$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa File: c964bb16-b590-4c0c-89eb-29a939e70a6d.roa (raw, json) Hash identifier: Vv1aWICKFBepszY+sLCOgMIyNEPVoVY7hEEfEw+eN18= Subject key identifier: BB:DD:9B:09:F5:A4:F0:FD:0A:04:FE:71:A3:64:1D:A8:A6:0F:67:37 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 19AFFE5CA60199B0A0700C13FBF13D808F0039CB Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa Signing time: Tue 20 May 2025 15:30:35 +0000 ROA not before: Tue 20 May 2025 15:30:35 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:af:fe:5c:a6:01:99:b0:a0:70:0c:13:fb:f1:3d:80:8f:00:39:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: May 20 15:30:35 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=380b03db28ba37c306541bb400ffb540ce17e47548b95c59d7709c7ce7006a1e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2a:4f:21:dc:c7:77:d4:0c:de:48:54:d5:26: be:d7:74:11:69:e0:e8:a9:26:29:49:61:c9:7c:cc: df:d5:79:10:ea:2a:a8:e5:18:11:85:b6:4f:19:28: 86:c7:fb:87:ad:95:bf:c8:6b:30:1c:21:03:d3:ba: f1:eb:33:3d:15:4f:14:a0:b7:fc:a3:6a:e7:48:77: 8c:47:0b:ff:79:cd:19:94:80:63:3a:42:30:78:4a: dd:7d:e9:33:0a:43:b6:10:3d:d1:a0:d0:79:50:fa: f0:90:58:ee:f2:3d:09:f9:75:53:7b:d2:aa:42:56: bb:3e:ff:f7:48:69:a8:05:93:78:8b:1e:b1:6d:95: f4:9b:2c:2f:49:bb:f3:a5:00:81:52:2c:ca:12:f7: c4:03:00:7e:db:aa:67:28:d4:d5:21:2b:1c:2c:36: ee:09:2b:4b:e0:7f:cb:a2:1f:55:80:d0:46:94:d5: 48:ec:3b:6e:6d:62:c1:67:b0:b1:b6:11:15:e7:16: f1:27:b3:92:68:8a:91:ef:03:a0:7d:de:7b:84:cd: ec:a7:1a:e9:66:b0:d9:a9:a1:1e:c6:00:e3:b0:e1: 66:78:8c:9b:52:5c:c5:fe:61:81:b1:08:24:53:29: 17:b1:02:a9:50:45:2b:61:76:65:ad:7e:00:07:de: 3f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DD:9B:09:F5:A4:F0:FD:0A:04:FE:71:A3:64:1D:A8:A6:0F:67:37 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/c964bb16-b590-4c0c-89eb-29a939e70a6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.16.0/20 Signature Algorithm: sha256WithRSAEncryption a8:c0:91:a8:19:74:c8:bb:96:fe:7a:57:e9:43:07:a6:56:86: a4:58:32:4f:a4:b7:58:06:e8:15:f4:5c:ea:82:ca:c0:1f:9f: 48:cb:11:ed:b7:a2:05:f1:22:f7:8f:36:59:44:72:9e:16:bc: 8a:45:d0:df:1b:35:4d:4b:0c:e5:42:38:f2:c3:5c:db:7f:53: 74:92:80:4c:b6:db:a4:03:ca:4d:df:98:c3:4e:2a:c7:69:ea: 03:af:66:b7:19:22:e6:f2:15:eb:ad:90:f2:2f:34:23:4d:5d: d4:78:fb:f9:f4:af:de:63:2e:fc:2d:83:58:f7:a2:8e:d3:4e: e2:93:d3:e1:60:78:1f:14:91:73:e8:99:23:5e:80:c3:f8:26: 76:7a:a4:07:d6:a5:8e:47:bf:88:f9:b9:21:7c:d1:d6:d1:60: a2:9a:a9:99:f7:3a:49:b8:dd:8b:84:a5:89:49:45:73:57:c7: f9:f3:7e:08:cf:63:37:b9:11:16:17:a1:70:11:a0:2b:a5:fa: 42:76:aa:76:87:6a:6b:57:da:7a:b7:34:16:49:48:37:c8:84: a1:bf:85:3c:b1:6b:4b:9d:0f:58:c7:e0:ab:86:2d:2d:e8:82: 8d:3f:f7:1f:99:f5:c9:93:89:a8:ad:b2:09:7f:a1:e4:ef:95: 43:ba:6b:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGa/+XKYBmbCgcAwT+/E9gI8AOcswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNTIwMTUzMDM1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODBiMDNkYjI4YmEzN2MzMDY1NDFiYjQwMGZmYjU0MGNl MTdlNDc1NDhiOTVjNTlkNzcwOWM3Y2U3MDA2YTFlMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTKk8h3Md31AzeSFTVJr7XdBFp4OipJilJYcl8zN/VeRDq KqjlGBGFtk8ZKIbH+4etlb/IazAcIQPTuvHrMz0VTxSgt/yjaudId4xHC/95zRmU gGM6QjB4St196TMKQ7YQPdGg0HlQ+vCQWO7yPQn5dVN70qpCVrs+//dIaagFk3iL HrFtlfSbLC9Ju/OlAIFSLMoS98QDAH7bqmco1NUhKxwsNu4JK0vgf8uiH1WA0EaU 1UjsO25tYsFnsLG2ERXnFvEns5JoipHvA6B93nuEzeynGulmsNmpoR7GAOOw4WZ4 jJtSXMX+YYGxCCRTKRexAqlQRSthdmWtfgAH3j93AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu92bCfWk8P0KBP5xo2QdqKYPZzcwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2M5NjRiYjE2LWI1OTAtNGMwYy04OWViLTI5YTkzOWU3MGE2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQycBAwDQYJKoZIhvcNAQELBQADggEBAKjAkagZdMi7lv56V+lDB6ZWhqRY Mk+kt1gG6BX0XOqCysAfn0jLEe23ogXxIvePNllEcp4WvIpF0N8bNU1LDOVCOPLD XNt/U3SSgEy226QDyk3fmMNOKsdp6gOvZrcZIubyFeutkPIvNCNNXdR4+/n0r95j Lvwtg1j3oo7TTuKT0+FgeB8UkXPomSNegMP4JnZ6pAfWpY5Hv4j5uSF80dbRYKKa qZn3Okm43YuEpYlJRXNXx/nzfgjPYze5ERYXoXARoCul+kJ2qnaHamtX2nq3NBZJ SDfIhKG/hTyxa0udD1jH4KuGLS3ogo0/9x+Z9cmTiaitsgl/oeTvlUO6a6A= -----END CERTIFICATE-----Generated at Sat Jun 14 06:04:16 2025 by rpki-client