$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c839e375-c4b2-46cd-aefc-d31e8fd28877.roa File: c839e375-c4b2-46cd-aefc-d31e8fd28877.roa (raw, json) Hash identifier: Jf8yQ5QUAyVZMwuH9sSQCnCY8rk0RDvdn43Ojw/awYw= Subject key identifier: 5F:91:76:CB:DA:F9:B4:76:5B:CD:82:DF:2F:9F:91:AD:63:7F:2F:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EB6CFEEA6A92FC043281C21052BA8606F131049 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c839e375-c4b2-46cd-aefc-d31e8fd28877.roa Signing time: Wed 07 May 2025 00:21:37 +0000 ROA not before: Wed 07 May 2025 00:21:37 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b6:cf:ee:a6:a9:2f:c0:43:28:1c:21:05:2b:a8:60:6f:13:10:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:21:37 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=82c0f4b523fd808b2c974b9f2d5bef1aa14488a65e70b773d2ed73a394554c57, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:77:13:db:f9:26:46:ff:99:60:d1:7f:f0:30: d1:33:90:0f:99:53:7d:64:c6:68:e7:19:c5:52:b8: 94:15:c3:3a:48:20:af:87:a6:3e:4d:a2:9b:a9:80: fa:3b:43:c6:9c:03:5c:c1:83:6a:82:5e:b8:67:0a: 4e:17:78:01:db:8f:ec:31:6c:c5:ee:e7:c0:9b:00: 65:92:7f:2f:06:a0:f6:f1:6b:28:80:34:5e:84:9d: dc:ed:89:a5:18:42:6a:68:88:10:dc:1f:3e:7a:72: 99:41:9d:bc:f2:9d:75:b7:ec:63:73:ba:ed:15:9a: 7e:ae:46:e5:67:08:7e:8a:d6:60:c8:1c:57:4f:7a: b2:46:d2:73:4a:4b:da:14:39:26:66:89:45:58:9b: 07:51:7c:8c:0f:30:f5:02:68:5b:0c:08:cb:d0:08: ee:a2:be:67:5a:47:36:1a:08:04:5e:72:10:47:70: c8:da:df:12:06:0d:ea:9b:19:c3:97:b3:68:29:79: 25:d7:c2:a9:9e:2d:94:2d:24:69:f0:fa:0d:be:5e: 52:70:01:f8:ed:a0:3d:80:85:98:ca:f1:00:56:40: 60:a0:28:98:b8:8a:72:12:d6:39:7a:83:a0:f5:28: 48:96:7b:61:97:ac:e7:f9:d6:6f:67:d8:33:cd:76: 6a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:91:76:CB:DA:F9:B4:76:5B:CD:82:DF:2F:9F:91:AD:63:7F:2F:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c839e375-c4b2-46cd-aefc-d31e8fd28877.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.44.0/22 Signature Algorithm: sha256WithRSAEncryption 50:f5:7c:20:2e:45:00:82:11:f2:25:6d:28:c2:71:a7:ab:43: 00:21:98:ba:8b:5d:e5:14:6c:73:fb:61:1b:7b:84:7d:95:08: 3b:22:b8:8b:8b:76:f2:2b:fd:d3:ed:62:29:ac:55:0f:e7:43: 7a:bf:ea:87:0b:98:a3:e5:49:70:41:b0:ef:44:6a:25:cd:83: 79:11:18:78:a0:a6:d0:dc:28:91:63:f4:54:4b:c0:99:7c:58: d1:58:65:99:20:a0:18:76:57:d9:9e:ba:72:2e:4b:ad:3b:ed: 69:fb:e2:1f:df:32:20:b2:6f:e2:89:8a:1e:0b:c1:7c:66:77: 3d:b8:cc:97:3c:da:3e:63:40:c0:42:79:4f:39:58:8e:a5:d5: 61:0f:70:83:0b:da:33:bc:cd:cf:1e:bc:93:fb:38:0a:78:45: 6c:a7:4b:8b:23:4e:ed:7e:2d:6f:36:e5:e9:99:66:d7:c1:0d: cc:75:a1:ec:bb:de:01:ea:0c:da:8a:37:60:ea:cd:da:0f:ed: ed:f9:82:dc:83:cb:b3:3a:b4:12:4b:a4:ff:1b:d5:29:e4:cc: fb:41:28:7f:54:93:6c:99:4c:73:9a:8e:d3:46:17:9d:e3:91: 90:44:63:e2:55:3d:a7:ad:a9:2a:76:a5:07:e3:19:14:da:1d: ea:f8:05:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULrbP7qapL8BDKBwhBSuoYG8TEEkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAyMTM3WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmMwZjRiNTIzZmQ4MDhiMmM5NzRiOWYyZDViZWYxYWEx NDQ4OGE2NWU3MGI3NzNkMmVkNzNhMzk0NTU0YzU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3dxPb+SZG/5lg0X/wMNEzkA+ZU31kxmjnGcVSuJQVwzpI IK+Hpj5NopupgPo7Q8acA1zBg2qCXrhnCk4XeAHbj+wxbMXu58CbAGWSfy8GoPbx ayiANF6EndztiaUYQmpoiBDcHz56cplBnbzynXW37GNzuu0Vmn6uRuVnCH6K1mDI HFdPerJG0nNKS9oUOSZmiUVYmwdRfIwPMPUCaFsMCMvQCO6ivmdaRzYaCARechBH cMja3xIGDeqbGcOXs2gpeSXXwqmeLZQtJGnw+g2+XlJwAfjtoD2AhZjK8QBWQGCg KJi4inIS1jl6g6D1KEiWe2GXrOf51m9n2DPNdmq9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX5F2y9r5tHZbzYLfL5+RrWN/L1QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4MzllMzc1LWM0YjItNDZjZC1hZWZjLWQzMWU4ZmQyODg3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIyEiwwDQYJKoZIhvcNAQELBQADggEBAFD1fCAuRQCCEfIlbSjCcaerQwAh mLqLXeUUbHP7YRt7hH2VCDsiuIuLdvIr/dPtYimsVQ/nQ3q/6ocLmKPlSXBBsO9E aiXNg3kRGHigptDcKJFj9FRLwJl8WNFYZZkgoBh2V9meunIuS6077Wn74h/fMiCy b+KJih4LwXxmdz24zJc82j5jQMBCeU85WI6l1WEPcIML2jO8zc8evJP7OAp4RWyn S4sjTu1+LW825emZZtfBDcx1oey73gHqDNqKN2DqzdoP7e35gtyDy7M6tBJLpP8b 1SnkzPtBKH9Uk2yZTHOajtNGF53jkZBEY+JVPaetqSp2pQfjGRTaHer4BSc= -----END CERTIFICATE-----Generated at Fri May 9 02:58:58 2025 by rpki-client