$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8eab2c65-1488-45ff-b7b3-6d9c0f327f17.roa File: 8eab2c65-1488-45ff-b7b3-6d9c0f327f17.roa (raw, json) Hash identifier: 71shiTIENEwWA6j5JoFqnRYbYB5V1ERmTcL1R3alrT0= Subject key identifier: D3:46:48:22:B9:75:2B:59:03:EB:7E:21:9D:EE:ED:16:33:6A:5E:CA Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 63226301CA39E97B5F8DB9BA0DB76BCE6EC07FD2 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8eab2c65-1488-45ff-b7b3-6d9c0f327f17.roa Signing time: Fri 26 Sep 2025 00:50:21 +0000 ROA not before: Fri 26 Sep 2025 00:50:21 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:22:63:01:ca:39:e9:7b:5f:8d:b9:ba:0d:b7:6b:ce:6e:c0:7f:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Sep 26 00:50:21 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=a30a56bee5e6fc25ddb779e13f657681eba04b1b35499fa823f984b03f7d2a2e, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b3:99:ef:bf:28:8a:16:64:64:2f:26:6d:eb: 1d:e4:95:4c:3b:14:c5:75:45:46:4c:22:c7:6c:97: 28:18:37:07:27:d5:86:79:52:90:01:f7:45:72:6a: f6:69:27:5e:44:89:04:5e:4a:37:4d:ae:6b:45:81: 78:43:32:84:49:eb:87:39:ff:bb:62:7c:e5:7a:2a: d6:2f:41:f0:5f:1a:b0:97:6b:de:0d:f4:91:3f:34: be:0b:8e:44:17:e2:5f:8d:4f:27:96:d5:bb:18:d8: 53:0c:03:2c:3e:b5:15:1b:17:b7:7a:f1:1f:a4:c5: d8:f2:aa:e2:79:f5:ab:ff:c5:37:64:f3:81:ee:3c: 2d:b1:a3:79:b6:bb:66:2d:08:09:bf:d5:2d:51:c8: fb:b7:70:d3:f5:01:87:00:1e:b6:35:8b:b0:3a:6b: be:41:ec:8d:e3:c3:e8:27:e3:cd:0c:a6:6f:18:4d: 26:e5:20:9f:69:f8:db:9f:7c:f5:51:08:53:dc:bc: 30:3d:f0:78:fc:67:ab:93:30:83:cd:d5:e9:d4:52: e8:ca:6a:09:49:bb:14:f5:32:6c:fb:23:49:7c:88: 51:e7:d9:bd:a3:ec:be:de:aa:79:d5:84:19:66:f8: 5a:7a:a9:76:7b:27:52:e6:7c:14:df:9f:8d:d9:e4: d0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:46:48:22:B9:75:2B:59:03:EB:7E:21:9D:EE:ED:16:33:6A:5E:CA X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8eab2c65-1488-45ff-b7b3-6d9c0f327f17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.128.0/19 Signature Algorithm: sha256WithRSAEncryption 01:27:7b:64:b5:f4:59:a0:ae:80:43:ac:93:1f:fe:10:61:2d: 99:fe:1c:d1:d1:68:12:a5:22:16:ed:18:47:66:71:60:be:dd: 88:7b:8c:7b:3f:02:0c:ad:4e:11:06:1b:9c:5c:9a:5e:2a:60: e7:c1:c8:48:b6:70:b9:16:82:20:78:83:43:ad:90:3a:cc:14: 99:33:a7:04:b0:84:9c:4f:0a:75:2d:22:bc:53:71:1a:e3:ae: 09:9b:86:5a:7d:94:68:3c:5e:08:2a:db:83:0f:91:a8:f7:77: c1:cc:aa:68:42:0b:1a:61:d0:81:b3:fd:2a:78:64:91:fe:ac: 8c:ff:fe:69:ce:82:55:77:68:ff:19:b9:2d:fe:21:0c:79:43: 3d:d5:f5:86:b6:87:ef:0c:91:65:c5:26:25:cd:fe:73:3e:aa: 53:78:3e:41:b5:31:98:5a:75:db:31:13:75:b1:4d:83:a9:79: da:c6:26:cb:af:0c:e8:71:62:92:c7:31:a7:3a:50:8c:28:47: 01:76:d3:5c:e5:41:2f:ab:ec:2d:68:2e:45:2d:42:02:42:25: 2e:a4:1a:41:3b:5d:22:51:02:6c:a0:1d:4c:e7:26:66:8b:32: 98:5f:96:49:0c:e3:30:ee:cc:6f:58:58:da:97:6b:fa:ee:47: 90:24:4b:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYyJjAco56Xtfjbm6Dbdrzm7Af9IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwOTI2MDA1MDIxWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzBhNTZiZWU1ZTZmYzI1ZGRiNzc5ZTEzZjY1NzY4MWVi YTA0YjFiMzU0OTlmYTgyM2Y5ODRiMDNmN2QyYTJlMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqs5nvvyiKFmRkLyZt6x3klUw7FMV1RUZMIsdslygYNwcn 1YZ5UpAB90VyavZpJ15EiQReSjdNrmtFgXhDMoRJ64c5/7tifOV6KtYvQfBfGrCX a94N9JE/NL4LjkQX4l+NTyeW1bsY2FMMAyw+tRUbF7d68R+kxdjyquJ59av/xTdk 84HuPC2xo3m2u2YtCAm/1S1RyPu3cNP1AYcAHrY1i7A6a75B7I3jw+gn480Mpm8Y TSblIJ9p+NuffPVRCFPcvDA98Hj8Z6uTMIPN1enUUujKaglJuxT1Mmz7I0l8iFHn 2b2j7L7eqnnVhBlm+Fp6qXZ7J1LmfBTfn43Z5NC/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU00ZIIrl1K1kD634hne7tFjNqXsowHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzhlYWIyYzY1LTE0ODgtNDVmZi1iN2IzLTZkOWMwZjMyN2YxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUycIAwDQYJKoZIhvcNAQELBQADggEBAAEne2S19FmgroBDrJMf/hBhLZn+ HNHRaBKlIhbtGEdmcWC+3Yh7jHs/AgytThEGG5xcml4qYOfByEi2cLkWgiB4g0Ot kDrMFJkzpwSwhJxPCnUtIrxTcRrjrgmbhlp9lGg8Xggq24MPkaj3d8HMqmhCCxph 0IGz/Sp4ZJH+rIz//mnOglV3aP8ZuS3+IQx5Qz3V9Ya2h+8MkWXFJiXN/nM+qlN4 PkG1MZhaddsxE3WxTYOpedrGJsuvDOhxYpLHMac6UIwoRwF201zlQS+r7C1oLkUt QgJCJS6kGkE7XSJRAmygHUznJmaLMphflkkM4zDuzG9YWNqXa/ruR5AkS1o= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:11 2025 by rpki-client