$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e49f25e-d120-4f09-aacc-bf4995405b55.roa File: 8e49f25e-d120-4f09-aacc-bf4995405b55.roa (raw, json) Hash identifier: OktDEPpVw0OKldTvWCWW63kcnmWEuM916f0Jw7ZR0KM= Subject key identifier: 55:B9:4F:C9:19:7A:DA:F6:87:AC:B9:98:5B:81:D6:8D:5B:1D:CE:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 422294225883AAAAEF6B2A2912A5E418B7C32471 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e49f25e-d120-4f09-aacc-bf4995405b55.roa Signing time: Tue 22 Jul 2025 15:01:15 +0000 ROA not before: Tue 22 Jul 2025 15:01:15 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.19.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:22:94:22:58:83:aa:aa:ef:6b:2a:29:12:a5:e4:18:b7:c3:24:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 15:01:15 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=8ab0106a205c591b0e8546c3054a3706d402a65e4c11f606d3616ff3c7ad5b29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ef:2c:e5:45:cf:80:e9:a3:94:b1:72:64:57: 54:58:5d:f5:15:c3:5f:a6:c6:8d:72:18:06:37:f0: fd:6e:2f:e7:45:bb:84:fd:2f:f5:b3:67:9e:15:c0: 17:ed:08:c7:10:0e:23:0c:30:5d:3d:73:19:65:25: e8:30:b7:6e:3f:a9:c2:a4:b0:3f:ed:ef:7e:12:3e: c2:7f:a3:7e:c3:7f:ea:8d:91:dd:a6:cf:1c:e3:75: bf:05:64:39:14:c5:3d:b4:eb:76:c2:21:57:dd:26: 48:5a:6c:25:86:ce:a8:b0:65:89:63:3b:b9:83:26: 56:66:1f:e2:c8:dd:65:37:35:b3:51:b3:9b:69:e7: e5:1c:ba:85:32:f2:de:82:7f:47:5a:0c:a4:f2:bc: 2c:9e:ef:69:68:89:9c:58:88:ac:c8:65:cd:9c:cb: 8a:48:ec:53:85:4c:95:04:94:00:f6:b1:b3:96:f3: 15:03:40:3b:2c:f9:c3:d9:73:75:88:65:f2:a2:95: 88:7d:7d:22:2e:b7:ff:9a:9a:4f:93:34:b0:21:f0: 80:2e:b2:da:27:4a:ea:2d:e1:63:52:d2:c5:7b:e8: 7a:db:dc:ab:30:00:c6:ec:25:84:a1:91:2e:72:fe: 62:28:bf:66:df:53:f7:91:c6:0f:53:ad:a8:df:c5: 10:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B9:4F:C9:19:7A:DA:F6:87:AC:B9:98:5B:81:D6:8D:5B:1D:CE:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e49f25e-d120-4f09-aacc-bf4995405b55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.19.128.0/18 Signature Algorithm: sha256WithRSAEncryption c2:f2:3f:22:07:65:41:9b:b5:1b:2e:fe:b2:ec:01:fc:86:3f: 13:dd:a8:64:02:28:89:90:7c:f6:67:47:bb:81:6b:3e:fc:f4: 46:5c:7f:69:88:b2:6f:ce:31:9a:f5:34:95:cb:7b:8e:e7:b6: b1:76:04:9f:09:b8:f1:0d:52:47:98:7f:31:a8:23:13:c8:5d: 8c:da:47:67:aa:4e:0d:44:15:71:18:21:24:fb:8d:26:60:ab: 1d:a4:d1:b7:53:7f:09:80:14:cb:87:4b:02:59:f7:f7:6d:14: 60:0f:d7:a1:75:f1:de:6a:d9:4a:b5:58:48:e1:60:de:ec:77: b7:41:ce:a0:1f:6f:6c:7b:25:68:71:7a:c7:3e:b4:4f:e1:e3: fd:11:fe:7a:e2:2c:16:d8:43:05:0c:1f:90:b5:d3:7a:2c:1d: 46:61:81:18:44:27:aa:bd:c0:35:49:8e:a2:4e:78:96:02:f7: ea:5f:91:bb:da:f5:80:12:c6:9b:3b:c9:7d:df:ac:6d:11:76: ab:2c:9f:64:e4:f5:85:8a:df:1d:47:45:84:3a:54:7b:34:2d: d2:58:90:65:f7:b0:3b:93:86:e2:ea:1f:b6:c3:2a:9c:2b:5f: a9:3d:65:3f:56:9b:f3:bd:db:16:a0:0a:09:00:6b:8d:55:f6: 85:89:28:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQiKUIliDqqrvayopEqXkGLfDJHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMTUwMTE1WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YWIwMTA2YTIwNWM1OTFiMGU4NTQ2YzMwNTRhMzcwNmQ0 MDJhNjVlNGMxMWY2MDZkMzYxNmZmM2M3YWQ1YjI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD7yzlRc+A6aOUsXJkV1RYXfUVw1+mxo1yGAY38P1uL+dF u4T9L/WzZ54VwBftCMcQDiMMMF09cxllJegwt24/qcKksD/t734SPsJ/o37Df+qN kd2mzxzjdb8FZDkUxT2063bCIVfdJkhabCWGzqiwZYljO7mDJlZmH+LI3WU3NbNR s5tp5+UcuoUy8t6Cf0daDKTyvCye72loiZxYiKzIZc2cy4pI7FOFTJUElAD2sbOW 8xUDQDss+cPZc3WIZfKilYh9fSIut/+amk+TNLAh8IAustonSuot4WNS0sV76Hrb 3KswAMbsJYShkS5y/mIov2bfU/eRxg9TrajfxRCbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVblPyRl62vaHrLmYW4HWjVsdzvEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlNDlmMjVlLWQxMjAtNGYwOS1hYWNjLWJmNDk5NTQwNWI1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYyE4AwDQYJKoZIhvcNAQELBQADggEBAMLyPyIHZUGbtRsu/rLsAfyGPxPd qGQCKImQfPZnR7uBaz789EZcf2mIsm/OMZr1NJXLe47ntrF2BJ8JuPENUkeYfzGo IxPIXYzaR2eqTg1EFXEYIST7jSZgqx2k0bdTfwmAFMuHSwJZ9/dtFGAP16F18d5q 2Uq1WEjhYN7sd7dBzqAfb2x7JWhxesc+tE/h4/0R/nriLBbYQwUMH5C103osHUZh gRhEJ6q9wDVJjqJOeJYC9+pfkbva9YASxps7yX3frG0Rdqssn2Tk9YWK3x1HRYQ6 VHs0LdJYkGX3sDuThuLqH7bDKpwrX6k9ZT9Wm/O92xagCgkAa41V9oWJKEY= -----END CERTIFICATE-----Generated at Wed Aug 6 06:06:54 2025 by rpki-client