$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/e3f8a237-5d8b-4d61-abc8-c129192fb7c0.roa File: e3f8a237-5d8b-4d61-abc8-c129192fb7c0.roa (raw, json) Hash identifier: URWrYq10d35pBRLuQ9vi+6ym/Mg89LdqxcCDCz1755Y= Subject key identifier: 6C:C8:5F:BE:E9:AB:5D:72:D8:51:FA:25:09:BB:AC:66:93:5A:25:64 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 444DC46DD6AF408C80C4E8AFC9544A11E9483079 Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/e3f8a237-5d8b-4d61-abc8-c129192fb7c0.roa Signing time: Tue 20 May 2025 15:30:56 +0000 ROA not before: Tue 20 May 2025 15:30:56 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:4d:c4:6d:d6:af:40:8c:80:c4:e8:af:c9:54:4a:11:e9:48:30:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: May 20 15:30:56 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=4a2d63b3ea906300215a0e3d0e700e31bce0b10ba03c65f1f8684db9a2ca6dfc, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b1:84:5b:ac:35:79:f3:7f:d3:f7:4c:1e:52: 83:67:41:36:dd:0e:f8:a3:0c:ee:5c:e9:23:ee:ff: 01:03:4c:e8:88:78:ec:0d:5c:77:24:78:2b:49:a7: f0:32:b1:07:e8:f2:42:90:40:3d:b8:f7:6e:eb:84: 4c:e6:7b:e1:21:33:05:28:29:c7:97:34:83:4b:e2: 26:b4:5c:53:ea:93:92:f4:62:03:3b:fc:5a:87:1b: 84:10:85:a8:6b:54:04:02:85:3c:e3:00:fd:9d:21: bd:34:1b:04:e0:d2:30:8c:b4:c6:02:98:ed:f3:d0: 45:2c:63:5f:95:c4:2d:45:18:25:91:f1:3e:f4:cb: ed:7d:0c:67:32:c3:32:a7:8a:f3:ed:e7:96:e4:45: 70:b0:1b:54:ba:e0:95:2d:64:30:72:b8:b6:fc:dd: e5:11:c0:55:25:f5:5d:1a:a9:fe:0f:60:57:07:12: 11:e9:2e:30:1b:8e:56:66:49:e5:46:36:a8:b7:5d: f7:21:bc:ea:1a:6b:6c:50:a6:26:aa:72:39:d1:a3: c3:3d:bf:d8:c8:f7:12:f9:db:0e:0e:f7:e6:04:75: 29:a6:48:d9:67:6b:3a:22:f7:c5:1a:dd:01:a0:e9: 2c:99:bd:3f:d8:20:d8:c1:a0:8f:48:65:b5:43:cc: 8d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C8:5F:BE:E9:AB:5D:72:D8:51:FA:25:09:BB:AC:66:93:5A:25:64 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/e3f8a237-5d8b-4d61-abc8-c129192fb7c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.128.0/18 Signature Algorithm: sha256WithRSAEncryption a3:f4:fe:a3:77:73:92:f3:e0:23:64:01:1a:3c:8f:63:e9:f9: 1e:af:3f:e9:26:1a:44:c2:cf:ba:cb:4b:ab:d3:bf:62:c4:93: 3a:6d:1d:3b:33:bd:fc:a8:fa:b5:e3:cf:ae:ba:0d:77:98:d5: 9e:95:a4:e6:d4:2f:34:4e:8e:33:f3:5b:0d:18:8c:2d:74:05: 14:13:6e:18:fa:b7:1f:b0:c2:76:20:27:01:6a:8f:f8:89:f9: 32:e9:de:42:ec:d6:bd:fd:46:6b:19:e8:b9:3d:30:e6:8c:a5: 98:54:ab:71:89:44:be:a6:d9:ff:25:66:69:81:0c:b2:03:d0: f3:8d:13:91:5b:d8:17:75:36:85:ce:79:a6:f0:2f:d4:6f:a7: d2:db:b2:a9:f5:4a:7f:ba:e1:9a:8e:56:4e:37:77:64:d4:8d: 3a:a4:64:7b:43:d9:d1:b5:2f:33:8a:0b:3f:86:b9:14:63:c7: 5a:ef:76:b7:c1:69:d5:d7:a6:74:e2:dd:ff:13:66:7d:52:53: a4:07:bb:4d:0a:53:12:dc:cb:2c:10:0f:de:dd:50:50:aa:89: 0d:01:07:44:0a:a1:82:14:ca:65:69:78:1a:e7:04:88:d4:7c: 51:37:2f:1d:8a:d2:93:7a:c1:cd:0a:50:b7:78:ec:5f:37:f5: 2e:83:63:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURE3EbdavQIyAxOivyVRKEelIMHkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwNTIwMTUzMDU2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTJkNjNiM2VhOTA2MzAwMjE1YTBlM2QwZTcwMGUzMWJj ZTBiMTBiYTAzYzY1ZjFmODY4NGRiOWEyY2E2ZGZjMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4sYRbrDV583/T90weUoNnQTbdDvijDO5c6SPu/wEDTOiI eOwNXHckeCtJp/AysQfo8kKQQD24927rhEzme+EhMwUoKceXNINL4ia0XFPqk5L0 YgM7/FqHG4QQhahrVAQChTzjAP2dIb00GwTg0jCMtMYCmO3z0EUsY1+VxC1FGCWR 8T70y+19DGcywzKnivPt55bkRXCwG1S64JUtZDByuLb83eURwFUl9V0aqf4PYFcH EhHpLjAbjlZmSeVGNqi3XfchvOoaa2xQpiaqcjnRo8M9v9jI9xL52w4O9+YEdSmm SNlnazoi98Ua3QGg6SyZvT/YINjBoI9IZbVDzI35AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbMhfvumrXXLYUfolCbusZpNaJWQwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5L2UzZjhhMjM3LTVkOGItNGQ2MS1hYmM4LWMxMjkxOTJmYjdjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYycIAwDQYJKoZIhvcNAQELBQADggEBAKP0/qN3c5Lz4CNkARo8j2Pp+R6v P+kmGkTCz7rLS6vTv2LEkzptHTszvfyo+rXjz666DXeY1Z6VpObULzROjjPzWw0Y jC10BRQTbhj6tx+wwnYgJwFqj/iJ+TLp3kLs1r39RmsZ6Lk9MOaMpZhUq3GJRL6m 2f8lZmmBDLID0PONE5Fb2Bd1NoXOeabwL9Rvp9Lbsqn1Sn+64ZqOVk43d2TUjTqk ZHtD2dG1LzOKCz+GuRRjx1rvdrfBadXXpnTi3f8TZn1SU6QHu00KUxLcyywQD97d UFCqiQ0BB0QKoYIUymVpeBrnBIjUfFE3Lx2K0pN6wc0KULd47F839S6DYy8= -----END CERTIFICATE-----Generated at Sat Jun 7 04:16:14 2025 by rpki-client