$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddf1e97-cd5a-4958-b315-7541e5e380c2.roa File: fddf1e97-cd5a-4958-b315-7541e5e380c2.roa (raw, json) Hash identifier: g4lnC3Edc1s2iFZGwf3CSHzvRkG7jj5V3a4vBWy+lig= Subject key identifier: 9A:09:AA:49:98:3E:43:85:BD:40:9B:A8:58:14:2D:1B:40:6D:4A:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E9A240701A1936E4056F2CC1B9C2458487B61E9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddf1e97-cd5a-4958-b315-7541e5e380c2.roa Signing time: Fri 27 Jun 2025 00:50:54 +0000 ROA not before: Fri 27 Jun 2025 00:50:54 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:9a:24:07:01:a1:93:6e:40:56:f2:cc:1b:9c:24:58:48:7b:61:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:50:54 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=f6560c8aedc5d34f7e489b76873692cb3306e70681cec3e2a7eab69d89ec34ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:de:54:f2:21:22:aa:41:5a:a7:d1:29:0a:78: d1:17:6b:61:5b:29:08:2c:d7:34:f4:de:13:06:77: 0e:73:dc:db:12:fe:de:10:b6:1f:c4:63:ef:34:9b: ec:3d:ac:b6:31:9b:a6:42:27:7b:bb:cd:02:7e:ef: d0:d3:fc:6b:e5:63:d8:3c:a9:06:7d:96:7e:94:0c: c2:8d:e2:36:97:82:0c:18:ca:97:22:d5:fc:61:4b: ab:74:52:77:8e:70:3f:64:28:40:54:59:ef:1b:4c: 92:cb:ed:64:05:f2:a1:bb:e9:51:e9:20:bf:10:44: 1d:6a:28:9a:8a:f8:73:a6:8a:e2:b7:74:74:ee:f3: c1:0f:3c:6e:06:0e:51:fb:51:ec:fc:f6:da:ea:6b: a0:94:25:2e:47:7b:e7:65:05:fc:eb:27:6d:c7:5a: 8d:f4:10:98:79:40:ec:5a:73:f8:bf:1d:42:26:74: c6:c9:d2:6b:4c:17:98:9d:00:27:af:d7:f0:83:e9: 15:4b:84:f5:68:2c:02:58:47:dd:0c:23:b7:a2:2f: b9:66:6b:50:3e:cd:38:7f:6d:19:ae:55:27:c0:4b: d5:82:f0:bc:a6:cc:20:8d:1a:d8:5d:2a:71:af:5b: 14:ab:bf:c0:6f:e1:ae:5f:9a:b0:5a:92:27:01:47: fb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:09:AA:49:98:3E:43:85:BD:40:9B:A8:58:14:2D:1B:40:6D:4A:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddf1e97-cd5a-4958-b315-7541e5e380c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.112.0/20 Signature Algorithm: sha256WithRSAEncryption 45:a5:88:ba:17:70:03:07:b9:49:6c:0c:a9:5a:42:0e:80:5c: 13:c0:1b:91:d6:d4:3e:80:08:86:5b:a9:e7:30:6b:fc:8d:f7: fe:6f:24:d5:a9:6e:d2:05:f3:41:7c:ad:6d:d8:a3:ee:9f:8e: 9a:b0:e1:17:83:49:3d:83:ba:f2:51:0d:10:f8:d2:68:e3:c4: e5:1a:dd:48:ce:ef:ac:81:59:5c:38:7c:13:96:53:da:6f:28: 95:d0:bf:ab:88:30:41:0a:78:3e:12:69:54:e9:df:fc:55:d1: d6:f8:2c:32:fc:37:56:47:d8:3d:48:ee:ad:1e:df:4d:79:06: 02:73:26:dd:da:71:78:87:8e:d9:1d:10:5a:48:c3:b6:55:24: ae:89:0d:f7:b0:2f:62:89:44:47:8d:79:16:d1:8b:79:bc:2c: 25:87:d3:ca:94:f9:f3:06:b8:27:be:83:39:fe:55:e5:a3:ad: f6:d0:c3:93:bc:c6:92:ce:20:d8:29:d2:d2:1c:b7:4f:b3:da: eb:9d:98:85:d0:4a:a1:28:8f:e9:d4:7d:22:13:80:40:71:80: ca:a6:7f:be:49:1c:9f:6f:e9:66:b4:e5:ad:c5:ec:0d:59:c4: 95:d4:07:12:c8:a4:95:c0:3b:66:59:3d:90:49:18:23:c9:5a: 44:50:87:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDpokBwGhk25AVvLMG5wkWEh7YekwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDA1MDU0WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjU2MGM4YWVkYzVkMzRmN2U0ODliNzY4NzM2OTJjYjMz MDZlNzA2ODFjZWMzZTJhN2VhYjY5ZDg5ZWMzNGZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw3lTyISKqQVqn0SkKeNEXa2FbKQgs1zT03hMGdw5z3NsS /t4Qth/EY+80m+w9rLYxm6ZCJ3u7zQJ+79DT/GvlY9g8qQZ9ln6UDMKN4jaXggwY ypci1fxhS6t0UneOcD9kKEBUWe8bTJLL7WQF8qG76VHpIL8QRB1qKJqK+HOmiuK3 dHTu88EPPG4GDlH7Uez89trqa6CUJS5He+dlBfzrJ23HWo30EJh5QOxac/i/HUIm dMbJ0mtMF5idACev1/CD6RVLhPVoLAJYR90MI7eiL7lma1A+zTh/bRmuVSfAS9WC 8LymzCCNGthdKnGvWxSrv8Bv4a5fmrBakicBR/sJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmgmqSZg+Q4W9QJuoWBQtG0BtSjcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkZGYxZTk3LWNkNWEtNDk1OC1iMzE1LTc1NDFlNWUzODBjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEnAwDQYJKoZIhvcNAQELBQADggEBAEWliLoXcAMHuUlsDKlaQg6AXBPA G5HW1D6ACIZbqecwa/yN9/5vJNWpbtIF80F8rW3Yo+6fjpqw4ReDST2DuvJRDRD4 0mjjxOUa3UjO76yBWVw4fBOWU9pvKJXQv6uIMEEKeD4SaVTp3/xV0db4LDL8N1ZH 2D1I7q0e3015BgJzJt3acXiHjtkdEFpIw7ZVJK6JDfewL2KJREeNeRbRi3m8LCWH 08qU+fMGuCe+gzn+VeWjrfbQw5O8xpLOINgp0tIct0+z2uudmIXQSqEoj+nUfSIT gEBxgMqmf75JHJ9v6Wa05a3F7A1ZxJXUBxLIpJXAO2ZZPZBJGCPJWkRQh04= -----END CERTIFICATE-----Generated at Thu Jul 3 00:32:07 2025 by rpki-client