$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96c7d16-98f4-430b-900c-b555bb1ceb1f.roa File: c96c7d16-98f4-430b-900c-b555bb1ceb1f.roa (raw, json) Hash identifier: 8nDfCBjN3MPEnPZB7i+9BQveSqk2OuO9pYKRRWtR/ow= Subject key identifier: FD:36:42:65:95:CC:14:88:D5:EF:CA:2F:13:B8:96:41:42:C7:7F:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CA30C33A911311A6992262074F6B18A8A716FED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96c7d16-98f4-430b-900c-b555bb1ceb1f.roa Signing time: Mon 02 Jun 2025 15:51:02 +0000 ROA not before: Mon 02 Jun 2025 15:51:02 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a3:0c:33:a9:11:31:1a:69:92:26:20:74:f6:b1:8a:8a:71:6f:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:51:02 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=d4f0cbbde601e74bf6276358b2908611f99c580e4dfdcf7340d9420d4a972718, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:92:fa:7c:e8:cc:e7:32:a5:89:7f:bd:65:0b: 06:31:4d:4e:2b:ee:54:1d:94:03:5d:62:af:29:4c: 6b:c2:1c:ac:3d:13:28:56:56:90:ac:8b:9b:8b:ef: 21:0d:2c:1a:b2:27:37:f5:db:07:b7:de:11:3f:d4: fe:7d:02:a7:24:b1:06:50:9e:23:72:88:19:27:6f: 2b:54:fa:5f:a8:3f:5c:e8:80:24:04:86:17:91:e0: 1e:65:b4:87:46:6b:62:a2:4b:e8:03:12:ac:bf:ca: 93:25:52:4e:3f:82:69:9c:a9:f4:b5:1c:07:4d:b4: a7:ae:83:0e:1f:8a:6a:08:d0:b5:e0:2d:d7:16:e4: 54:ff:9e:cc:d7:84:7b:a2:3b:24:e0:f1:ad:87:b1: 21:fc:fa:84:37:d6:3c:97:e6:8a:1f:c3:54:f4:86: e8:0f:fa:d0:85:5b:24:ec:44:5a:f4:ad:f3:09:ec: b5:f2:c7:50:02:b5:7c:93:b2:2d:8c:cb:2d:f5:c5: 73:3e:7a:b1:86:a0:d5:29:c9:ea:8b:88:3d:38:c8: 39:3d:3f:93:c1:ee:b1:09:5f:ae:64:93:7f:8e:ff: a8:0b:b2:85:38:86:8e:6c:ee:d8:b8:5b:ce:06:7c: 3c:4b:4e:77:e7:81:0f:32:2c:b6:cd:ab:17:5a:15: 27:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:36:42:65:95:CC:14:88:D5:EF:CA:2F:13:B8:96:41:42:C7:7F:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96c7d16-98f4-430b-900c-b555bb1ceb1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.160.0/19 Signature Algorithm: sha256WithRSAEncryption bd:9e:de:77:13:0e:29:41:eb:06:a7:60:38:99:cb:4b:e5:91: 84:98:d9:ae:ec:16:8e:1f:ad:e3:e6:86:ec:4b:cb:1f:aa:fa: f5:f4:d7:21:bf:ac:47:c6:d6:a6:4c:9a:27:84:19:30:77:99: 37:d1:b7:06:21:e2:8c:de:b0:0d:a5:94:b3:1c:ac:1a:53:2b: 0a:b2:42:98:5a:03:5d:61:eb:16:c4:59:bd:ad:94:fe:4e:1e: aa:89:ac:cd:1c:fc:2b:f0:1f:c4:3f:3b:c8:f3:69:ce:11:54: 36:90:ed:82:d8:6f:7c:67:43:1b:26:4a:26:da:a4:fc:8f:59: 0a:43:2e:fb:38:e0:d2:b9:a7:42:06:15:ea:d4:98:69:61:82: 28:0a:3c:25:1b:c2:ee:eb:4e:91:df:1a:ab:67:99:99:90:f5: d0:cb:6a:d3:f5:21:7e:e8:70:bd:cb:b2:43:e9:93:f2:b2:6c: ef:03:80:ad:52:59:a2:db:31:d0:a5:e9:2f:9e:39:b5:67:db: 5e:24:bf:39:15:49:db:77:51:71:21:d8:01:a1:1d:26:0b:a7: 3a:7a:d8:51:94:5a:97:05:1d:86:6b:e8:55:90:98:f1:cf:14: 3c:f7:68:65:bb:26:4b:a8:02:d0:0a:b0:cd:40:a7:17:2a:dd: 38:49:fa:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbKMMM6kRMRppkiYgdPaxiopxb+0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTU1MTAyWhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGYwY2JiZGU2MDFlNzRiZjYyNzYzNThiMjkwODYxMWY5 OWM1ODBlNGRmZGNmNzM0MGQ5NDIwZDRhOTcyNzE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUkvp86MznMqWJf71lCwYxTU4r7lQdlANdYq8pTGvCHKw9 EyhWVpCsi5uL7yENLBqyJzf12we33hE/1P59AqcksQZQniNyiBknbytU+l+oP1zo gCQEhheR4B5ltIdGa2KiS+gDEqy/ypMlUk4/gmmcqfS1HAdNtKeugw4fimoI0LXg LdcW5FT/nszXhHuiOyTg8a2HsSH8+oQ31jyX5oofw1T0hugP+tCFWyTsRFr0rfMJ 7LXyx1ACtXyTsi2Myy31xXM+erGGoNUpyeqLiD04yDk9P5PB7rEJX65kk3+O/6gL soU4ho5s7ti4W84GfDxLTnfngQ8yLLbNqxdaFSdtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/TZCZZXMFIjV78ovE7iWQULHf38wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NmM3ZDE2LTk4ZjQtNDMwYi05MDBjLWI1NTViYjFjZWIxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUyEqAwDQYJKoZIhvcNAQELBQADggEBAL2e3ncTDilB6wanYDiZy0vlkYSY 2a7sFo4frePmhuxLyx+q+vX01yG/rEfG1qZMmieEGTB3mTfRtwYh4ozesA2llLMc rBpTKwqyQphaA11h6xbEWb2tlP5OHqqJrM0c/CvwH8Q/O8jzac4RVDaQ7YLYb3xn QxsmSibapPyPWQpDLvs44NK5p0IGFerUmGlhgigKPCUbwu7rTpHfGqtnmZmQ9dDL atP1IX7ocL3LskPpk/KybO8DgK1SWaLbMdCl6S+eObVn214kvzkVSdt3UXEh2AGh HSYLpzp62FGUWpcFHYZr6FWQmPHPFDz3aGW7JkuoAtAKsM1Apxcq3ThJ+r8= -----END CERTIFICATE-----Generated at Sat Jun 14 06:25:15 2025 by rpki-client