$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa File: 24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa (raw, json) Hash identifier: bKWtr1MpHEugn8TEFibdWhTwkjdG0xn/HPk3x1jdGg0= Subject key identifier: 01:1A:7E:31:0D:2A:39:11:66:7A:21:53:80:EA:95:41:8B:F7:52:7A Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 3E97E87A8D89CA1237A48FAABA197FCC022256FD Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa Signing time: Mon 16 Jun 2025 16:00:39 +0000 ROA not before: Mon 16 Jun 2025 16:00:39 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:97:e8:7a:8d:89:ca:12:37:a4:8f:aa:ba:19:7f:cc:02:22:56:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Jun 16 16:00:39 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=d1c251efcbb82352e548fcc8c03decb7b8d486360e5f4d020f36d5f6a008379c, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a4:0c:91:de:60:65:97:fc:a3:2c:c3:6e:06: e9:9c:a1:4c:6e:9b:21:dc:a3:61:4a:6f:a5:55:8a: 04:50:28:93:a4:de:a7:65:b8:09:0c:d0:bf:cb:fd: b6:1d:de:c5:15:e7:3a:6b:5c:56:ae:38:bd:87:79: ce:42:50:a2:27:33:7f:6b:1c:8c:99:80:27:e6:88: 86:20:95:56:2f:95:89:2f:9c:91:79:03:31:cd:a0: 4d:09:63:e7:7e:14:63:41:f2:37:57:93:70:28:56: a6:d0:51:44:b9:33:a1:39:44:eb:a6:2c:3f:88:79: 17:6b:f3:6c:0e:1e:d3:6c:5a:9d:1c:fd:5e:7a:ed: b2:70:00:28:1c:b3:48:ee:7a:43:de:97:18:7d:43: be:b9:f2:84:30:b2:91:b3:e8:14:f2:92:71:bc:bf: 00:5a:86:03:30:63:fe:4c:5b:35:d4:ea:aa:58:2b: 8b:36:ee:e6:be:d1:8e:37:09:6a:2a:f8:82:8f:59: 63:f7:22:19:06:41:03:b4:e5:59:b6:56:2f:1e:65: 14:ae:3c:fa:8a:c6:06:8e:c6:a4:9f:6d:de:5a:76: 37:12:8d:0a:7e:b4:6b:97:52:51:90:bb:0f:07:77: 7f:c8:41:cc:3a:51:50:ab:7b:87:e1:9d:12:73:0c: e2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1A:7E:31:0D:2A:39:11:66:7A:21:53:80:EA:95:41:8B:F7:52:7A X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/24dfe680-d3e6-4d3d-8f28-ce2f99e02db6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.32.0/19 Signature Algorithm: sha256WithRSAEncryption 60:88:fa:3e:ce:88:38:7b:65:6d:43:99:0f:51:28:f4:9d:c9: ca:49:3c:cc:4e:a5:8c:1a:4d:c0:53:52:21:40:e0:6d:fb:95: c2:25:cd:70:3b:52:5b:5b:82:e5:6c:90:8e:ce:91:45:de:ff: ca:57:be:2a:9c:59:14:66:a3:3c:5d:a9:fb:03:c1:8b:86:b9: ee:0f:50:de:6e:70:86:7b:0a:8d:b5:cb:9a:f4:63:ee:53:85: 02:84:5c:cd:00:49:81:56:89:17:4b:fe:64:43:b2:d7:23:c0: 1b:39:32:82:60:ec:56:10:16:10:db:68:e5:32:50:08:73:d8: 5d:2c:fa:ee:8a:ac:20:1e:18:09:a5:7f:70:52:b4:18:ba:56: 57:ab:37:15:a6:17:37:ef:c6:2e:18:b1:8a:c9:7e:d6:2c:de: 7c:3c:ab:f8:d6:06:3e:6d:e3:fa:33:6d:af:45:6e:67:ce:19: f3:6d:af:3b:6d:85:14:18:3f:f0:c1:52:b2:ee:ab:44:cc:e7: a3:08:68:fd:ce:1f:e4:40:e8:8b:4b:11:0d:18:5d:18:53:28: e1:0c:b3:41:92:5e:d2:b7:3a:0e:50:90:1b:b3:6b:79:2d:67: 4a:88:f4:2f:4a:54:2f:3f:ac:34:ca:fd:d6:28:79:fb:60:4a: b4:b8:cf:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPpfoeo2JyhI3pI+quhl/zAIiVv0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNjE2MTYwMDM5WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWMyNTFlZmNiYjgyMzUyZTU0OGZjYzhjMDNkZWNiN2I4 ZDQ4NjM2MGU1ZjRkMDIwZjM2ZDVmNmEwMDgzNzljMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQpAyR3mBll/yjLMNuBumcoUxumyHco2FKb6VVigRQKJOk 3qdluAkM0L/L/bYd3sUV5zprXFauOL2Hec5CUKInM39rHIyZgCfmiIYglVYvlYkv nJF5AzHNoE0JY+d+FGNB8jdXk3AoVqbQUUS5M6E5ROumLD+IeRdr82wOHtNsWp0c /V567bJwACgcs0juekPelxh9Q7658oQwspGz6BTyknG8vwBahgMwY/5MWzXU6qpY K4s27ua+0Y43CWoq+IKPWWP3IhkGQQO05Vm2Vi8eZRSuPPqKxgaOxqSfbd5adjcS jQp+tGuXUlGQuw8Hd3/IQcw6UVCre4fhnRJzDOJTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUARp+MQ0qORFmeiFTgOqVQYv3UnowHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzI0ZGZlNjgwLWQzZTYtNGQzZC04ZjI4LWNlMmY5OWUwMmRiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUycCAwDQYJKoZIhvcNAQELBQADggEBAGCI+j7OiDh7ZW1DmQ9RKPSdycpJ PMxOpYwaTcBTUiFA4G37lcIlzXA7UltbguVskI7OkUXe/8pXviqcWRRmozxdqfsD wYuGue4PUN5ucIZ7Co21y5r0Y+5ThQKEXM0ASYFWiRdL/mRDstcjwBs5MoJg7FYQ FhDbaOUyUAhz2F0s+u6KrCAeGAmlf3BStBi6VlerNxWmFzfvxi4YsYrJftYs3nw8 q/jWBj5t4/ozba9FbmfOGfNtrztthRQYP/DBUrLuq0TM56MIaP3OH+RA6ItLEQ0Y XRhTKOEMs0GSXtK3Og5QkBuza3ktZ0qI9C9KVC8/rDTK/dYoeftgSrS4z7U= -----END CERTIFICATE-----Generated at Sun Jun 29 07:22:33 2025 by rpki-client