$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e11b6e9b-cb3f-4898-9999-6fe37553d2a2.roa File: e11b6e9b-cb3f-4898-9999-6fe37553d2a2.roa (raw, json) Hash identifier: 2jqXfETnTSwEp2o8N95REGLh6NgERTtchKpmp/piy8k= Subject key identifier: 4B:72:7A:FE:B6:19:F0:40:5F:21:FE:84:06:EA:BF:62:CC:17:84:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5767287FD108A833B8E3B2E722C5C0CC260E65CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e11b6e9b-cb3f-4898-9999-6fe37553d2a2.roa Signing time: Fri 27 Jun 2025 00:41:25 +0000 ROA not before: Fri 27 Jun 2025 00:41:25 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.17.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:67:28:7f:d1:08:a8:33:b8:e3:b2:e7:22:c5:c0:cc:26:0e:65:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:41:25 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=3bdb4f24170a66a12e049848dc2deb62792d875dcdac0394fe4f1c2a6702d0e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:96:37:82:b8:0d:e9:fd:76:20:27:2c:98:56: 28:d5:69:8e:76:86:e5:54:32:3b:1c:4c:b6:4e:7b: c7:cc:5f:8a:44:48:39:8c:57:18:4e:00:14:f6:b1: 54:06:56:7c:a8:48:d6:aa:08:c6:e6:90:22:e2:ba: 6e:e4:58:76:48:2e:d6:c8:54:10:50:4d:a1:6b:a6: 31:7f:c7:2e:9c:c5:90:27:a5:02:2e:91:a0:b3:c2: 33:cb:0b:42:a8:63:01:2a:7d:81:2b:a0:b2:8c:f2: 7c:32:42:b8:89:51:de:73:66:5f:4f:de:e8:54:d8: 00:53:cb:48:5b:60:8c:e4:d5:60:04:4c:c3:ad:da: 87:f5:22:e0:fc:ca:83:da:86:e7:ac:8c:64:9f:1d: cc:2b:e4:9b:95:e6:1c:07:d4:9f:00:29:8d:49:8c: 69:76:ff:a0:8e:23:40:2e:af:be:cd:0a:31:a7:5e: e0:26:16:77:b9:bc:c4:5d:84:76:45:c7:ee:da:27: 78:d7:e3:ec:fe:c2:4d:b2:47:b1:70:0e:19:6f:8b: fa:7f:22:26:50:47:83:fd:e4:67:56:9c:b7:d5:0e: ac:ac:3c:a8:42:05:7f:e2:92:1d:e7:81:f2:b9:d8: a4:d9:79:6d:64:54:d3:32:7e:11:6f:c9:ec:31:42: 9e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:72:7A:FE:B6:19:F0:40:5F:21:FE:84:06:EA:BF:62:CC:17:84:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e11b6e9b-cb3f-4898-9999-6fe37553d2a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.180.0/22 Signature Algorithm: sha256WithRSAEncryption 18:ef:ec:6f:ea:76:e0:de:5c:88:4b:4e:eb:6a:16:b7:1c:90: 60:c0:80:f7:53:9a:71:fd:2b:10:cc:95:46:74:3e:8b:03:cd: ca:eb:35:c2:df:cb:51:34:b9:fc:69:15:8a:02:a3:36:5a:f3: ba:8c:c9:fb:72:cc:fb:6a:17:74:f7:1c:86:d3:08:40:95:9c: e1:73:34:35:81:68:06:c9:1d:9d:6a:b6:19:2d:02:fe:49:27: 6f:47:f2:7f:8b:15:09:1a:85:7c:6f:6e:64:e1:30:28:15:3a: 54:b7:c7:ff:9c:c5:01:6f:93:4d:cc:06:e1:08:ff:00:82:df: ad:0e:90:ea:03:99:9a:e6:f1:8e:1d:ce:4e:f5:2b:ca:e2:ec: 48:84:3c:90:60:c1:4b:37:1a:f0:79:9e:d0:dc:19:b8:b7:ec: e4:15:40:24:55:0c:c8:3d:67:d4:76:94:5b:a2:39:2f:0c:3c: 66:4b:8f:78:1d:c3:19:10:8c:bc:7d:a4:fd:b5:e5:1d:d7:37: 1f:08:fe:24:f6:9d:d7:95:03:49:ca:6f:74:ba:cf:b4:41:9f: 64:35:6f:e5:a7:63:30:85:14:c9:b3:d7:99:51:90:b0:7d:0a: 36:d1:de:6f:bf:33:34:f9:54:bd:ae:3b:40:e2:94:c4:2b:06: eb:eb:ee:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV2cof9EIqDO447LnIsXAzCYOZc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDA0MTI1WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmRiNGYyNDE3MGE2NmExMmUwNDk4NDhkYzJkZWI2Mjc5 MmQ4NzVkY2RhYzAzOTRmZTRmMWMyYTY3MDJkMGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeljeCuA3p/XYgJyyYVijVaY52huVUMjscTLZOe8fMX4pE SDmMVxhOABT2sVQGVnyoSNaqCMbmkCLium7kWHZILtbIVBBQTaFrpjF/xy6cxZAn pQIukaCzwjPLC0KoYwEqfYEroLKM8nwyQriJUd5zZl9P3uhU2ABTy0hbYIzk1WAE TMOt2of1IuD8yoPahuesjGSfHcwr5JuV5hwH1J8AKY1JjGl2/6COI0Aur77NCjGn XuAmFne5vMRdhHZFx+7aJ3jX4+z+wk2yR7FwDhlvi/p/IiZQR4P95GdWnLfVDqys PKhCBX/ikh3ngfK52KTZeW1kVNMyfhFvyewxQp41AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS3J6/rYZ8EBfIf6EBuq/YswXhIgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxMWI2ZTliLWNiM2YtNDg5OC05OTk5LTZmZTM3NTUzZDJhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIyEbQwDQYJKoZIhvcNAQELBQADggEBABjv7G/qduDeXIhLTutqFrcckGDA gPdTmnH9KxDMlUZ0PosDzcrrNcLfy1E0ufxpFYoCozZa87qMyftyzPtqF3T3HIbT CECVnOFzNDWBaAbJHZ1qthktAv5JJ29H8n+LFQkahXxvbmThMCgVOlS3x/+cxQFv k03MBuEI/wCC360OkOoDmZrm8Y4dzk71K8ri7EiEPJBgwUs3GvB5ntDcGbi37OQV QCRVDMg9Z9R2lFuiOS8MPGZLj3gdwxkQjLx9pP215R3XNx8I/iT2ndeVA0nKb3S6 z7RBn2Q1b+WnYzCFFMmz15lRkLB9CjbR3m+/MzT5VL2uO0DilMQrBuvr7vw= -----END CERTIFICATE-----Generated at Tue Jul 1 00:47:19 2025 by rpki-client