$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3c320a-4015-4d09-85af-05cf9a03532c.roa File: 1c3c320a-4015-4d09-85af-05cf9a03532c.roa (raw, json) Hash identifier: AWe1R+7Ugt+RiPVf16jPNmqInGBCC2Su2Dm+gPNzf0c= Subject key identifier: AB:2B:AC:26:54:EF:F3:F8:5B:B6:D2:9F:EE:CD:87:EF:0F:DF:06:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 190E017F872E14B9D3CDF2E931C655E1161BC75D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3c320a-4015-4d09-85af-05cf9a03532c.roa Signing time: Tue 22 Jul 2025 00:51:21 +0000 ROA not before: Tue 22 Jul 2025 00:51:21 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:0e:01:7f:87:2e:14:b9:d3:cd:f2:e9:31:c6:55:e1:16:1b:c7:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:51:21 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=ebe764b3f0c207c85ab1db23c96da0b482c56141b9167b0cad74590b5d554988, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:01:58:c0:95:8f:9e:0b:58:2c:0a:45:c5:86: cc:31:1c:43:4f:bd:eb:4f:73:21:6c:01:fd:e6:26: b7:ca:f0:7e:be:d8:8b:01:09:b2:d3:f5:af:7f:b1: 29:ba:df:96:b9:43:92:c0:04:96:7e:41:4e:ca:44: 63:74:2a:c7:2e:f0:ac:64:d7:5a:e8:a5:c0:c7:89: 35:8d:dd:a9:6f:6f:e1:2e:6f:44:e5:49:6f:14:9d: ec:1a:6b:cf:ce:af:04:2d:b4:53:1c:74:5a:4f:6c: ba:1f:a4:57:23:0b:d7:09:0b:20:4e:ca:4d:d0:86: 08:2f:5d:06:6e:19:41:ac:1d:7f:41:72:a3:2b:b1: 5b:23:d3:b9:30:c7:ca:d0:42:10:d7:b0:b4:1f:d7: 52:05:39:9a:e9:aa:f1:2e:b3:fe:17:c2:fe:ca:99: 97:ed:3b:75:cb:57:1d:95:97:e1:bb:2a:69:1a:8e: c3:01:08:5f:1b:3e:68:cb:3f:aa:58:5b:64:d7:ac: 52:b0:51:4a:20:2e:b6:04:0d:99:97:df:80:c2:0e: e3:28:87:0d:11:46:e2:c0:0e:3d:4c:70:e5:6f:f3: a7:f2:08:31:4a:89:62:b1:2b:4a:c9:a4:0b:cd:1f: c1:7d:83:90:e9:cb:e3:03:16:a4:35:63:e8:d8:88: f6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2B:AC:26:54:EF:F3:F8:5B:B6:D2:9F:EE:CD:87:EF:0F:DF:06:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3c320a-4015-4d09-85af-05cf9a03532c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.192.0/20 Signature Algorithm: sha256WithRSAEncryption 74:6f:d5:14:35:31:65:e6:6e:4f:7d:7c:6d:af:00:e9:79:44: f3:22:c1:d3:9c:74:98:31:00:f5:e6:f8:9c:a1:f5:f7:5f:1f: c6:93:a2:c0:b0:9b:e8:dd:03:ed:66:07:81:c3:de:e4:a7:e4: 51:8a:c2:50:c8:2f:f0:ce:b5:f2:f7:94:4c:69:22:2e:69:78: 93:11:87:80:77:35:06:e3:a7:df:c0:71:a8:f2:d7:32:a2:1c: e0:06:02:ad:65:be:74:e9:b4:8f:00:e3:b9:d3:2b:27:44:cc: 64:b0:5f:5f:e5:6e:8e:48:95:22:b4:49:fd:53:3e:8a:7d:46: 62:5d:e1:90:b0:40:cf:ab:cb:b8:63:65:bc:bb:d7:63:37:90: 4e:de:16:a1:a6:64:35:34:65:27:4f:40:60:83:b9:c7:22:4d: 15:61:e0:f5:3d:00:f4:9a:69:2f:7e:fa:9d:0e:69:08:c8:19: 36:12:ab:ad:0c:38:77:f0:a4:24:3f:2b:c8:3a:e1:b7:3c:3f: cc:e4:cb:ee:54:23:da:96:1b:ac:24:f8:8d:76:a9:09:18:36: 57:25:98:bd:b8:0b:8b:a3:94:62:25:c0:b3:db:41:1b:74:a4: cf:2c:0d:d2:96:37:ec:06:db:cd:41:cc:1f:e2:a5:66:e1:5c: 04:04:56:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGQ4Bf4cuFLnTzfLpMcZV4RYbx10wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDA1MTIxWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmU3NjRiM2YwYzIwN2M4NWFiMWRiMjNjOTZkYTBiNDgy YzU2MTQxYjkxNjdiMGNhZDc0NTkwYjVkNTU0OTg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdAVjAlY+eC1gsCkXFhswxHENPvetPcyFsAf3mJrfK8H6+ 2IsBCbLT9a9/sSm635a5Q5LABJZ+QU7KRGN0Kscu8Kxk11ropcDHiTWN3alvb+Eu b0TlSW8Unewaa8/OrwQttFMcdFpPbLofpFcjC9cJCyBOyk3QhggvXQZuGUGsHX9B cqMrsVsj07kwx8rQQhDXsLQf11IFOZrpqvEus/4Xwv7KmZftO3XLVx2Vl+G7Kmka jsMBCF8bPmjLP6pYW2TXrFKwUUogLrYEDZmX34DCDuMohw0RRuLADj1McOVv86fy CDFKiWKxK0rJpAvNH8F9g5Dpy+MDFqQ1Y+jYiPZ3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqyusJlTv8/hbttKf7s2H7w/fBm0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjM2MzMjBhLTQwMTUtNGQwOS04NWFmLTA1Y2Y5YTAzNTMyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEsAwDQYJKoZIhvcNAQELBQADggEBAHRv1RQ1MWXmbk99fG2vAOl5RPMi wdOcdJgxAPXm+Jyh9fdfH8aTosCwm+jdA+1mB4HD3uSn5FGKwlDIL/DOtfL3lExp Ii5peJMRh4B3NQbjp9/Acajy1zKiHOAGAq1lvnTptI8A47nTKydEzGSwX1/lbo5I lSK0Sf1TPop9RmJd4ZCwQM+ry7hjZby712M3kE7eFqGmZDU0ZSdPQGCDucciTRVh 4PU9APSaaS9++p0OaQjIGTYSq60MOHfwpCQ/K8g64bc8P8zky+5UI9qWG6wk+I12 qQkYNlclmL24C4ujlGIlwLPbQRt0pM8sDdKWN+wG281BzB/ipWbhXAQEVmY= -----END CERTIFICATE-----Generated at Wed Aug 6 07:53:00 2025 by rpki-client