$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1b466a2-817b-4958-ab89-444b143015d3.roa File: c1b466a2-817b-4958-ab89-444b143015d3.roa (raw, json) Hash identifier: joipm/+9YLD7Q9/NN3wHnoFPRAgJF2+GQJsR8MN+0tA= Subject key identifier: CF:92:51:0A:00:08:AF:E7:DC:A4:95:CB:FD:FF:D1:3E:3B:E3:36:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 617C7F4793F726D94545599A17DDB532A22EB0FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1b466a2-817b-4958-ab89-444b143015d3.roa Signing time: Sat 16 Aug 2025 00:51:56 +0000 ROA not before: Sat 16 Aug 2025 00:51:56 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.17.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:7c:7f:47:93:f7:26:d9:45:45:59:9a:17:dd:b5:32:a2:2e:b0:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:51:56 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=bb71c7bf10ab0c0087936595117c40b06e845e87eef25837341412eed3c3bae7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d9:3a:56:c4:98:61:f7:f1:39:a2:99:a0:7d: 77:84:60:c5:ea:7d:b6:b2:ba:14:3a:e4:1e:60:90: 07:5a:08:45:10:36:82:7f:32:e0:0d:65:b2:b4:08: 27:a3:73:c2:48:d9:3c:6f:52:56:68:dc:e0:de:6c: 99:d2:57:fc:f3:8b:12:86:38:5b:43:b1:5f:e7:9e: 8f:70:f4:5b:ed:57:36:29:54:c7:b1:36:b2:32:00: f0:5b:6e:d9:93:54:ce:ce:9e:06:54:94:d7:03:87: 07:42:e2:11:31:e5:2d:4e:09:2e:a2:09:ea:8b:de: 57:78:2d:54:9b:12:ad:5e:35:47:73:62:83:ec:69: f7:b0:a6:25:d3:3f:e6:2f:4a:1c:b4:b9:6a:5e:35: 6b:bc:72:04:14:8b:0a:f7:2a:ff:42:e1:8a:66:be: ed:3c:56:fb:2b:80:2f:a0:93:12:dc:fc:6d:23:21: 47:8f:fb:9d:e1:4c:fd:1c:fa:19:03:a0:9e:34:ad: d4:57:ee:25:02:94:55:0c:c6:68:60:bb:58:53:c2: 24:41:a3:74:5f:08:20:0b:aa:e0:f7:7d:15:25:39: 47:37:d7:85:6e:90:5b:d4:ab:61:ec:74:ee:31:fb: e5:63:3a:dd:a5:a8:0a:dc:24:27:c0:80:75:c3:f3: a4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:92:51:0A:00:08:AF:E7:DC:A4:95:CB:FD:FF:D1:3E:3B:E3:36:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1b466a2-817b-4958-ab89-444b143015d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.128.0/19 Signature Algorithm: sha256WithRSAEncryption a4:a1:d1:39:f4:fa:eb:83:fe:ca:00:95:a3:22:31:e1:07:99: 46:e1:2d:bd:b4:34:d6:d7:0b:e6:7a:5b:08:07:a7:51:28:cc: 9e:a5:c4:be:f4:33:dc:b9:92:02:c4:f9:64:16:ee:5a:7f:7f: 3e:45:87:b4:37:e5:12:d4:cf:16:52:3f:71:34:23:ee:90:24: 80:ce:9f:b7:2e:e6:85:6c:73:9b:ab:0f:a4:11:e0:e7:5b:3f: bc:8b:7f:5e:8b:a2:33:46:ca:22:82:ec:0b:37:b6:c7:20:72: ff:29:c8:87:0a:99:b4:cb:50:19:ca:80:63:ef:0c:6d:48:c4: 68:6e:11:60:bf:b5:2a:56:b7:ab:44:e3:b9:20:91:30:d4:bd: 04:c7:38:24:d7:51:11:e7:e8:e0:d5:e1:e4:00:60:95:72:41: 65:e9:b3:39:96:e9:fd:31:bb:1b:2b:78:bb:87:ac:44:8b:31: fd:8c:c9:6f:b8:4e:21:11:3b:df:4e:a3:ac:75:f7:a0:17:be: 6a:66:d7:4d:da:a2:e8:d2:df:94:83:8b:c1:f0:d5:b0:17:f3: fd:a6:98:f8:79:aa:35:5d:33:cf:51:73:67:17:d8:b9:83:0f: 52:d3:60:aa:cf:13:18:d1:be:8b:c9:f0:5b:d4:52:ca:40:e5: 31:5b:73:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYXx/R5P3JtlFRVmaF921MqIusP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDA1MTU2WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjcxYzdiZjEwYWIwYzAwODc5MzY1OTUxMTdjNDBiMDZl ODQ1ZTg3ZWVmMjU4MzczNDE0MTJlZWQzYzNiYWU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC52TpWxJhh9/E5opmgfXeEYMXqfbayuhQ65B5gkAdaCEUQ NoJ/MuANZbK0CCejc8JI2TxvUlZo3ODebJnSV/zzixKGOFtDsV/nno9w9FvtVzYp VMexNrIyAPBbbtmTVM7OngZUlNcDhwdC4hEx5S1OCS6iCeqL3ld4LVSbEq1eNUdz YoPsafewpiXTP+YvShy0uWpeNWu8cgQUiwr3Kv9C4Ypmvu08VvsrgC+gkxLc/G0j IUeP+53hTP0c+hkDoJ40rdRX7iUClFUMxmhgu1hTwiRBo3RfCCALquD3fRUlOUc3 14VukFvUq2HsdO4x++VjOt2lqArcJCfAgHXD86QbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz5JRCgAIr+fcpJXL/f/RPjvjNncwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxYjQ2NmEyLTgxN2ItNDk1OC1hYjg5LTQ0NGIxNDMwMTVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUyEYAwDQYJKoZIhvcNAQELBQADggEBAKSh0Tn0+uuD/soAlaMiMeEHmUbh Lb20NNbXC+Z6WwgHp1EozJ6lxL70M9y5kgLE+WQW7lp/fz5Fh7Q35RLUzxZSP3E0 I+6QJIDOn7cu5oVsc5urD6QR4OdbP7yLf16LojNGyiKC7As3tscgcv8pyIcKmbTL UBnKgGPvDG1IxGhuEWC/tSpWt6tE47kgkTDUvQTHOCTXURHn6ODV4eQAYJVyQWXp szmW6f0xuxsreLuHrESLMf2MyW+4TiERO99Oo6x196AXvmpm103aoujS35SDi8Hw 1bAX8/2mmPh5qjVdM89Rc2cX2LmDD1LTYKrPExjRvovJ8FvUUspA5TFbcxs= -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:00 2025 by rpki-client