$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29fe4c24-b674-4bba-8dd9-9639a0d43dc6.roa File: 29fe4c24-b674-4bba-8dd9-9639a0d43dc6.roa (raw, json) Hash identifier: 6l5UeD/HMJtXgYZG13lXwjEBGPY3yTzwPZNJiwZNNMw= Subject key identifier: 68:64:72:0F:F0:C3:D0:89:D1:57:60:60:B0:05:0A:29:E1:7B:AD:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30F4C8DD3EA3C09D728A810B53A104C3F72D2D1C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29fe4c24-b674-4bba-8dd9-9639a0d43dc6.roa Signing time: Sat 16 Aug 2025 00:40:28 +0000 ROA not before: Sat 16 Aug 2025 00:40:28 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.17.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:f4:c8:dd:3e:a3:c0:9d:72:8a:81:0b:53:a1:04:c3:f7:2d:2d:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:40:28 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=e3303ffbc09385fc2407dffe66d7b397d7d3fbfc88727723ca700c5064a90f2d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:fd:32:a0:ae:3f:7b:cf:0b:50:69:a7:6b:aa: ff:1e:4c:2d:9d:92:7c:f6:08:1c:d5:0b:3c:09:84: b2:5c:2a:cf:d6:3f:80:34:39:e1:51:03:e7:c5:a8: 75:22:f4:be:da:7f:76:64:9c:97:31:ba:4b:ef:fd: cb:41:25:d2:4b:8d:46:19:6b:77:87:83:13:45:07: 2f:c6:23:be:f5:99:e0:55:0c:ab:bd:e9:36:84:55: 99:6a:91:18:03:70:ba:a7:77:a3:04:d3:5e:fd:d4: 50:c3:4e:b5:9f:e4:c3:10:fc:19:45:43:99:d3:1f: 17:24:f1:bf:bc:70:89:9f:a7:3c:e1:6e:55:87:38: ee:a0:16:73:95:72:ad:27:f1:89:30:9d:58:06:71: 2b:0f:bd:03:e2:df:4a:60:14:78:a8:3b:e3:61:8f: 1e:85:ee:26:9f:c6:7c:0d:d0:8d:69:7e:3d:3b:0f: 51:11:b4:65:79:dd:1e:3e:d6:d5:43:27:be:2a:ce: c0:06:bb:27:32:8e:6f:1e:07:64:15:08:17:da:aa: ba:7e:d5:26:f4:f2:7e:6a:a9:38:ad:a0:91:f3:8a: 18:2c:03:7a:ea:10:9c:56:cb:a6:b6:3a:10:28:2f: 25:20:c4:0c:36:f6:12:f7:2f:33:0e:5d:30:99:dc: 76:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:64:72:0F:F0:C3:D0:89:D1:57:60:60:B0:05:0A:29:E1:7B:AD:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29fe4c24-b674-4bba-8dd9-9639a0d43dc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.184.0/21 Signature Algorithm: sha256WithRSAEncryption 6d:14:a0:8c:e7:e3:d7:63:fc:61:14:a3:57:c1:3e:07:5f:41: 4e:98:5f:2f:a9:b1:74:5e:e1:fe:ce:a8:59:27:c1:c3:27:9f: 4b:62:83:c8:8f:57:ed:f0:f9:23:f7:39:30:99:45:ac:8a:b0: 60:41:6e:02:23:0e:91:e9:e2:d8:95:b5:ef:9b:f0:92:00:e9: 77:fe:12:0f:93:a6:6f:7e:ee:30:fe:48:29:9a:7e:92:41:91: ea:67:8f:60:35:3a:8b:89:19:c6:48:b2:26:88:8d:ba:a5:1a: c7:5f:e4:3e:83:52:3e:b8:6b:c9:26:57:8c:dd:b0:d5:38:ad: ff:a0:71:e3:7c:06:35:34:82:e7:18:bc:7d:66:3a:e6:29:2f: 1b:58:50:e9:76:af:92:57:0d:bd:db:f1:a0:aa:ba:93:3a:96: a6:73:3f:b7:41:c8:6f:bd:99:50:86:74:39:2d:2d:3c:9f:b9: e4:72:a6:86:a4:24:74:25:e3:02:cc:4f:b3:17:fc:10:51:19: e0:cf:1f:ee:70:de:1d:9f:50:59:91:29:78:f1:cd:97:ac:ee: b8:30:7d:09:46:a5:9e:6f:8b:10:b2:6c:66:3c:62:5e:78:d4: a1:c4:35:d0:e9:07:55:89:8d:1c:47:88:3e:3f:b8:bc:28:ad: 0e:44:de:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMPTI3T6jwJ1yioELU6EEw/ctLRwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDA0MDI4WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzMwM2ZmYmMwOTM4NWZjMjQwN2RmZmU2NmQ3YjM5N2Q3 ZDNmYmZjODg3Mjc3MjNjYTcwMGM1MDY0YTkwZjJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP/TKgrj97zwtQaadrqv8eTC2dknz2CBzVCzwJhLJcKs/W P4A0OeFRA+fFqHUi9L7af3ZknJcxukvv/ctBJdJLjUYZa3eHgxNFBy/GI771meBV DKu96TaEVZlqkRgDcLqnd6ME01791FDDTrWf5MMQ/BlFQ5nTHxck8b+8cImfpzzh blWHOO6gFnOVcq0n8YkwnVgGcSsPvQPi30pgFHioO+Nhjx6F7iafxnwN0I1pfj07 D1ERtGV53R4+1tVDJ74qzsAGuycyjm8eB2QVCBfaqrp+1Sb08n5qqTitoJHzihgs A3rqEJxWy6a2OhAoLyUgxAw29hL3LzMOXTCZ3HYDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaGRyD/DD0InRV2BgsAUKKeF7rZowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5ZmU0YzI0LWI2NzQtNGJiYS04ZGQ5LTk2MzlhMGQ0M2RjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMyEbgwDQYJKoZIhvcNAQELBQADggEBAG0UoIzn49dj/GEUo1fBPgdfQU6Y Xy+psXRe4f7OqFknwcMnn0tig8iPV+3w+SP3OTCZRayKsGBBbgIjDpHp4tiVte+b 8JIA6Xf+Eg+Tpm9+7jD+SCmafpJBkepnj2A1OouJGcZIsiaIjbqlGsdf5D6DUj64 a8kmV4zdsNU4rf+gceN8BjU0gucYvH1mOuYpLxtYUOl2r5JXDb3b8aCqupM6lqZz P7dByG+9mVCGdDktLTyfueRypoakJHQl4wLMT7MX/BBRGeDPH+5w3h2fUFmRKXjx zZes7rgwfQlGpZ5vixCybGY8Yl541KHENdDpB1WJjRxHiD4/uLworQ5E3k8= -----END CERTIFICATE-----Generated at Sat Aug 23 08:32:51 2025 by rpki-client