$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa File: 87a321d9-94a4-41d4-9de7-5617146603fa.roa (raw, json) Hash identifier: zuUyYbtvirjCb2Vc/J3G48bA3hxoYBA752jaTETeIfo= Subject key identifier: A0:10:C0:2C:1A:28:2A:A6:99:7B:66:D0:96:EE:28:87:C3:08:76:ED Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 76C4148A4895C8C2B0AA566FD1F2C861ECDAC0FC Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa Signing time: Tue 21 Oct 2025 00:20:01 +0000 ROA not before: Tue 21 Oct 2025 00:20:01 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c4:14:8a:48:95:c8:c2:b0:aa:56:6f:d1:f2:c8:61:ec:da:c0:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Oct 21 00:20:01 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=9d88ba9d44397b47afdc893e89e1d2c10cd9b71c402a595d2d282f56d65ab418, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:61:ae:ee:0e:0c:b4:31:0b:20:43:1e:73: 04:96:8d:ee:27:99:3f:d0:d4:18:98:2d:b6:9e:f7: 1f:98:62:7a:89:50:a9:7f:68:32:01:a5:94:fc:06: 95:1a:33:8f:65:36:04:1a:de:b3:a0:cb:ef:12:67: ce:89:93:28:57:17:96:e5:ec:6e:e5:8a:73:e1:21: f0:d0:a5:28:1d:de:ad:32:cf:df:72:6c:64:29:16: 11:45:9c:74:73:5b:7a:70:72:96:43:39:36:c3:2d: 99:30:00:3d:15:d7:d2:d6:9a:0d:6e:4c:54:0b:71: b5:96:f3:84:c7:c6:34:b3:20:9a:a3:1a:ad:62:ff: 2b:b0:7e:3e:81:2e:9a:0e:9b:45:23:fb:90:8b:1f: 71:1b:a1:0d:14:a7:da:ea:44:b7:74:38:eb:37:68: b0:4d:b7:87:3d:ad:ea:69:2c:0e:80:a8:21:b4:dc: b6:6a:56:9c:65:2d:40:1d:53:40:19:4f:a1:3d:97: 1d:aa:79:69:6c:86:92:d2:4d:1e:59:80:16:c0:8e: 4b:40:81:50:42:a7:b7:72:9d:83:a6:44:5b:6e:29: 5e:3b:00:7c:92:de:a6:34:4e:78:af:65:6f:75:26: 09:8d:6d:27:b5:98:67:c9:d8:48:42:b8:a6:08:61: 85:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:10:C0:2C:1A:28:2A:A6:99:7B:66:D0:96:EE:28:87:C3:08:76:ED X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/17 Signature Algorithm: sha256WithRSAEncryption 4d:ea:fd:4c:66:2a:e3:d1:18:db:ae:34:9d:e0:60:87:27:21: fb:a3:4d:e5:d4:ce:3d:7e:21:8d:9e:f5:b3:de:1f:82:74:04: 10:66:9c:5c:c4:5f:46:97:f4:ee:87:f5:72:24:c8:1b:55:fa: de:df:6a:2f:6b:03:1a:1f:64:37:08:b7:85:1f:df:03:fe:21: 81:e2:06:70:74:50:7e:f6:26:a0:fc:3b:88:11:cc:8b:bd:e7: 5f:a3:73:97:4d:3a:16:ec:ae:ab:33:9d:4d:29:fe:41:3b:f6: e2:77:7e:1d:f7:ce:f3:34:35:6a:52:c9:09:cf:69:59:33:24: 0b:8a:79:ce:9c:87:2f:46:62:16:dc:91:60:57:ca:e7:11:74: 6a:af:fa:cd:31:92:4a:a5:7a:ac:de:31:94:68:e0:43:4a:40: 28:ce:8d:91:55:2e:fa:61:02:5e:a1:0c:77:f6:40:2f:c4:86: 5c:82:6a:dd:4e:4b:01:ba:08:1b:0f:79:b5:84:77:03:75:28: fe:9c:3c:7f:e1:aa:15:74:72:2a:8d:ab:39:e0:74:b7:7a:ba: 42:20:d1:cd:ab:f5:c0:95:1f:15:fa:7b:24:4b:70:4e:ab:01: b2:d0:92:be:53:9c:39:e2:29:db:61:7b:5e:50:ab:b2:01:c7: 95:e3:68:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdsQUikiVyMKwqlZv0fLIYezawPwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUxMDIxMDAyMDAxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDg4YmE5ZDQ0Mzk3YjQ3YWZkYzg5M2U4OWUxZDJjMTBj ZDliNzFjNDAyYTU5NWQyZDI4MmY1NmQ2NWFiNDE4MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+M2Gu7g4MtDELIEMecwSWje4nmT/Q1BiYLbae9x+YYnqJ UKl/aDIBpZT8BpUaM49lNgQa3rOgy+8SZ86JkyhXF5bl7G7linPhIfDQpSgd3q0y z99ybGQpFhFFnHRzW3pwcpZDOTbDLZkwAD0V19LWmg1uTFQLcbWW84THxjSzIJqj Gq1i/yuwfj6BLpoOm0Uj+5CLH3EboQ0Up9rqRLd0OOs3aLBNt4c9reppLA6AqCG0 3LZqVpxlLUAdU0AZT6E9lx2qeWlshpLSTR5ZgBbAjktAgVBCp7dynYOmRFtuKV47 AHyS3qY0TnivZW91JgmNbSe1mGfJ2EhCuKYIYYUvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoBDALBooKqaZe2bQlu4oh8MIdu0wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5Lzg3YTMyMWQ5LTk0YTQtNDFkNC05ZGU3LTU2MTcxNDY2MDNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcycAAwDQYJKoZIhvcNAQELBQADggEBAE3q/UxmKuPRGNuuNJ3gYIcnIfuj TeXUzj1+IY2e9bPeH4J0BBBmnFzEX0aX9O6H9XIkyBtV+t7fai9rAxofZDcIt4Uf 3wP+IYHiBnB0UH72JqD8O4gRzIu951+jc5dNOhbsrqsznU0p/kE79uJ3fh33zvM0 NWpSyQnPaVkzJAuKec6chy9GYhbckWBXyucRdGqv+s0xkkqleqzeMZRo4ENKQCjO jZFVLvphAl6hDHf2QC/EhlyCat1OSwG6CBsPebWEdwN1KP6cPH/hqhV0ciqNqzng dLd6ukIg0c2r9cCVHxX6eyRLcE6rAbLQkr5TnDniKdthe15Qq7IBx5XjaFA= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:14 2025 by rpki-client