$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa File: b0174157-080f-44e0-b58f-59731776aac9.roa (raw, json) Hash identifier: iq1Dlv8D1ZN6A9bEOrkSv75ZfwF4O5ewStPJXRgqBVM= Subject key identifier: 07:65:3C:68:B7:37:9B:39:A7:77:EF:4C:B3:B6:15:D7:D4:B3:73:CE Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 647E4D3A7C110B3E75A7E5426D11B9405A9ACA5A Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa Signing time: Tue 20 May 2025 15:30:31 +0000 ROA not before: Tue 20 May 2025 15:30:31 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:7e:4d:3a:7c:11:0b:3e:75:a7:e5:42:6d:11:b9:40:5a:9a:ca:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: May 20 15:30:31 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=5f1de5565723754a5e9188d11a950f0ff1c48f86f197877171a84b88b8619808, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:64:5c:c4:96:29:b2:2d:99:3a:92:53:66: 78:97:15:68:3b:10:d8:20:8b:5b:c8:59:f9:91:dc: f6:09:4d:8d:33:da:5f:a7:04:d5:77:d6:2e:40:f8: 30:15:e9:3a:79:98:e6:02:22:19:a8:3c:e7:7a:3d: b3:c4:99:0b:3c:8f:a0:d3:a5:78:f5:59:a4:78:10: 54:e9:bb:9c:33:7f:18:65:75:e3:00:50:fd:46:f4: 15:39:49:5d:c6:a9:61:0e:b6:d5:95:a3:aa:e9:1d: 6c:17:85:e8:52:92:f5:e0:05:e2:a8:92:07:51:f9: d7:8f:27:cf:cc:32:18:61:0a:56:6d:30:ee:e9:57: 8a:e8:da:2a:98:4c:93:2c:5b:c2:28:b8:22:e2:ec: 71:7d:fb:cc:7b:1a:5e:1f:01:a2:b3:b3:14:75:a0: 71:26:67:c6:8c:c5:1e:fc:46:e6:2e:6d:1f:4c:f1: 6c:47:de:15:2a:8d:57:29:41:79:88:cb:55:c6:2c: 46:7c:a6:df:bc:69:21:94:77:97:c9:ef:ed:5b:83: 3d:11:76:a9:4a:2e:ae:fb:07:25:b3:a8:8d:49:22: 02:ec:42:cb:93:d4:1e:84:75:31:8f:a2:4c:93:37: 74:3e:66:b4:17:dd:5f:90:d1:34:11:d1:2d:62:de: c0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:65:3C:68:B7:37:9B:39:A7:77:EF:4C:B3:B6:15:D7:D4:B3:73:CE X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.64.0/20 Signature Algorithm: sha256WithRSAEncryption 40:0c:13:bf:b3:9f:cd:2a:69:33:f1:a3:a3:99:5e:80:9f:d4: 3e:f2:97:b4:df:aa:7d:dd:55:10:4f:d4:e9:11:f3:9a:cf:3b: 4b:49:82:6f:20:20:42:8a:ea:0e:3a:60:a4:e9:19:2b:58:8c: 4d:f0:8a:e8:73:24:19:6f:93:44:fe:10:11:a8:ba:67:e0:4e: 30:87:e6:8c:80:ff:7b:46:33:49:b3:52:c7:28:1d:bf:a0:e7: 88:6d:33:d7:e6:f0:a7:86:09:a3:21:6a:03:22:8e:90:87:9a: 4b:d9:15:8d:09:7a:4c:5a:0a:8e:55:ac:9c:2c:25:3c:9d:c4: 01:bd:29:93:5d:1d:89:2a:a4:af:43:be:fd:9a:09:f5:bf:80: c2:45:c0:72:30:0a:76:c6:e0:72:74:7f:e7:30:f0:fa:10:b3: 9a:42:bd:d4:e0:b0:0b:93:09:98:85:3b:91:e6:af:e4:bd:e7: 78:f4:e0:98:2a:17:a9:a6:00:0b:0d:b8:f5:2c:14:bd:eb:6a: c2:ae:de:02:05:7b:fd:8b:96:da:e8:70:b6:48:bd:28:19:de: 2b:fe:5a:43:1a:7d:28:a9:ea:22:a4:cf:4d:39:ad:fb:8a:94: c7:fd:10:d6:3e:05:39:28:0c:fa:76:a4:3b:70:76:12:88:2a: 2e:5d:4c:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZH5NOnwRCz51p+VCbRG5QFqaylowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNTIwMTUzMDMxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjFkZTU1NjU3MjM3NTRhNWU5MTg4ZDExYTk1MGYwZmYx YzQ4Zjg2ZjE5Nzg3NzE3MWE4NGI4OGI4NjE5ODA4MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzVGRcxJYpsi2ZOpJTZniXFWg7ENggi1vIWfmR3PYJTY0z 2l+nBNV31i5A+DAV6Tp5mOYCIhmoPOd6PbPEmQs8j6DTpXj1WaR4EFTpu5wzfxhl deMAUP1G9BU5SV3GqWEOttWVo6rpHWwXhehSkvXgBeKokgdR+dePJ8/MMhhhClZt MO7pV4ro2iqYTJMsW8IouCLi7HF9+8x7Gl4fAaKzsxR1oHEmZ8aMxR78RuYubR9M 8WxH3hUqjVcpQXmIy1XGLEZ8pt+8aSGUd5fJ7+1bgz0RdqlKLq77ByWzqI1JIgLs QsuT1B6EdTGPokyTN3Q+ZrQX3V+Q0TQR0S1i3sAfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB2U8aLc3mzmnd+9Ms7YV19Szc84wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2IwMTc0MTU3LTA4MGYtNDRlMC1iNThmLTU5NzMxNzc2YWFjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycEAwDQYJKoZIhvcNAQELBQADggEBAEAME7+zn80qaTPxo6OZXoCf1D7y l7Tfqn3dVRBP1OkR85rPO0tJgm8gIEKK6g46YKTpGStYjE3wiuhzJBlvk0T+EBGo umfgTjCH5oyA/3tGM0mzUscoHb+g54htM9fm8KeGCaMhagMijpCHmkvZFY0Jekxa Co5VrJwsJTydxAG9KZNdHYkqpK9Dvv2aCfW/gMJFwHIwCnbG4HJ0f+cw8PoQs5pC vdTgsAuTCZiFO5Hmr+S953j04JgqF6mmAAsNuPUsFL3rasKu3gIFe/2LltrocLZI vSgZ3iv+WkMafSip6iKkz005rfuKlMf9ENY+BTkoDPp2pDtwdhKIKi5dTJE= -----END CERTIFICATE-----Generated at Sat Jun 14 06:33:17 2025 by rpki-client