$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8eab2c65-1488-45ff-b7b3-6d9c0f327f17.roa File: 8eab2c65-1488-45ff-b7b3-6d9c0f327f17.roa (raw, json) Hash identifier: zdGxHeBiCcjXAky6/DOSY9gYDN+gkozRiLqtJJrALE4= Subject key identifier: 61:F8:CD:2C:30:19:BB:55:74:A4:47:84:C8:28:6E:8C:56:D6:8F:97 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 34A36E42F0D9D457E5D0AE5768253A6991125244 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8eab2c65-1488-45ff-b7b3-6d9c0f327f17.roa Signing time: Tue 20 May 2025 15:30:42 +0000 ROA not before: Tue 20 May 2025 15:30:42 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a3:6e:42:f0:d9:d4:57:e5:d0:ae:57:68:25:3a:69:91:12:52:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: May 20 15:30:42 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=42153f66da9fc6ee83f1a3bcba2733225395cece553ef288a60691cf0b697963, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a9:01:de:43:91:45:2a:7e:8d:4f:a8:69:22: 68:c7:3d:04:85:db:dc:79:40:72:4a:a4:2a:ca:54: e1:ee:0f:d2:7d:2f:9a:e6:58:b9:d5:9f:6b:92:95: 17:44:46:fc:a6:93:88:5a:78:61:28:33:c6:4d:d9: 68:81:0f:53:bc:cd:cc:d4:4a:f6:d4:4a:ab:c5:73: 4f:82:37:4a:83:2a:2c:37:9b:1b:ca:23:b8:81:3c: 3e:62:4c:77:d4:d6:bc:bc:82:e3:b1:47:dd:c0:7a: c1:bf:9c:2a:08:31:f0:48:01:7c:57:b4:bb:d5:ab: a0:98:e5:f6:3c:d4:cf:9c:35:9a:08:23:c6:d7:a0: b1:1e:bc:4a:3a:bf:52:90:cb:d6:bd:9a:96:39:9b: 2e:6d:b1:bc:0a:cf:26:8d:86:4c:b2:f4:98:98:00: c3:06:09:91:f5:b9:43:a1:5e:d4:34:07:42:4d:37: 84:75:9b:ab:1e:79:28:99:65:54:1a:ee:09:7f:a2: 78:f8:af:c9:55:28:53:1b:cc:ec:28:e7:0b:81:96: 62:e7:9a:1a:4a:ee:25:62:c7:79:c7:f4:57:a9:5c: 9c:03:51:10:79:50:9c:4e:d8:7d:5e:60:af:f7:63: c6:26:ab:7b:1e:a8:3f:4c:7b:28:f4:82:00:70:9d: 7b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F8:CD:2C:30:19:BB:55:74:A4:47:84:C8:28:6E:8C:56:D6:8F:97 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8eab2c65-1488-45ff-b7b3-6d9c0f327f17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.128.0/19 Signature Algorithm: sha256WithRSAEncryption 05:1b:71:0e:f2:00:71:2a:67:6a:da:73:07:cf:36:34:67:7d: 89:3b:84:0a:1f:ce:7d:0d:f2:54:c8:3e:63:41:65:67:d6:a2: 71:8c:fa:9c:f6:4a:ac:6f:78:da:df:11:04:aa:45:06:da:e6: 64:bc:57:f7:24:50:a9:a1:5a:f2:7b:72:6e:f6:4b:03:3e:b4: ca:dd:9a:4d:5c:d9:af:b9:61:13:83:56:4d:b2:27:40:88:24: b2:a8:df:d0:b6:1c:d2:22:53:1a:a4:33:09:78:dd:c6:c7:22: 0f:39:fc:5a:00:11:d9:51:c7:2e:f7:ee:2c:33:ee:d4:35:15: 4d:fc:04:4a:8d:2e:77:d9:39:11:fe:72:a0:bc:dd:df:30:dd: 64:fa:3e:94:b6:79:89:48:eb:4d:b9:42:b8:99:fd:97:fc:0e: b9:70:47:6e:f2:48:08:13:35:44:21:6b:ab:76:e3:3d:13:22: f9:b9:e7:46:ec:d6:08:98:91:00:70:a3:14:58:a6:1f:a7:be: e2:9b:26:cb:00:65:ae:53:16:41:57:c3:e0:d7:82:39:4d:a0: 0c:8a:b1:18:d4:a0:6e:5b:7d:d0:e2:93:16:05:52:68:c2:62: b5:f6:fe:6a:95:bc:28:71:88:29:76:b1:1f:40:8e:0c:8e:80: 39:e7:27:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNKNuQvDZ1Ffl0K5XaCU6aZESUkQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNTIwMTUzMDQyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjE1M2Y2NmRhOWZjNmVlODNmMWEzYmNiYTI3MzMyMjUz OTVjZWNlNTUzZWYyODhhNjA2OTFjZjBiNjk3OTYzMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaqQHeQ5FFKn6NT6hpImjHPQSF29x5QHJKpCrKVOHuD9J9 L5rmWLnVn2uSlRdERvymk4haeGEoM8ZN2WiBD1O8zczUSvbUSqvFc0+CN0qDKiw3 mxvKI7iBPD5iTHfU1ry8guOxR93AesG/nCoIMfBIAXxXtLvVq6CY5fY81M+cNZoI I8bXoLEevEo6v1KQy9a9mpY5my5tsbwKzyaNhkyy9JiYAMMGCZH1uUOhXtQ0B0JN N4R1m6seeSiZZVQa7gl/onj4r8lVKFMbzOwo5wuBlmLnmhpK7iVix3nH9FepXJwD URB5UJxO2H1eYK/3Y8Ymq3seqD9Meyj0ggBwnXsLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYfjNLDAZu1V0pEeEyChujFbWj5cwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzhlYWIyYzY1LTE0ODgtNDVmZi1iN2IzLTZkOWMwZjMyN2YxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUycIAwDQYJKoZIhvcNAQELBQADggEBAAUbcQ7yAHEqZ2racwfPNjRnfYk7 hAofzn0N8lTIPmNBZWfWonGM+pz2SqxveNrfEQSqRQba5mS8V/ckUKmhWvJ7cm72 SwM+tMrdmk1c2a+5YRODVk2yJ0CIJLKo39C2HNIiUxqkMwl43cbHIg85/FoAEdlR xy737iwz7tQ1FU38BEqNLnfZORH+cqC83d8w3WT6PpS2eYlI6025QriZ/Zf8Drlw R27ySAgTNUQha6t24z0TIvm550bs1giYkQBwoxRYph+nvuKbJssAZa5TFkFXw+DX gjlNoAyKsRjUoG5bfdDikxYFUmjCYrX2/mqVvChxiCl2sR9AjgyOgDnnJ58= -----END CERTIFICATE-----Generated at Sun Jun 8 14:46:58 2025 by rpki-client