$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7457f14e-6dd1-4239-b2cf-efe09954cfe2.roa File: 7457f14e-6dd1-4239-b2cf-efe09954cfe2.roa (raw, json) Hash identifier: geAxRXHy4rT0AixFnOoEK34d28Ce+DhT8e2/vp8xj/k= Subject key identifier: EE:58:44:71:FA:10:86:A6:BC:3F:26:6E:56:4A:96:E5:FF:BD:AE:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78E285D88DD93E5002CDC74265577A3A7ED7AA7D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7457f14e-6dd1-4239-b2cf-efe09954cfe2.roa Signing time: Wed 07 May 2025 00:31:04 +0000 ROA not before: Wed 07 May 2025 00:31:04 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e2:85:d8:8d:d9:3e:50:02:cd:c7:42:65:57:7a:3a:7e:d7:aa:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:31:04 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=dc6122eca014bc49e5cce9978b6b8a3306efd199c265afc4b06e8a99967f1c0c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:10:55:1e:d2:70:15:2d:f8:1b:c1:18:24: 9a:38:74:67:ff:a8:cf:29:96:b6:10:a2:5c:97:6f: 7d:2d:2a:3a:0a:8f:09:e7:2d:b3:88:10:a5:59:0a: 45:06:40:77:54:98:89:74:aa:28:d8:89:5d:44:6f: 4c:90:2f:c5:69:a9:0a:e8:c5:4e:55:33:43:ca:41: 7a:7d:e0:45:b8:57:d9:97:4c:19:4c:ac:4d:a2:7f: 79:0d:38:19:72:17:f2:12:41:de:bc:54:53:d6:d0: bc:b4:42:98:82:db:22:dc:5e:b6:78:c6:a0:82:6e: 79:6c:13:85:f3:8a:bf:98:20:9d:86:2c:dc:aa:92: 54:1f:3f:e6:2c:2f:36:dd:17:3d:f7:d4:e1:9e:08: cc:cb:05:66:3e:22:36:35:82:a5:eb:e6:6b:8d:2a: 38:20:ad:2f:9a:9b:b8:3e:20:d0:eb:e3:58:53:d9: 9a:81:35:1b:b1:bb:74:76:e3:43:61:27:65:3c:1d: ef:78:62:de:7c:c1:9f:2b:5f:07:a0:cf:39:65:50: 34:78:c3:27:d2:48:32:67:1e:32:95:e7:65:80:9c: a2:0c:0f:64:1b:43:c6:d2:9c:18:2f:88:2a:a7:fc: 09:39:cf:5c:06:6b:b1:9c:ff:12:7d:c4:ac:cc:e5: 50:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:58:44:71:FA:10:86:A6:BC:3F:26:6E:56:4A:96:E5:FF:BD:AE:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7457f14e-6dd1-4239-b2cf-efe09954cfe2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.248.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:34:d3:b9:15:b4:0e:2e:17:73:23:6b:41:31:97:f0:7a:1d: 72:61:5a:a9:ef:c5:35:b3:27:1c:ac:9c:d3:ec:f9:3c:27:c0: ab:d8:07:e6:70:9c:50:18:ae:8c:4d:83:dc:38:a2:d0:91:3e: ff:e6:04:bd:a1:47:fc:a9:0b:a1:5b:0b:f6:6b:08:b2:df:11: 54:f4:41:68:da:eb:db:bf:76:3d:51:33:3b:e8:63:ee:d3:3e: f4:f6:b1:93:5b:4b:05:33:3f:cb:81:42:fe:fe:ff:0b:36:07: 4b:1f:59:fc:79:78:68:5f:ca:10:e2:84:c5:7a:a1:66:31:1c: 9e:77:4b:0a:f7:b7:d6:00:5e:df:5f:d1:44:9e:e2:60:fc:b0: 20:64:c0:6c:a9:b5:dc:21:c8:a7:5a:db:94:fa:88:23:5e:bb: d4:36:c7:84:e7:3e:52:7a:51:bc:e2:5b:3f:32:c7:30:fb:76: bf:4a:41:55:fe:61:06:dc:ef:ef:09:49:f9:62:3e:0d:fd:75: 48:b0:31:34:78:55:8a:b5:de:38:13:f7:c6:f4:27:d4:71:a9: c8:b2:bf:4f:d4:90:fb:34:aa:8c:1c:13:1e:96:39:ae:e3:11: f7:43:9c:d9:56:c0:2a:44:f5:19:44:4f:4d:e0:b4:30:0d:f4: 54:e6:2c:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeOKF2I3ZPlACzcdCZVd6On7Xqn0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAzMTA0WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzYxMjJlY2EwMTRiYzQ5ZTVjY2U5OTc4YjZiOGEzMzA2 ZWZkMTk5YzI2NWFmYzRiMDZlOGE5OTk2N2YxYzBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZihBVHtJwFS34G8EYJJo4dGf/qM8plrYQolyXb30tKjoK jwnnLbOIEKVZCkUGQHdUmIl0qijYiV1Eb0yQL8VpqQroxU5VM0PKQXp94EW4V9mX TBlMrE2if3kNOBlyF/ISQd68VFPW0Ly0QpiC2yLcXrZ4xqCCbnlsE4Xzir+YIJ2G LNyqklQfP+YsLzbdFz331OGeCMzLBWY+IjY1gqXr5muNKjggrS+am7g+INDr41hT 2ZqBNRuxu3R240NhJ2U8He94Yt58wZ8rXwegzzllUDR4wyfSSDJnHjKV52WAnKIM D2QbQ8bSnBgviCqn/Ak5z1wGa7Gc/xJ9xKzM5VCRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7lhEcfoQhqa8PyZuVkqW5f+9rtYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0NTdmMTRlLTZkZDEtNDIzOS1iMmNmLWVmZTA5OTU0Y2ZlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMyEvgwDQYJKoZIhvcNAQELBQADggEBAI4007kVtA4uF3Mja0Exl/B6HXJh WqnvxTWzJxysnNPs+TwnwKvYB+ZwnFAYroxNg9w4otCRPv/mBL2hR/ypC6FbC/Zr CLLfEVT0QWja69u/dj1RMzvoY+7TPvT2sZNbSwUzP8uBQv7+/ws2B0sfWfx5eGhf yhDihMV6oWYxHJ53Swr3t9YAXt9f0USe4mD8sCBkwGyptdwhyKda25T6iCNeu9Q2 x4TnPlJ6UbziWz8yxzD7dr9KQVX+YQbc7+8JSfliPg39dUiwMTR4VYq13jgT98b0 J9Rxqciyv0/UkPs0qowcEx6WOa7jEfdDnNlWwCpE9RlET03gtDAN9FTmLHE= -----END CERTIFICATE-----Generated at Sun Jun 1 04:47:52 2025 by rpki-client