$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4241cd7d-6764-4829-9ae0-6e63780008af.roa File: 4241cd7d-6764-4829-9ae0-6e63780008af.roa (raw, json) Hash identifier: Ge6ilM0rm3Zez0Epbv1vfPHXdwe9Ev8zDcNunC4bMvM= Subject key identifier: 9B:27:40:2A:23:3A:7E:48:49:71:BD:D2:FE:A1:F1:C7:2E:87:90:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CB3BA59D5E1CD5A5033D8FA209E43C6FF35FD66 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4241cd7d-6764-4829-9ae0-6e63780008af.roa Signing time: Fri 25 Apr 2025 18:52:06 +0000 ROA not before: Fri 25 Apr 2025 18:52:06 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.62.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:b3:ba:59:d5:e1:cd:5a:50:33:d8:fa:20:9e:43:c6:ff:35:fd:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 18:52:06 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=706c2664bb44601495fb5c4317fcf940560b77e478c81ed44d0c45d29e523f5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a4:99:28:82:67:8a:3c:74:f1:a0:05:29:d0: 9a:7e:28:29:65:0c:72:fa:1c:a8:59:22:cc:fe:f3: 94:93:b8:02:94:ee:d9:c0:b3:5e:67:78:36:ca:a0: 0e:81:1e:2a:45:bd:d1:1d:6c:bf:09:5a:01:87:b6: 66:fd:65:bc:2a:94:61:7a:c0:8e:46:f8:19:78:0a: 54:f3:56:bd:30:18:45:7f:6d:c6:48:23:ef:48:7e: 0d:09:00:f0:96:20:4a:50:3f:63:82:e5:81:82:76: 96:25:cf:3b:c0:0e:37:56:37:97:5b:55:fe:82:37: 15:b9:24:4f:2d:b5:96:4c:86:04:64:b7:34:06:09: 08:d7:50:56:0d:04:f2:b4:5b:c5:91:76:1e:07:60: f0:7d:0e:69:a3:a7:bd:e6:78:8d:ac:4b:ad:80:ae: 7d:ca:d9:6c:a5:56:ac:79:db:2a:14:27:66:d5:cd: ae:00:03:58:8f:21:49:1c:c6:c8:1a:db:f1:60:83: 2b:a0:11:42:98:18:d8:21:3b:8d:30:c7:47:da:d3: e6:ed:41:81:bf:a9:69:c7:7b:95:41:db:2d:04:59: 95:4d:c0:a4:f2:46:1c:3a:94:4f:e1:63:7c:86:ff: 1a:11:19:18:44:5a:fc:f6:9e:c3:56:3a:39:aa:1a: 2d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:27:40:2A:23:3A:7E:48:49:71:BD:D2:FE:A1:F1:C7:2E:87:90:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4241cd7d-6764-4829-9ae0-6e63780008af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.62.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:1d:20:a6:2d:12:80:78:e5:77:c2:fd:d6:92:9d:2d:56:38: 94:cb:ef:f9:ea:66:31:6f:fe:62:39:fd:77:58:62:9b:56:3e: 50:ff:22:15:33:63:f2:db:e1:96:39:6f:9d:7b:e7:62:9f:45: 8c:27:d9:e3:0a:98:99:ef:d8:0f:0e:55:db:62:a6:a8:70:9b: ad:fe:1c:85:82:8e:23:a2:85:1f:9e:13:fe:20:7c:0d:56:f2: 89:72:4b:45:90:44:ac:68:59:1a:96:13:05:93:31:9e:90:3b: 59:11:b7:9f:2d:90:ad:11:0f:fd:7e:db:84:04:da:a7:ce:ec: 4b:0b:5d:43:20:88:77:74:0a:35:b5:2e:cb:4a:ec:20:74:a0: 11:ce:9f:11:0d:63:12:37:90:b6:21:46:6f:3e:b4:55:3b:e3: 7f:18:61:49:6f:63:c8:2b:b5:26:27:58:3b:9d:e4:a8:9d:04: 54:e3:ed:2a:a0:17:65:bd:c7:97:5b:44:9c:38:3c:58:6c:f8: 10:50:42:4e:6c:26:7d:03:f4:de:56:33:98:c8:3b:37:43:41: 20:ea:55:99:52:2b:78:74:a6:ae:aa:eb:50:af:d5:96:b1:87: f2:df:46:9e:41:6c:86:56:52:b9:95:95:41:b2:60:75:c4:2b: 1c:c1:ff:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULLO6WdXhzVpQM9j6IJ5Dxv81/WYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTg1MjA2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDZjMjY2NGJiNDQ2MDE0OTVmYjVjNDMxN2ZjZjk0MDU2 MGI3N2U0NzhjODFlZDQ0ZDBjNDVkMjllNTIzZjVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCipJkogmeKPHTxoAUp0Jp+KCllDHL6HKhZIsz+85STuAKU 7tnAs15neDbKoA6BHipFvdEdbL8JWgGHtmb9ZbwqlGF6wI5G+Bl4ClTzVr0wGEV/ bcZII+9Ifg0JAPCWIEpQP2OC5YGCdpYlzzvADjdWN5dbVf6CNxW5JE8ttZZMhgRk tzQGCQjXUFYNBPK0W8WRdh4HYPB9Dmmjp73meI2sS62Arn3K2WylVqx52yoUJ2bV za4AA1iPIUkcxsga2/FggyugEUKYGNghO40wx0fa0+btQYG/qWnHe5VB2y0EWZVN wKTyRhw6lE/hY3yG/xoRGRhEWvz2nsNWOjmqGi3/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmydAKiM6fkhJcb3S/qHxxy6HkBYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNDFjZDdkLTY3NjQtNDgyOS05YWUwLTZlNjM3ODAwMDhhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4PjANBgkqhkiG9w0BAQsFAAOCAQEANR0gpi0SgHjld8L91pKdLVY4lMvv +epmMW/+Yjn9d1him1Y+UP8iFTNj8tvhljlvnXvnYp9FjCfZ4wqYme/YDw5V22Km qHCbrf4chYKOI6KFH54T/iB8DVbyiXJLRZBErGhZGpYTBZMxnpA7WRG3ny2QrREP /X7bhATap87sSwtdQyCId3QKNbUuy0rsIHSgEc6fEQ1jEjeQtiFGbz60VTvjfxhh SW9jyCu1JidYO53kqJ0EVOPtKqAXZb3Hl1tEnDg8WGz4EFBCTmwmfQP03lYzmMg7 N0NBIOpVmVIreHSmrqrrUK/VlrGH8t9GnkFshlZSuZWVQbJgdcQrHMH/Kw== -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:04 2025 by rpki-client