$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c26c0254-1071-467d-bd2c-f81f3ba6a671.roa File: c26c0254-1071-467d-bd2c-f81f3ba6a671.roa (raw, json) Hash identifier: IByzWfufw13KQzZqYGXOBUxpvyVmOXcLXVoFK340hJQ= Subject key identifier: E7:EC:42:4D:C0:CF:37:07:A8:BA:39:44:C0:6C:BF:EB:CD:6E:FA:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 220DF319562A35525F1A51A15F68BDC0B0DBDF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c26c0254-1071-467d-bd2c-f81f3ba6a671.roa Signing time: Fri 27 Jun 2025 15:01:18 +0000 ROA not before: Fri 27 Jun 2025 15:01:18 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.19.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0d:f3:19:56:2a:35:52:5f:1a:51:a1:5f:68:bd:c0:b0:db:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 15:01:18 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=c4533be3f5deabb039677615582758ad9c9ba5a9a128d17a849be44caf9e84c0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4a:8a:19:36:c4:62:2c:a8:ad:7e:a8:fd:f6: 6d:08:d5:58:9c:e9:ed:d9:45:03:4e:85:b6:47:1f: 75:a9:38:83:06:07:87:b0:51:66:f0:7d:81:90:8a: 4f:ed:f1:c4:40:b3:01:ed:88:63:44:bc:1a:0d:63: b2:15:31:6d:fb:cc:27:91:ae:01:40:cb:be:63:73: 5a:61:87:26:ac:b4:2f:9b:8c:57:e8:20:f1:33:03: 37:92:0a:b5:d0:b7:eb:78:a5:92:70:c0:81:f2:8b: 50:f5:a6:3a:06:ba:0f:11:a1:34:cb:3d:9e:34:fc: 13:45:81:ef:df:68:21:e8:25:2b:b2:e6:d1:84:4c: 58:e4:e9:17:15:de:7e:e1:eb:e3:e2:bd:9c:50:e3: d8:d2:d1:62:10:1f:65:77:87:df:18:9e:08:c8:9e: 38:5b:d9:cb:6c:bd:2f:c1:14:d3:75:7b:be:bb:04: 5c:01:06:53:e8:07:91:c5:c5:8f:4d:20:f7:06:cb: 2a:a7:a9:29:99:e1:dc:22:b4:b0:16:6d:34:29:6b: 40:b0:e4:e9:7c:ca:75:4b:89:24:24:37:32:76:e3: 80:67:e5:a9:b7:cb:15:5d:3f:10:76:42:4d:e8:48: a1:04:c0:4f:da:f1:b0:54:58:8d:93:98:ba:4b:c5: b4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:EC:42:4D:C0:CF:37:07:A8:BA:39:44:C0:6C:BF:EB:CD:6E:FA:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c26c0254-1071-467d-bd2c-f81f3ba6a671.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.19.0.0/17 Signature Algorithm: sha256WithRSAEncryption 58:76:2e:ee:1c:e7:dc:6c:03:ed:08:b7:ed:7b:28:6e:43:98: a5:02:5a:8e:e0:55:12:47:bf:37:1d:80:b7:71:3c:0e:a6:c4: ce:fa:77:e3:24:33:26:9d:23:a3:c1:fe:43:49:17:72:5e:6a: 16:d3:fd:d3:eb:89:f8:ec:39:22:6f:b9:ce:33:06:16:c6:7d: 10:58:b4:32:d2:27:d2:ca:cd:f4:87:29:ce:c1:b4:98:dc:28: c7:bf:84:05:0c:03:e4:cd:bd:79:76:7e:dd:3f:0b:ee:e5:3a: 5c:ef:3f:2e:28:27:d3:22:54:67:c1:53:6d:1d:89:8d:69:9d: 3c:d8:99:61:a0:42:bd:bc:82:07:6e:3d:bf:81:54:96:9a:42: 50:73:e0:b8:34:df:c8:36:fa:d8:df:af:67:ad:c2:18:f0:d2: 7d:85:8d:ba:4f:91:bd:f4:63:62:5a:0b:1e:87:58:61:64:61: d8:de:ba:ec:4c:69:dd:80:4c:d4:bc:e8:62:eb:72:c7:48:fe: e3:ed:f8:cb:a0:83:94:5f:37:be:01:bc:c3:70:47:6b:4b:10: e1:ab:3b:14:99:db:0f:e6:f0:d2:c1:49:88:46:42:b3:07:77: 12:85:1e:c9:09:0e:48:6f:e3:d0:30:d4:4f:0d:34:ba:47:42: 99:63:4f:75 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITIg3zGVYqNVJfGlGhX2i9wLDb3zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MjcxNTAxMThaFw0yNTA4MDEyMzU5NTla MHoxSTBHBgNVBAUTQGM0NTMzYmUzZjVkZWFiYjAzOTY3NzYxNTU4Mjc1OGFkOWM5 YmE1YTlhMTI4ZDE3YTg0OWJlNDRjYWY5ZTg0YzAxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMlKihk2xGIsqK1+qP32bQjVWJzp7dlFA06Ftkcfdak4gwYH h7BRZvB9gZCKT+3xxECzAe2IY0S8Gg1jshUxbfvMJ5GuAUDLvmNzWmGHJqy0L5uM V+gg8TMDN5IKtdC363ilknDAgfKLUPWmOga6DxGhNMs9njT8E0WB799oIeglK7Lm 0YRMWOTpFxXefuHr4+K9nFDj2NLRYhAfZXeH3xieCMieOFvZy2y9L8EU03V7vrsE XAEGU+gHkcXFj00g9wbLKqepKZnh3CK0sBZtNClrQLDk6XzKdUuJJCQ3MnbjgGfl qbfLFV0/EHZCTehIoQTAT9rxsFRYjZOYukvFtOECAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTn7EJNwM83B6i6OUTAbL/rzW76gjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYzI2YzAyNTQtMTA3MS00NjdkLWJkMmMtZjgxZjNiYTZhNjcxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBzITADANBgkqhkiG9w0BAQsFAAOCAQEAWHYu7hzn3GwD7Qi37XsobkOYpQJa juBVEke/Nx2At3E8DqbEzvp34yQzJp0jo8H+Q0kXcl5qFtP90+uJ+Ow5Im+5zjMG FsZ9EFi0MtIn0srN9IcpzsG0mNwox7+EBQwD5M29eXZ+3T8L7uU6XO8/Lign0yJU Z8FTbR2JjWmdPNiZYaBCvbyCB249v4FUlppCUHPguDTfyDb62N+vZ63CGPDSfYWN uk+RvfRjYloLHodYYWRh2N667Exp3YBM1LzoYutyx0j+4+34y6CDlF83vgG8w3BH a0sQ4as7FJnbD+bw0sFJiEZCswd3EoUeyQkOSG/j0DDUTw00ukdCmWNPdQ== -----END CERTIFICATE-----Generated at Sun Jun 29 14:43:40 2025 by rpki-client