$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ee5aa8d-429e-4193-96bb-7d20581f3ad2.roa File: 0ee5aa8d-429e-4193-96bb-7d20581f3ad2.roa (raw, json) Hash identifier: AAPsygaaw4VoAJQawZ15jmHDNQrJdQAoEAkOPd0DgyY= Subject key identifier: 9F:7C:D0:E1:75:13:BE:51:41:E5:12:38:E9:B5:5B:C7:3B:6C:39:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AF361D310EFF83F7AAC2A55826CD607DB679149 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ee5aa8d-429e-4193-96bb-7d20581f3ad2.roa Signing time: Wed 07 May 2025 00:31:22 +0000 ROA not before: Wed 07 May 2025 00:31:22 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.16.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f3:61:d3:10:ef:f8:3f:7a:ac:2a:55:82:6c:d6:07:db:67:91:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:31:22 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=e6a5ccb2b4782724f093718c726f1c1ad631fa21fab1aa9aeb47012cb10425db, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0d:23:21:18:df:c3:a1:c9:51:e7:2b:6d:01: 03:d5:6d:98:e1:b0:78:6b:8f:3a:23:f9:57:16:75: 8f:01:3f:e1:f1:10:58:a4:02:d0:dd:25:05:a5:04: d0:9f:1c:f3:e9:5d:87:8b:04:9e:86:b4:cf:8f:06: 8b:78:66:fe:2b:15:36:de:ed:6c:e2:33:87:49:20: 99:37:4d:c1:93:05:4e:c4:2c:2f:99:eb:68:a9:a1: 5e:1e:d1:ff:5a:58:c3:2d:cf:eb:63:34:ab:6a:2d: e3:52:59:dc:93:27:27:3c:4c:37:74:5a:91:48:81: f1:2a:48:db:05:d2:b5:65:ed:17:a8:bf:4e:ec:39: 83:4e:4e:d8:a8:10:e7:a3:c5:de:3f:98:fb:3d:31: 40:f6:d6:3e:48:d0:64:94:12:c5:1f:16:63:58:6d: 61:3e:e3:54:84:04:c2:0a:ff:65:67:41:c0:6e:d9: 17:91:a8:ff:08:cb:c3:9d:c7:27:27:05:e2:61:ad: 6b:d7:52:a6:f8:3b:d8:a6:23:33:cc:e8:d1:8d:66: 07:bb:fc:22:c8:96:9c:69:9d:8d:79:dc:6f:16:00: 36:63:2b:2f:2e:a0:85:c4:8e:ca:02:5f:a5:80:df: ed:38:7a:2a:0a:38:05:79:5a:29:f7:a7:a1:e3:cb: dc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:7C:D0:E1:75:13:BE:51:41:E5:12:38:E9:B5:5B:C7:3B:6C:39:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ee5aa8d-429e-4193-96bb-7d20581f3ad2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.16.160.0/20 Signature Algorithm: sha256WithRSAEncryption 6a:85:44:08:a8:24:b0:75:bb:8f:86:d4:34:e7:5c:cd:78:7a: d7:5e:43:30:6a:42:98:35:92:cb:69:e3:44:cb:14:d4:72:b4: 16:9a:cf:e6:a6:c6:6c:8c:fe:d7:c3:98:42:73:0d:f3:83:14: b5:39:8f:da:54:8b:da:b1:cc:5d:73:85:3c:f9:43:f3:f2:d8: 4e:7f:59:e9:70:0d:c8:d1:d8:00:68:0d:6f:09:82:83:2b:e4: 93:4a:71:af:8a:f1:b0:fa:25:78:80:1e:85:51:88:03:3d:5b: ad:b5:b3:82:ab:60:1d:40:b7:ab:e8:46:0d:16:18:55:02:2c: 79:90:d0:57:c7:8e:5e:f8:ea:99:b8:0a:e5:3e:51:7c:34:74: f2:be:56:d6:d2:ad:03:83:96:9c:4b:d6:34:8c:70:81:f6:fb: 02:3a:d1:a0:04:0b:3c:c1:8d:66:8d:05:f4:1c:ec:d1:91:04: 88:a1:b6:94:44:23:5d:09:27:21:9c:06:0d:42:b9:f9:4c:ff: 2d:f3:b0:01:17:bb:61:dc:1b:67:84:73:28:d6:41:ec:17:43: 3b:ac:55:25:a9:53:48:bd:58:91:63:84:ba:55:43:57:b7:c2: 8b:0c:12:a5:7f:f2:c1:5b:1a:ad:e7:40:d4:98:31:e5:d6:ca: e2:b9:81:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOvNh0xDv+D96rCpVgmzWB9tnkUkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAzMTIyWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmE1Y2NiMmI0NzgyNzI0ZjA5MzcxOGM3MjZmMWMxYWQ2 MzFmYTIxZmFiMWFhOWFlYjQ3MDEyY2IxMDQyNWRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmDSMhGN/DoclR5yttAQPVbZjhsHhrjzoj+VcWdY8BP+Hx EFikAtDdJQWlBNCfHPPpXYeLBJ6GtM+PBot4Zv4rFTbe7WziM4dJIJk3TcGTBU7E LC+Z62ipoV4e0f9aWMMtz+tjNKtqLeNSWdyTJyc8TDd0WpFIgfEqSNsF0rVl7Reo v07sOYNOTtioEOejxd4/mPs9MUD21j5I0GSUEsUfFmNYbWE+41SEBMIK/2VnQcBu 2ReRqP8Iy8OdxycnBeJhrWvXUqb4O9imIzPM6NGNZge7/CLIlpxpnY153G8WADZj Ky8uoIXEjsoCX6WA3+04eioKOAV5Win3p6Hjy9w7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUn3zQ4XUTvlFB5RI46bVbxztsOVcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZTVhYThkLTQyOWUtNDE5My05NmJiLTdkMjA1ODFmM2FkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEKAwDQYJKoZIhvcNAQELBQADggEBAGqFRAioJLB1u4+G1DTnXM14etde QzBqQpg1kstp40TLFNRytBaaz+amxmyM/tfDmEJzDfODFLU5j9pUi9qxzF1zhTz5 Q/Py2E5/WelwDcjR2ABoDW8JgoMr5JNKca+K8bD6JXiAHoVRiAM9W621s4KrYB1A t6voRg0WGFUCLHmQ0FfHjl746pm4CuU+UXw0dPK+VtbSrQODlpxL1jSMcIH2+wI6 0aAECzzBjWaNBfQc7NGRBIihtpREI10JJyGcBg1CuflM/y3zsAEXu2HcG2eEcyjW QewXQzusVSWpU0i9WJFjhLpVQ1e3wosMEqV/8sFbGq3nQNSYMeXWyuK5gUQ= -----END CERTIFICATE-----Generated at Mon May 12 15:54:25 2025 by rpki-client