$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e11b6e9b-cb3f-4898-9999-6fe37553d2a2.roa File: e11b6e9b-cb3f-4898-9999-6fe37553d2a2.roa (raw, json) Hash identifier: BoSoWkTfEpWZLZpDz/0Z0HHwwFsLkRQffNzORzJhejk= Subject key identifier: 91:99:10:B9:FF:8B:18:F4:B6:05:5F:5D:A9:97:7D:8F:34:8C:C7:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A9A39E19DEB673C10D5B3A7C00DC27D62EC0A46 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e11b6e9b-cb3f-4898-9999-6fe37553d2a2.roa Signing time: Sat 16 Aug 2025 00:41:16 +0000 ROA not before: Sat 16 Aug 2025 00:41:16 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.17.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:9a:39:e1:9d:eb:67:3c:10:d5:b3:a7:c0:0d:c2:7d:62:ec:0a:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:41:16 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=34b05fc6fa1d2ad35a95f41d38517b7b042c5cb11f9665832e12c2fc43f594e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:79:37:f6:a1:2f:41:26:69:5a:d7:06:c0:56: 40:c5:c5:5a:32:f4:ca:5d:e7:7d:df:18:b1:db:94: 47:c9:d0:b2:43:0a:f8:2b:74:b3:18:ce:fc:28:3e: 37:f2:9a:60:5f:ab:74:bd:22:9f:7d:3b:e1:7a:0c: 10:d1:83:3b:41:f6:4e:3c:bc:0d:91:c8:ed:73:5a: 38:2e:d9:78:3d:9e:d0:5f:04:d6:4e:d8:a6:d7:f7: 32:4f:e6:97:17:0a:19:2c:6f:a8:19:d7:9a:95:1f: f4:b6:84:8b:fb:98:b7:67:54:26:70:61:5a:2b:e0: d6:11:04:56:c1:63:bd:89:31:c5:bc:14:6a:81:0b: 6a:68:7d:c3:67:62:6a:d2:76:6f:01:7e:c1:59:d8: d0:f3:83:9c:12:15:4e:90:c9:86:90:8a:5d:2e:d9: 06:19:9d:11:4d:36:e8:f5:04:e4:32:ea:57:24:1b: b6:38:41:41:0f:a6:2f:60:fb:79:9d:7d:09:b8:7c: 7a:55:3b:7b:74:db:5e:a0:bd:4c:82:02:42:c7:18: 2a:0e:22:0c:0c:34:47:b1:40:67:f7:30:5b:8d:d1: 9f:2b:af:a7:93:7a:ef:cb:bc:49:f3:ea:17:3d:b1: fd:ec:5e:02:15:b5:9c:b8:76:2c:00:ef:79:b6:66: c1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:99:10:B9:FF:8B:18:F4:B6:05:5F:5D:A9:97:7D:8F:34:8C:C7:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e11b6e9b-cb3f-4898-9999-6fe37553d2a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.180.0/22 Signature Algorithm: sha256WithRSAEncryption 08:20:9d:00:78:ae:1e:66:ea:5a:e9:ed:39:cf:0e:cb:24:51: 1a:06:20:6c:dc:82:76:51:f6:3f:f4:b8:50:34:26:5b:08:c8: 6d:a2:72:a3:b0:c4:70:2d:ac:bd:26:1a:ba:76:e3:b7:c6:79: 9d:58:b2:9a:0e:d5:f7:91:2a:fe:6c:29:3b:7f:a3:2d:29:8c: 38:ba:72:c0:d9:cc:25:39:72:5e:7e:ee:59:31:f5:1a:3a:d1: 94:7b:85:88:c3:3b:77:76:5d:88:8b:d3:8b:2c:c1:b4:0e:f2: af:55:eb:66:65:b5:85:9d:a8:87:42:93:ba:97:77:cc:b1:3f: 75:8f:6c:4d:94:d4:3a:b7:03:12:84:ff:18:b8:49:17:4c:97: 05:06:a8:11:f5:99:a4:a9:46:04:6a:0a:23:b8:ab:bf:58:a3: 15:e7:71:bf:45:d1:70:93:e0:31:61:9b:a1:a1:0d:f2:19:4d: f3:2d:e6:cf:50:c9:41:b0:22:66:7f:de:d3:c8:a2:54:05:a5: 4e:5e:08:6b:b5:2d:e7:1b:5e:b0:39:ca:c3:15:96:91:46:e2: e4:3a:20:78:be:e9:ec:ce:e0:7d:dd:95:98:5f:96:49:1f:44: 96:cd:dc:24:95:b0:05:27:19:bf:7e:6d:1f:75:12:17:e6:f3: a9:45:64:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUepo54Z3rZzwQ1bOnwA3CfWLsCkYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDA0MTE2WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGIwNWZjNmZhMWQyYWQzNWE5NWY0MWQzODUxN2I3YjA0 MmM1Y2IxMWY5NjY1ODMyZTEyYzJmYzQzZjU5NGUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAeTf2oS9BJmla1wbAVkDFxVoy9Mpd533fGLHblEfJ0LJD CvgrdLMYzvwoPjfymmBfq3S9Ip99O+F6DBDRgztB9k48vA2RyO1zWjgu2Xg9ntBf BNZO2KbX9zJP5pcXChksb6gZ15qVH/S2hIv7mLdnVCZwYVor4NYRBFbBY72JMcW8 FGqBC2pofcNnYmrSdm8BfsFZ2NDzg5wSFU6QyYaQil0u2QYZnRFNNuj1BOQy6lck G7Y4QUEPpi9g+3mdfQm4fHpVO3t0216gvUyCAkLHGCoOIgwMNEexQGf3MFuN0Z8r r6eTeu/LvEnz6hc9sf3sXgIVtZy4diwA73m2ZsG5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkZkQuf+LGPS2BV9dqZd9jzSMxzcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxMWI2ZTliLWNiM2YtNDg5OC05OTk5LTZmZTM3NTUzZDJhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIyEbQwDQYJKoZIhvcNAQELBQADggEBAAggnQB4rh5m6lrp7TnPDsskURoG IGzcgnZR9j/0uFA0JlsIyG2icqOwxHAtrL0mGrp247fGeZ1YspoO1feRKv5sKTt/ oy0pjDi6csDZzCU5cl5+7lkx9Ro60ZR7hYjDO3d2XYiL04sswbQO8q9V62ZltYWd qIdCk7qXd8yxP3WPbE2U1Dq3AxKE/xi4SRdMlwUGqBH1maSpRgRqCiO4q79YoxXn cb9F0XCT4DFhm6GhDfIZTfMt5s9QyUGwImZ/3tPIolQFpU5eCGu1LecbXrA5ysMV lpFG4uQ6IHi+6ezO4H3dlZhflkkfRJbN3CSVsAUnGb9+bR91Ehfm86lFZKQ= -----END CERTIFICATE-----Generated at Sat Aug 23 06:52:41 2025 by rpki-client