$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7024f23-e277-47d3-8cfa-36397ac62c94.roa File: e7024f23-e277-47d3-8cfa-36397ac62c94.roa (raw, json) Hash identifier: uziEAYlHznDRBuk3Q8Lu3ROeJlP+qw+u3D/FajkV4W8= Subject key identifier: E1:35:D0:8D:0E:B1:98:8B:AC:F2:1C:F4:D1:11:22:F7:03:3E:F1:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 283D81330EF69AEA8287F59AA35BD5974B8918E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7024f23-e277-47d3-8cfa-36397ac62c94.roa Signing time: Mon 02 Jun 2025 15:41:07 +0000 ROA not before: Mon 02 Jun 2025 15:41:07 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:3d:81:33:0e:f6:9a:ea:82:87:f5:9a:a3:5b:d5:97:4b:89:18:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:41:07 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=9e2cc3d7de840573239ea9177313bbfcced6f75eba8d99d732ffac2bffb135b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:47:2d:6c:37:cf:36:a7:f7:fa:d6:45:db:4f: 13:1e:fa:08:3b:a2:1a:bc:0e:35:2d:73:81:8d:71: a7:81:68:f4:c4:20:3c:d1:ab:fe:8c:e8:8f:ee:af: 17:93:c2:6c:27:85:08:bf:8b:8f:37:04:78:e7:eb: 13:d2:54:76:65:05:d8:fe:fb:c8:9a:5a:7c:1c:8f: f4:e0:69:57:70:60:02:bc:73:66:ba:43:8c:11:ac: 97:09:03:b3:91:6c:2c:ed:27:eb:03:86:d1:59:95: 28:9f:af:ef:df:40:fd:07:64:62:1a:ad:93:82:4c: 29:50:83:43:70:d9:c0:65:ec:a9:22:5b:34:07:82: 70:f1:3d:ef:a4:60:0a:2f:94:1e:29:06:90:51:3a: 8d:73:b1:41:98:66:34:68:0a:63:6e:54:45:4a:21: 06:01:b9:4f:a5:ce:71:c3:b9:b7:8f:03:b6:a3:53: 4c:a8:0a:10:31:64:4c:04:dd:87:7a:30:75:1f:b0: 95:22:d5:28:30:3c:cd:c3:3d:f7:77:8f:61:1e:30: dc:16:77:5d:68:55:35:b9:fe:49:5b:de:b0:26:61: e6:77:72:70:7f:c2:f4:b1:46:f6:fe:42:d4:64:fd: 07:94:0e:c1:da:f5:be:85:73:01:ee:58:16:7e:cd: fb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:35:D0:8D:0E:B1:98:8B:AC:F2:1C:F4:D1:11:22:F7:03:3E:F1:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7024f23-e277-47d3-8cfa-36397ac62c94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.152.0/21 Signature Algorithm: sha256WithRSAEncryption 80:bd:cf:6d:81:d9:a6:b3:41:82:03:a2:24:e1:22:dd:d2:98: 72:07:76:75:92:19:c1:2b:2c:7c:69:e8:da:12:6c:91:4a:23: d3:ea:df:a0:2f:66:2c:57:4b:d5:2d:5d:a8:ba:be:0c:59:dd: a3:e1:41:07:43:6b:49:a1:ba:cd:85:f4:83:b8:c3:44:77:11: d6:c9:dc:b5:e6:5a:34:86:00:bd:35:9c:82:be:38:4c:57:ea: 01:49:7b:30:a9:ef:de:e2:34:95:ea:0d:54:5e:b1:fd:33:1a: 7b:46:82:8d:a4:d6:36:59:cb:d5:5d:bd:4a:d8:ef:15:b6:1a: 4f:37:6a:eb:1b:44:a7:00:11:9d:45:30:66:29:66:2e:04:ae: aa:aa:ce:ae:a5:a1:60:33:03:74:0e:48:88:ae:9e:2d:14:e0: 48:f5:a4:a4:0a:e5:72:2f:12:f4:f8:7b:cc:90:f3:31:38:b6: d8:6d:20:1d:67:19:7a:e5:40:06:88:94:be:59:b4:9f:72:af: 01:a9:72:a4:9f:0b:35:84:a9:16:b0:6e:23:c1:96:61:02:6f: 9c:ed:93:a5:43:d2:11:58:1c:ce:cc:9e:2a:72:89:36:1e:a7: 79:cb:97:eb:31:33:39:a8:f3:5e:00:35:af:f9:4b:bb:9b:42: 91:67:0e:41 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKD2BMw72muqCh/Wao1vVl0uJGOYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTU0MTA3WhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTJjYzNkN2RlODQwNTczMjM5ZWE5MTc3MzEzYmJmY2Nl ZDZmNzVlYmE4ZDk5ZDczMmZmYWMyYmZmYjEzNWIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbRy1sN882p/f61kXbTxMe+gg7ohq8DjUtc4GNcaeBaPTE IDzRq/6M6I/urxeTwmwnhQi/i483BHjn6xPSVHZlBdj++8iaWnwcj/TgaVdwYAK8 c2a6Q4wRrJcJA7ORbCztJ+sDhtFZlSifr+/fQP0HZGIarZOCTClQg0Nw2cBl7Kki WzQHgnDxPe+kYAovlB4pBpBROo1zsUGYZjRoCmNuVEVKIQYBuU+lznHDubePA7aj U0yoChAxZEwE3Yd6MHUfsJUi1SgwPM3DPfd3j2EeMNwWd11oVTW5/klb3rAmYeZ3 cnB/wvSxRvb+QtRk/QeUDsHa9b6FcwHuWBZ+zfsTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4TXQjQ6xmIus8hz00REi9wM+8RowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U3MDI0ZjIzLWUyNzctNDdkMy04Y2ZhLTM2Mzk3YWM2MmM5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMyEpgwDQYJKoZIhvcNAQELBQADggEBAIC9z22B2aazQYIDoiThIt3SmHIH dnWSGcErLHxp6NoSbJFKI9Pq36AvZixXS9UtXai6vgxZ3aPhQQdDa0mhus2F9IO4 w0R3EdbJ3LXmWjSGAL01nIK+OExX6gFJezCp797iNJXqDVResf0zGntGgo2k1jZZ y9VdvUrY7xW2Gk83ausbRKcAEZ1FMGYpZi4Erqqqzq6loWAzA3QOSIiuni0U4Ej1 pKQK5XIvEvT4e8yQ8zE4tthtIB1nGXrlQAaIlL5ZtJ9yrwGpcqSfCzWEqRawbiPB lmECb5ztk6VD0hFYHM7MnipyiTYep3nLl+sxMzmo814ANa/5S7ubQpFnDkE= -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:24 2025 by rpki-client