$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa File: 87a321d9-94a4-41d4-9de7-5617146603fa.roa (raw, json) Hash identifier: cxSeEtspoaNXTmMvLXttn4gAdfIUo9aWQJX/CL1l+JQ= Subject key identifier: A1:9E:88:D3:82:30:B0:3E:96:00:C4:35:1C:B6:37:78:62:09:A4:E8 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 435CA3B7AAFBFB6B06561CAAD9388CC317550B61 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa Signing time: Tue 05 Aug 2025 15:10:06 +0000 ROA not before: Tue 05 Aug 2025 15:10:06 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5c:a3:b7:aa:fb:fb:6b:06:56:1c:aa:d9:38:8c:c3:17:55:0b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Aug 5 15:10:06 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=9400d7718116794ef8130b7966b1ac9734896b51a184c3a8b961c23b1e5c509c, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:17:63:e6:80:bc:01:09:82:7c:ac:18:07:68: 5a:05:65:97:12:9f:27:b6:b2:f4:32:47:43:1c:b3: 28:d2:70:41:ab:9e:31:16:54:c8:42:7d:7b:4f:7f: ef:a1:f8:d9:b4:ac:1d:23:d4:c1:b1:a9:13:68:18: 94:6c:98:96:f4:e3:72:71:ba:02:5f:af:08:f3:8a: 30:b7:50:e8:56:8e:69:24:80:7a:f4:da:95:f6:0c: 23:2b:97:9a:5b:85:c4:ca:60:b9:2f:10:27:85:f7: d8:21:26:dc:21:67:ee:93:4c:c5:90:2c:35:2e:d0: 45:27:fb:96:fc:31:2e:ec:36:6b:9b:c5:aa:cd:c8: 98:a6:a4:d6:0a:65:85:72:b4:2d:f8:e0:74:a2:7c: ce:b8:8d:8e:1e:6e:30:21:49:52:d9:63:d8:c8:79: 63:11:6d:ef:8d:ac:30:10:77:bd:a7:22:29:06:61: 90:05:d3:f4:85:40:82:5d:4e:6f:3b:4b:a0:d5:61: 85:ea:2e:62:a2:38:11:5a:81:b6:49:b0:eb:8b:b2: 12:89:b9:c5:47:ba:06:4d:b5:d6:51:5d:63:c1:f8: 10:c7:e4:7b:e1:72:e8:13:b8:33:d3:61:34:04:7b: a5:8b:57:af:d1:a4:5b:64:33:60:f5:1d:49:8c:b6: 31:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9E:88:D3:82:30:B0:3E:96:00:C4:35:1C:B6:37:78:62:09:A4:E8 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7a:cc:be:53:22:b9:b0:38:b1:e9:bf:92:fb:d2:95:f7:59:5d: e0:90:f0:06:07:80:d2:a6:68:ac:2f:4d:eb:e1:77:d5:d5:aa: bd:ed:79:73:78:0c:a8:52:aa:e2:9f:6e:b6:c4:0d:25:42:0f: 84:0e:d0:f1:b6:18:32:74:20:04:74:23:88:f7:cc:98:e7:19: 28:37:03:d0:64:93:9f:5d:07:76:7c:b4:6d:7e:9f:57:e5:3f: b1:4e:af:01:bc:fc:53:13:fb:76:51:ff:56:c6:38:5e:8f:d8: 62:13:04:c1:55:ac:6f:38:b7:b5:8e:5c:69:d2:d9:c9:43:7f: f5:23:33:e1:53:62:c1:cc:0f:97:04:1b:8b:62:cb:a8:2f:30: 5f:87:e8:f6:4d:38:4e:52:b5:72:1c:20:d3:15:b4:ec:9e:11: 86:e2:46:28:54:23:5c:f4:05:34:75:62:c9:f7:51:07:04:eb: 45:17:43:72:80:6a:df:49:ed:1c:1a:87:c2:01:59:28:25:f6: 35:5c:3e:ea:3e:2e:32:f9:b3:37:3f:79:41:80:87:54:16:98: 39:82:9a:26:12:1f:b7:ec:ab:90:ac:b0:38:48:08:c1:2b:4a: 0d:8f:fc:5a:dc:6d:c1:e4:ee:39:e2:eb:c6:55:d9:19:72:04: 61:07:ca:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ1yjt6r7+2sGVhyq2TiMwxdVC2EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwODA1MTUxMDA2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDAwZDc3MTgxMTY3OTRlZjgxMzBiNzk2NmIxYWM5NzM0 ODk2YjUxYTE4NGMzYThiOTYxYzIzYjFlNWM1MDljMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQF2PmgLwBCYJ8rBgHaFoFZZcSnye2svQyR0McsyjScEGr njEWVMhCfXtPf++h+Nm0rB0j1MGxqRNoGJRsmJb043JxugJfrwjzijC3UOhWjmkk gHr02pX2DCMrl5pbhcTKYLkvECeF99ghJtwhZ+6TTMWQLDUu0EUn+5b8MS7sNmub xarNyJimpNYKZYVytC344HSifM64jY4ebjAhSVLZY9jIeWMRbe+NrDAQd72nIikG YZAF0/SFQIJdTm87S6DVYYXqLmKiOBFagbZJsOuLshKJucVHugZNtdZRXWPB+BDH 5HvhcugTuDPTYTQEe6WLV6/RpFtkM2D1HUmMtjEZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoZ6I04IwsD6WAMQ1HLY3eGIJpOgwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5Lzg3YTMyMWQ5LTk0YTQtNDFkNC05ZGU3LTU2MTcxNDY2MDNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcycAAwDQYJKoZIhvcNAQELBQADggEBAHrMvlMiubA4sem/kvvSlfdZXeCQ 8AYHgNKmaKwvTevhd9XVqr3teXN4DKhSquKfbrbEDSVCD4QO0PG2GDJ0IAR0I4j3 zJjnGSg3A9Bkk59dB3Z8tG1+n1flP7FOrwG8/FMT+3ZR/1bGOF6P2GITBMFVrG84 t7WOXGnS2clDf/UjM+FTYsHMD5cEG4tiy6gvMF+H6PZNOE5StXIcINMVtOyeEYbi RihUI1z0BTR1Ysn3UQcE60UXQ3KAat9J7Rwah8IBWSgl9jVcPuo+LjL5szc/eUGA h1QWmDmCmiYSH7fsq5CssDhICMErSg2P/FrcbcHk7jni68ZV2RlyBGEHyqM= -----END CERTIFICATE-----Generated at Thu Aug 7 04:43:10 2025 by rpki-client