$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/cfa9fbaf-d677-4bfa-9d13-802dafc8c30d.roa File: cfa9fbaf-d677-4bfa-9d13-802dafc8c30d.roa (raw, json) Hash identifier: hWrg+fnxx5Cr8F26uhxFEOMmmwoM2S0E5wf1A0ZfbFQ= Subject key identifier: 62:D3:93:2A:7F:97:47:94:4E:6E:31:2A:2B:5F:F6:6D:31:C7:8B:D5 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 38C7CFCDF8C994B93EB4AE552DF279D8F11056DE Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/cfa9fbaf-d677-4bfa-9d13-802dafc8c30d.roa Signing time: Fri 26 Sep 2025 00:50:16 +0000 ROA not before: Fri 26 Sep 2025 00:50:16 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c7:cf:cd:f8:c9:94:b9:3e:b4:ae:55:2d:f2:79:d8:f1:10:56:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Sep 26 00:50:16 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=b1933e9f599f79ed14a37ac6e1cc459bcb1ba0abcb5a9c9ff9d3736980ff917d, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:05:b1:fa:5e:22:0d:dd:0d:e2:e7:6b:69:27: ce:cd:9f:b8:a2:3b:df:db:6f:b4:90:f0:11:6a:7f: 4c:45:4c:5b:72:a7:16:a0:d2:f0:00:93:f8:01:be: 53:c0:28:d9:76:39:5b:38:f5:38:d6:f6:43:62:ad: 6e:35:f9:55:fc:a2:c8:16:a9:20:1d:37:57:7d:35: d9:4d:cc:97:1c:55:ed:12:e5:3e:05:00:eb:4d:a5: f1:93:89:4e:43:14:6d:f8:58:98:2e:69:e1:f1:b9: 90:8d:1e:2d:a1:ef:ee:bc:c1:b0:a1:98:73:65:e2: 7a:a0:f9:0c:7a:e9:00:88:58:fe:3a:d7:1b:8c:93: e6:0f:44:2a:56:f8:25:9f:22:4b:48:4d:e1:9c:a6: 42:9c:af:53:6f:4a:61:36:63:d8:2e:8d:b6:b2:3a: ae:b9:e8:30:d2:8a:9f:70:1f:ee:98:5a:64:90:f0: 73:95:b0:61:e4:44:66:36:62:d4:14:c9:4b:b1:98: 9b:fc:48:2d:1a:f9:e8:11:a5:e7:92:68:5c:f0:6d: cd:d0:5c:44:f8:c0:44:85:ec:1a:07:51:9a:96:db: 82:e0:0f:41:e8:4b:98:da:b0:4b:f7:c8:dc:17:30: 60:f4:59:71:73:b4:c2:60:a3:b2:76:d3:42:4a:6a: b3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D3:93:2A:7F:97:47:94:4E:6E:31:2A:2B:5F:F6:6D:31:C7:8B:D5 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/cfa9fbaf-d677-4bfa-9d13-802dafc8c30d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.192.0/19 Signature Algorithm: sha256WithRSAEncryption 7a:52:36:45:32:e1:13:9c:9a:cb:60:a3:09:ab:7e:07:21:3a: 9e:a6:c9:b4:c2:6b:6b:dd:05:c8:23:27:8d:01:35:57:30:5d: f2:c7:36:a6:b1:91:30:e0:84:41:3b:f2:91:17:37:89:7e:c4: 6f:47:5d:ba:d4:69:70:25:96:78:4b:e6:d3:71:54:4b:e4:52: b0:99:a0:ba:92:56:6f:72:b3:e7:ca:87:a7:2f:25:95:e1:03: b0:d5:3f:91:17:c2:e1:82:aa:49:5b:db:b8:6b:be:8d:ef:4e: 38:20:00:57:f1:bd:b1:70:d6:d8:af:81:46:d8:9e:d7:68:1a: 57:f0:1b:fa:c1:be:19:86:98:28:90:1c:a1:cc:df:f7:12:62: f5:80:f1:e4:d7:c2:4e:64:65:e2:8a:62:eb:1f:2e:70:27:eb: df:05:70:0f:5e:40:cf:8d:6c:0e:de:5b:fc:84:86:43:a3:52: 66:56:cc:15:41:01:e3:91:f4:ef:38:05:b6:10:05:97:be:9f: ee:c7:7c:61:38:a2:5d:c3:ac:7c:0e:16:f3:08:dc:9c:a5:9a: 13:6a:1a:a9:f0:84:a5:a1:6d:c6:fa:9f:f6:f3:e5:7e:31:f9: 45:24:c4:2e:f9:c9:56:09:8c:5d:88:ab:a6:4e:52:1f:78:4e: e8:70:b9:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOMfPzfjJlLk+tK5VLfJ52PEQVt4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwOTI2MDA1MDE2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTkzM2U5ZjU5OWY3OWVkMTRhMzdhYzZlMWNjNDU5YmNi MWJhMGFiY2I1YTljOWZmOWQzNzM2OTgwZmY5MTdkMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwBbH6XiIN3Q3i52tpJ87Nn7iiO9/bb7SQ8BFqf0xFTFty pxag0vAAk/gBvlPAKNl2OVs49TjW9kNirW41+VX8osgWqSAdN1d9NdlNzJccVe0S 5T4FAOtNpfGTiU5DFG34WJguaeHxuZCNHi2h7+68wbChmHNl4nqg+Qx66QCIWP46 1xuMk+YPRCpW+CWfIktITeGcpkKcr1NvSmE2Y9gujbayOq656DDSip9wH+6YWmSQ 8HOVsGHkRGY2YtQUyUuxmJv8SC0a+egRpeeSaFzwbc3QXET4wESF7BoHUZqW24Lg D0HoS5jasEv3yNwXMGD0WXFztMJgo7J200JKarNfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYtOTKn+XR5RObjEqK1/2bTHHi9UwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2NmYTlmYmFmLWQ2NzctNGJmYS05ZDEzLTgwMmRhZmM4YzMwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUycMAwDQYJKoZIhvcNAQELBQADggEBAHpSNkUy4ROcmstgowmrfgchOp6m ybTCa2vdBcgjJ40BNVcwXfLHNqaxkTDghEE78pEXN4l+xG9HXbrUaXAllnhL5tNx VEvkUrCZoLqSVm9ys+fKh6cvJZXhA7DVP5EXwuGCqklb27hrvo3vTjggAFfxvbFw 1tivgUbYntdoGlfwG/rBvhmGmCiQHKHM3/cSYvWA8eTXwk5kZeKKYusfLnAn698F cA9eQM+NbA7eW/yEhkOjUmZWzBVBAeOR9O84BbYQBZe+n+7HfGE4ol3DrHwOFvMI 3JylmhNqGqnwhKWhbcb6n/bz5X4x+UUkxC75yVYJjF2Iq6ZOUh94TuhwueQ= -----END CERTIFICATE-----Generated at Mon Oct 20 18:08:05 2025 by rpki-client