$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40678bef-8d07-4eae-a68e-675cf4cd98ca.roa File: 40678bef-8d07-4eae-a68e-675cf4cd98ca.roa (raw, json) Hash identifier: Hkp0BcOYdhA7kyZNck7wRsUcjtERevXUnW4pVsHKeNc= Subject key identifier: 0B:B0:DF:61:C2:BD:84:11:4A:05:56:65:C7:7D:49:A6:67:DF:A3:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 199DFB6C76444853D1654033A8B5507576E6DE04 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40678bef-8d07-4eae-a68e-675cf4cd98ca.roa Signing time: Sat 12 Apr 2025 00:31:45 +0000 ROA not before: Sat 12 Apr 2025 00:31:45 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:9d:fb:6c:76:44:48:53:d1:65:40:33:a8:b5:50:75:76:e6:de:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:31:45 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=fb548c303dce1d15249cf315db8a261f53230df83f902f6ac561d4708fe6548b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5d:e3:34:8d:25:81:60:38:66:e8:7d:a6:90: f6:e6:b2:30:5c:cb:e4:bc:00:58:32:91:17:d4:25: b4:9f:fb:d6:9e:37:dd:fa:69:2a:64:61:11:99:93: 49:cf:bb:93:73:08:68:b3:50:40:16:b6:2b:e4:80: ee:f6:72:ea:92:2b:5c:29:50:85:af:76:ae:7c:6c: 27:ce:d5:16:48:ac:a1:fa:00:05:47:38:e6:bc:51: c3:12:b2:05:0f:bf:7a:06:3e:2e:9f:6e:51:40:25: 5a:7d:12:cf:5c:cd:35:89:cd:18:ed:56:ae:74:b8: 00:99:df:fe:7a:ca:4e:e5:ff:6f:d8:32:1a:bb:8b: 67:b2:69:32:03:8d:ad:e4:2f:af:19:00:99:1f:3a: d5:90:ba:74:5e:f8:26:e4:5a:80:a6:fb:77:45:d2: b0:2c:ea:c9:0e:8a:15:d1:ee:27:50:ae:10:b5:c6: dd:ba:b3:1e:84:c8:cc:5a:70:00:c1:35:70:fc:55: 0b:24:cf:8e:be:93:f0:98:14:0c:a1:eb:84:cf:47: 7c:b7:72:19:11:66:28:cb:47:54:9e:33:94:32:a4: 7f:26:0e:69:d0:df:5f:41:ea:3a:35:a3:d5:f4:1d: 65:81:dd:a8:2e:60:a6:70:ed:6a:76:8b:6c:d8:63: d2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B0:DF:61:C2:BD:84:11:4A:05:56:65:C7:7D:49:A6:67:DF:A3:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40678bef-8d07-4eae-a68e-675cf4cd98ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.104.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:a2:09:c7:64:03:76:08:22:ba:f4:dd:69:34:7d:a6:08:f9: 72:19:b8:cc:2b:08:7e:db:9e:cf:1f:9a:d8:fd:66:d2:3c:a9: a1:37:5c:0d:75:87:3a:6c:cf:c5:a7:8c:2d:40:73:35:4e:15: ad:1d:14:09:6c:3c:1f:de:00:66:6b:75:84:db:a1:9c:15:6e: 82:7b:66:dd:fe:4c:c9:bb:0a:30:c0:74:0e:70:3e:42:e5:82: 9b:bf:28:bd:0f:a8:a2:5d:7c:4f:74:b9:80:9f:b6:64:5d:ca: 76:d3:5e:0c:fe:01:07:dc:78:3d:d5:eb:89:6a:18:40:26:55: 4f:5f:ef:b1:25:fd:3c:57:07:3c:02:63:2a:b4:b0:06:3f:02: 69:4b:3b:61:f0:09:8a:11:c1:71:9c:6d:67:fc:13:89:d5:65: b6:dc:10:b0:3b:94:e9:40:d8:2e:6e:09:cb:59:78:50:0b:e6: d2:1c:17:78:da:7a:b6:6e:6b:44:ca:71:3f:a0:3e:f0:47:43: de:8a:7c:7a:b4:68:a6:e1:99:ab:ed:08:51:4a:5d:e8:37:cf: a6:36:16:a9:c5:c6:7f:42:ec:39:8d:1d:ba:e2:0b:4b:47:43: 30:a6:5a:38:5a:f0:60:7c:4b:6a:97:53:4e:87:62:bb:27:93: 6a:f3:45:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGZ37bHZESFPRZUAzqLVQdXbm3gQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAzMTQ1WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjU0OGMzMDNkY2UxZDE1MjQ5Y2YzMTVkYjhhMjYxZjUz MjMwZGY4M2Y5MDJmNmFjNTYxZDQ3MDhmZTY1NDhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKXeM0jSWBYDhm6H2mkPbmsjBcy+S8AFgykRfUJbSf+9ae N936aSpkYRGZk0nPu5NzCGizUEAWtivkgO72cuqSK1wpUIWvdq58bCfO1RZIrKH6 AAVHOOa8UcMSsgUPv3oGPi6fblFAJVp9Es9czTWJzRjtVq50uACZ3/56yk7l/2/Y Mhq7i2eyaTIDja3kL68ZAJkfOtWQunRe+CbkWoCm+3dF0rAs6skOihXR7idQrhC1 xt26sx6EyMxacADBNXD8VQskz46+k/CYFAyh64TPR3y3chkRZijLR1SeM5QypH8m DmnQ319B6jo1o9X0HWWB3aguYKZw7Wp2i2zYY9KjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUC7DfYcK9hBFKBVZlx31Jpmffo7owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwNjc4YmVmLThkMDctNGVhZS1hNjhlLTY3NWNmNGNkOThjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMyEmgwDQYJKoZIhvcNAQELBQADggEBAHqiCcdkA3YIIrr03Wk0faYI+XIZ uMwrCH7bns8fmtj9ZtI8qaE3XA11hzpsz8WnjC1AczVOFa0dFAlsPB/eAGZrdYTb oZwVboJ7Zt3+TMm7CjDAdA5wPkLlgpu/KL0PqKJdfE90uYCftmRdynbTXgz+AQfc eD3V64lqGEAmVU9f77El/TxXBzwCYyq0sAY/AmlLO2HwCYoRwXGcbWf8E4nVZbbc ELA7lOlA2C5uCctZeFAL5tIcF3jaerZua0TKcT+gPvBHQ96KfHq0aKbhmavtCFFK Xeg3z6Y2FqnFxn9C7DmNHbriC0tHQzCmWjha8GB8S2qXU06HYrsnk2rzRfQ= -----END CERTIFICATE-----Generated at Sat Apr 26 20:25:39 2025 by rpki-client