$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa File: 87a321d9-94a4-41d4-9de7-5617146603fa.roa (raw, json) Hash identifier: wRrP+xDXCu/h8rj1DxjPSv5U0VrM9Ot/1T6rzZnOokA= Subject key identifier: CE:08:03:DE:AE:BF:34:E1:9E:EE:6D:0D:FE:49:43:3E:43:A5:CD:20 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 2CAB2D375E172698071012829E11A4247C595143 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa Signing time: Fri 25 Apr 2025 15:20:34 +0000 ROA not before: Fri 25 Apr 2025 15:20:34 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ab:2d:37:5e:17:26:98:07:10:12:82:9e:11:a4:24:7c:59:51:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 25 15:20:34 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=15529b343378f67f55ca79dc89ffec9059b8ceec1e9bd158527de069e74f5a0e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:da:c8:0f:d8:a9:74:df:2d:9f:a6:76:03:49: f9:49:c2:d0:df:49:ca:c8:5c:2a:89:af:fc:6e:29: 71:0d:d0:fa:c0:60:dd:04:4e:63:b0:dd:b7:75:1b: e3:82:7e:23:39:c8:e4:4d:1e:68:d8:f0:c3:03:43: 60:2e:c2:80:dd:fb:7b:63:c3:d9:28:f7:4c:3f:e5: 00:80:8d:33:cb:3a:04:38:24:bc:91:eb:eb:73:35: 45:16:48:ed:71:af:be:0c:f2:49:95:14:00:75:d0: 30:64:c6:a8:86:a0:d9:92:f3:3e:95:7f:a5:be:2c: a4:3d:cc:14:bf:c4:a6:3b:7d:10:3f:44:76:6f:9f: 8c:15:4c:e5:c2:b6:e5:f9:61:31:59:c9:20:c2:56: 14:cd:f9:b5:a1:cb:0a:92:04:e6:a5:03:8c:4c:0d: 34:15:94:a0:34:26:fc:47:d9:57:7f:43:a5:74:9c: 67:9b:14:99:51:00:62:56:05:b5:99:c8:52:e7:c1: ea:45:08:3a:d1:7e:41:37:14:fa:c2:2e:d8:be:22: ba:a7:72:2c:87:c9:83:e8:33:b4:9b:bd:5c:1a:6d: 50:78:71:28:78:e1:5d:65:aa:6e:1e:e4:c1:6a:b7: 22:3b:74:d7:5b:78:fe:dc:b0:2b:26:e8:c8:2a:a3: 35:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:08:03:DE:AE:BF:34:E1:9E:EE:6D:0D:FE:49:43:3E:43:A5:CD:20 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/17 Signature Algorithm: sha256WithRSAEncryption 36:9c:a2:30:a6:1f:6f:68:20:99:e3:a3:7f:21:d3:56:b4:8b: 31:59:a1:13:09:f6:16:63:8e:79:eb:ee:c5:0b:9f:a9:eb:7d: 3f:06:16:13:18:5c:11:2c:f2:99:03:12:66:fc:61:e4:78:56: 10:94:fd:bc:9b:a3:b8:e3:b3:76:80:f7:44:5c:44:d3:0b:2e: c7:5e:f7:4c:16:28:f0:1b:e2:29:c8:b7:27:55:e2:1d:fc:36: 42:ef:8d:e4:f8:57:5f:cf:6c:07:41:64:e5:95:ab:63:8a:f1: 00:d2:a1:ca:21:cf:07:4f:dd:96:fb:bc:79:d9:f1:a9:f7:f7: 7b:04:64:5f:52:d8:99:73:e3:ca:8a:16:99:63:e0:13:55:ad: 57:23:4c:6d:cf:e4:c0:dd:e1:5f:2e:60:cc:62:aa:81:40:17: d1:df:06:b0:ce:7b:0c:b8:d5:f5:39:32:ff:b5:d8:80:b4:49: 8b:56:1a:ce:81:f2:40:5c:71:d6:66:9d:a6:95:b9:80:cd:36: d9:e4:77:0d:38:df:b6:44:3a:e8:48:b8:55:a0:87:c9:63:8b: b1:b5:94:f8:94:af:b4:1b:02:9e:df:94:2d:19:f4:25:e8:6c: f6:51:a3:fd:b8:32:c4:24:48:e6:e9:7c:1b:d7:ae:f6:f8:15: 9e:74:e3:82 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULKstN14XJpgHEBKCnhGkJHxZUUMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNDI1MTUyMDM0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTUyOWIzNDMzNzhmNjdmNTVjYTc5ZGM4OWZmZWM5MDU5 YjhjZWVjMWU5YmQxNTg1MjdkZTA2OWU3NGY1YTBlMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo2sgP2Kl03y2fpnYDSflJwtDfScrIXCqJr/xuKXEN0PrA YN0ETmOw3bd1G+OCfiM5yORNHmjY8MMDQ2AuwoDd+3tjw9ko90w/5QCAjTPLOgQ4 JLyR6+tzNUUWSO1xr74M8kmVFAB10DBkxqiGoNmS8z6Vf6W+LKQ9zBS/xKY7fRA/ RHZvn4wVTOXCtuX5YTFZySDCVhTN+bWhywqSBOalA4xMDTQVlKA0JvxH2Vd/Q6V0 nGebFJlRAGJWBbWZyFLnwepFCDrRfkE3FPrCLti+IrqnciyHyYPoM7SbvVwabVB4 cSh44V1lqm4e5MFqtyI7dNdbeP7csCsm6MgqozWBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzggD3q6/NOGe7m0N/klDPkOlzSAwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5Lzg3YTMyMWQ5LTk0YTQtNDFkNC05ZGU3LTU2MTcxNDY2MDNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcycAAwDQYJKoZIhvcNAQELBQADggEBADacojCmH29oIJnjo38h01a0izFZ oRMJ9hZjjnnr7sULn6nrfT8GFhMYXBEs8pkDEmb8YeR4VhCU/bybo7jjs3aA90Rc RNMLLsde90wWKPAb4inItydV4h38NkLvjeT4V1/PbAdBZOWVq2OK8QDSocohzwdP 3Zb7vHnZ8an393sEZF9S2Jlz48qKFplj4BNVrVcjTG3P5MDd4V8uYMxiqoFAF9Hf BrDOewy41fU5Mv+12IC0SYtWGs6B8kBccdZmnaaVuYDNNtnkdw0437ZEOuhIuFWg h8lji7G1lPiUr7QbAp7flC0Z9CXobPZRo/24MsQkSObpfBvXrvb4FZ5044I= -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:37 2025 by rpki-client