$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa File: b0174157-080f-44e0-b58f-59731776aac9.roa (raw, json) Hash identifier: kJkMjlSsF6P5/r3wa58AAmMwEllviBqw3fXRgs4dmj0= Subject key identifier: 0B:1B:AE:28:B2:D7:A2:42:CB:8C:D8:73:A8:64:17:BB:1A:FC:40:58 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 113AC9E067F33AB25687496CA12BFA91A1F04386 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa Signing time: Fri 25 Apr 2025 15:20:11 +0000 ROA not before: Fri 25 Apr 2025 15:20:11 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3a:c9:e0:67:f3:3a:b2:56:87:49:6c:a1:2b:fa:91:a1:f0:43:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Apr 25 15:20:11 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=5b85af6e4c501e3708394c11ddbbb1e3ce338f00f2a3dac3a6453528e05226b7, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5a:b2:19:ce:23:56:78:eb:d5:9c:34:20:5f: ce:6e:f5:d5:ca:d3:3b:73:e1:80:89:d4:f6:a0:6b: 72:1a:b3:43:8e:b0:97:72:37:3e:4a:03:1a:e9:25: 32:9c:83:c7:18:e2:2b:43:08:c4:5d:76:30:06:89: 18:ed:4a:a9:91:f2:4d:e0:61:18:f9:c8:5d:ba:07: c0:a6:c3:be:ff:df:c5:cc:c3:0b:18:3d:3a:63:61: 19:06:a4:3b:3f:de:b8:4c:05:8a:76:99:60:c6:0c: a8:60:48:40:62:b3:30:24:ac:73:83:af:48:ec:28: c5:98:6f:80:13:53:6e:77:8c:89:03:07:bb:a0:b8: a7:09:b6:47:d3:22:96:8e:4a:30:0f:ba:91:c4:ee: 02:4d:96:5b:7d:a5:84:5b:0f:7c:c3:40:9f:fa:6c: 33:97:6f:20:fc:19:c0:41:ad:86:13:cf:d2:af:33: c3:e7:f5:92:ee:02:a5:d0:8b:24:c8:85:9a:b7:40: 6e:fb:e8:10:0e:0b:0d:fe:43:5d:58:96:d1:55:04: 93:6a:ad:06:65:f3:f8:c8:d1:c5:39:f8:e2:da:33: 4a:a6:b7:a1:63:8a:c0:6d:3b:a0:41:fc:06:5c:25: b4:72:0e:c8:1d:38:71:03:cf:b0:bb:80:0d:c4:c5: 4f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1B:AE:28:B2:D7:A2:42:CB:8C:D8:73:A8:64:17:BB:1A:FC:40:58 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/b0174157-080f-44e0-b58f-59731776aac9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.64.0/20 Signature Algorithm: sha256WithRSAEncryption 85:47:ad:33:c4:a1:db:ab:6c:10:02:f7:46:2b:5b:df:20:da: e0:0b:e6:fa:6e:a0:ba:39:a7:fc:a8:fc:d3:09:f4:8e:22:25: 7f:f6:cb:f7:57:1f:3d:6b:ec:b9:5c:44:2c:49:ca:4e:d5:8d: 54:a4:aa:b1:1e:f1:6f:ed:b9:70:8a:10:3f:74:5e:ee:54:4f: de:3d:fc:ee:27:72:8f:aa:4e:ee:d0:1b:3f:92:97:56:73:90: 00:ba:92:31:5e:d4:e6:cd:63:fc:85:d1:29:90:01:78:c4:bb: 0c:39:42:fa:d7:1b:1e:f7:22:21:0e:dd:fa:a0:c5:dd:ad:d0: 80:64:7f:1f:de:aa:b5:fe:44:92:5e:16:c3:ab:e5:15:71:8d: 8d:4e:af:e5:0b:e1:ef:67:c6:14:43:24:8d:6b:ee:31:a2:07: 7f:76:7b:51:65:3f:8c:6a:13:5e:83:8c:44:95:08:cf:c4:12: 1d:ce:32:47:42:13:33:69:12:47:ad:dc:40:fe:82:37:19:46: 35:38:d8:8b:75:8a:ef:34:f2:2b:54:29:e0:54:c8:bc:97:5f: 42:bf:98:43:60:6c:80:fb:ce:df:0e:5e:ee:d8:a1:10:80:51: 6c:26:86:0f:60:a2:5f:1f:76:16:b9:cd:44:76:40:bc:51:ea: 35:e9:86:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUETrJ4GfzOrJWh0lsoSv6kaHwQ4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNDI1MTUyMDExWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Yjg1YWY2ZTRjNTAxZTM3MDgzOTRjMTFkZGJiYjFlM2Nl MzM4ZjAwZjJhM2RhYzNhNjQ1MzUyOGUwNTIyNmI3MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCWrIZziNWeOvVnDQgX85u9dXK0ztz4YCJ1Paga3Ias0OO sJdyNz5KAxrpJTKcg8cY4itDCMRddjAGiRjtSqmR8k3gYRj5yF26B8Cmw77/38XM wwsYPTpjYRkGpDs/3rhMBYp2mWDGDKhgSEBiszAkrHODr0jsKMWYb4ATU253jIkD B7uguKcJtkfTIpaOSjAPupHE7gJNllt9pYRbD3zDQJ/6bDOXbyD8GcBBrYYTz9Kv M8Pn9ZLuAqXQiyTIhZq3QG776BAOCw3+Q11YltFVBJNqrQZl8/jI0cU5+OLaM0qm t6FjisBtO6BB/AZcJbRyDsgdOHEDz7C7gA3ExU+pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCxuuKLLXokLLjNhzqGQXuxr8QFgwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2IwMTc0MTU3LTA4MGYtNDRlMC1iNThmLTU5NzMxNzc2YWFjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycEAwDQYJKoZIhvcNAQELBQADggEBAIVHrTPEodurbBAC90YrW98g2uAL 5vpuoLo5p/yo/NMJ9I4iJX/2y/dXHz1r7LlcRCxJyk7VjVSkqrEe8W/tuXCKED90 Xu5UT949/O4nco+qTu7QGz+Sl1ZzkAC6kjFe1ObNY/yF0SmQAXjEuww5QvrXGx73 IiEO3fqgxd2t0IBkfx/eqrX+RJJeFsOr5RVxjY1Or+UL4e9nxhRDJI1r7jGiB392 e1FlP4xqE16DjESVCM/EEh3OMkdCEzNpEket3ED+gjcZRjU42It1iu808itUKeBU yLyXX0K/mENgbID7zt8OXu7YoRCAUWwmhg9gol8fdha5zUR2QLxR6jXphgk= -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:56 2025 by rpki-client