$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c2d845ec-c39b-4b99-8358-e671c21de01d.roa File: c2d845ec-c39b-4b99-8358-e671c21de01d.roa (raw, json) Hash identifier: aO4MPO4yV8HJXGyfrQYXF6YP4+kAluAqy4b/58GTIag= Subject key identifier: 86:87:7B:DB:B1:92:66:DB:85:5E:C1:F4:91:27:51:BC:AA:29:00:D3 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 5BF7A3C706CFCA1E7235BA86F4FC6140EDC1F225 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c2d845ec-c39b-4b99-8358-e671c21de01d.roa Signing time: Fri 11 Jul 2025 15:00:29 +0000 ROA not before: Fri 11 Jul 2025 15:00:29 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f7:a3:c7:06:cf:ca:1e:72:35:ba:86:f4:fc:61:40:ed:c1:f2:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Jul 11 15:00:29 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=f3f0ba12134d71a46ab72d3bf43f16e7615c2f2a5fca213657ad6bb572cfe21e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a4:ea:10:e8:08:76:df:ee:61:22:7d:f9:f0: 79:d4:27:66:7f:1d:86:04:83:7d:68:4e:98:ef:c3: f9:c7:af:a4:7e:3c:13:aa:74:5d:95:f4:7e:db:e9: 7d:d2:15:cb:c5:32:8c:6f:33:10:72:23:ef:fa:f9: 4a:a0:8c:e1:27:14:47:22:3d:f5:6c:1f:f0:e7:41: 2e:0e:cd:cf:60:d3:a3:35:92:bd:b7:b3:3b:96:41: 4c:6f:fa:bd:dd:90:bd:a9:ba:60:20:27:7f:fd:9c: ef:d8:a9:d3:0a:3d:00:a9:26:45:e0:b0:e1:6a:b5: 75:ce:bb:d0:cb:44:2a:a6:80:c0:d9:dc:f0:82:9a: 12:36:2e:d6:c9:e6:5f:09:db:0d:70:ab:b4:12:d9: 20:40:70:cb:61:6b:13:11:96:fe:97:2a:d6:e6:86: 6b:c5:39:51:c1:7d:e7:56:59:f7:36:a7:ff:e6:ee: 62:55:6f:84:b5:13:19:ef:b4:af:7b:fb:72:84:69: 6c:5e:c8:f6:7a:78:12:7c:91:1f:b5:01:94:10:55: 40:dc:59:55:0f:cb:77:fd:69:89:a1:b8:c2:2b:7e: d6:30:58:8d:c7:6a:96:73:8a:56:e9:c0:77:76:a1: 23:91:08:5a:51:b4:a0:ad:5a:49:b8:26:e8:5a:5d: 0f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:87:7B:DB:B1:92:66:DB:85:5E:C1:F4:91:27:51:BC:AA:29:00:D3 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c2d845ec-c39b-4b99-8358-e671c21de01d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.240.0/20 Signature Algorithm: sha256WithRSAEncryption b5:13:ad:d9:f4:89:65:66:b3:52:e4:92:5a:aa:f8:14:4f:99: 30:f3:f6:31:ad:7d:bd:49:cd:1b:20:a6:46:2f:65:1d:fd:74: 3f:3a:79:5a:b5:70:cb:e5:5e:0d:1f:85:2e:01:ff:79:6b:8b: 7b:92:d6:1e:86:17:ed:ec:6e:e4:f7:b7:14:bc:99:9b:be:da: 92:2b:b6:b5:1e:7f:31:48:c6:6d:84:cd:64:53:23:2a:af:72: a1:d0:35:1d:ef:dc:d2:42:12:0a:79:ec:df:55:e5:ef:af:d7: 78:18:24:b5:a8:5a:fc:82:38:f5:65:72:ab:10:76:67:5f:bd: 39:6e:76:76:ba:1a:2b:6a:22:37:c7:84:0c:ed:d3:0b:81:7a: 05:3f:5e:be:52:32:75:a0:f2:a9:5c:88:91:a6:02:37:de:47: 8d:de:e7:bc:dd:c3:f7:fe:3d:b0:76:69:0b:d6:ff:80:72:2f: 8e:8e:af:ed:90:ce:55:17:8d:da:31:c5:02:5e:7d:7f:74:f3: 88:47:58:d0:2a:8c:a6:78:55:02:a6:ed:7a:82:4c:bc:7f:bd: 68:f7:64:ce:98:55:cf:32:64:1e:b7:d1:e6:27:8c:38:fb:e9: 24:b9:ab:b9:6c:84:26:21:2d:22:fe:3a:5e:3d:db:3a:40:08: e3:e9:72:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW/ejxwbPyh5yNbqG9PxhQO3B8iUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNzExMTUwMDI5WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2YwYmExMjEzNGQ3MWE0NmFiNzJkM2JmNDNmMTZlNzYx NWMyZjJhNWZjYTIxMzY1N2FkNmJiNTcyY2ZlMjFlMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvpOoQ6Ah23+5hIn358HnUJ2Z/HYYEg31oTpjvw/nHr6R+ PBOqdF2V9H7b6X3SFcvFMoxvMxByI+/6+UqgjOEnFEciPfVsH/DnQS4Ozc9g06M1 kr23szuWQUxv+r3dkL2pumAgJ3/9nO/YqdMKPQCpJkXgsOFqtXXOu9DLRCqmgMDZ 3PCCmhI2LtbJ5l8J2w1wq7QS2SBAcMthaxMRlv6XKtbmhmvFOVHBfedWWfc2p//m 7mJVb4S1ExnvtK97+3KEaWxeyPZ6eBJ8kR+1AZQQVUDcWVUPy3f9aYmhuMIrftYw WI3HapZzilbpwHd2oSORCFpRtKCtWkm4JuhaXQ+zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhod727GSZtuFXsH0kSdRvKopANMwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2MyZDg0NWVjLWMzOWItNGI5OS04MzU4LWU2NzFjMjFkZTAxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycPAwDQYJKoZIhvcNAQELBQADggEBALUTrdn0iWVms1Lkklqq+BRPmTDz 9jGtfb1JzRsgpkYvZR39dD86eVq1cMvlXg0fhS4B/3lri3uS1h6GF+3sbuT3txS8 mZu+2pIrtrUefzFIxm2EzWRTIyqvcqHQNR3v3NJCEgp57N9V5e+v13gYJLWoWvyC OPVlcqsQdmdfvTludna6GitqIjfHhAzt0wuBegU/Xr5SMnWg8qlciJGmAjfeR43e 57zdw/f+PbB2aQvW/4ByL46Or+2QzlUXjdoxxQJefX9084hHWNAqjKZ4VQKm7XqC TLx/vWj3ZM6YVc8yZB630eYnjDj76SS5q7lshCYhLSL+Ol492zpACOPpcpA= -----END CERTIFICATE-----Generated at Mon Aug 4 22:20:41 2025 by rpki-client