$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa File: b0174157-080f-44e0-b58f-59731776aac9.roa (raw, json) Hash identifier: +tDSVCg5MxSWGpWL+Pyag7hi3hU0C4IrmgQkGkprN3I= Subject key identifier: 7E:81:1E:66:48:4D:5B:71:55:6D:7E:2F:F4:A6:91:B9:3B:37:11:BE Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 1C754A0F4184237D219B3817929A798B9D97A649 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa Signing time: Tue 21 Oct 2025 00:10:07 +0000 ROA not before: Tue 21 Oct 2025 00:10:07 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:75:4a:0f:41:84:23:7d:21:9b:38:17:92:9a:79:8b:9d:97:a6:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Oct 21 00:10:07 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=3afbc311dcae18afc7c2b506315c1d5f2f2776d6c688a4f6204d49bc34898234, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3a:d7:06:b4:e3:5b:5a:90:88:8d:9b:c2:48: 8e:39:fe:df:f6:70:a0:14:54:73:df:54:4a:89:fc: 8e:d4:4b:6b:61:7f:24:26:31:eb:60:09:a2:fe:e9: 97:49:ba:a0:29:c0:8f:04:62:0f:a9:a2:b2:d7:3e: 66:d5:81:f8:06:7e:5e:e2:47:02:a7:df:9f:29:bc: d3:40:c6:68:99:5f:6d:9e:4b:1a:cd:51:f6:bd:3a: 84:ac:a5:ae:a4:82:22:bd:7e:ea:3a:87:77:a2:ca: 4e:1b:49:09:d9:04:cb:0d:79:f9:90:31:3b:5d:70: b3:f0:bf:21:51:f1:09:e9:bd:f1:28:35:40:b5:ad: fc:3f:c7:92:53:9a:67:96:cf:cd:28:c8:f9:a2:9d: d9:b0:cd:cf:fa:fa:72:62:6c:9d:cf:d8:3c:14:1f: f5:72:0e:29:32:54:a7:17:07:16:a2:3c:5a:3a:d5: 83:49:16:b3:a4:f9:62:30:27:49:e3:43:2d:71:c0: 71:1a:c6:d1:eb:f7:92:2c:5c:36:2b:e0:b5:97:8c: f7:cc:d3:be:a2:9b:fc:ae:a6:ac:d1:d7:9c:ac:04: dd:3d:ee:3f:09:46:c6:d7:bb:f0:1b:70:47:1a:92: fa:7c:28:f4:ff:c5:7d:37:74:b0:bb:5b:d2:f6:24: ea:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:81:1E:66:48:4D:5B:71:55:6D:7E:2F:F4:A6:91:B9:3B:37:11:BE X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.64.0/20 Signature Algorithm: sha256WithRSAEncryption 9e:20:68:de:95:5f:f7:6d:c8:fd:9e:d0:68:44:8b:a2:4a:2f: d6:b7:45:79:7c:4c:40:5b:51:8d:4f:8d:1b:21:ef:47:8d:47: 91:b3:e8:f9:36:5a:51:bf:11:4f:68:dc:0b:f7:33:59:69:5f: ee:61:68:24:31:88:6c:62:c6:59:44:4f:bf:d1:b1:e2:a6:46: da:1c:6c:d0:94:03:c4:fd:42:5b:da:79:e4:6a:20:bb:85:70: e3:a4:33:43:ae:1b:e6:e0:09:e1:6b:2b:94:45:bf:19:2e:60: 7b:99:1c:f9:1f:87:cf:ee:66:67:e8:04:9e:3c:0c:08:8d:c2: 60:4a:09:0a:91:22:52:39:0a:4b:70:fa:6b:ed:b4:15:fd:89: 9e:54:f3:3f:89:2d:47:07:81:98:64:06:ea:fe:7c:eb:76:44: fc:4c:46:a9:61:f5:59:67:fb:72:75:22:bd:93:64:af:e3:9d: 68:d8:ab:ec:b1:16:bc:b4:84:ca:9c:cb:23:a9:d9:99:15:e1: 4f:50:df:08:58:d0:1a:ca:05:b8:d1:86:fa:36:f2:6f:22:d6: f4:02:5e:cd:98:47:c4:71:72:7f:15:ba:c9:11:f7:69:0b:fc: 1e:48:2b:1d:29:87:db:20:68:b8:f4:a9:83:ff:bd:37:12:6d: 16:d4:f4:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHHVKD0GEI30hmzgXkpp5i52XpkkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUxMDIxMDAxMDA3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWZiYzMxMWRjYWUxOGFmYzdjMmI1MDYzMTVjMWQ1ZjJm Mjc3NmQ2YzY4OGE0ZjYyMDRkNDliYzM0ODk4MjM0MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtOtcGtONbWpCIjZvCSI45/t/2cKAUVHPfVEqJ/I7US2th fyQmMetgCaL+6ZdJuqApwI8EYg+porLXPmbVgfgGfl7iRwKn358pvNNAxmiZX22e SxrNUfa9OoSspa6kgiK9fuo6h3eiyk4bSQnZBMsNefmQMTtdcLPwvyFR8QnpvfEo NUC1rfw/x5JTmmeWz80oyPmindmwzc/6+nJibJ3P2DwUH/VyDikyVKcXBxaiPFo6 1YNJFrOk+WIwJ0njQy1xwHEaxtHr95IsXDYr4LWXjPfM076im/yupqzR15ysBN09 7j8JRsbXu/AbcEcakvp8KPT/xX03dLC7W9L2JOolAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfoEeZkhNW3FVbX4v9KaRuTs3Eb4wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2IwMTc0MTU3LTA4MGYtNDRlMC1iNThmLTU5NzMxNzc2YWFjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycEAwDQYJKoZIhvcNAQELBQADggEBAJ4gaN6VX/dtyP2e0GhEi6JKL9a3 RXl8TEBbUY1PjRsh70eNR5Gz6Pk2WlG/EU9o3Av3M1lpX+5haCQxiGxixllET7/R seKmRtocbNCUA8T9QlvaeeRqILuFcOOkM0OuG+bgCeFrK5RFvxkuYHuZHPkfh8/u ZmfoBJ48DAiNwmBKCQqRIlI5Cktw+mvttBX9iZ5U8z+JLUcHgZhkBur+fOt2RPxM Rqlh9Vln+3J1Ir2TZK/jnWjYq+yxFry0hMqcyyOp2ZkV4U9Q3whY0BrKBbjRhvo2 8m8i1vQCXs2YR8Rxcn8VuskR92kL/B5IKx0ph9sgaLj0qYP/vTcSbRbU9Jc= -----END CERTIFICATE-----Generated at Wed Nov 5 07:59:44 2025 by rpki-client