$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/cfa9fbaf-d677-4bfa-9d13-802dafc8c30d.roa File: cfa9fbaf-d677-4bfa-9d13-802dafc8c30d.roa (raw, json) Hash identifier: ExoqA3wrXHbL6/LC8BQTfv5cMDGdWmBRr+sBtM9liXw= Subject key identifier: 26:CD:C4:19:3B:0B:77:49:0C:F4:85:E4:F1:DB:54:28:45:C1:0A:60 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 06921C08DA7875A232B063D60C80A19855A151F3 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/cfa9fbaf-d677-4bfa-9d13-802dafc8c30d.roa Signing time: Mon 16 Jun 2025 16:00:15 +0000 ROA not before: Mon 16 Jun 2025 16:00:15 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:92:1c:08:da:78:75:a2:32:b0:63:d6:0c:80:a1:98:55:a1:51:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Jun 16 16:00:15 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=e486d10ff114daf2d10922b379ab8d04d182505ece62734773663cde581ce82a, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:31:dd:61:6a:9a:a1:e8:5a:2c:fb:53:b7:ba: 77:7c:70:10:ea:01:b8:ce:6b:5c:dc:f3:95:47:7e: 5a:31:ec:9b:0c:c1:89:22:ee:4e:28:d9:ba:ba:72: ff:17:60:01:c4:9f:0a:a4:26:a6:5f:7b:41:b6:1f: 9a:5a:f9:9d:86:07:36:06:e9:17:ee:2c:b1:78:33: c6:e8:a2:77:0d:a8:ba:9e:bc:4a:96:d2:eb:30:e6: 0f:8a:2a:ea:b7:4d:60:ff:0c:ec:d9:18:8b:44:95: c0:05:05:da:4a:77:7d:37:f4:8f:7e:36:20:b5:db: 3b:62:9e:01:32:6b:19:cf:7b:91:4b:cd:9f:ed:c4: 41:77:c1:e5:40:7d:57:31:95:11:0b:0e:46:c6:f3: b0:8a:3b:fd:96:48:fd:dc:89:68:c6:bd:d3:19:82: c9:a7:29:1f:3d:e9:8e:00:9a:38:2c:e0:ec:02:95: 46:52:5a:49:05:ff:26:78:05:c3:7a:96:51:b3:ef: 17:2c:44:54:79:cd:c6:37:9e:ba:3e:d0:e3:93:7d: ab:c9:82:90:b6:c6:87:ab:fc:52:4a:29:83:ba:d1: 46:dc:22:f1:0f:5e:e1:c4:af:6c:c2:4b:ec:53:6e: 0a:a1:98:e0:c0:17:66:58:c0:fc:bc:e8:0d:0f:cd: 6d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:CD:C4:19:3B:0B:77:49:0C:F4:85:E4:F1:DB:54:28:45:C1:0A:60 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/cfa9fbaf-d677-4bfa-9d13-802dafc8c30d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.192.0/19 Signature Algorithm: sha256WithRSAEncryption 71:74:90:28:53:25:3d:61:cb:90:9d:e0:77:35:8b:2a:fa:89: aa:cc:67:90:94:97:fa:c9:8b:76:1f:62:cc:bf:8d:26:8f:15: 1f:1e:ee:89:61:a2:d7:10:57:ed:fa:0e:54:eb:38:fb:ee:c3: ae:e7:8c:e0:d3:61:42:54:ca:51:9b:d4:a5:6c:ee:f9:13:22: 33:b4:c7:af:b0:08:a5:d1:cb:a2:85:ae:10:01:0f:fe:e4:64: ec:d6:68:9e:99:fd:24:fe:ed:c2:36:e4:7e:23:3a:94:bb:be: ad:c8:49:f0:2e:f9:85:58:91:9a:48:db:cb:31:e5:12:f4:f6: 85:ff:ae:18:f2:ec:ba:f7:77:dc:8e:e7:82:33:b8:3e:6e:c8: 63:d3:9b:87:56:96:f8:3c:82:60:1f:a5:78:12:c7:29:b7:f7: 9e:e2:e3:d8:d3:85:56:cb:f7:03:fd:62:27:06:b9:1e:85:94: 81:34:78:97:8f:54:2e:33:f7:da:67:c0:8f:c1:c0:1a:c9:ef: 27:30:93:2c:c5:3b:96:26:e4:b4:67:5c:07:d1:43:1c:a5:13: 1f:99:0f:da:c9:2c:62:64:b7:ae:64:96:4f:11:f5:65:d9:21: da:be:4d:55:e3:a4:3a:0f:9e:61:83:15:42:be:08:aa:35:d7: d0:05:75:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBpIcCNp4daIysGPWDIChmFWhUfMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNjE2MTYwMDE1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDg2ZDEwZmYxMTRkYWYyZDEwOTIyYjM3OWFiOGQwNGQx ODI1MDVlY2U2MjczNDc3MzY2M2NkZTU4MWNlODJhMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHMd1hapqh6Fos+1O3und8cBDqAbjOa1zc85VHflox7JsM wYki7k4o2bq6cv8XYAHEnwqkJqZfe0G2H5pa+Z2GBzYG6RfuLLF4M8booncNqLqe vEqW0usw5g+KKuq3TWD/DOzZGItElcAFBdpKd3039I9+NiC12ztingEyaxnPe5FL zZ/txEF3weVAfVcxlRELDkbG87CKO/2WSP3ciWjGvdMZgsmnKR896Y4Amjgs4OwC lUZSWkkF/yZ4BcN6llGz7xcsRFR5zcY3nro+0OOTfavJgpC2xoer/FJKKYO60Ubc IvEPXuHEr2zCS+xTbgqhmODAF2ZYwPy86A0PzW1bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJs3EGTsLd0kM9IXk8dtUKEXBCmAwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2NmYTlmYmFmLWQ2NzctNGJmYS05ZDEzLTgwMmRhZmM4YzMwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUycMAwDQYJKoZIhvcNAQELBQADggEBAHF0kChTJT1hy5Cd4Hc1iyr6iarM Z5CUl/rJi3YfYsy/jSaPFR8e7olhotcQV+36DlTrOPvuw67njODTYUJUylGb1KVs 7vkTIjO0x6+wCKXRy6KFrhABD/7kZOzWaJ6Z/ST+7cI25H4jOpS7vq3ISfAu+YVY kZpI28sx5RL09oX/rhjy7Lr3d9yO54IzuD5uyGPTm4dWlvg8gmAfpXgSxym3957i 49jThVbL9wP9YicGuR6FlIE0eJePVC4z99pnwI/BwBrJ7ycwkyzFO5Ym5LRnXAfR QxylEx+ZD9rJLGJkt65klk8R9WXZIdq+TVXjpDoPnmGDFUK+CKo119AFdU8= -----END CERTIFICATE-----Generated at Sun Jun 29 03:29:38 2025 by rpki-client