$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb61ed5e-39be-4263-9415-ebd102b321b7.roa File: bb61ed5e-39be-4263-9415-ebd102b321b7.roa (raw, json) Hash identifier: /nggmlbxKCgD/7e7NhALgvavHoTHQz3jfq91pQd4JwE= Subject key identifier: 63:84:6E:0B:D7:C5:5C:CD:A2:BB:53:5F:6A:E3:1A:7E:86:91:66:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 693A954D727C1E15B846140834DC47B204B3A68E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb61ed5e-39be-4263-9415-ebd102b321b7.roa Signing time: Sat 16 Aug 2025 00:51:00 +0000 ROA not before: Sat 16 Aug 2025 00:51:00 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:3a:95:4d:72:7c:1e:15:b8:46:14:08:34:dc:47:b2:04:b3:a6:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:51:00 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=c50d828bc414d5d55c55d46d6b447eddf100bfcae2c07b6b21c6db72276eca2b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:31:eb:be:62:a7:bd:b1:6a:4b:32:81:71:60: 77:63:e2:54:01:81:8d:92:4b:71:cf:b6:ed:82:4e: 7d:9e:c1:7e:c7:20:57:1a:ee:24:51:af:bb:b0:a0: a6:fc:a6:de:28:8f:7c:10:5c:00:78:05:73:1e:17: ca:b1:b6:e3:7b:42:12:60:bc:36:cf:ce:f9:50:cb: ba:ee:16:63:2c:49:70:6e:d7:19:af:a0:fa:77:24: b8:5a:1f:f6:91:9b:ea:99:e0:88:41:1f:cd:ae:77: f2:8e:50:a0:f8:73:c0:d8:60:40:5a:09:e1:98:e5: 72:98:f2:45:90:de:88:d5:58:ed:a4:45:db:d0:fd: 6a:bc:fd:ec:b0:de:b7:33:fa:0d:e8:ff:47:9d:b2: 2a:fb:21:c3:71:7f:c4:44:84:7e:14:41:f9:39:23: 31:8f:cc:99:c7:11:da:56:da:e3:c4:d6:91:5b:76: b7:35:12:49:a8:f5:ac:cc:ff:ba:26:2b:a8:9d:42: 56:27:81:89:fc:39:7c:06:43:57:72:a2:e4:59:bb: 41:a2:84:35:84:3c:58:e6:8c:7b:88:f0:7f:4c:93: 40:4c:5c:17:bf:7e:93:10:f1:5f:df:e0:ce:8b:87: a8:87:ad:97:a7:07:63:b4:fa:5f:d8:30:8b:48:ed: 2f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:84:6E:0B:D7:C5:5C:CD:A2:BB:53:5F:6A:E3:1A:7E:86:91:66:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb61ed5e-39be-4263-9415-ebd102b321b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.64.0/19 Signature Algorithm: sha256WithRSAEncryption 78:99:f0:35:87:6c:6c:ca:9c:5b:c2:12:f4:1f:b1:4e:f9:43: e3:31:46:8a:7b:04:fe:52:a9:87:d2:22:6f:88:c4:18:25:4a: ce:d4:0c:89:df:7a:ef:23:a8:3f:c9:32:75:ac:e1:84:6a:3b: 5e:17:56:2b:d6:10:52:11:4b:5b:93:93:34:10:19:20:ba:71: 64:2b:50:66:31:7d:18:80:8c:35:26:84:a0:9e:a9:a0:e7:c7: d0:0b:b5:ab:5b:da:d4:fb:fd:61:0c:3f:38:71:9d:3f:2d:74: 42:66:88:60:1f:0c:c3:b9:38:0d:8a:e4:cc:80:da:5b:a3:db: d1:04:cc:35:56:45:76:c0:3f:c7:3c:50:1e:d6:ee:c2:f0:c5: 25:4b:df:b6:31:7b:d4:14:09:e2:c8:0d:73:90:3b:93:d9:46: 4a:6b:7f:c1:02:89:a0:53:48:a4:fc:ff:63:20:50:05:2d:00: c8:3f:5a:dc:3c:e1:5e:73:a7:f5:f6:27:91:d9:37:30:75:04: 9a:25:d2:99:b1:e6:c3:27:24:5f:03:33:31:5e:18:c2:18:5f: 68:c4:3b:21:1d:d4:70:18:8b:75:1a:da:44:b0:06:f4:40:16: 0f:c6:b0:c7:1f:6e:c9:45:00:55:aa:ef:cc:34:ce:88:af:2c: 93:b0:a1:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaTqVTXJ8HhW4RhQINNxHsgSzpo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDA1MTAwWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTBkODI4YmM0MTRkNWQ1NWM1NWQ0NmQ2YjQ0N2VkZGYx MDBiZmNhZTJjMDdiNmIyMWM2ZGI3MjI3NmVjYTJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8Meu+Yqe9sWpLMoFxYHdj4lQBgY2SS3HPtu2CTn2ewX7H IFca7iRRr7uwoKb8pt4oj3wQXAB4BXMeF8qxtuN7QhJgvDbPzvlQy7ruFmMsSXBu 1xmvoPp3JLhaH/aRm+qZ4IhBH82ud/KOUKD4c8DYYEBaCeGY5XKY8kWQ3ojVWO2k RdvQ/Wq8/eyw3rcz+g3o/0edsir7IcNxf8REhH4UQfk5IzGPzJnHEdpW2uPE1pFb drc1Ekmo9azM/7omK6idQlYngYn8OXwGQ1dyouRZu0GihDWEPFjmjHuI8H9Mk0BM XBe/fpMQ8V/f4M6Lh6iHrZenB2O0+l/YMItI7S+/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY4RuC9fFXM2iu1NfauMafoaRZikwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiNjFlZDVlLTM5YmUtNDI2My05NDE1LWViZDEwMmIzMjFiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUyEkAwDQYJKoZIhvcNAQELBQADggEBAHiZ8DWHbGzKnFvCEvQfsU75Q+Mx Rop7BP5SqYfSIm+IxBglSs7UDInfeu8jqD/JMnWs4YRqO14XVivWEFIRS1uTkzQQ GSC6cWQrUGYxfRiAjDUmhKCeqaDnx9ALtatb2tT7/WEMPzhxnT8tdEJmiGAfDMO5 OA2K5MyA2luj29EEzDVWRXbAP8c8UB7W7sLwxSVL37Yxe9QUCeLIDXOQO5PZRkpr f8ECiaBTSKT8/2MgUAUtAMg/Wtw84V5zp/X2J5HZNzB1BJol0pmx5sMnJF8DMzFe GMIYX2jEOyEd1HAYi3Ua2kSwBvRAFg/GsMcfbslFAFWq78w0zoivLJOwoWA= -----END CERTIFICATE-----Generated at Sat Aug 23 09:12:55 2025 by rpki-client