$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/9ad79ef8-03ba-465e-9dba-c97d158539bc.roa File: 9ad79ef8-03ba-465e-9dba-c97d158539bc.roa (raw, json) Hash identifier: LOlhs4tETgvuCldnOAS0iQIVwdJgpzpj699PW7Bb2AE= Subject key identifier: CD:0C:9C:DD:C9:1C:47:E1:2E:4D:FC:FD:56:4A:1E:C0:6A:A1:1E:C2 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 235BB9333BAAD969DF6014C60302527A1E4FBCD9 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/9ad79ef8-03ba-465e-9dba-c97d158539bc.roa Signing time: Tue 21 Oct 2025 00:10:06 +0000 ROA not before: Tue 21 Oct 2025 00:10:06 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5b:b9:33:3b:aa:d9:69:df:60:14:c6:03:02:52:7a:1e:4f:bc:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Oct 21 00:10:06 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=8ea6513518f5e498dad20d02f5a578a0eb49611039e1399e3b021667aacc1622, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4d:91:a7:67:d7:3e:e4:db:2e:b8:00:b7:f4: 9e:56:d8:e6:a2:b0:06:9e:66:b4:9d:a1:8d:b4:ec: 27:cb:de:17:36:69:16:c1:3b:4b:5c:cf:40:05:41: 79:26:89:03:83:7a:62:a6:3c:12:0b:9a:39:f8:d1: f3:6e:b3:aa:08:6a:b2:80:d1:c4:99:cb:84:08:84: 62:e3:ec:b1:af:29:48:fe:4a:46:d8:1a:50:2a:d2: 83:83:21:5b:9e:b9:81:12:c5:52:a2:99:d3:87:00: 0b:4e:5b:b2:05:75:4c:3a:7d:16:14:0c:6a:ff:c5: ac:c9:bc:70:25:bb:da:12:4e:7c:78:55:94:81:f5: d2:59:69:4e:cf:4c:ef:c3:c5:28:0b:31:6f:22:6c: 5b:02:3a:97:70:d7:e2:3e:9d:66:f4:f1:c6:59:ab: 6a:99:79:7a:01:93:f7:5e:72:7c:43:f3:da:eb:01: 48:c0:bd:4e:68:6e:d0:fa:95:df:f6:75:1e:c4:77: 31:b1:5e:d9:b7:32:da:b7:d6:fd:ca:71:05:cc:12: 1e:7c:30:87:a9:86:66:89:ca:c5:2d:45:6b:91:63: eb:1f:97:3c:6f:ce:b9:ed:46:cc:ae:0c:c2:cc:72: 1f:d5:fc:0c:94:92:9b:04:e5:15:ce:24:f5:05:47: 65:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:0C:9C:DD:C9:1C:47:E1:2E:4D:FC:FD:56:4A:1E:C0:6A:A1:1E:C2 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/9ad79ef8-03ba-465e-9dba-c97d158539bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.224.0/20 Signature Algorithm: sha256WithRSAEncryption 10:b3:9e:0d:de:91:bc:01:9a:8f:8d:a8:be:5f:d7:ef:10:6e: 90:0c:5a:3c:b6:ba:cb:f5:4f:8a:98:c3:6d:4c:74:74:ca:b7: 33:92:f8:e8:7e:c6:ef:24:5f:41:ed:e4:e5:9d:f3:87:40:e4: a2:c6:3e:b9:8f:68:5b:2a:c3:1b:d0:a8:67:ed:b0:12:de:20: 84:92:44:11:fc:75:d5:9f:dc:a1:04:b4:5d:ac:06:61:2d:4b: 2b:c3:dc:fe:58:ba:d2:2b:ff:88:90:ca:b8:75:b9:61:44:f7: 91:66:a0:55:2a:4e:11:2d:4e:3c:23:9a:f5:2b:2e:0c:03:91: 4c:1b:04:86:6e:ce:75:09:6c:c4:06:be:9b:ab:ff:b7:d8:e4: aa:07:63:1f:d5:d5:7c:d8:18:33:8b:fc:d8:91:44:79:05:b3: 09:c7:3f:01:72:01:65:93:37:a3:15:7f:69:58:dc:19:b2:c1: 6a:4f:88:d0:81:7a:24:7a:e9:8b:9b:84:71:65:7f:88:87:f1: 94:27:47:49:97:56:eb:da:3d:fc:e5:06:fc:c3:37:d3:79:7b: 3c:82:cc:d1:44:c3:d4:3a:33:ff:e7:03:db:56:3d:cf:df:e4: 62:b9:24:f9:04:74:ac:ff:74:77:80:53:6a:22:7b:f7:ce:a2: 93:c4:d4:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI1u5Mzuq2WnfYBTGAwJSeh5PvNkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUxMDIxMDAxMDA2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWE2NTEzNTE4ZjVlNDk4ZGFkMjBkMDJmNWE1NzhhMGVi NDk2MTEwMzllMTM5OWUzYjAyMTY2N2FhY2MxNjIyMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFTZGnZ9c+5NsuuAC39J5W2OaisAaeZrSdoY207CfL3hc2 aRbBO0tcz0AFQXkmiQODemKmPBILmjn40fNus6oIarKA0cSZy4QIhGLj7LGvKUj+ SkbYGlAq0oODIVueuYESxVKimdOHAAtOW7IFdUw6fRYUDGr/xazJvHAlu9oSTnx4 VZSB9dJZaU7PTO/DxSgLMW8ibFsCOpdw1+I+nWb08cZZq2qZeXoBk/decnxD89rr AUjAvU5obtD6ld/2dR7EdzGxXtm3Mtq31v3KcQXMEh58MIephmaJysUtRWuRY+sf lzxvzrntRsyuDMLMch/V/AyUkpsE5RXOJPUFR2VPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzQyc3ckcR+EuTfz9VkoewGqhHsIwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzlhZDc5ZWY4LTAzYmEtNDY1ZS05ZGJhLWM5N2QxNTg1MzliYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycOAwDQYJKoZIhvcNAQELBQADggEBABCzng3ekbwBmo+NqL5f1+8QbpAM Wjy2usv1T4qYw21MdHTKtzOS+Oh+xu8kX0Ht5OWd84dA5KLGPrmPaFsqwxvQqGft sBLeIISSRBH8ddWf3KEEtF2sBmEtSyvD3P5YutIr/4iQyrh1uWFE95FmoFUqThEt TjwjmvUrLgwDkUwbBIZuznUJbMQGvpur/7fY5KoHYx/V1XzYGDOL/NiRRHkFswnH PwFyAWWTN6MVf2lY3BmywWpPiNCBeiR66YubhHFlf4iH8ZQnR0mXVuvaPfzlBvzD N9N5ezyCzNFEw9Q6M//nA9tWPc/f5GK5JPkEdKz/dHeAU2oie/fOopPE1FE= -----END CERTIFICATE-----Generated at Wed Nov 5 11:21:59 2025 by rpki-client