$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa File: 708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa (raw, json) Hash identifier: 1hsSjJTW7XOFgqryR0Tci/fau3CQvsYqj5Ql8E2AuZo= Subject key identifier: 06:B5:6D:A2:7E:DC:F8:46:D5:D9:CE:A2:33:01:F2:7C:E7:FF:89:7C Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 43D6721E51E358127B658D606752629C518AB85E Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa Signing time: Tue 21 Oct 2025 00:20:04 +0000 ROA not before: Tue 21 Oct 2025 00:20:04 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d6:72:1e:51:e3:58:12:7b:65:8d:60:67:52:62:9c:51:8a:b8:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Oct 21 00:20:04 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=3c3569f091ccc3e3b0958b78b0edfd8eaa850598f525b23397c9e0c22f78ef39, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:74:47:a8:fe:28:88:ce:e1:4c:05:5a:4d:dd: f7:c4:c0:f3:5e:f7:6a:ef:b7:86:f2:e9:c9:06:15: e9:94:27:7f:c0:d1:c0:94:d6:6a:b0:6c:ed:b1:4d: 6b:ff:95:76:cd:1a:61:18:ac:fd:13:0d:d7:59:6c: f1:7e:35:88:df:4f:37:6e:d9:d7:17:9c:04:32:72: 78:42:aa:db:71:b1:67:91:2d:42:a5:91:ff:b0:14: 99:b6:30:35:57:de:15:cb:40:af:95:1c:53:34:50: ba:84:98:95:22:32:fe:f5:c2:be:3c:da:05:5e:ad: f7:90:e7:4b:df:b4:6e:12:ac:66:fe:d6:de:16:d1: 67:63:e6:d8:96:3f:f2:e1:7d:cb:23:64:33:db:2e: 42:da:b3:0e:61:14:f1:e9:66:a3:83:9c:35:da:d7: a4:48:6f:89:3e:a3:08:73:c7:c8:f7:95:f3:a1:7e: ef:ca:9b:bf:25:52:57:d8:dc:9b:67:c6:54:ee:4c: 72:67:d3:96:ed:be:fb:41:b1:94:c2:b2:20:0e:fa: f6:e1:ea:01:dd:24:48:0a:ef:18:b5:b8:e3:76:d6: 11:90:85:b0:41:7c:c5:9f:a0:52:68:f9:36:f8:bf: 0b:8d:9d:66:6f:76:a1:9c:79:98:02:db:46:7b:9a: e8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B5:6D:A2:7E:DC:F8:46:D5:D9:CE:A2:33:01:F2:7C:E7:FF:89:7C X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/708a8cbd-6d44-4d2f-b6e9-45131391be6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.80.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:42:f1:ca:b3:fa:f3:63:1c:9d:26:d6:3e:a8:26:99:d0:be: 73:5e:a8:0f:9c:b8:f4:13:b6:2c:4d:e9:2c:24:99:19:f2:c8: eb:c5:61:bf:e5:b1:7b:2e:30:16:66:2f:7c:0c:54:da:6c:51: 73:8c:f8:f8:d6:ef:6b:7a:ff:b6:06:e2:58:45:f9:06:ae:f4: 5c:3a:4f:52:ce:ff:5c:13:8b:4c:ee:0e:24:6f:d4:d5:86:07: 2a:f9:da:2a:e4:71:5d:f0:97:92:88:86:75:61:f1:57:87:08: b5:36:ad:64:28:13:f6:d4:73:02:1c:5d:bb:76:a0:9e:8e:8b: 29:d7:fd:54:f5:99:af:3b:42:3d:f2:26:77:5b:f5:7a:bb:ef: fd:9b:0a:51:15:78:8c:4c:ab:bc:b6:79:78:b3:0f:0f:0a:4a: 18:f7:6d:c6:be:0b:6f:8b:c2:a4:47:25:62:de:d0:61:01:f1: f3:0a:fc:1a:60:80:54:fa:d1:68:62:cd:bd:30:a8:00:45:c7: fc:73:64:82:5e:a8:6b:30:64:07:6d:d3:c4:e2:98:67:3c:27: 5f:ae:6d:c8:48:60:83:0d:c4:89:60:d2:08:b7:f6:a4:66:1b: c0:82:51:15:68:1a:6d:67:04:4b:de:75:c3:02:d2:20:83:9c: 55:ad:3e:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ9ZyHlHjWBJ7ZY1gZ1JinFGKuF4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUxMDIxMDAyMDA0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzM1NjlmMDkxY2NjM2UzYjA5NThiNzhiMGVkZmQ4ZWFh ODUwNTk4ZjUyNWIyMzM5N2M5ZTBjMjJmNzhlZjM5MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgdEeo/iiIzuFMBVpN3ffEwPNe92rvt4by6ckGFemUJ3/A 0cCU1mqwbO2xTWv/lXbNGmEYrP0TDddZbPF+NYjfTzdu2dcXnAQycnhCqttxsWeR LUKlkf+wFJm2MDVX3hXLQK+VHFM0ULqEmJUiMv71wr482gVerfeQ50vftG4SrGb+ 1t4W0Wdj5tiWP/LhfcsjZDPbLkLasw5hFPHpZqODnDXa16RIb4k+owhzx8j3lfOh fu/Km78lUlfY3JtnxlTuTHJn05btvvtBsZTCsiAO+vbh6gHdJEgK7xi1uON21hGQ hbBBfMWfoFJo+Tb4vwuNnWZvdqGceZgC20Z7mugpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBrVton7c+EbV2c6iMwHyfOf/iXwwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzcwOGE4Y2JkLTZkNDQtNGQyZi1iNmU5LTQ1MTMxMzkxYmU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMycFAwDQYJKoZIhvcNAQELBQADggEBAD9C8cqz+vNjHJ0m1j6oJpnQvnNe qA+cuPQTtixN6SwkmRnyyOvFYb/lsXsuMBZmL3wMVNpsUXOM+PjW72t6/7YG4lhF +Qau9Fw6T1LO/1wTi0zuDiRv1NWGByr52irkcV3wl5KIhnVh8VeHCLU2rWQoE/bU cwIcXbt2oJ6OiynX/VT1ma87Qj3yJndb9Xq77/2bClEVeIxMq7y2eXizDw8KShj3 bca+C2+LwqRHJWLe0GEB8fMK/BpggFT60Whizb0wqABFx/xzZIJeqGswZAdt08Ti mGc8J1+ubchIYIMNxIlg0gi39qRmG8CCURVoGm1nBEvedcMC0iCDnFWtPhU= -----END CERTIFICATE-----Generated at Wed Nov 5 11:25:54 2025 by rpki-client