$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3c320a-4015-4d09-85af-05cf9a03532c.roa File: 1c3c320a-4015-4d09-85af-05cf9a03532c.roa (raw, json) Hash identifier: uegBIzDnulYTWmHlI6pm2kFJGwCh7L72DdSNLNBw2F0= Subject key identifier: 6C:F5:1A:33:73:73:59:63:FC:51:2D:C9:6F:DB:77:8C:8A:B9:F9:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 565239B197011A49CD50557978A7D9BF44C1F79D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3c320a-4015-4d09-85af-05cf9a03532c.roa Signing time: Mon 02 Jun 2025 15:40:30 +0000 ROA not before: Mon 02 Jun 2025 15:40:30 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:52:39:b1:97:01:1a:49:cd:50:55:79:78:a7:d9:bf:44:c1:f7:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:40:30 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=25a8d3e007937203f4df2fdee182f5259dc683d184f4284be39b25cbccfa68ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:72:f8:99:ac:98:ab:29:2b:05:46:34:7c: 06:48:02:be:28:67:19:54:3b:7f:d2:22:e1:58:06: 1a:03:3f:05:6f:3e:73:4a:e7:ea:fc:0c:87:47:f7: f1:49:e0:f2:8a:66:c0:36:42:43:b5:b4:a0:17:44: da:1a:a5:44:83:23:6a:85:cb:f1:db:4a:e8:9d:d3: cc:f0:0b:52:7c:9c:2b:17:d0:77:6e:39:fa:9f:17: 4e:32:ff:2f:8a:48:db:48:f5:9e:cb:c0:e7:49:1e: 7f:aa:8b:87:5d:53:5b:2d:dd:18:83:35:8f:1a:01: 27:c0:0b:d0:69:de:cc:60:98:5e:57:ff:ff:15:e7: 91:5f:12:b5:33:6d:1b:0a:59:f2:84:cd:dc:a0:36: fd:6e:60:52:e1:e7:e1:8f:80:63:14:51:82:22:a9: d3:fd:2b:27:9b:a9:51:7d:9c:8b:7b:71:ed:dc:20: ba:22:ed:7c:66:6e:a4:8a:4e:c2:52:49:77:01:46: 92:f3:2a:87:85:56:87:f6:60:1b:e5:28:c4:2f:4a: ba:f7:9a:4d:8e:8c:4e:da:35:f3:64:22:02:e5:8a: 83:66:7a:b6:2c:a0:19:a0:80:9b:0e:5d:af:23:98: 3f:9a:b7:a3:cd:f4:52:06:0d:9c:c6:ad:e8:6e:bf: b8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F5:1A:33:73:73:59:63:FC:51:2D:C9:6F:DB:77:8C:8A:B9:F9:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3c320a-4015-4d09-85af-05cf9a03532c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.192.0/20 Signature Algorithm: sha256WithRSAEncryption 08:74:73:8c:a6:98:f3:59:8d:21:05:71:ad:13:3c:55:56:df: 4c:27:fd:d8:7c:f2:ef:6f:c9:31:e6:2c:83:80:fb:31:0a:e6: 68:5a:eb:9f:5b:fc:30:5a:64:a3:8a:17:a7:7e:e9:4b:7d:97: 64:0a:0a:d0:a8:69:0a:0d:05:22:72:30:f1:f8:47:93:a0:9d: 6f:46:97:da:65:12:8b:a4:b8:19:ed:02:2b:d7:f3:a7:f6:fe: 41:a4:a0:85:d5:cb:53:64:12:b9:14:de:7d:14:2f:23:07:4d: 06:18:15:86:ec:e6:c8:72:90:d1:99:4b:e0:8a:4e:b0:ff:2c: 17:7b:2f:25:98:07:0e:8e:e0:7f:f2:f7:1e:64:2a:15:42:28: 03:2c:3a:2d:6e:de:56:ef:a7:d3:92:cf:e9:f7:39:b2:ee:4c: cb:7b:42:81:31:0d:2c:5e:b3:65:dc:dc:eb:ac:5d:55:a9:63: 64:e2:be:24:77:9d:d8:23:7e:1d:8b:01:b8:f4:2f:73:cb:01: 3a:04:70:45:5d:67:24:9a:ba:34:e1:3f:2b:ad:4e:2c:54:9c: ec:5a:28:b7:f1:81:2c:2b:42:bb:4a:03:76:77:c0:53:17:57: 33:21:b1:95:85:c6:9e:25:22:bd:12:0a:55:70:7b:86:e4:b2: 0e:75:38:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVlI5sZcBGknNUFV5eKfZv0TB950wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTU0MDMwWhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWE4ZDNlMDA3OTM3MjAzZjRkZjJmZGVlMTgyZjUyNTlk YzY4M2QxODRmNDI4NGJlMzliMjVjYmNjZmE2OGNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH2HL4mayYqykrBUY0fAZIAr4oZxlUO3/SIuFYBhoDPwVv PnNK5+r8DIdH9/FJ4PKKZsA2QkO1tKAXRNoapUSDI2qFy/HbSuid08zwC1J8nCsX 0HduOfqfF04y/y+KSNtI9Z7LwOdJHn+qi4ddU1st3RiDNY8aASfAC9Bp3sxgmF5X //8V55FfErUzbRsKWfKEzdygNv1uYFLh5+GPgGMUUYIiqdP9KyebqVF9nIt7ce3c ILoi7XxmbqSKTsJSSXcBRpLzKoeFVof2YBvlKMQvSrr3mk2OjE7aNfNkIgLlioNm erYsoBmggJsOXa8jmD+at6PN9FIGDZzGrehuv7idAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbPUaM3NzWWP8US3Jb9t3jIq5+RswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjM2MzMjBhLTQwMTUtNGQwOS04NWFmLTA1Y2Y5YTAzNTMyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEsAwDQYJKoZIhvcNAQELBQADggEBAAh0c4ymmPNZjSEFca0TPFVW30wn /dh88u9vyTHmLIOA+zEK5mha659b/DBaZKOKF6d+6Ut9l2QKCtCoaQoNBSJyMPH4 R5OgnW9Gl9plEoukuBntAivX86f2/kGkoIXVy1NkErkU3n0ULyMHTQYYFYbs5shy kNGZS+CKTrD/LBd7LyWYBw6O4H/y9x5kKhVCKAMsOi1u3lbvp9OSz+n3ObLuTMt7 QoExDSxes2Xc3OusXVWpY2TiviR3ndgjfh2LAbj0L3PLAToEcEVdZySaujThPyut TixUnOxaKLfxgSwrQrtKA3Z3wFMXVzMhsZWFxp4lIr0SClVwe4bksg51ODM= -----END CERTIFICATE-----Generated at Sat Jun 14 06:40:31 2025 by rpki-client