$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c2d845ec-c39b-4b99-8358-e671c21de01d.roa File: c2d845ec-c39b-4b99-8358-e671c21de01d.roa (raw, json) Hash identifier: 4gyp0QEri4q17lrUcVNGVvlma4+rq/PZTV7UgWpL3Gk= Subject key identifier: 42:DC:44:5A:79:AF:73:4C:7C:59:00:A9:93:89:23:A6:8D:5A:30:F1 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 7EADA9DD02400827A59295164019DF20773F6C43 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c2d845ec-c39b-4b99-8358-e671c21de01d.roa Signing time: Tue 21 Oct 2025 00:20:02 +0000 ROA not before: Tue 21 Oct 2025 00:20:02 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ad:a9:dd:02:40:08:27:a5:92:95:16:40:19:df:20:77:3f:6c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Oct 21 00:20:02 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=61442c7246b0e6a3c769a646ca116a25f3a56962b0c543538ad490ed6ade09e5, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:54:45:a9:d2:eb:8a:69:86:77:1f:93:d8:7a: c7:d6:2a:5d:02:9d:59:73:ea:0c:22:fc:87:92:7e: c9:8d:44:84:20:d4:46:7a:9d:ed:6f:ac:35:8e:c2: 03:fa:db:ae:ac:59:24:d8:7e:8e:ac:31:5b:f8:bc: 75:c8:7b:90:be:8d:ef:f5:0a:ef:3c:d6:91:57:b5: 45:fd:42:e3:7c:2d:f7:a1:a7:00:8b:f9:84:dd:27: 04:9d:05:f5:fc:6c:00:4f:58:28:e8:2c:d5:22:14: 4e:2c:6c:1d:f1:7f:d0:ab:64:56:99:cb:48:e9:07: 2a:59:35:82:69:fb:11:d5:18:4f:c8:76:7a:3a:35: 29:c6:b8:b5:11:42:8e:9c:43:37:bb:24:bb:e2:e1: 2d:a8:7b:aa:0c:04:39:c2:6c:e2:56:3e:06:76:a9: f4:3d:10:6d:ff:38:2f:50:6f:95:2e:d5:c5:73:7a: 91:92:1d:26:b2:66:30:f5:11:d6:bf:ff:ef:0b:cf: 0d:a5:e9:2b:13:d0:74:aa:d1:2a:7f:c4:46:2f:4e: 91:b5:c2:dc:20:84:17:3e:ab:b3:9f:e9:cf:96:1c: 86:67:e1:eb:80:4e:7b:87:da:54:a1:54:47:2a:90: 67:c4:a2:df:28:ae:0f:44:25:a7:f2:d2:d2:d4:bd: f1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DC:44:5A:79:AF:73:4C:7C:59:00:A9:93:89:23:A6:8D:5A:30:F1 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c2d845ec-c39b-4b99-8358-e671c21de01d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.240.0/20 Signature Algorithm: sha256WithRSAEncryption 47:63:61:3e:60:07:ba:ea:07:02:a7:9f:8b:7b:2e:77:67:ce: 18:47:cf:a8:23:6f:4d:d3:52:58:86:f2:44:72:71:5a:07:f2: 7d:66:0d:f0:31:5a:d2:9a:76:0a:78:5b:50:41:49:57:6a:ef: d4:ac:5d:e6:c0:67:ec:16:ba:ba:85:5f:3e:45:5d:e3:59:2d: ee:34:1e:9c:2f:43:74:80:ef:1a:c7:9a:77:df:f0:a2:49:d9: 8f:f1:48:4b:89:5b:2e:4b:06:8d:c4:5e:a2:74:6f:eb:73:e1: a1:44:76:0a:ee:b1:80:99:4a:9c:4b:6b:bd:2c:f9:d6:d7:a5: 5f:4b:29:c4:81:3f:0d:f1:27:55:04:b2:8e:77:cd:68:e4:2c: fb:21:8f:60:fa:a7:d9:23:53:66:fc:4d:8b:15:cf:62:60:6d: f0:ca:2d:c6:d6:c7:f7:80:3a:94:3a:88:43:eb:26:57:cc:d8: 74:c2:bd:82:3c:71:a2:da:17:ee:d1:f6:e1:02:db:09:4e:c5: cb:85:5a:02:6d:15:c6:b1:34:80:33:71:8f:5f:a3:81:f4:d5: 76:2d:a2:4e:16:b5:13:9a:a4:4e:c9:94:32:42:f6:29:03:9a: 99:b4:73:c7:b8:5b:96:4a:b5:9f:d2:31:d1:e4:19:e1:76:43: f5:a5:91:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfq2p3QJACCelkpUWQBnfIHc/bEMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUxMDIxMDAyMDAyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTQ0MmM3MjQ2YjBlNmEzYzc2OWE2NDZjYTExNmEyNWYz YTU2OTYyYjBjNTQzNTM4YWQ0OTBlZDZhZGUwOWU1MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2VEWp0uuKaYZ3H5PYesfWKl0CnVlz6gwi/IeSfsmNRIQg 1EZ6ne1vrDWOwgP6266sWSTYfo6sMVv4vHXIe5C+je/1Cu881pFXtUX9QuN8Lfeh pwCL+YTdJwSdBfX8bABPWCjoLNUiFE4sbB3xf9CrZFaZy0jpBypZNYJp+xHVGE/I dno6NSnGuLURQo6cQze7JLvi4S2oe6oMBDnCbOJWPgZ2qfQ9EG3/OC9Qb5Uu1cVz epGSHSayZjD1Eda//+8Lzw2l6SsT0HSq0Sp/xEYvTpG1wtwghBc+q7Of6c+WHIZn 4euATnuH2lShVEcqkGfEot8org9EJafy0tLUvfG5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQtxEWnmvc0x8WQCpk4kjpo1aMPEwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2MyZDg0NWVjLWMzOWItNGI5OS04MzU4LWU2NzFjMjFkZTAxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycPAwDQYJKoZIhvcNAQELBQADggEBAEdjYT5gB7rqBwKnn4t7LndnzhhH z6gjb03TUliG8kRycVoH8n1mDfAxWtKadgp4W1BBSVdq79SsXebAZ+wWurqFXz5F XeNZLe40HpwvQ3SA7xrHmnff8KJJ2Y/xSEuJWy5LBo3EXqJ0b+tz4aFEdgrusYCZ SpxLa70s+dbXpV9LKcSBPw3xJ1UEso53zWjkLPshj2D6p9kjU2b8TYsVz2JgbfDK LcbWx/eAOpQ6iEPrJlfM2HTCvYI8caLaF+7R9uEC2wlOxcuFWgJtFcaxNIAzcY9f o4H01XYtok4WtROapE7JlDJC9ikDmpm0c8e4W5ZKtZ/SMdHkGeF2Q/WlkYg= -----END CERTIFICATE-----Generated at Wed Nov 5 11:27:03 2025 by rpki-client