$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29fe4c24-b674-4bba-8dd9-9639a0d43dc6.roa File: 29fe4c24-b674-4bba-8dd9-9639a0d43dc6.roa (raw, json) Hash identifier: mtO3vkKwqdDFTP5NqKeqd33VWYmCRjpOSsEZ1YIOiAA= Subject key identifier: 53:17:0D:29:D0:42:E3:DE:D6:8F:61:C1:A4:F9:EE:9F:F3:93:9E:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 412BD51F1ED1DF847173C6570E26B569C8CE79DA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29fe4c24-b674-4bba-8dd9-9639a0d43dc6.roa Signing time: Wed 07 May 2025 00:21:48 +0000 ROA not before: Wed 07 May 2025 00:21:48 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.17.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:2b:d5:1f:1e:d1:df:84:71:73:c6:57:0e:26:b5:69:c8:ce:79:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:21:48 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=f085bc5eb85ca2f11e7bbe0ac14cb389db3611d2f0efe1b145e69b9d8902eeb4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a3:ad:93:74:0e:52:ab:84:73:6f:81:53:23: 0c:d0:af:78:9c:43:7a:d4:78:7f:b4:03:44:5e:00: c7:be:ce:d6:0a:9b:88:7b:27:71:21:36:6a:38:aa: 8d:dc:c2:86:d4:8a:6f:f4:86:14:81:ae:35:55:0a: b5:61:fd:3c:b6:a2:4f:78:d4:24:ef:dc:e4:c6:28: 78:3e:6c:04:4d:8a:18:cd:93:92:18:03:57:6a:e3: a0:46:aa:61:fe:31:e3:70:d7:e8:f3:e8:ec:59:39: e6:d8:be:65:0d:ef:a3:eb:e4:3e:36:06:b4:ba:95: 05:3d:91:4d:8c:30:47:d3:92:01:62:7f:55:96:ac: 5f:6b:05:f9:f4:75:ce:f9:e9:c6:7e:6f:b6:ac:67: 75:95:29:a7:bd:81:23:73:31:9f:f6:a2:bb:1e:9a: 8e:18:52:16:3c:0f:9d:c7:50:0c:cf:4f:9f:d1:e4: aa:23:76:79:62:0e:2b:0a:14:4e:8a:eb:80:62:6e: 05:5e:37:28:a9:13:03:88:50:2c:70:40:8e:67:96: 58:b9:18:fe:0f:9b:bb:f9:b1:4a:a1:1d:1a:3a:87: 91:b7:a1:29:ac:b4:54:b8:ed:ad:da:91:70:fc:ad: cb:cf:90:13:2b:61:0f:40:1a:78:88:82:66:ce:69: ce:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:17:0D:29:D0:42:E3:DE:D6:8F:61:C1:A4:F9:EE:9F:F3:93:9E:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29fe4c24-b674-4bba-8dd9-9639a0d43dc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.184.0/21 Signature Algorithm: sha256WithRSAEncryption 28:db:ab:82:85:6f:30:5c:53:4f:91:13:1a:fe:b9:e6:29:94: 3f:59:3e:21:64:6e:43:53:03:0f:6f:ad:96:17:61:e4:50:74: a3:fe:2a:fd:10:de:32:59:b3:4c:ca:4b:6c:95:88:fa:f2:af: 72:43:7e:c9:14:43:f4:ff:7f:cf:28:f5:1a:7e:7b:c1:11:f6: 46:8b:de:07:84:8d:c8:8c:4e:63:f1:f0:a7:2d:2e:21:f8:c4: d1:f0:0b:62:c1:f1:31:2e:8a:f5:fe:23:52:ec:2b:54:bb:39: 4e:76:78:43:b0:a8:39:25:8b:75:94:24:46:cc:79:9f:82:13: 6b:c2:ec:5f:46:f1:35:c2:c0:8a:bd:b1:8a:67:4f:65:19:aa: dd:c2:61:80:53:0a:04:00:34:84:b6:03:e0:66:39:71:dd:87: d6:3a:b8:ae:29:f9:fa:bb:42:a8:a8:3d:11:7c:2f:91:17:e8: 08:db:17:1b:f3:68:92:28:f4:b8:81:34:9d:0a:cc:20:62:0d: e9:06:46:88:e5:62:55:17:41:72:98:70:85:08:db:b1:a3:49: 60:fa:f2:5c:6d:58:90:08:ee:82:e8:c3:24:ed:7c:02:3a:62: b1:ee:0f:97:5d:fe:d6:4b:b9:76:52:b5:29:64:49:83:83:f7: eb:d8:b2:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQSvVHx7R34Rxc8ZXDia1acjOedowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAyMTQ4WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDg1YmM1ZWI4NWNhMmYxMWU3YmJlMGFjMTRjYjM4OWRi MzYxMWQyZjBlZmUxYjE0NWU2OWI5ZDg5MDJlZWI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8o62TdA5Sq4Rzb4FTIwzQr3icQ3rUeH+0A0ReAMe+ztYK m4h7J3EhNmo4qo3cwobUim/0hhSBrjVVCrVh/Ty2ok941CTv3OTGKHg+bARNihjN k5IYA1dq46BGqmH+MeNw1+jz6OxZOebYvmUN76Pr5D42BrS6lQU9kU2MMEfTkgFi f1WWrF9rBfn0dc756cZ+b7asZ3WVKae9gSNzMZ/2orsemo4YUhY8D53HUAzPT5/R 5KojdnliDisKFE6K64BibgVeNyipEwOIUCxwQI5nlli5GP4Pm7v5sUqhHRo6h5G3 oSmstFS47a3akXD8rcvPkBMrYQ9AGniIgmbOac7PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUxcNKdBC497Wj2HBpPnun/OTnicwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5ZmU0YzI0LWI2NzQtNGJiYS04ZGQ5LTk2MzlhMGQ0M2RjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMyEbgwDQYJKoZIhvcNAQELBQADggEBACjbq4KFbzBcU0+RExr+ueYplD9Z PiFkbkNTAw9vrZYXYeRQdKP+Kv0Q3jJZs0zKS2yViPryr3JDfskUQ/T/f88o9Rp+ e8ER9kaL3geEjciMTmPx8KctLiH4xNHwC2LB8TEuivX+I1LsK1S7OU52eEOwqDkl i3WUJEbMeZ+CE2vC7F9G8TXCwIq9sYpnT2UZqt3CYYBTCgQANIS2A+BmOXHdh9Y6 uK4p+fq7QqioPRF8L5EX6AjbFxvzaJIo9LiBNJ0KzCBiDekGRojlYlUXQXKYcIUI 27GjSWD68lxtWJAI7oLowyTtfAI6YrHuD5dd/tZLuXZStSlkSYOD9+vYsos= -----END CERTIFICATE-----Generated at Sun May 11 13:53:10 2025 by rpki-client