$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1b466a2-817b-4958-ab89-444b143015d3.roa File: c1b466a2-817b-4958-ab89-444b143015d3.roa (raw, json) Hash identifier: GWzjFBSODmRvARk4qsQTClPr1zo6F0NS708mPEEcfHI= Subject key identifier: D0:4F:A3:49:5B:14:32:06:92:8D:DD:B5:F0:7F:71:D9:AA:5B:6A:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31E27A1F61E0F9E2438A8E5F6D280E9BB43C4334 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1b466a2-817b-4958-ab89-444b143015d3.roa Signing time: Fri 27 Jun 2025 00:51:09 +0000 ROA not before: Fri 27 Jun 2025 00:51:09 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.17.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e2:7a:1f:61:e0:f9:e2:43:8a:8e:5f:6d:28:0e:9b:b4:3c:43:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:51:09 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=35fadaed627a454e07a96a24bfca01eee9eba28fea95aef6a6b44a47fbfe0649, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:69:83:5b:0a:03:9b:f9:51:ff:4e:9d:ed:e8: 81:23:17:f4:59:08:7c:86:d9:ec:36:32:fc:15:40: 3d:9f:34:ed:a8:0f:42:3d:16:38:94:51:68:9f:81: 9d:b5:e1:71:cf:b5:57:7b:bf:cc:2e:a9:68:f7:22: 58:d4:99:7b:48:bd:f5:de:db:bb:46:2a:a1:10:d7: d8:1d:f7:ad:6b:86:ee:c9:7f:07:5b:b8:21:aa:c0: 2e:ef:84:25:6e:7d:e3:13:1c:80:2d:0d:cb:48:b6: 50:89:6c:f4:49:3a:0e:41:7f:3d:0b:c6:81:55:7b: 52:d6:f3:f2:1e:ed:95:2d:15:fe:ea:77:dd:7d:2f: 64:41:56:32:f2:d1:ac:ab:65:2e:26:8b:3e:5c:9e: 18:b5:7e:43:ba:b5:89:1c:c4:26:0e:45:8b:b0:c4: 00:2f:40:99:6f:55:41:6d:7b:18:66:18:a8:af:f5: 7c:e0:ec:70:7e:d7:02:89:93:f0:22:d2:f5:60:8a: 2b:b6:dc:23:6f:21:ed:12:c4:75:5a:33:7e:cd:88: 41:13:a6:d7:62:1a:46:48:b6:c3:87:fc:37:fc:c0: e4:d2:5f:75:89:b0:98:45:2b:92:c4:45:b6:52:c1: d0:75:0c:e4:ea:62:a2:5c:36:e0:21:d9:30:a6:6b: 4b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4F:A3:49:5B:14:32:06:92:8D:DD:B5:F0:7F:71:D9:AA:5B:6A:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1b466a2-817b-4958-ab89-444b143015d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.128.0/19 Signature Algorithm: sha256WithRSAEncryption bd:d4:cb:d8:e5:f1:63:5e:b6:38:11:a5:fd:cc:9a:24:c3:84: c0:d6:8c:a3:4b:e2:dd:cc:a7:10:31:ec:c9:46:f2:2a:70:01: e6:91:64:ba:a8:98:b9:13:8a:0e:af:84:43:3b:48:4b:4a:3d: c2:e4:d8:20:7c:f1:e2:e4:a5:0f:68:a5:93:53:1a:a6:fe:dd: cd:67:7e:e6:14:c5:ea:9a:e4:4c:98:2e:ea:11:32:db:32:51: d4:30:93:3a:ae:ce:d3:0d:b5:fb:fd:c6:f8:81:8b:27:13:2e: 9a:02:01:ee:2e:f9:09:e0:af:c9:8e:69:43:48:6a:57:1e:c5: 75:5b:ed:7b:d6:c2:28:ea:ff:d7:ab:1d:59:c8:fb:37:b3:7e: a4:bf:d6:db:41:92:13:39:7d:b0:70:2c:e4:71:86:97:4c:03: 5a:6b:f6:58:8e:e6:9f:ca:6c:c1:d1:d0:2d:1a:48:72:d5:68: 75:8a:97:66:30:b0:cd:39:b1:44:77:68:f6:b7:80:15:bc:99: 3a:e3:7c:63:8d:47:0c:70:9e:7f:85:06:bd:11:ac:80:75:17: 45:54:88:a2:21:ce:02:2c:4f:73:7e:c0:2c:f2:f9:f4:60:77: 0c:19:03:83:91:0d:07:24:95:2f:2f:d6:2d:a8:77:72:46:f2: 59:f8:5c:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMeJ6H2Hg+eJDio5fbSgOm7Q8QzQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDA1MTA5WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWZhZGFlZDYyN2E0NTRlMDdhOTZhMjRiZmNhMDFlZWU5 ZWJhMjhmZWE5NWFlZjZhNmI0NGE0N2ZiZmUwNjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4aYNbCgOb+VH/Tp3t6IEjF/RZCHyG2ew2MvwVQD2fNO2o D0I9FjiUUWifgZ214XHPtVd7v8wuqWj3IljUmXtIvfXe27tGKqEQ19gd961rhu7J fwdbuCGqwC7vhCVufeMTHIAtDctItlCJbPRJOg5Bfz0LxoFVe1LW8/Ie7ZUtFf7q d919L2RBVjLy0ayrZS4miz5cnhi1fkO6tYkcxCYORYuwxAAvQJlvVUFtexhmGKiv 9Xzg7HB+1wKJk/Ai0vVgiiu23CNvIe0SxHVaM37NiEETptdiGkZItsOH/Df8wOTS X3WJsJhFK5LERbZSwdB1DOTqYqJcNuAh2TCma0s1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0E+jSVsUMgaSjd218H9x2apbatIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxYjQ2NmEyLTgxN2ItNDk1OC1hYjg5LTQ0NGIxNDMwMTVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUyEYAwDQYJKoZIhvcNAQELBQADggEBAL3Uy9jl8WNetjgRpf3MmiTDhMDW jKNL4t3MpxAx7MlG8ipwAeaRZLqomLkTig6vhEM7SEtKPcLk2CB88eLkpQ9opZNT Gqb+3c1nfuYUxeqa5EyYLuoRMtsyUdQwkzquztMNtfv9xviBiycTLpoCAe4u+Qng r8mOaUNIalcexXVb7XvWwijq/9erHVnI+zezfqS/1ttBkhM5fbBwLORxhpdMA1pr 9liO5p/KbMHR0C0aSHLVaHWKl2YwsM05sUR3aPa3gBW8mTrjfGONRwxwnn+FBr0R rIB1F0VUiKIhzgIsT3N+wCzy+fRgdwwZA4ORDQcklS8v1i2od3JG8ln4XC4= -----END CERTIFICATE-----Generated at Wed Jul 2 06:33:44 2025 by rpki-client