$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/0ed14853-3e99-48a4-989b-2c4510ffef4d.roa File: 0ed14853-3e99-48a4-989b-2c4510ffef4d.roa (raw, json) Hash identifier: lI/aC7Ujh4UNiaLdyXvk3tfK12vwSPYTkBylUIb9/dg= Subject key identifier: 28:2D:14:76:1A:E6:31:5A:5D:ED:F3:C2:0F:D9:16:15:65:31:D5:AF Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 69C3E2BB1770AB00858D58DF6F4870AF21BE0CAB Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/0ed14853-3e99-48a4-989b-2c4510ffef4d.roa Signing time: Mon 16 Jun 2025 16:00:05 +0000 ROA not before: Mon 16 Jun 2025 16:00:05 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c3:e2:bb:17:70:ab:00:85:8d:58:df:6f:48:70:af:21:be:0c:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Jun 16 16:00:05 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=8ec73281193070a5cb4fb0dd359153cdc7b88ad965cf8120ffbc81738ec88c80, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5f:33:ff:8e:ae:f1:c9:a5:47:47:dc:ce:eb: 17:5b:52:95:b3:f0:31:20:2c:35:59:e7:be:c8:38: ea:c2:bb:43:0b:f1:61:20:38:95:9a:fc:76:5e:2a: 20:53:e2:08:de:69:ca:88:5e:bf:93:84:28:25:b8: 98:e2:84:71:74:25:93:37:8f:a1:be:26:65:2f:ba: 41:9c:ae:12:67:4c:11:37:aa:d5:5c:57:fc:69:da: 9f:a9:fd:52:43:02:4c:a6:88:18:12:af:a1:1f:37: d3:50:00:18:0f:e4:09:37:7f:94:d1:a2:00:10:f7: 29:b5:54:0f:61:78:bc:86:61:91:e7:c0:dc:fe:18: 8a:17:98:b0:ed:4e:1c:91:53:6e:30:94:f8:c7:b0: 72:89:32:3b:ad:f3:6b:ec:5b:cc:d8:57:d8:c3:86: 91:2e:8b:09:73:1e:5d:b7:35:c7:50:2d:90:ba:a6: 5d:cc:42:b8:f1:99:3b:7b:93:92:56:36:37:31:39: df:f8:80:ca:29:0f:b2:30:f7:4f:c7:9c:8e:73:87: 5b:37:93:43:e9:16:c7:2e:19:ff:b2:aa:97:ca:53: 54:f9:33:25:37:1f:a8:ed:34:9c:dc:c3:35:bc:22: d6:d4:89:fe:c7:b3:aa:a3:cd:e7:f7:e1:10:8d:5f: 63:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:2D:14:76:1A:E6:31:5A:5D:ED:F3:C2:0F:D9:16:15:65:31:D5:AF X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/0ed14853-3e99-48a4-989b-2c4510ffef4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.2.0/23 Signature Algorithm: sha256WithRSAEncryption a6:4d:3f:dd:4f:bb:c6:8b:fb:fa:6a:0f:b2:a9:dd:72:d5:35: 57:7d:b5:50:20:43:d9:df:0a:27:38:7b:42:a9:75:4c:9b:60: 84:08:13:c3:b7:6d:da:d9:e6:7e:29:2e:df:a8:7e:a5:34:71: aa:70:36:24:75:25:5a:f7:12:df:bf:ff:97:02:d4:06:4d:a8: 4d:0b:71:09:b8:cf:8b:7b:61:bd:14:77:2c:13:c6:28:ee:4f: 4d:5e:6a:00:c3:74:7f:bd:8b:26:dc:26:16:5f:05:1d:be:f6: 3c:99:f8:55:94:b5:ac:d1:52:9b:6e:b4:92:ad:88:b9:df:c1: 7c:11:3d:cb:1b:ae:ed:85:23:9a:fd:d3:bd:db:23:5d:15:75: e3:54:df:5c:e7:66:6c:e5:27:08:98:e1:a7:25:a1:25:27:e9: d3:e9:ae:de:38:7c:09:10:d8:c8:c2:59:f7:6f:4a:64:d4:54: ec:a8:29:ad:ba:14:4a:dd:e6:b2:19:c9:b3:b7:52:1f:2d:2c: e4:a9:ff:93:99:81:80:fe:89:f4:da:c0:ce:25:f9:53:c5:4d: 7b:f7:10:16:a4:3c:35:a6:96:60:96:8a:ad:4a:9a:4f:8a:f2: fb:60:7e:03:1d:28:36:4b:05:34:a1:7c:4c:ff:c5:ff:f6:87: a7:7b:0f:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUacPiuxdwqwCFjVjfb0hwryG+DKswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNjE2MTYwMDA1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWM3MzI4MTE5MzA3MGE1Y2I0ZmIwZGQzNTkxNTNjZGM3 Yjg4YWQ5NjVjZjgxMjBmZmJjODE3MzhlYzg4YzgwMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/XzP/jq7xyaVHR9zO6xdbUpWz8DEgLDVZ577IOOrCu0ML 8WEgOJWa/HZeKiBT4gjeacqIXr+ThCgluJjihHF0JZM3j6G+JmUvukGcrhJnTBE3 qtVcV/xp2p+p/VJDAkymiBgSr6EfN9NQABgP5Ak3f5TRogAQ9ym1VA9heLyGYZHn wNz+GIoXmLDtThyRU24wlPjHsHKJMjut82vsW8zYV9jDhpEuiwlzHl23NcdQLZC6 pl3MQrjxmTt7k5JWNjcxOd/4gMopD7Iw90/HnI5zh1s3k0PpFscuGf+yqpfKU1T5 MyU3H6jtNJzcwzW8ItbUif7Hs6qjzef34RCNX2MTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKC0UdhrmMVpd7fPCD9kWFWUx1a8wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzBlZDE0ODUzLTNlOTktNDhhNC05ODliLTJjNDUxMGZmZWY0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEycAIwDQYJKoZIhvcNAQELBQADggEBAKZNP91Pu8aL+/pqD7Kp3XLVNVd9 tVAgQ9nfCic4e0KpdUybYIQIE8O3bdrZ5n4pLt+ofqU0capwNiR1JVr3Et+//5cC 1AZNqE0LcQm4z4t7Yb0UdywTxijuT01eagDDdH+9iybcJhZfBR2+9jyZ+FWUtazR UptutJKtiLnfwXwRPcsbru2FI5r9073bI10VdeNU31znZmzlJwiY4acloSUn6dPp rt44fAkQ2MjCWfdvSmTUVOyoKa26FErd5rIZybO3Uh8tLOSp/5OZgYD+ifTawM4l +VPFTXv3EBakPDWmlmCWiq1Kmk+K8vtgfgMdKDZLBTShfEz/xf/2h6d7D4A= -----END CERTIFICATE-----Generated at Sun Jun 29 11:24:33 2025 by rpki-client