$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b951404-fe94-4107-b6e1-4c514a10c475.roa File: 3b951404-fe94-4107-b6e1-4c514a10c475.roa (raw, json) Hash identifier: vHe03Euwf6CovYc2UMxn2xrr6//UCYdlX+lcO/7jcoY= Subject key identifier: 62:36:09:D0:33:51:EA:68:8C:50:2C:08:71:53:33:23:6D:F4:3A:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C692CC5CC931CC7AED00CFB82FDA6C6DA21717D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b951404-fe94-4107-b6e1-4c514a10c475.roa Signing time: Mon 02 Jun 2025 16:00:15 +0000 ROA not before: Mon 02 Jun 2025 16:00:15 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.17.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:69:2c:c5:cc:93:1c:c7:ae:d0:0c:fb:82:fd:a6:c6:da:21:71:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 16:00:15 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=93c8ffef959e1a631869b5045d8686206a1196610f332eb4072ee0d97dc6d453, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:dc:6f:9a:ff:22:91:9d:51:db:1a:0a:18:73: e4:e3:58:2a:90:42:e5:e4:d7:d7:b2:36:51:e6:71: aa:b2:86:39:e2:b9:df:af:7f:2f:97:dc:8a:4f:5c: bb:1c:3f:7a:80:a9:c0:99:f1:10:44:49:50:10:e1: 40:52:80:13:de:25:b9:8f:ae:41:74:ed:55:54:bc: 53:98:2d:cd:88:e8:f4:bb:49:93:54:f8:f8:71:ef: 5c:7a:cd:a5:4c:6e:3d:16:49:58:73:f9:03:df:9a: f0:88:69:24:75:7c:da:5b:24:2f:30:9b:0b:bd:de: 5f:e8:cc:05:99:81:6b:1f:6c:5e:01:ff:2a:b6:83: c6:97:81:55:a2:4d:b7:a1:25:95:57:1f:42:bf:1a: 95:29:6d:ad:ef:bc:bd:b6:d7:4c:8c:72:12:59:cf: 9a:06:5b:4d:7f:a8:1b:65:6a:38:b8:44:5c:78:07: ad:3b:4b:1e:f5:68:d2:dd:20:aa:dc:d2:4a:ab:6d: ff:00:b8:e2:26:e4:c6:24:b5:b6:4b:28:54:5c:f1: 3c:4b:2d:af:8f:5b:e6:97:16:b5:2a:82:8e:a3:ae: 19:63:72:02:2e:aa:e1:0a:ef:8f:6e:b1:47:f6:c4: a4:ca:01:4e:ef:24:05:6e:54:0d:1d:05:52:82:9c: 81:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:36:09:D0:33:51:EA:68:8C:50:2C:08:71:53:33:23:6D:F4:3A:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b951404-fe94-4107-b6e1-4c514a10c475.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.0.0/17 Signature Algorithm: sha256WithRSAEncryption 25:ac:c3:71:4d:09:be:6a:8c:cb:34:50:b6:6d:28:32:c1:a6: f3:e2:77:32:90:21:ea:04:68:39:97:29:9b:03:75:03:43:cc: 85:4c:fe:d7:3e:78:8b:5c:9e:b8:bb:71:33:8f:4f:f4:7a:b6: 53:6a:63:27:28:52:41:21:14:1e:3b:02:45:7f:1e:73:b8:0a: 00:2f:47:2c:71:f7:b8:82:50:c8:6e:4d:75:af:6c:30:1c:d3: 89:57:81:27:16:5c:07:e5:5e:b8:c5:52:89:62:29:aa:49:88: 49:ff:af:8e:39:c5:8c:a1:7d:d0:8c:ee:f8:71:79:1e:c3:66: c8:39:23:36:8d:fe:f7:f7:13:ae:02:eb:0d:5e:33:e7:37:76: e8:b1:28:50:61:10:ce:d8:66:b6:fa:94:6d:d9:59:26:2f:c7: 6a:d3:1e:7d:2a:da:78:65:e2:9e:d2:de:a2:9a:7f:f3:f6:15: 28:cf:b9:6d:51:4c:ac:d5:f3:c3:d8:30:3f:05:1f:e1:81:dd: 2a:9c:19:75:1f:39:e7:da:41:2e:d3:b7:47:d0:f6:45:86:48: 65:f1:1a:f1:f3:f3:d1:4f:9b:db:1c:d5:a0:87:e2:57:7d:8a: ae:78:9d:20:a3:92:05:dc:fc:f7:d8:c6:60:a2:fa:e7:af:53: 95:17:e6:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDGksxcyTHMeu0Az7gv2mxtohcX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTYwMDE1WhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2M4ZmZlZjk1OWUxYTYzMTg2OWI1MDQ1ZDg2ODYyMDZh MTE5NjYxMGYzMzJlYjQwNzJlZTBkOTdkYzZkNDUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS3G+a/yKRnVHbGgoYc+TjWCqQQuXk19eyNlHmcaqyhjni ud+vfy+X3IpPXLscP3qAqcCZ8RBESVAQ4UBSgBPeJbmPrkF07VVUvFOYLc2I6PS7 SZNU+Phx71x6zaVMbj0WSVhz+QPfmvCIaSR1fNpbJC8wmwu93l/ozAWZgWsfbF4B /yq2g8aXgVWiTbehJZVXH0K/GpUpba3vvL2210yMchJZz5oGW01/qBtlaji4RFx4 B607Sx71aNLdIKrc0kqrbf8AuOIm5MYktbZLKFRc8TxLLa+PW+aXFrUqgo6jrhlj cgIuquEK749usUf2xKTKAU7vJAVuVA0dBVKCnIGLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYjYJ0DNR6miMUCwIcVMzI230Ok8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiOTUxNDA0LWZlOTQtNDEwNy1iNmUxLTRjNTE0YTEwYzQ3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcyEQAwDQYJKoZIhvcNAQELBQADggEBACWsw3FNCb5qjMs0ULZtKDLBpvPi dzKQIeoEaDmXKZsDdQNDzIVM/tc+eItcnri7cTOPT/R6tlNqYycoUkEhFB47AkV/ HnO4CgAvRyxx97iCUMhuTXWvbDAc04lXgScWXAflXrjFUoliKapJiEn/r445xYyh fdCM7vhxeR7DZsg5IzaN/vf3E64C6w1eM+c3duixKFBhEM7YZrb6lG3ZWSYvx2rT Hn0q2nhl4p7S3qKaf/P2FSjPuW1RTKzV88PYMD8FH+GB3SqcGXUfOefaQS7Tt0fQ 9kWGSGXxGvHz89FPm9sc1aCH4ld9iq54nSCjkgXc/PfYxmCi+uevU5UX5pY= -----END CERTIFICATE-----Generated at Sun Jun 15 01:08:28 2025 by rpki-client