$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/50767251-a434-47e8-aaa4-6818dde30f2c.roa File: 50767251-a434-47e8-aaa4-6818dde30f2c.roa (raw, json) Hash identifier: xUQ+iTFL3CHDkcb90hjGR2p+a8SH5MqtP9aIvT5UR7w= Subject key identifier: 50:EF:42:48:AF:EC:56:E9:FC:36:2C:52:05:01:93:08:54:31:D8:7E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4EEC70E5820A7C590A318D488E638F426F96E252 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/50767251-a434-47e8-aaa4-6818dde30f2c.roa Signing time: Tue 20 May 2025 15:41:48 +0000 ROA not before: Tue 20 May 2025 15:41:48 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ec:70:e5:82:0a:7c:59:0a:31:8d:48:8e:63:8f:42:6f:96:e2:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 15:41:48 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=92ba90047377a5a76f10a0a6cf79af8961994182ed19a638c1603c3bff4b0c10, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2f:8e:e5:d3:5a:3d:da:e5:f5:61:ee:9e:10: f1:6b:f8:dd:cb:89:bd:d0:5b:3a:27:1e:4a:9d:d0: e4:4c:ea:6e:d1:f8:26:a5:18:d9:a9:5c:e7:1e:04: e7:90:35:c2:23:f4:80:50:cd:07:d0:d1:53:b2:f5: 62:c6:9d:1c:e5:46:f0:4b:00:3a:a8:45:50:12:b9: ca:6f:94:42:91:3b:f3:7e:9c:a4:52:3e:4e:fe:5f: 4e:a2:91:79:06:95:8e:65:6e:86:d7:cc:a0:c8:e0: 1f:b7:c8:ef:32:23:37:9c:80:4c:5e:d8:6d:ed:2d: 8a:e9:1f:07:b2:49:14:6b:05:9c:b8:f3:02:9b:92: e9:8b:c9:4c:e5:fa:de:5a:c3:25:0f:14:de:5c:cf: 7a:af:2b:54:d0:fd:f0:a3:1a:42:1c:13:92:43:2e: 8b:dd:ad:9d:e7:a5:57:de:ec:36:55:f0:24:07:61: 2c:1c:13:37:e7:b9:bd:51:1b:2d:21:bd:64:1f:7a: 9b:d4:4f:1b:8e:cb:0c:79:97:d0:0d:f6:2e:34:29: 22:f7:70:be:83:61:63:b0:19:9f:a7:02:26:40:54: 34:c1:21:d4:80:8d:6a:b0:5b:89:21:4e:d1:a5:be: 8c:7f:23:16:95:e8:2a:cc:75:8e:74:e0:bc:df:7d: 9f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:EF:42:48:AF:EC:56:E9:FC:36:2C:52:05:01:93:08:54:31:D8:7E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/50767251-a434-47e8-aaa4-6818dde30f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:11:84:9c:ec:72:76:fd:45:7a:13:72:80:82:52:d2:f4:21: 4a:15:88:f7:dc:d6:a4:fe:3c:78:4d:f7:27:08:01:04:8b:fe: 82:dc:97:c2:fe:c5:ec:67:6b:97:dc:8d:24:84:05:2e:f9:0b: de:50:c9:7a:72:4c:88:92:4c:eb:af:bb:4f:b2:13:2a:e4:27: 00:f0:81:e4:bd:84:d5:9c:b6:48:bb:ef:be:95:87:c5:9d:5e: 16:81:bd:75:5f:c2:27:1d:0d:95:29:ab:72:ad:50:fb:75:00: e4:61:4c:4e:44:92:17:d5:1b:ab:06:1f:d8:dc:34:cd:a4:4e: 6c:f0:0b:bc:81:a4:76:ba:a3:a8:79:4a:4b:27:e2:66:db:bd: 95:15:47:05:db:96:fd:b4:55:fa:8e:66:d2:10:5b:f9:e3:46: 45:31:f4:62:2c:8a:b0:31:1b:22:71:2b:4d:db:b1:86:ba:1e: 01:2b:06:19:55:b8:a4:c4:b9:e3:07:7c:16:54:c4:90:c9:60: 8a:8b:51:08:88:21:5d:e9:b6:35:f3:ee:09:4b:58:d9:30:cf: 09:bd:22:5e:b8:43:4f:7e:9a:9a:82:71:e2:83:8f:5e:eb:90: 23:d1:16:06:d2:9d:72:81:93:27:6a:17:90:a4:23:dd:e9:79: 99:df:58:c8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTuxw5YIKfFkKMY1IjmOPQm+W4lIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTU0MTQ4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MmJhOTAwNDczNzdhNWE3NmYxMGEwYTZjZjc5YWY4OTYx OTk0MTgyZWQxOWE2MzhjMTYwM2MzYmZmNGIwYzEwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaL47l01o92uX1Ye6eEPFr+N3Lib3QWzonHkqd0ORM6m7R +CalGNmpXOceBOeQNcIj9IBQzQfQ0VOy9WLGnRzlRvBLADqoRVASucpvlEKRO/N+ nKRSPk7+X06ikXkGlY5lbobXzKDI4B+3yO8yIzecgExe2G3tLYrpHweySRRrBZy4 8wKbkumLyUzl+t5awyUPFN5cz3qvK1TQ/fCjGkIcE5JDLovdrZ3npVfe7DZV8CQH YSwcEzfnub1RGy0hvWQfepvUTxuOywx5l9AN9i40KSL3cL6DYWOwGZ+nAiZAVDTB IdSAjWqwW4khTtGlvox/IxaV6CrMdY504LzffZ+BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUO9CSK/sVun8NixSBQGTCFQx2H4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzUwNzY3MjUxLWE0MzQtNDdlOC1hYWE0LTY4MThkZGUzMGYyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPljANBgkqhkiG9w0BAQsFAAOCAQEAgRGEnOxydv1FehNygIJS0vQhShWI 99zWpP48eE33JwgBBIv+gtyXwv7F7Gdrl9yNJIQFLvkL3lDJenJMiJJM66+7T7IT KuQnAPCB5L2E1Zy2SLvvvpWHxZ1eFoG9dV/CJx0NlSmrcq1Q+3UA5GFMTkSSF9Ub qwYf2Nw0zaRObPALvIGkdrqjqHlKSyfiZtu9lRVHBduW/bRV+o5m0hBb+eNGRTH0 YiyKsDEbInErTduxhroeASsGGVW4pMS54wd8FlTEkMlgiotRCIghXem2NfPuCUtY 2TDPCb0iXrhDT36amoJx4oOPXuuQI9EWBtKdcoGTJ2oXkKQj3el5md9YyA== -----END CERTIFICATE-----Generated at Sat Jun 14 05:52:48 2025 by rpki-client