$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/3af7659c-c364-4492-bd08-bb9e6b8fdf43.roa File: 3af7659c-c364-4492-bd08-bb9e6b8fdf43.roa (raw, json) Hash identifier: aXDxa1+hfswGY07yIn8BcfuBLE0nUsfoUliWX9wGhbM= Subject key identifier: 3A:E1:F2:9D:B4:0C:DC:AD:52:93:E6:96:B5:2E:80:82:62:B4:1C:8F Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 719CD0E72F028E4845BBC4A1C812521FE03DD197 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/3af7659c-c364-4492-bd08-bb9e6b8fdf43.roa Signing time: Fri 26 Sep 2025 00:50:09 +0000 ROA not before: Fri 26 Sep 2025 00:50:09 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9c:d0:e7:2f:02:8e:48:45:bb:c4:a1:c8:12:52:1f:e0:3d:d1:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Sep 26 00:50:09 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=81e43b932ce9af253b03c3dbdc4b16a4f93cbf30977f342950eac6cbe800f9e4, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:b9:aa:59:1a:bb:96:e7:dd:e4:84:6b:ab: f7:26:e9:c6:17:18:27:91:48:d1:63:03:4b:3d:04: 5d:de:d8:69:30:0b:8d:ad:23:38:48:57:c5:75:8d: c2:de:05:aa:1e:88:7d:df:33:18:6d:7f:16:7e:9b: 59:59:42:9c:14:c6:d4:56:47:ff:62:27:71:9f:6e: f4:ad:10:16:81:aa:cf:5d:5c:d5:ad:c8:6a:16:1a: 70:e4:8e:90:a8:6d:14:d8:37:0f:9e:f2:fe:39:6c: b2:c3:32:47:fd:87:b2:a2:c4:49:99:40:1f:13:59: ff:63:44:a6:d2:3b:a2:95:91:26:c0:e0:3c:f7:cc: 18:13:f4:dd:77:5e:e4:91:59:f5:97:53:35:b6:66: 17:ea:a5:4f:5b:c3:d7:d1:87:05:97:85:3e:dc:db: 28:75:53:46:43:7a:90:1e:ba:ed:13:6e:0a:90:be: 3b:1d:ff:6c:c4:b1:9b:ec:d6:41:b8:fe:d0:61:af: 13:d0:55:a1:6d:f8:96:55:3b:2d:a3:1a:65:4a:ca: b5:23:ba:c8:72:3e:8b:96:1e:45:0d:7b:2c:8d:7a: 5d:81:8a:2e:42:48:82:5b:d9:c8:07:8e:7f:8e:11: f6:47:77:e5:85:0b:cc:d6:a6:37:a5:6e:14:b5:a0: 16:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E1:F2:9D:B4:0C:DC:AD:52:93:E6:96:B5:2E:80:82:62:B4:1C:8F X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/3af7659c-c364-4492-bd08-bb9e6b8fdf43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.88.0/22 Signature Algorithm: sha256WithRSAEncryption 79:7e:c7:04:21:8d:db:ac:f4:42:0f:4d:84:57:42:7a:8a:d8: 3a:d7:f3:be:ea:f9:46:77:57:65:31:d8:8d:ea:ed:0b:c9:2d: fb:b4:76:c3:c4:04:36:13:23:89:4f:39:55:25:a6:9f:52:cb: ac:bd:89:9e:d8:2d:b1:b5:4b:e5:d2:78:a8:03:a1:46:5b:b1: d4:f5:d9:72:ec:c8:36:93:7d:ee:0e:29:77:27:13:5f:1f:b6: 55:e1:c6:be:33:15:81:d4:26:ff:7d:42:8b:9c:45:d9:2a:e3: ec:3c:96:3f:38:9f:c7:0e:cf:00:cd:46:96:ee:cd:52:9a:b1: 43:5f:e8:e4:1f:f1:65:47:6d:ef:bd:08:98:28:4a:30:22:09: aa:fe:76:db:34:73:5d:c5:06:dc:ce:ba:1b:6b:6e:24:65:3a: a4:4d:b3:8c:0f:fa:9c:8f:29:f1:24:cc:63:12:ec:d2:d7:b8: 8d:39:be:3a:a0:4c:8e:6b:19:c4:53:4f:8b:57:44:a5:81:5d: 40:7c:73:9c:72:91:04:03:6c:93:ec:14:ad:6a:28:19:0b:5f: f7:30:83:77:21:0a:87:68:ff:c0:6f:62:92:29:79:d5:f4:ee: 6b:ff:8e:17:4d:51:80:58:40:48:9d:42:0d:9c:dd:21:58:e1: cc:bf:ed:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcZzQ5y8CjkhFu8ShyBJSH+A90ZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwOTI2MDA1MDA5WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWU0M2I5MzJjZTlhZjI1M2IwM2MzZGJkYzRiMTZhNGY5 M2NiZjMwOTc3ZjM0Mjk1MGVhYzZjYmU4MDBmOWU0MS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/CrmqWRq7lufd5IRrq/cm6cYXGCeRSNFjA0s9BF3e2Gkw C42tIzhIV8V1jcLeBaoeiH3fMxhtfxZ+m1lZQpwUxtRWR/9iJ3GfbvStEBaBqs9d XNWtyGoWGnDkjpCobRTYNw+e8v45bLLDMkf9h7KixEmZQB8TWf9jRKbSO6KVkSbA 4Dz3zBgT9N13XuSRWfWXUzW2ZhfqpU9bw9fRhwWXhT7c2yh1U0ZDepAeuu0TbgqQ vjsd/2zEsZvs1kG4/tBhrxPQVaFt+JZVOy2jGmVKyrUjushyPouWHkUNeyyNel2B ii5CSIJb2cgHjn+OEfZHd+WFC8zWpjelbhS1oBZPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOuHynbQM3K1Sk+aWtS6AgmK0HI8wHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzNhZjc2NTljLWMzNjQtNDQ5Mi1iZDA4LWJiOWU2YjhmZGY0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIycFgwDQYJKoZIhvcNAQELBQADggEBAHl+xwQhjdus9EIPTYRXQnqK2DrX 877q+UZ3V2Ux2I3q7QvJLfu0dsPEBDYTI4lPOVUlpp9Sy6y9iZ7YLbG1S+XSeKgD oUZbsdT12XLsyDaTfe4OKXcnE18ftlXhxr4zFYHUJv99QoucRdkq4+w8lj84n8cO zwDNRpbuzVKasUNf6OQf8WVHbe+9CJgoSjAiCar+dts0c13FBtzOuhtrbiRlOqRN s4wP+pyPKfEkzGMS7NLXuI05vjqgTI5rGcRTT4tXRKWBXUB8c5xykQQDbJPsFK1q KBkLX/cwg3chCodo/8BvYpIpedX07mv/jhdNUYBYQEidQg2c3SFY4cy/7S0= -----END CERTIFICATE-----Generated at Mon Oct 20 16:31:42 2025 by rpki-client