$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1e2410b-4363-4c0b-ab46-b6cc35c50be4.roa File: c1e2410b-4363-4c0b-ab46-b6cc35c50be4.roa (raw, json) Hash identifier: 6O4TsxekanFuF6km36r3Dodfa26KwoNP9UDmR7fz3r4= Subject key identifier: A9:0E:54:F0:80:DB:D7:79:52:83:18:4F:26:CD:A1:75:B2:25:DE:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 556C5DF9E9D1ADCAD9ADB2D07B0BED1286478DE2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1e2410b-4363-4c0b-ab46-b6cc35c50be4.roa Signing time: Wed 07 May 2025 00:32:07 +0000 ROA not before: Wed 07 May 2025 00:32:07 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.16.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:6c:5d:f9:e9:d1:ad:ca:d9:ad:b2:d0:7b:0b:ed:12:86:47:8d:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:32:07 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=c5ed3bcc6857548ac495874ffbc985acb80301e4f14fe5493ad36f7fd2129f6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:ed:03:2d:73:63:6f:3d:55:15:ea:03:25: 7b:d6:44:78:cd:59:71:41:7c:e9:7f:8f:b7:dc:19: a5:44:ec:bf:52:db:51:c4:de:6c:61:09:c0:1a:e3: 5f:45:4d:c4:ea:79:45:e0:b1:7e:85:a0:de:28:98: a1:36:f8:1a:0f:19:32:b2:65:00:93:f7:49:9d:21: 20:db:01:82:a1:49:e2:0c:cc:fc:c8:18:1d:91:27: 6f:37:2c:3f:23:23:a4:d6:5e:2d:f4:bc:7d:b9:0e: e1:12:e5:a5:46:f4:5f:aa:01:14:b2:3b:ae:ba:69: d5:19:47:00:e3:b8:23:6e:37:33:22:c2:98:23:47: 7d:87:33:6c:3c:66:14:88:9e:4c:2a:ac:b5:10:4c: 3c:0d:47:7b:01:fa:34:49:cc:25:38:0d:26:b8:27: 31:dc:33:52:fe:6a:f4:d3:95:28:47:2d:05:44:b4: 2f:e0:68:31:39:7d:d0:ee:43:9c:45:a8:0f:4b:13: da:fe:0e:4d:61:28:af:b6:79:76:d1:ec:59:8e:da: 88:37:27:66:35:11:b3:3f:5f:97:57:be:11:7f:f3: 1c:7d:bb:26:33:8c:bc:37:99:e2:05:79:08:3b:7c: 9d:de:bb:34:0c:42:bf:69:ca:ae:9a:8b:11:1a:e4: c2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0E:54:F0:80:DB:D7:79:52:83:18:4F:26:CD:A1:75:B2:25:DE:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1e2410b-4363-4c0b-ab46-b6cc35c50be4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.16.128.0/19 Signature Algorithm: sha256WithRSAEncryption 49:e6:49:56:ef:9d:37:e3:15:f9:67:47:a4:9a:cf:63:f0:b6: eb:5b:90:b2:ff:db:ce:0b:6c:b9:a5:3a:60:e0:f3:10:34:3e: 98:e5:1b:9c:ac:1a:07:ec:82:85:66:86:14:bc:82:2a:a4:06: 0d:d0:27:38:2c:7f:e1:a9:63:ec:aa:ec:cb:03:f2:5c:ff:1e: 27:84:c7:91:e5:df:95:c5:2e:3d:ec:b4:ef:d3:c2:ab:29:b0: 07:a6:4b:20:d5:90:bb:da:81:33:61:f4:6c:07:38:30:c0:82: 69:bb:40:15:d6:81:7b:a4:f9:e0:90:26:7c:63:b3:59:f5:ca: 3c:4a:26:11:06:7b:7e:ba:95:48:92:3f:23:90:1f:e7:6c:7b: 37:30:90:3a:bd:13:3d:97:71:83:56:5c:19:8f:7a:9a:92:c9: 0c:9c:3f:e5:ae:ac:9e:6a:c5:48:0b:1b:41:00:3f:d7:b7:6c: 99:82:a0:67:00:95:6a:59:1b:e1:fe:aa:9e:91:d5:37:79:29: 97:7d:57:d5:d3:71:52:73:d3:46:6e:11:30:71:39:3a:72:84: 0f:74:c2:ce:26:05:d7:0d:df:f3:0d:8b:74:46:32:29:db:ff: 7a:30:d4:ae:5e:3e:16:36:c1:e2:62:ca:df:6c:2e:4e:b8:a6: 78:af:50:86 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVWxd+enRrcrZrbLQewvtEoZHjeIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAzMjA3WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWVkM2JjYzY4NTc1NDhhYzQ5NTg3NGZmYmM5ODVhY2I4 MDMwMWU0ZjE0ZmU1NDkzYWQzNmY3ZmQyMTI5ZjZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2Yu0DLXNjbz1VFeoDJXvWRHjNWXFBfOl/j7fcGaVE7L9S 21HE3mxhCcAa419FTcTqeUXgsX6FoN4omKE2+BoPGTKyZQCT90mdISDbAYKhSeIM zPzIGB2RJ283LD8jI6TWXi30vH25DuES5aVG9F+qARSyO666adUZRwDjuCNuNzMi wpgjR32HM2w8ZhSInkwqrLUQTDwNR3sB+jRJzCU4DSa4JzHcM1L+avTTlShHLQVE tC/gaDE5fdDuQ5xFqA9LE9r+Dk1hKK+2eXbR7FmO2og3J2Y1EbM/X5dXvhF/8xx9 uyYzjLw3meIFeQg7fJ3euzQMQr9pyq6aixEa5MLrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqQ5U8IDb13lSgxhPJs2hdbIl3t4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxZTI0MTBiLTQzNjMtNGMwYi1hYjQ2LWI2Y2MzNWM1MGJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUyEIAwDQYJKoZIhvcNAQELBQADggEBAEnmSVbvnTfjFflnR6Saz2Pwtutb kLL/284LbLmlOmDg8xA0PpjlG5ysGgfsgoVmhhS8giqkBg3QJzgsf+GpY+yq7MsD 8lz/HieEx5Hl35XFLj3stO/TwqspsAemSyDVkLvagTNh9GwHODDAgmm7QBXWgXuk +eCQJnxjs1n1yjxKJhEGe366lUiSPyOQH+dsezcwkDq9Ez2XcYNWXBmPepqSyQyc P+WurJ5qxUgLG0EAP9e3bJmCoGcAlWpZG+H+qp6R1Td5KZd9V9XTcVJz00ZuETBx OTpyhA90ws4mBdcN3/MNi3RGMinb/3ow1K5ePhY2weJiyt9sLk64pnivUIY= -----END CERTIFICATE-----Generated at Sun May 11 09:42:48 2025 by rpki-client