$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/657974f1-94c0-4624-90be-8e1120bd47b0.roa File: 657974f1-94c0-4624-90be-8e1120bd47b0.roa (raw, json) Hash identifier: +zV/ai6b4QNU8oPqn2Fk0aQwIQlrstYoviNAfFMdCmE= Subject key identifier: 33:B9:D9:13:65:A0:83:A3:A4:85:AB:CE:E4:AF:52:9C:EB:D6:E1:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FE4456D0F69B5702CE36D8171AA995F783B9123 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/657974f1-94c0-4624-90be-8e1120bd47b0.roa Signing time: Mon 02 Jun 2025 15:41:41 +0000 ROA not before: Mon 02 Jun 2025 15:41:41 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.17.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e4:45:6d:0f:69:b5:70:2c:e3:6d:81:71:aa:99:5f:78:3b:91:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:41:41 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=d2d3e53ca1801ac3116c84b937b8daf6ae260aa7277443184f937f82f58646d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ab:0c:a3:8c:39:85:b2:48:4b:ee:ab:a7:bf: 47:d3:05:79:0f:b5:f1:10:fe:68:4e:2b:a7:32:63: 70:e4:b3:e2:63:f6:38:48:be:46:62:1c:d1:8d:a6: ca:1e:62:00:dd:97:21:fd:1e:df:cb:f3:7c:46:09: ba:66:3a:4c:03:1e:8a:cd:8c:d8:d5:e8:63:1a:b9: 4b:a4:51:6d:16:34:72:bd:e1:f2:da:1d:2c:3b:8a: a9:cc:b9:7d:0a:b2:52:d7:f3:36:e6:99:5f:fd:7a: c5:e5:ba:d9:b1:45:1d:88:a3:87:09:41:90:bd:6f: 21:48:72:6b:b3:bb:ce:44:1f:d8:b8:d7:12:b3:08: 5d:24:dd:ef:69:a6:67:31:85:1c:10:76:bf:da:74: 47:6e:52:e8:aa:47:82:4a:bf:bf:a3:e4:33:42:22: e1:c9:7c:34:ce:58:ed:57:7c:de:42:21:74:e6:af: ba:e0:2c:65:2d:90:6c:f3:1d:81:ad:5d:a2:ff:31: d7:cd:df:62:01:4e:06:dd:c2:fb:2f:e9:48:aa:ba: 7b:df:fb:9e:1d:7f:3d:86:14:f1:f9:74:59:0c:db: 0b:a7:c8:2b:6d:ed:9b:54:be:5d:d4:f9:62:9e:1c: 32:0d:29:73:ee:9a:46:da:27:53:90:78:3a:f4:1c: 53:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B9:D9:13:65:A0:83:A3:A4:85:AB:CE:E4:AF:52:9C:EB:D6:E1:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/657974f1-94c0-4624-90be-8e1120bd47b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.176.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:d5:a4:3b:e2:98:e8:3a:7d:3d:a9:f1:d4:13:5b:e4:8b:3d: 08:27:61:89:d9:14:5b:a8:d8:bf:3a:18:09:85:21:19:bb:1b: f0:06:57:03:bf:68:60:4f:73:ac:b5:bc:3d:81:c8:ae:61:aa: 1f:b8:5a:4b:c5:02:48:03:02:3a:c1:80:33:eb:84:71:92:a7: 5a:8d:9d:f3:2a:7e:e0:be:0f:15:c8:07:56:f2:54:44:c6:39: 93:01:e8:f6:21:07:84:79:71:be:17:7d:23:83:b6:9c:f1:f5: e7:20:05:5f:8f:dc:90:89:fd:da:e4:20:07:03:7f:99:d3:33: 61:c0:09:35:8f:fe:2a:48:15:6c:77:08:4c:46:9d:8b:10:37: a6:75:16:1a:fe:00:45:0b:b2:ea:0c:dd:42:3d:66:80:d3:3b: d1:0c:dd:e3:84:1e:3c:fa:8c:00:b7:b1:a9:05:ff:61:43:21: cb:09:74:3d:de:c6:b9:de:7d:1d:8d:4b:fc:56:cd:a7:e8:de: d5:a7:e2:3f:ea:7c:fc:74:83:ed:83:29:75:8c:d4:ed:38:bd: 25:9c:10:ac:d7:b7:43:ad:3b:95:cd:32:bc:24:3c:a6:bb:07: 54:ad:d9:67:d2:d5:c8:05:95:c4:b4:c0:a3:90:00:d5:f5:74: c9:7f:bd:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT+RFbQ9ptXAs422BcaqZX3g7kSMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTU0MTQxWhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmQzZTUzY2ExODAxYWMzMTE2Yzg0YjkzN2I4ZGFmNmFl MjYwYWE3Mjc3NDQzMTg0ZjkzN2Y4MmY1ODY0NmQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfqwyjjDmFskhL7qunv0fTBXkPtfEQ/mhOK6cyY3Dks+Jj 9jhIvkZiHNGNpsoeYgDdlyH9Ht/L83xGCbpmOkwDHorNjNjV6GMauUukUW0WNHK9 4fLaHSw7iqnMuX0KslLX8zbmmV/9esXlutmxRR2Io4cJQZC9byFIcmuzu85EH9i4 1xKzCF0k3e9ppmcxhRwQdr/adEduUuiqR4JKv7+j5DNCIuHJfDTOWO1XfN5CIXTm r7rgLGUtkGzzHYGtXaL/MdfN32IBTgbdwvsv6Uiqunvf+54dfz2GFPH5dFkM2wun yCtt7ZtUvl3U+WKeHDINKXPumkbaJ1OQeDr0HFNtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM7nZE2Wgg6OkhavO5K9SnOvW4aAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1Nzk3NGYxLTk0YzAtNDYyNC05MGJlLThlMTEyMGJkNDdiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIyEbAwDQYJKoZIhvcNAQELBQADggEBACvVpDvimOg6fT2p8dQTW+SLPQgn YYnZFFuo2L86GAmFIRm7G/AGVwO/aGBPc6y1vD2ByK5hqh+4WkvFAkgDAjrBgDPr hHGSp1qNnfMqfuC+DxXIB1byVETGOZMB6PYhB4R5cb4XfSODtpzx9ecgBV+P3JCJ /drkIAcDf5nTM2HACTWP/ipIFWx3CExGnYsQN6Z1Fhr+AEULsuoM3UI9ZoDTO9EM 3eOEHjz6jAC3sakF/2FDIcsJdD3exrnefR2NS/xWzafo3tWn4j/qfPx0g+2DKXWM 1O04vSWcEKzXt0OtO5XNMrwkPKa7B1St2WfS1cgFlcS0wKOQANX1dMl/vaI= -----END CERTIFICATE-----Generated at Wed Jun 4 11:14:59 2025 by rpki-client