8fdf43.roa Signing time: Tue 20 May 2025 15:30:26 +0000 ROA not before: Tue 20 May 2025 15:30:26 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:3a:f0:e2:2f:d1:02:43:6a:dd:26:89:a7:21:66:bd:63:47:72:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: May 20 15:30:26 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=8109ec10aecaeea2325be175ab495d1f615931d6ea3fa87a986b08acb96e669e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b1:b8:62:60:6e:07:68:33:74:76:87:25:ae: 69:bb:0c:31:33:ec:4e:03:c8:6a:ab:af:b8:d4:00: 18:e1:2e:eb:ad:94:4c:3a:b7:ed:fb:ca:7d:63:d2: b4:10:07:1c:9a:35:69:1f:f4:ee:40:3c:14:00:84: 87:dd:e9:82:2d:7e:18:61:5e:ca:57:b4:0d:07:ab: 70:cc:cc:6a:41:99:73:6b:86:3d:dc:97:02:02:d0: 40:38:1c:d2:b9:1e:c6:53:28:9d:7f:14:70:a8:d4: 88:55:f9:1f:eb:af:93:13:64:96:e7:f5:87:7d:40: 99:0f:f1:26:07:2a:c9:0a:5a:74:1a:27:64:3c:7d: 64:38:dc:04:4d:86:10:b4:28:8b:bc:79:94:dd:ec: 9a:c5:f8:ac:59:70:85:4a:89:bd:fd:ed:0a:43:79: 39:41:a1:b7:be:0e:16:0d:c3:2a:5f:6a:b2:69:b4: d3:c6:92:09:65:26:96:55:85:9b:20:80:a7:03:f3: 4a:b6:ba:4d:25:db:18:94:dc:d8:8d:a7:5e:28:ea: d3:96:38:71:7b:3f:e6:66:4c:63:c8:9a:a5:68:2c: 1b:f3:e2:c4:dc:cc:79:09:92:a4:bd:5f:21:5f:e2: 89:6f:e5:73:fb:de:8c:c8:89:e5:18:a8:31:b1:43: 6c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:82:D5:D6:B1:76:45:A7:E3:8B:CD:47:EA:7C:A1:29:D5:8A:C3:D7 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/3af7659c-c364-4492-bd08-bb9e6b8fdf43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.88.0/22 Signature Algorithm: sha256WithRSAEncryption 79:6b:d9:32:ea:db:a9:05:1f:94:0c:62:6e:be:51:d6:53:6f: ae:af:d0:3b:97:8d:b9:db:92:dd:51:36:fb:09:e7:02:27:d1: 4a:69:28:ee:40:ad:69:46:39:7d:b6:56:e2:fe:b7:f9:d9:4e: be:e8:2d:f2:51:d5:f3:2c:ba:1a:e2:f5:81:c1:8b:27:b0:d8: 37:25:81:45:74:74:3a:f6:fb:0b:c0:d2:08:48:a5:b8:7d:bc: ac:69:7c:d7:4e:aa:e1:a5:e6:f6:aa:d1:5a:a1:67:6c:1d:03: ae:66:aa:c3:4b:27:63:ba:55:4b:3b:65:3c:36:cc:d8:76:8c: 66:52:2d:c5:2f:54:a2:64:da:8b:18:96:68:bf:e0:ff:68:54: 35:de:14:79:98:e8:ca:28:5a:4c:64:61:bd:62:cf:0e:14:06: d2:e5:3f:96:86:0b:f3:78:10:70:12:1f:15:b6:ff:b1:43:aa: 0d:ac:a7:32:63:80:89:95:77:db:f2:8b:c8:ab:90:f2:7e:a5: 4e:a0:dc:7d:01:47:fb:0a:25:b7:f7:6b:71:50:d8:61:90:e8: 47:87:04:64:e0:24:34:d3:ca:23:48:65:d1:87:fb:31:92:dc: b1:2a:3d:b0:f1:17:d9:90:36:1f:d2:71:ae:e5:3e:fe:45:5b: 2e:18:6d:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCDrw4i/RAkNq3SaJpyFmvWNHchYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNTIwMTUzMDI2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTA5ZWMxMGFlY2FlZWEyMzI1YmUxNzVhYjQ5NWQxZjYx NTkzMWQ2ZWEzZmE4N2E5ODZiMDhhY2I5NmU2NjllMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClsbhiYG4HaDN0doclrmm7DDEz7E4DyGqrr7jUABjhLuut lEw6t+37yn1j0rQQBxyaNWkf9O5APBQAhIfd6YItfhhhXspXtA0Hq3DMzGpBmXNr hj3clwIC0EA4HNK5HsZTKJ1/FHCo1IhV+R/rr5MTZJbn9Yd9QJkP8SYHKskKWnQa J2Q8fWQ43ARNhhC0KIu8eZTd7JrF+KxZcIVKib397QpDeTlBobe+DhYNwypfarJp tNPGkgllJpZVhZsggKcD80q2uk0l2xiU3NiNp14o6tOWOHF7P+ZmTGPImqVoLBvz 4sTczHkJkqS9XyFf4olv5XP73ozIieUYqDGxQ2wHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtYLV1rF2Rafji81H6nyhKdWKw9cwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzNhZjc2NTljLWMzNjQtNDQ5Mi1iZDA4LWJiOWU2YjhmZGY0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIycFgwDQYJKoZIhvcNAQELBQADggEBAHlr2TLq26kFH5QMYm6+UdZTb66v 0DuXjbnbkt1RNvsJ5wIn0UppKO5ArWlGOX22VuL+t/nZTr7oLfJR1fMsuhri9YHB iyew2DclgUV0dDr2+wvA0ghIpbh9vKxpfNdOquGl5vaq0VqhZ2wdA65mqsNLJ2O6 VUs7ZTw2zNh2jGZSLcUvVKJk2osYlmi/4P9oVDXeFHmY6MooWkxkYb1izw4UBtLl P5aGC/N4EHASHxW2/7FDqg2spzJjgImVd9vyi8irkPJ+pU6g3H0BR/sKJbf3a3FQ 2GGQ6EeHBGTgJDTTyiNIZdGH+zGS3LEqPbDxF9mQNh/Sca7lPv5FWy4YbeQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:15:05 2025 by rpki-client