$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa File: 474b8370-dc4f-4592-ac12-366b777c2660.roa (raw, json) Hash identifier: xpsd5mPwJrSYCaOW+PeyN34Ds2CgEKKR7VrcEnqZ6RU= Subject key identifier: D4:5A:31:CC:62:93:C0:8D:D4:95:88:7E:DA:0F:39:79:3E:95:8E:DC Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 71F4D338AD9F964D93682AEC7BDCB94787CDEDB5 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa Signing time: Fri 25 Apr 2025 15:20:04 +0000 ROA not before: Fri 25 Apr 2025 15:20:04 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:f4:d3:38:ad:9f:96:4d:93:68:2a:ec:7b:dc:b9:47:87:cd:ed:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 25 15:20:04 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=fc820bb4b290fd31065093d2d4a5522a42d9f5f317dafe7bd2d027a166574e06, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a9:8c:eb:5e:e3:15:5b:d0:8c:f8:f7:9b:ae: 17:d9:b2:3b:b1:53:13:29:e3:99:10:27:75:44:9f: 3d:83:52:b0:05:b0:70:84:a6:5d:db:15:89:fa:0c: fe:96:1a:b6:49:2c:9b:c8:1f:e3:4b:98:73:a9:02: 5f:b5:10:de:54:db:95:c7:0c:cd:79:bc:dc:f0:a2: 1b:cc:9f:bd:d5:e4:51:9c:8f:64:70:70:7a:2a:2d: bd:fa:9e:da:2d:bc:f7:24:6e:c4:30:da:d4:8b:c7: 17:fb:3c:1e:30:d9:d9:ee:41:1b:09:85:f4:6e:27: fd:f1:7c:42:03:ea:cc:e5:d6:9a:86:d0:31:06:95: dc:f9:77:2b:ba:4f:98:64:e4:fd:af:44:fc:33:2f: 06:92:de:38:24:3a:a0:c9:b7:4e:f7:8a:b8:55:8d: 5c:f3:eb:c3:39:5b:bb:f5:85:1f:50:88:0f:1a:30: 65:9b:be:0a:b9:2e:fa:68:9f:3c:45:6c:b9:12:0a: 01:eb:fd:0b:ff:d3:7d:4b:a4:44:44:fe:61:e5:4c: 05:3b:20:24:1a:59:0d:d6:59:65:82:8b:3a:8f:7c: e3:cf:39:47:44:39:86:95:d3:f3:5f:d9:a9:61:07: c3:c0:8d:58:2a:69:2f:4a:78:1d:22:4a:c3:7b:8b: 7b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5A:31:CC:62:93:C0:8D:D4:95:88:7E:DA:0F:39:79:3E:95:8E:DC X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/474b8370-dc4f-4592-ac12-366b777c2660.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.1.0/24 Signature Algorithm: sha256WithRSAEncryption 96:8d:2f:ce:1f:44:8f:5b:f1:fb:af:71:eb:84:b4:91:b7:50: 49:87:8f:a1:44:82:f4:f1:6f:04:2d:ae:a7:d5:a6:e1:eb:be: 50:f3:b6:ea:f5:a3:f3:12:79:16:92:d3:6c:a8:15:55:d4:b0: a2:a9:50:b2:f8:88:62:fa:ff:4a:e1:b1:56:0e:9b:ca:1d:f2: 9c:28:6d:fa:30:4a:0a:3b:2b:f8:21:81:8b:f5:cf:49:79:66: c1:5d:b4:ec:f2:74:48:ac:62:a5:0e:1a:d5:85:ee:19:87:f5: 4d:4c:ee:92:6f:af:61:b6:de:ad:44:94:78:42:34:4e:1b:50: 7e:1e:48:94:4d:83:31:cb:d8:2f:38:1c:d8:47:d4:a9:21:95: ec:3f:c5:87:f5:83:63:50:ec:da:75:d0:7b:26:5a:5e:6d:36: 2e:73:51:d1:a0:99:db:12:54:96:bb:57:1d:51:45:4c:6b:3a: 58:19:60:7a:fc:35:f7:e2:ae:51:25:20:aa:26:94:20:e8:9a: cd:29:06:58:c5:5b:53:72:cf:21:29:3d:ce:02:38:e1:ed:9c: 93:ee:5e:d7:c2:a1:d9:85:05:66:cc:47:a7:52:31:49:44:27: b4:1d:b2:e9:f9:5c:78:ee:98:ce:d2:fa:2b:46:84:f3:3b:28: 34:54:e7:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcfTTOK2flk2TaCrse9y5R4fN7bUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNDI1MTUyMDA0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzgyMGJiNGIyOTBmZDMxMDY1MDkzZDJkNGE1NTIyYTQy ZDlmNWYzMTdkYWZlN2JkMmQwMjdhMTY2NTc0ZTA2MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVqYzrXuMVW9CM+PebrhfZsjuxUxMp45kQJ3VEnz2DUrAF sHCEpl3bFYn6DP6WGrZJLJvIH+NLmHOpAl+1EN5U25XHDM15vNzwohvMn73V5FGc j2RwcHoqLb36ntotvPckbsQw2tSLxxf7PB4w2dnuQRsJhfRuJ/3xfEID6szl1pqG 0DEGldz5dyu6T5hk5P2vRPwzLwaS3jgkOqDJt073irhVjVzz68M5W7v1hR9QiA8a MGWbvgq5LvponzxFbLkSCgHr/Qv/031LpERE/mHlTAU7ICQaWQ3WWWWCizqPfOPP OUdEOYaV0/Nf2alhB8PAjVgqaS9KeB0iSsN7i3tDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1FoxzGKTwI3UlYh+2g85eT6VjtwwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzQ3NGI4MzcwLWRjNGYtNDU5Mi1hYzEyLTM2NmI3NzdjMjY2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAycAEwDQYJKoZIhvcNAQELBQADggEBAJaNL84fRI9b8fuvceuEtJG3UEmH j6FEgvTxbwQtrqfVpuHrvlDztur1o/MSeRaS02yoFVXUsKKpULL4iGL6/0rhsVYO m8od8pwobfowSgo7K/ghgYv1z0l5ZsFdtOzydEisYqUOGtWF7hmH9U1M7pJvr2G2 3q1ElHhCNE4bUH4eSJRNgzHL2C84HNhH1Kkhlew/xYf1g2NQ7Np10HsmWl5tNi5z UdGgmdsSVJa7Vx1RRUxrOlgZYHr8NffirlElIKomlCDoms0pBljFW1NyzyEpPc4C OOHtnJPuXtfCodmFBWbMR6dSMUlEJ7Qdsun5XHjumM7S+itGhPM7KDRU50U= -----END CERTIFICATE-----Generated at Sat Apr 26 18:10:20 2025 by rpki-client