$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa File: c964bb16-b590-4c0c-89eb-29a939e70a6d.roa (raw, json) Hash identifier: FLs8TeS30jc3ei9FAbY2JiZScOWA9MPvdll2Ao3ylD0= Subject key identifier: F9:68:38:A6:00:67:B5:B9:B3:81:4F:CE:ED:A9:95:45:05:49:58:6B Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 545462EA179C310EB8E91122C2753159812EF87D Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa Signing time: Fri 11 Jul 2025 15:00:28 +0000 ROA not before: Fri 11 Jul 2025 15:00:28 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:54:62:ea:17:9c:31:0e:b8:e9:11:22:c2:75:31:59:81:2e:f8:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Jul 11 15:00:28 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=a23710af2d1244b5bc02ffaeb61e3390d17629c55a5063ba290c28051f9db95a, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:4c:67:37:80:77:7a:62:6b:c3:24:a0:5c:36: 3d:2d:9a:eb:ef:49:5c:1e:ec:d0:76:74:2d:11:3c: 46:71:97:f2:95:ef:e9:56:80:81:94:46:c8:c9:e8: a1:33:6f:af:55:36:cc:6e:55:d1:e6:f4:52:71:37: d7:79:6e:ee:7e:ee:79:41:85:b8:cf:11:c7:df:2c: af:71:0d:b2:84:e7:57:fe:a5:1c:1a:3a:fa:10:d3: f5:44:fb:22:7c:42:76:3c:9e:75:4e:52:5a:5b:7b: 12:e6:d5:3e:65:e8:12:5e:b1:d6:c5:dd:39:f7:99: fe:d3:fc:28:cb:fe:83:6e:ee:94:32:38:2f:cc:9d: ce:6b:a2:d9:31:32:50:ff:d4:4e:1d:81:eb:4b:0f: b5:d3:f0:e7:0f:f8:95:e5:90:89:16:cb:98:06:6e: f8:04:a6:74:dc:8c:f5:b0:d8:3a:dc:ca:a7:04:61: 10:9a:87:25:70:e6:a8:0f:4d:37:ba:5a:58:3a:26: dd:97:9c:27:76:f9:b0:9a:49:f4:88:35:89:50:63: 11:9b:24:83:c6:1f:1f:9e:18:8d:ec:ad:1c:ec:65: 7a:3d:44:50:76:a7:22:7d:ff:46:b0:fd:16:28:00: c7:d7:11:23:eb:81:79:df:62:da:4d:15:59:1a:e9: 57:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:68:38:A6:00:67:B5:B9:B3:81:4F:CE:ED:A9:95:45:05:49:58:6B X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.16.0/20 Signature Algorithm: sha256WithRSAEncryption 37:e0:e7:34:33:c6:7f:31:ea:26:68:fc:6d:f1:51:66:6d:31: 74:f5:2d:45:17:55:d3:dd:6e:fe:6d:ee:ea:54:b5:0b:88:4e: 4a:5b:85:46:7e:ce:62:60:20:d6:89:e2:8b:41:d5:87:75:2f: 14:44:90:49:52:04:98:10:c9:44:26:47:f8:09:c1:40:a4:9f: 54:90:7e:e5:3d:74:8c:2b:dc:e1:b7:72:b7:98:7f:d4:d3:d1: 49:24:6e:76:96:08:b6:84:84:09:80:93:eb:6a:0f:32:6c:f9: 0b:d9:de:59:da:7b:09:32:6c:e2:8c:c9:8c:31:03:2b:9f:32: f7:0a:01:d2:0d:4b:d8:0d:db:c0:af:43:aa:7a:f1:4a:bc:c8: ef:94:7f:6b:19:01:dd:fe:e8:fa:e6:6c:f6:d7:98:1a:91:ce: b2:cf:cc:91:e6:e6:36:55:a5:46:21:8a:35:d0:50:1e:d3:d7: 79:25:f3:22:24:a5:16:83:dc:c6:ec:e9:2d:b2:da:01:11:99: 5e:d7:87:34:96:4d:27:54:01:15:e3:dd:e5:a4:4f:d1:eb:fe: 6b:d2:41:fd:8c:ac:4c:5f:b5:57:20:b0:db:89:52:e5:eb:f1: bd:95:d9:67:73:4a:e8:1f:5d:4a:27:a9:64:5a:13:9f:94:09: 9d:ab:a3:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVFRi6hecMQ646REiwnUxWYEu+H0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNzExMTUwMDI4WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjM3MTBhZjJkMTI0NGI1YmMwMmZmYWViNjFlMzM5MGQx NzYyOWM1NWE1MDYzYmEyOTBjMjgwNTFmOWRiOTVhMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRTGc3gHd6YmvDJKBcNj0tmuvvSVwe7NB2dC0RPEZxl/KV 7+lWgIGURsjJ6KEzb69VNsxuVdHm9FJxN9d5bu5+7nlBhbjPEcffLK9xDbKE51f+ pRwaOvoQ0/VE+yJ8QnY8nnVOUlpbexLm1T5l6BJesdbF3Tn3mf7T/CjL/oNu7pQy OC/Mnc5rotkxMlD/1E4dgetLD7XT8OcP+JXlkIkWy5gGbvgEpnTcjPWw2DrcyqcE YRCahyVw5qgPTTe6Wlg6Jt2XnCd2+bCaSfSINYlQYxGbJIPGHx+eGI3srRzsZXo9 RFB2pyJ9/0aw/RYoAMfXESPrgXnfYtpNFVka6VfJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+Wg4pgBntbmzgU/O7amVRQVJWGswHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2M5NjRiYjE2LWI1OTAtNGMwYy04OWViLTI5YTkzOWU3MGE2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycBAwDQYJKoZIhvcNAQELBQADggEBADfg5zQzxn8x6iZo/G3xUWZtMXT1 LUUXVdPdbv5t7upUtQuITkpbhUZ+zmJgINaJ4otB1Yd1LxREkElSBJgQyUQmR/gJ wUCkn1SQfuU9dIwr3OG3creYf9TT0UkkbnaWCLaEhAmAk+tqDzJs+QvZ3lnaewky bOKMyYwxAyufMvcKAdINS9gN28CvQ6p68Uq8yO+Uf2sZAd3+6PrmbPbXmBqRzrLP zJHm5jZVpUYhijXQUB7T13kl8yIkpRaD3Mbs6S2y2gERmV7XhzSWTSdUARXj3eWk T9Hr/mvSQf2MrExftVcgsNuJUuXr8b2V2WdzSugfXUonqWRaE5+UCZ2ro3g= -----END CERTIFICATE-----Generated at Mon Aug 4 21:49:37 2025 by rpki-client