$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa File: 474b8370-dc4f-4592-ac12-366b777c2660.roa (raw, json) Hash identifier: UkZbl0nL3uE2LvL1jDftmpDL8sx4eiPyjS59MvMnZAQ= Subject key identifier: D8:AF:D7:A9:BC:69:DA:A3:6B:AD:A3:E4:AE:DC:16:55:EF:C1:81:76 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 07BFF995E144B50881F88474CACF373C18946480 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa Signing time: Tue 21 Oct 2025 00:10:02 +0000 ROA not before: Tue 21 Oct 2025 00:10:02 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:bf:f9:95:e1:44:b5:08:81:f8:84:74:ca:cf:37:3c:18:94:64:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Oct 21 00:10:02 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=37eeae22c912b071e598008079e2c936bf158aa2615a172bd8642ca9acd3c290, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:27:0d:a4:95:05:c1:a0:54:cb:1e:2f:58: 7e:dc:f4:da:aa:55:9d:ac:54:f2:14:77:d7:1c:6a: 83:e6:2e:36:67:03:27:e0:99:78:ac:2c:89:f2:06: 14:ac:82:60:ab:3a:ee:ff:f7:2d:d4:c5:0e:f3:f4: fb:f6:4a:e9:be:ca:6e:7d:f5:db:df:74:dc:00:b4: 65:5d:32:65:78:97:03:88:bc:9b:46:66:37:cd:b3: 54:69:94:a0:c1:1b:b3:ec:10:92:46:31:e3:89:eb: 4c:10:ab:e8:da:aa:e4:da:9f:c9:62:20:1d:61:8d: 62:63:88:45:16:51:76:8f:7e:2d:9e:e3:2b:ea:a3: 12:97:bc:11:0d:2d:3c:22:75:07:ab:f8:83:2e:6a: 0d:23:6d:3c:57:3b:02:b5:9c:0d:4b:d6:86:0c:4b: 60:21:2b:da:2c:3e:57:f0:b1:c2:ff:00:79:6f:4f: 5b:0a:63:0d:44:51:30:58:b6:b2:0c:18:0b:4e:3a: b3:47:47:a1:76:4b:e1:31:d4:94:27:ad:04:6f:60: 9d:fb:6e:2d:8a:f4:70:b9:90:ce:48:88:73:fe:8d: ea:6d:da:a7:10:41:d7:c8:b1:2e:56:be:2f:25:3c: ce:e7:ff:73:b9:a5:e6:74:2a:78:2c:87:89:e7:b4: ff:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:AF:D7:A9:BC:69:DA:A3:6B:AD:A3:E4:AE:DC:16:55:EF:C1:81:76 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.1.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:51:63:eb:76:ef:21:e6:33:aa:0b:b9:c1:0b:f5:58:6d:6e: 2d:f0:b8:74:b8:b8:bf:b6:4b:96:e8:c0:4b:88:2a:12:ac:82: 74:25:b7:73:7e:b3:54:86:61:9c:49:24:7d:ef:07:f3:2a:22: a4:64:ac:77:03:66:4d:15:9a:2f:7b:1e:12:79:81:7b:f4:d9: 29:bb:e4:81:7c:d2:23:44:da:7e:ea:b9:bd:8e:a3:b1:43:65: 95:4a:b5:8d:96:98:3b:65:e3:db:6e:88:50:fd:5f:80:18:73: e8:6c:78:94:5c:77:d9:73:5a:6f:1c:26:36:b7:01:0f:39:79: 86:7a:11:ad:d0:8a:c2:23:d4:f9:72:06:ed:b0:c5:b0:ac:b7: 96:da:da:06:66:d7:5a:37:c9:0c:97:5b:38:c8:6a:c2:69:2b: 22:e6:e8:a2:20:93:41:bc:1d:69:be:60:a7:d2:6c:75:28:35: 82:f7:58:02:0c:e1:72:9d:cd:55:28:b2:c0:f4:04:34:e4:2b: b9:5f:b3:74:75:60:28:b2:62:e2:65:88:0c:cd:aa:e3:f7:aa: ba:7a:0e:90:ee:7b:9a:cf:04:eb:e1:99:13:8c:30:32:98:f6: c7:f1:7f:ae:96:a2:a4:bf:ea:6c:73:a1:7f:2e:bb:37:af:fa: d1:9b:cb:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB7/5leFEtQiB+IR0ys83PBiUZIAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUxMDIxMDAxMDAyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2VlYWUyMmM5MTJiMDcxZTU5ODAwODA3OWUyYzkzNmJm MTU4YWEyNjE1YTE3MmJkODY0MmNhOWFjZDNjMjkwMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+mCcNpJUFwaBUyx4vWH7c9NqqVZ2sVPIUd9ccaoPmLjZn AyfgmXisLInyBhSsgmCrOu7/9y3UxQ7z9Pv2Sum+ym599dvfdNwAtGVdMmV4lwOI vJtGZjfNs1RplKDBG7PsEJJGMeOJ60wQq+jaquTan8liIB1hjWJjiEUWUXaPfi2e 4yvqoxKXvBENLTwidQer+IMuag0jbTxXOwK1nA1L1oYMS2AhK9osPlfwscL/AHlv T1sKYw1EUTBYtrIMGAtOOrNHR6F2S+Ex1JQnrQRvYJ37bi2K9HC5kM5IiHP+jept 2qcQQdfIsS5Wvi8lPM7n/3O5peZ0Kngsh4nntP9hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2K/Xqbxp2qNrraPkrtwWVe/BgXYwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzQ3NGI4MzcwLWRjNGYtNDU5Mi1hYzEyLTM2NmI3NzdjMjY2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAycAEwDQYJKoZIhvcNAQELBQADggEBACtRY+t27yHmM6oLucEL9Vhtbi3w uHS4uL+2S5bowEuIKhKsgnQlt3N+s1SGYZxJJH3vB/MqIqRkrHcDZk0Vmi97HhJ5 gXv02Sm75IF80iNE2n7qub2Oo7FDZZVKtY2WmDtl49tuiFD9X4AYc+hseJRcd9lz Wm8cJja3AQ85eYZ6Ea3QisIj1PlyBu2wxbCst5ba2gZm11o3yQyXWzjIasJpKyLm 6KIgk0G8HWm+YKfSbHUoNYL3WAIM4XKdzVUossD0BDTkK7lfs3R1YCiyYuJliAzN quP3qrp6DpDue5rPBOvhmROMMDKY9sfxf66WoqS/6mxzoX8uuzev+tGbyxU= -----END CERTIFICATE-----Generated at Wed Nov 5 14:55:35 2025 by rpki-client