$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60e3b713-eebc-44fa-b225-13a35ad6aa74.roa File: 60e3b713-eebc-44fa-b225-13a35ad6aa74.roa (raw, json) Hash identifier: 50j6NSk1yuYQ0O9zklu1BnXuo32tdzAd7ry3zR8MyCQ= Subject key identifier: 03:F3:CB:2A:C9:2A:79:DF:3B:27:E0:CF:22:52:A8:60:EC:E0:39:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E9BDF92B9271AFF95B288B1D6534620468647C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60e3b713-eebc-44fa-b225-13a35ad6aa74.roa Signing time: Tue 22 Jul 2025 00:52:11 +0000 ROA not before: Tue 22 Jul 2025 00:52:11 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 25 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:9b:df:92:b9:27:1a:ff:95:b2:88:b1:d6:53:46:20:46:86:47:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:52:11 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=db6ebe43ead22f6270239abed20a91d5aa7861eb59e4f6e6bbecc591c4d3dae2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7b:c7:2d:0d:23:da:ab:1a:d9:ad:c5:8f:e6: 61:c0:13:ad:4a:48:ab:ec:22:6f:f3:bf:7b:bf:1f: 8c:c7:ac:9c:ba:e4:bf:f0:64:07:08:9a:1c:1c:e2: de:82:4d:94:03:34:8a:ad:8d:5a:bc:d4:5c:e9:2e: ae:05:a6:2c:24:c5:cb:e9:19:b7:7e:98:a7:47:5a: 7d:40:ba:d6:b9:93:f0:ec:45:4a:9e:19:f7:63:fe: 77:0c:2a:d3:92:d6:21:e6:31:35:e9:64:04:7f:36: 65:a8:2f:a1:32:06:dc:02:67:81:df:a6:ac:7e:8d: f2:f4:6a:8d:72:92:41:de:68:83:3a:f2:44:3d:7a: 4a:d2:12:15:8a:1c:77:59:22:6f:f4:95:ae:0f:e3: 8d:f6:81:3e:20:53:a0:c1:52:cb:44:33:9b:97:e9: 98:db:f8:f3:5e:a2:2a:45:24:11:3e:7f:0b:58:22: a6:70:c7:55:3d:e9:38:a0:d3:79:8b:53:5d:e7:3a: f0:2f:e1:00:f1:72:8b:38:1a:b2:fc:fc:d3:cb:8c: d7:56:77:2d:f0:97:6f:46:f3:ee:81:69:18:b2:54: df:ac:7a:28:2f:e3:b6:10:2b:bf:d2:7d:a0:d5:98: ba:bc:69:08:25:59:ac:94:97:39:ee:e7:52:6d:43: 23:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F3:CB:2A:C9:2A:79:DF:3B:27:E0:CF:22:52:A8:60:EC:E0:39:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60e3b713-eebc-44fa-b225-13a35ad6aa74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.128.0/18 Signature Algorithm: sha256WithRSAEncryption 09:8f:8d:8a:c5:11:52:9d:78:86:55:61:e9:d0:fc:e4:2f:c0: 93:e8:91:ca:86:ce:60:b1:0f:2d:5c:25:b7:2c:fa:f5:75:00: 51:1e:af:32:4d:29:5e:cf:b9:1e:a7:10:b3:a5:ec:fc:6f:4e: 8d:3e:cd:86:46:60:a0:64:86:f5:82:0a:e4:58:4f:3b:99:9d: 3b:9a:3f:8d:af:9e:7f:ef:40:32:1f:de:cd:a1:4f:bc:a2:6e: e4:68:7a:26:05:0e:eb:5c:b7:12:19:5c:d7:b4:01:38:ef:ce: f0:d4:1a:b4:8b:e1:0c:bf:72:dd:12:2e:ef:95:48:27:ec:1e: 2e:5c:c8:20:2d:9c:5e:b8:df:ec:5f:36:69:87:65:2f:f5:e2: e8:2b:31:6a:e9:6b:cd:0d:35:dc:16:8c:e9:25:fd:f4:b2:06: 0f:84:9d:e5:2a:dd:ad:8c:4d:f7:f8:5c:c9:b7:70:63:51:9b: 46:30:1e:0d:4f:df:74:b7:fb:6c:95:1b:9d:72:41:1b:80:25: b5:bd:77:5f:8e:b7:39:ea:09:79:53:fd:ea:08:e5:c7:8c:18: f6:a8:63:73:9a:6b:83:90:4b:0f:62:8b:87:61:cd:f1:e9:72: 6a:04:ba:f8:d4:0a:9c:bc:6d:9e:fb:5d:24:bf:28:70:58:78: f0:2f:03:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHpvfkrknGv+Vsoix1lNGIEaGR8YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDA1MjExWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjZlYmU0M2VhZDIyZjYyNzAyMzlhYmVkMjBhOTFkNWFh Nzg2MWViNTllNGY2ZTZiYmVjYzU5MWM0ZDNkYWUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCze8ctDSPaqxrZrcWP5mHAE61KSKvsIm/zv3u/H4zHrJy6 5L/wZAcImhwc4t6CTZQDNIqtjVq81FzpLq4FpiwkxcvpGbd+mKdHWn1Auta5k/Ds RUqeGfdj/ncMKtOS1iHmMTXpZAR/NmWoL6EyBtwCZ4Hfpqx+jfL0ao1ykkHeaIM6 8kQ9ekrSEhWKHHdZIm/0la4P4432gT4gU6DBUstEM5uX6Zjb+PNeoipFJBE+fwtY IqZwx1U96Tig03mLU13nOvAv4QDxcos4GrL8/NPLjNdWdy3wl29G8+6BaRiyVN+s eigv47YQK7/SfaDVmLq8aQglWayUlznu51JtQyNvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUA/PLKskqed87J+DPIlKoYOzgOZYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwZTNiNzEzLWVlYmMtNDRmYS1iMjI1LTEzYTM1YWQ2YWE3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYyEoAwDQYJKoZIhvcNAQELBQADggEBAAmPjYrFEVKdeIZVYenQ/OQvwJPo kcqGzmCxDy1cJbcs+vV1AFEerzJNKV7PuR6nELOl7PxvTo0+zYZGYKBkhvWCCuRY TzuZnTuaP42vnn/vQDIf3s2hT7yibuRoeiYFDutctxIZXNe0ATjvzvDUGrSL4Qy/ ct0SLu+VSCfsHi5cyCAtnF643+xfNmmHZS/14ugrMWrpa80NNdwWjOkl/fSyBg+E neUq3a2MTff4XMm3cGNRm0YwHg1P33S3+2yVG51yQRuAJbW9d1+OtznqCXlT/eoI 5ceMGPaoY3Oaa4OQSw9ii4dhzfHpcmoEuvjUCpy8bZ77XSS/KHBYePAvAxE= -----END CERTIFICATE-----Generated at Thu Jul 24 12:09:22 2025 by rpki-client