$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cea9bd1e-95aa-47d8-ac3a-33f048b7157b.roa File: cea9bd1e-95aa-47d8-ac3a-33f048b7157b.roa (raw, json) Hash identifier: O58ImdvvjJfTBsPzI1BWNe+ScVlwaTKgJR2E1RWfNXk= Subject key identifier: 2E:69:26:25:F8:78:45:EE:1F:DB:BB:59:78:17:8D:1C:BF:F9:23:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FB32A151D03D0118465F9A13A50172E026CDD2C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cea9bd1e-95aa-47d8-ac3a-33f048b7157b.roa Signing time: Fri 27 Jun 2025 00:51:03 +0000 ROA not before: Fri 27 Jun 2025 00:51:03 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.17.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b3:2a:15:1d:03:d0:11:84:65:f9:a1:3a:50:17:2e:02:6c:dd:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:51:03 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=13831ec0d13973b07e2ff9cb5eb7d45636986dcfa0dbc6448fa94ddb9a89ca51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:1c:2a:7f:f3:45:13:55:56:70:3d:23:5e:55: ee:0d:fa:2d:e9:7d:53:57:a9:fb:9b:b8:53:f7:ee: e2:ad:6d:06:77:6d:5d:93:5c:97:6a:80:f8:54:17: d7:2f:67:ec:ce:b5:0d:5d:ea:4d:4f:fb:7f:07:9d: ad:54:b3:14:d1:0c:1e:15:20:04:eb:01:85:ea:b3: 59:e6:ca:2c:2f:81:e9:e0:73:9c:47:49:a9:a0:f7: 17:e6:29:6d:d4:dd:dd:14:50:93:b7:d9:cc:92:2b: 99:74:78:cb:a1:18:1c:ac:ec:4e:b6:dc:bd:7c:9a: c4:f0:6b:2f:4a:74:db:86:c8:8d:2b:ef:b8:d0:96: f0:81:a4:23:60:00:88:1f:cd:0e:50:83:97:7d:79: 0c:3e:cb:3b:3a:58:f0:9a:c4:fb:54:ce:dc:ca:5a: 2c:6e:77:cb:35:6b:e6:ce:2c:20:ee:c5:19:98:d4: 65:1a:92:5f:36:e7:35:98:79:8b:75:e8:73:10:6d: e2:28:06:ab:f4:23:62:89:a9:ce:e4:08:d9:b4:60: 32:91:31:4c:d4:8b:a1:80:08:0e:7c:6d:bd:b2:7b: 44:2f:87:89:50:3c:b2:cd:0d:e8:f2:7d:5a:36:30: 66:f5:af:75:1c:b7:91:b3:ae:72:c1:0c:eb:f3:6f: 57:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:69:26:25:F8:78:45:EE:1F:DB:BB:59:78:17:8D:1C:BF:F9:23:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cea9bd1e-95aa-47d8-ac3a-33f048b7157b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.160.0/20 Signature Algorithm: sha256WithRSAEncryption 63:d1:36:9b:d4:84:50:a4:26:9a:1b:22:ee:61:af:9d:32:6c: f3:30:30:1c:bb:14:e0:66:0d:ef:eb:e5:8c:75:46:99:5d:ec: db:d5:37:7e:e2:4a:c4:cb:fc:61:83:88:89:8c:b6:d0:fc:3a: 3d:01:23:87:db:42:23:32:e3:b7:b5:71:67:b0:fb:37:4f:94: 36:d3:7c:14:0e:9c:62:ac:32:2c:1f:8f:b6:cb:49:14:de:92: c3:52:fa:82:34:9d:d0:71:4f:b7:22:6b:29:bd:8a:ff:92:3b: 66:b7:98:d4:da:46:3c:a3:9b:7b:99:0d:69:3d:57:d3:41:df: 38:5f:0c:0f:fe:be:36:4f:5f:16:51:5a:18:48:68:a3:f1:8b: c9:c1:5f:ed:40:5c:19:b7:ec:3e:69:3c:21:ea:7a:af:5c:54: 7e:30:0b:31:a2:2e:fc:d7:99:a9:6f:11:6d:03:de:b0:e1:53: f2:9a:05:37:4d:51:24:3e:62:03:7d:34:b1:ad:b4:b9:f9:9f: 78:0d:23:23:c8:82:4e:8f:37:78:5a:83:35:c4:19:52:1d:d9: 46:6b:cf:66:59:34:7a:98:17:fb:45:c7:b8:ef:c2:56:6a:6b: fe:c8:b4:7e:7a:73:11:55:bc:94:de:77:90:9d:9f:21:5c:7d: 80:b0:05:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf7MqFR0D0BGEZfmhOlAXLgJs3SwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDA1MTAzWhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzgzMWVjMGQxMzk3M2IwN2UyZmY5Y2I1ZWI3ZDQ1NjM2 OTg2ZGNmYTBkYmM2NDQ4ZmE5NGRkYjlhODljYTUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSHCp/80UTVVZwPSNeVe4N+i3pfVNXqfubuFP37uKtbQZ3 bV2TXJdqgPhUF9cvZ+zOtQ1d6k1P+38Hna1UsxTRDB4VIATrAYXqs1nmyiwvgeng c5xHSamg9xfmKW3U3d0UUJO32cySK5l0eMuhGBys7E623L18msTway9KdNuGyI0r 77jQlvCBpCNgAIgfzQ5Qg5d9eQw+yzs6WPCaxPtUztzKWixud8s1a+bOLCDuxRmY 1GUakl825zWYeYt16HMQbeIoBqv0I2KJqc7kCNm0YDKRMUzUi6GACA58bb2ye0Qv h4lQPLLNDejyfVo2MGb1r3Uct5GzrnLBDOvzb1fNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULmkmJfh4Re4f27tZeBeNHL/5I00wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlYTliZDFlLTk1YWEtNDdkOC1hYzNhLTMzZjA0OGI3MTU3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEaAwDQYJKoZIhvcNAQELBQADggEBAGPRNpvUhFCkJpobIu5hr50ybPMw MBy7FOBmDe/r5Yx1Rpld7NvVN37iSsTL/GGDiImMttD8Oj0BI4fbQiMy47e1cWew +zdPlDbTfBQOnGKsMiwfj7bLSRTeksNS+oI0ndBxT7ciaym9iv+SO2a3mNTaRjyj m3uZDWk9V9NB3zhfDA/+vjZPXxZRWhhIaKPxi8nBX+1AXBm37D5pPCHqeq9cVH4w CzGiLvzXmalvEW0D3rDhU/KaBTdNUSQ+YgN9NLGttLn5n3gNIyPIgk6PN3hagzXE GVId2UZrz2ZZNHqYF/tFx7jvwlZqa/7ItH56cxFVvJTed5CdnyFcfYCwBdQ= -----END CERTIFICATE-----Generated at Tue Jul 1 01:08:54 2025 by rpki-client