$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8380d874-2759-4ba1-806c-9326aa7dfe55.roa File: 8380d874-2759-4ba1-806c-9326aa7dfe55.roa (raw, json) Hash identifier: ozRNs7vgcy3LJ3rW28HjBE4lfmhJO0jaPTHfODGxQ1s= Subject key identifier: D9:AE:3C:24:F1:DC:FF:91:10:19:80:55:06:A9:34:BE:9C:BB:6B:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7153B271D431ADA03AA130AACB7BC839D62587A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8380d874-2759-4ba1-806c-9326aa7dfe55.roa Signing time: Wed 07 May 2025 00:42:00 +0000 ROA not before: Wed 07 May 2025 00:42:00 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.17.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:53:b2:71:d4:31:ad:a0:3a:a1:30:aa:cb:7b:c8:39:d6:25:87:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:42:00 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=95fdb559e3ce02ce08a64450f1dc49651acc916a0b9ef8aec8b52eb866dc3346, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:aa:ac:09:b8:a0:ff:67:37:4d:a0:31:d3:b2: 37:8c:cf:6a:6f:a5:5b:bb:c5:6a:81:43:28:1c:e5: 32:e3:fb:c0:00:3b:1c:30:e0:eb:33:85:d9:71:3f: 86:98:57:10:f7:48:40:b1:00:3d:69:c5:98:60:6d: bb:4f:43:d4:26:17:e9:1b:5e:af:0d:b9:e1:75:a5: e3:be:86:8e:ea:4b:b9:3b:f7:e1:0e:d6:d4:95:f3: 99:6f:1d:b0:2d:8c:93:21:f4:94:70:8e:5d:57:03: 17:8f:de:dd:c1:45:60:59:79:6a:4d:bd:e8:09:74: 42:ab:ca:34:09:ee:7b:5b:0f:45:69:cb:e5:3a:07: e6:79:4d:7a:9c:ae:ea:a4:d7:b5:ca:98:a9:2f:ba: e5:20:02:57:52:87:06:4f:19:8e:9c:83:64:0d:a7: 0e:97:0b:85:3a:03:bf:18:87:d8:16:eb:44:88:04: a8:e7:ca:93:fb:ce:90:86:ec:79:71:4c:aa:c9:15: 89:3e:36:bd:ee:93:45:fb:4b:82:5e:b7:dc:47:f4: 4d:07:8f:c3:d9:aa:df:ba:11:69:c0:85:b2:f2:b7: a6:c9:79:e0:77:b5:0c:ed:32:d1:ab:3f:d0:fe:ea: 27:a2:77:0d:d0:d6:76:42:5f:22:41:84:d5:f6:1c: 1d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:AE:3C:24:F1:DC:FF:91:10:19:80:55:06:A9:34:BE:9C:BB:6B:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8380d874-2759-4ba1-806c-9326aa7dfe55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.192.0/18 Signature Algorithm: sha256WithRSAEncryption 52:a6:0c:ef:6d:9f:fb:60:c9:ce:19:d3:21:41:ca:5d:8e:c6: fb:84:3b:8b:49:ba:1e:df:e9:a6:c8:cb:8b:f8:ca:f4:d6:67: 4d:f4:4a:5c:ec:df:8d:79:8a:45:4e:f5:a8:7e:1c:1a:3e:15: 58:33:a8:45:14:97:df:40:2e:a0:62:b1:49:3d:c1:fa:ac:3c: 83:9e:48:46:e5:cb:30:d5:9f:9b:9f:6b:4c:d2:74:b8:1d:cf: 7a:88:c1:93:29:f4:8a:1c:80:0e:1b:70:ea:d2:b8:a8:aa:3e: 15:04:49:28:51:79:de:72:66:e2:0e:ac:5e:9d:53:2c:06:3b: c3:c0:ba:8a:f5:b8:d2:c6:53:ee:82:ba:7b:52:d4:1c:78:83: 0c:9e:9e:59:40:b3:81:b4:71:72:a0:a3:d0:b7:9e:43:10:13: 6b:7d:52:4f:a1:c6:63:8f:bd:c8:f1:c5:05:ca:9c:eb:e3:b3: 80:2d:4d:c9:cf:79:b9:84:85:9e:67:2b:5f:6b:e6:b4:26:2a: 96:d7:dd:b8:84:23:3a:d9:16:31:14:41:7f:e8:9a:d5:e0:51: a0:05:3d:31:69:0d:1f:6f:04:1a:2a:06:9d:b7:07:3e:4f:ff: 76:99:c3:00:00:09:0f:a6:16:f0:5c:98:bb:81:bb:7b:25:ef: ee:c8:4f:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcVOycdQxraA6oTCqy3vIOdYlh6cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA0MjAwWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWZkYjU1OWUzY2UwMmNlMDhhNjQ0NTBmMWRjNDk2NTFh Y2M5MTZhMGI5ZWY4YWVjOGI1MmViODY2ZGMzMzQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNqqwJuKD/ZzdNoDHTsjeMz2pvpVu7xWqBQygc5TLj+8AA Oxww4OszhdlxP4aYVxD3SECxAD1pxZhgbbtPQ9QmF+kbXq8NueF1peO+ho7qS7k7 9+EO1tSV85lvHbAtjJMh9JRwjl1XAxeP3t3BRWBZeWpNvegJdEKryjQJ7ntbD0Vp y+U6B+Z5TXqcruqk17XKmKkvuuUgAldShwZPGY6cg2QNpw6XC4U6A78Yh9gW60SI BKjnypP7zpCG7HlxTKrJFYk+Nr3uk0X7S4Jet9xH9E0Hj8PZqt+6EWnAhbLyt6bJ eeB3tQztMtGrP9D+6ieidw3Q1nZCXyJBhNX2HB1JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2a48JPHc/5EQGYBVBqk0vpy7a0QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgzODBkODc0LTI3NTktNGJhMS04MDZjLTkzMjZhYTdkZmU1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYyEcAwDQYJKoZIhvcNAQELBQADggEBAFKmDO9tn/tgyc4Z0yFByl2OxvuE O4tJuh7f6abIy4v4yvTWZ030Slzs3415ikVO9ah+HBo+FVgzqEUUl99ALqBisUk9 wfqsPIOeSEblyzDVn5ufa0zSdLgdz3qIwZMp9IocgA4bcOrSuKiqPhUESShRed5y ZuIOrF6dUywGO8PAuor1uNLGU+6CuntS1Bx4gwyenllAs4G0cXKgo9C3nkMQE2t9 Uk+hxmOPvcjxxQXKnOvjs4AtTcnPebmEhZ5nK19r5rQmKpbX3biEIzrZFjEUQX/o mtXgUaAFPTFpDR9vBBoqBp23Bz5P/3aZwwAACQ+mFvBcmLuBu3sl7+7IT9Y= -----END CERTIFICATE-----Generated at Mon May 12 16:22:43 2025 by rpki-client