$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddf1e97-cd5a-4958-b315-7541e5e380c2.roa File: fddf1e97-cd5a-4958-b315-7541e5e380c2.roa (raw, json) Hash identifier: J0iE9zDYse6zY7rIg9eJ6eMt8oGYWYRsP5CneccsKko= Subject key identifier: EF:DA:0D:49:C3:C8:9A:26:46:E8:40:F8:C1:B2:8C:AD:2C:63:F1:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BF6B1B0B7D033A0AA7772FDFA36FFD96BD24B34 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddf1e97-cd5a-4958-b315-7541e5e380c2.roa Signing time: Sat 16 Aug 2025 00:51:42 +0000 ROA not before: Sat 16 Aug 2025 00:51:42 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f6:b1:b0:b7:d0:33:a0:aa:77:72:fd:fa:36:ff:d9:6b:d2:4b:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:51:42 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=4800f585ca06215b86b59b8fab26815e349b0072cf904eb200e4fa58e82b2912, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0c:04:d5:41:ac:80:57:ca:07:47:ff:0b:e1: 5c:16:75:d0:18:39:d7:d4:7c:a5:f9:5c:a1:ab:8d: cc:61:83:9c:86:5a:42:ad:ab:73:3d:bf:6d:87:2d: 05:64:5b:d5:8e:90:51:80:94:58:77:10:c3:d4:0d: e4:95:d5:11:7e:5d:fd:fc:93:b6:a2:e7:d1:8a:d5: 3c:8c:16:ae:a4:9a:ca:0f:a9:95:a2:d0:d2:51:a6: 0a:50:25:d9:b9:db:ea:5a:0c:9d:6e:ce:2e:85:9b: 9f:fc:f7:b2:70:ba:8a:cf:c7:77:c8:75:fc:64:16: 86:45:6d:d3:9a:1d:7f:69:b4:d5:36:b5:30:7a:d0: 60:02:10:95:e9:1c:3f:b1:27:53:7e:5d:72:04:61: e0:d1:6b:bf:00:3f:1c:78:71:17:20:49:55:69:0d: b4:48:03:b1:89:07:07:54:19:72:fa:d8:8b:ca:6c: 14:48:61:d4:62:e5:f5:5c:b6:70:27:47:4f:5a:c6: d4:72:09:c2:a8:3f:0f:d1:3f:5f:84:2b:9d:08:28: e3:cd:74:99:de:06:e7:a7:d1:6f:d2:11:d0:32:01: c9:46:0c:a9:1d:98:88:4f:ce:07:83:e8:10:ac:59: 5d:d0:bb:a3:a2:36:8f:87:63:c7:34:a4:c1:ee:2f: 3d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DA:0D:49:C3:C8:9A:26:46:E8:40:F8:C1:B2:8C:AD:2C:63:F1:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddf1e97-cd5a-4958-b315-7541e5e380c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.112.0/20 Signature Algorithm: sha256WithRSAEncryption ce:d2:2d:11:1d:45:59:15:cc:11:8c:7a:21:0b:7a:a4:a5:67: 7e:e6:09:ef:e5:b6:7f:78:77:82:af:d9:c9:23:9f:6b:d5:52: f3:f1:df:b3:1c:39:fb:5a:7c:98:34:0d:ce:8d:f6:f2:fc:26: 60:6f:fd:6e:87:fe:de:67:9a:26:e2:47:f6:2e:75:72:c3:f0: 88:ad:c0:b9:ca:f0:b8:6a:57:b8:3e:97:28:8f:8c:5a:5c:7e: 59:1b:8c:bd:00:4e:ae:f9:d8:9d:18:bf:c2:bd:b2:f3:f0:17: af:0f:73:83:be:6a:12:86:cf:9f:44:af:64:15:71:c1:85:f0: f5:2b:a4:8e:29:36:3f:73:d0:d3:6d:3b:7c:20:f1:6c:ff:e7: 3c:0d:fd:92:8e:6e:4e:4b:17:c8:3b:c1:34:8f:0d:55:a8:99: 5c:86:ad:3c:8f:57:9b:34:fc:8d:42:98:2e:49:22:db:fe:eb: 17:61:c5:fe:05:aa:f9:e7:bd:66:d7:45:2d:45:4a:4e:87:1a: 1a:a9:c2:9e:43:15:c7:a0:5b:0c:47:ff:2b:94:36:56:d0:d6: 4c:d0:b3:e5:49:59:18:ce:85:63:38:d9:8e:7b:41:d7:ca:cb: 79:28:51:2c:43:18:ff:83:9f:ca:af:9c:48:83:04:14:c9:67: 3b:26:f5:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO/axsLfQM6Cqd3L9+jb/2WvSSzQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDA1MTQyWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODAwZjU4NWNhMDYyMTViODZiNTliOGZhYjI2ODE1ZTM0 OWIwMDcyY2Y5MDRlYjIwMGU0ZmE1OGU4MmIyOTEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjDATVQayAV8oHR/8L4VwWddAYOdfUfKX5XKGrjcxhg5yG WkKtq3M9v22HLQVkW9WOkFGAlFh3EMPUDeSV1RF+Xf38k7ai59GK1TyMFq6kmsoP qZWi0NJRpgpQJdm52+paDJ1uzi6Fm5/897JwuorPx3fIdfxkFoZFbdOaHX9ptNU2 tTB60GACEJXpHD+xJ1N+XXIEYeDRa78APxx4cRcgSVVpDbRIA7GJBwdUGXL62IvK bBRIYdRi5fVctnAnR09axtRyCcKoPw/RP1+EK50IKOPNdJneBuen0W/SEdAyAclG DKkdmIhPzgeD6BCsWV3Qu6OiNo+HY8c0pMHuLz0NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU79oNScPImiZG6ED4wbKMrSxj8UowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkZGYxZTk3LWNkNWEtNDk1OC1iMzE1LTc1NDFlNWUzODBjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEnAwDQYJKoZIhvcNAQELBQADggEBAM7SLREdRVkVzBGMeiELeqSlZ37m Ce/ltn94d4Kv2ckjn2vVUvPx37McOftafJg0Dc6N9vL8JmBv/W6H/t5nmibiR/Yu dXLD8IitwLnK8LhqV7g+lyiPjFpcflkbjL0ATq752J0Yv8K9svPwF68Pc4O+ahKG z59Er2QVccGF8PUrpI4pNj9z0NNtO3wg8Wz/5zwN/ZKObk5LF8g7wTSPDVWomVyG rTyPV5s0/I1CmC5JItv+6xdhxf4FqvnnvWbXRS1FSk6HGhqpwp5DFcegWwxH/yuU NlbQ1kzQs+VJWRjOhWM42Y57QdfKy3koUSxDGP+Dn8qvnEiDBBTJZzsm9Sg= -----END CERTIFICATE-----Generated at Sat Aug 23 07:05:20 2025 by rpki-client