$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa File: 474b8370-dc4f-4592-ac12-366b777c2660.roa (raw, json) Hash identifier: zaJj2H5Au7GuIm+XtEl17Ji8HqOlSdWdVWh+WqoH7ZE= Subject key identifier: 68:9D:F2:56:00:EA:E2:5C:8D:27:79:90:F5:D6:C2:CA:79:4A:B9:33 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 404042624CE5139285CC753F3E8C466CF25BA41B Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa Signing time: Tue 05 Aug 2025 15:00:15 +0000 ROA not before: Tue 05 Aug 2025 15:00:15 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:40:42:62:4c:e5:13:92:85:cc:75:3f:3e:8c:46:6c:f2:5b:a4:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Aug 5 15:00:15 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=325d9a2b7a5172fa5bda0bb6ce8d3b73923fc4263002b802673d8c8d15ab6383, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:ec:72:12:2a:56:47:cd:6f:d4:ef:26:b8: 70:55:87:72:07:fc:d4:34:16:b4:34:49:82:e2:f7: 45:55:19:55:e7:c7:d2:0a:28:b7:37:60:be:59:5e: 47:5e:09:ec:f1:64:72:79:0a:69:e2:97:9c:e0:fb: 18:d4:4c:4f:70:d0:07:08:c0:e8:57:99:eb:7c:1c: 36:85:84:8b:2b:1a:51:bf:af:61:df:0a:f6:bf:9f: 1d:cd:08:7a:e9:69:7c:ba:05:43:e5:fd:88:87:d6: 3d:e1:37:8a:44:6d:32:de:31:94:9b:81:3c:25:40: 92:f9:35:e9:57:3a:62:bc:a5:d8:1f:cc:98:4a:f0: 86:b4:4f:1b:43:f9:40:31:1c:55:d3:a0:1a:3f:60: 59:14:a4:c4:ed:d3:12:bd:a7:4f:02:a7:f4:25:1e: e2:fc:62:d6:ca:87:70:66:ac:62:bf:c1:a0:de:db: 25:6d:e9:88:59:88:53:50:3b:58:4c:00:9d:a8:20: 1a:44:40:b0:7f:4f:a0:58:3b:f7:12:9f:b3:2a:93: d1:d2:ef:83:5b:51:a2:52:d3:8e:70:70:af:65:2a: d1:cb:99:49:d8:29:fc:59:a6:d3:8d:1a:6d:63:3f: 2a:62:af:fc:da:a3:57:ce:80:32:6d:41:44:4a:26: 4b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9D:F2:56:00:EA:E2:5C:8D:27:79:90:F5:D6:C2:CA:79:4A:B9:33 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.1.0/24 Signature Algorithm: sha256WithRSAEncryption 53:cc:64:c9:7c:d4:d8:47:3c:77:17:c3:1a:59:20:03:9e:50: 2a:e9:9b:58:59:bb:83:cf:78:f7:f4:1e:25:47:9c:e2:c4:dd: 10:af:9d:fb:c9:ae:ec:9d:04:70:9a:75:e6:4b:f0:23:de:0a: 2c:75:27:7e:d8:eb:e3:35:5e:ee:16:31:dd:5d:d8:87:c7:da: 8e:b5:15:8e:f9:63:b1:e1:7c:f5:cf:ee:8d:4f:9e:4e:c0:8d: 17:53:ae:49:5d:da:39:56:a6:ee:e9:2e:9e:58:f6:49:04:9f: 74:92:00:92:c3:bb:69:06:a4:db:22:95:2e:f7:13:d2:af:01: cc:6c:05:8f:f6:4f:b3:ad:52:a1:ac:15:d3:9a:44:cf:06:d8: 3b:cd:d4:36:54:b1:43:1e:5e:d1:8a:16:1c:ab:a4:00:9d:7f: 2d:d8:9c:b2:ae:ec:ca:22:ef:12:40:71:3b:63:70:1f:59:80: 61:91:a7:78:04:0b:83:ba:ba:7b:b9:b0:a0:34:0f:87:1c:73: d3:9d:f8:7c:7b:9b:88:4f:7e:df:98:87:bb:98:83:33:46:2f: 29:6f:d3:1e:8f:e0:de:64:f2:66:b8:96:b9:ed:9e:04:39:53: 0d:6f:75:a8:2b:f0:f7:12:1a:6a:1c:60:fb:06:33:91:18:57: b7:8a:66:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQEBCYkzlE5KFzHU/PoxGbPJbpBswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwODA1MTUwMDE1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjVkOWEyYjdhNTE3MmZhNWJkYTBiYjZjZThkM2I3Mzky M2ZjNDI2MzAwMmI4MDI2NzNkOGM4ZDE1YWI2MzgzMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwkexyEipWR81v1O8muHBVh3IH/NQ0FrQ0SYLi90VVGVXn x9IKKLc3YL5ZXkdeCezxZHJ5Cmnil5zg+xjUTE9w0AcIwOhXmet8HDaFhIsrGlG/ r2HfCva/nx3NCHrpaXy6BUPl/YiH1j3hN4pEbTLeMZSbgTwlQJL5NelXOmK8pdgf zJhK8Ia0TxtD+UAxHFXToBo/YFkUpMTt0xK9p08Cp/QlHuL8YtbKh3BmrGK/waDe 2yVt6YhZiFNQO1hMAJ2oIBpEQLB/T6BYO/cSn7Mqk9HS74NbUaJS045wcK9lKtHL mUnYKfxZptONGm1jPypir/zao1fOgDJtQURKJktvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaJ3yVgDq4lyNJ3mQ9dbCynlKuTMwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzQ3NGI4MzcwLWRjNGYtNDU5Mi1hYzEyLTM2NmI3NzdjMjY2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAycAEwDQYJKoZIhvcNAQELBQADggEBAFPMZMl81NhHPHcXwxpZIAOeUCrp m1hZu4PPePf0HiVHnOLE3RCvnfvJruydBHCadeZL8CPeCix1J37Y6+M1Xu4WMd1d 2IfH2o61FY75Y7HhfPXP7o1Pnk7AjRdTrkld2jlWpu7pLp5Y9kkEn3SSAJLDu2kG pNsilS73E9KvAcxsBY/2T7OtUqGsFdOaRM8G2DvN1DZUsUMeXtGKFhyrpACdfy3Y nLKu7Moi7xJAcTtjcB9ZgGGRp3gEC4O6unu5sKA0D4ccc9Od+Hx7m4hPft+Yh7uY gzNGLylv0x6P4N5k8ma4lrntngQ5Uw1vdagr8PcSGmocYPsGM5EYV7eKZkk= -----END CERTIFICATE-----Generated at Wed Aug 6 11:04:16 2025 by rpki-client