$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/475aec83-7583-444d-bcf3-8a330c25dcb2.roa File: 475aec83-7583-444d-bcf3-8a330c25dcb2.roa (raw, json) Hash identifier: c/7XrYEa/HGU6ltkvCGOOrt3CGSJTcQupLpeQELXkbs= Subject key identifier: 7C:E6:1F:E2:EB:02:A4:D1:5B:CD:37:81:73:1B:9E:7F:05:12:38:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5ECAB11E1183D73777ED33207F8A5D586867DD77 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/475aec83-7583-444d-bcf3-8a330c25dcb2.roa Signing time: Fri 25 Apr 2025 15:52:00 +0000 ROA not before: Fri 25 Apr 2025 15:52:00 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.1.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ca:b1:1e:11:83:d7:37:77:ed:33:20:7f:8a:5d:58:68:67:dd:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:52:00 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=46c091788d5cf111aaffaafe8e4d66dfb96e091ce9711918698756c5f27fe0c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:eb:c0:23:46:e4:a0:dc:55:27:81:7c:d8:e0: 23:f1:ae:0d:6f:b5:b1:53:8b:94:78:9b:fa:b9:77: 3a:01:4e:7d:a9:8a:72:e9:85:b1:c3:03:99:09:4d: 8a:b1:90:a1:67:87:ae:42:24:68:52:9e:64:4c:e5: d9:bc:83:11:ca:d4:fa:7d:df:82:95:9e:92:8d:d1: b6:9c:41:37:a7:5a:9a:51:c6:aa:2d:51:b4:f6:38: 60:05:34:6d:d0:e8:2e:68:6e:63:1d:a9:a5:71:79: d1:11:0f:cb:fb:23:c7:7f:77:0b:c5:75:08:58:2a: 6e:cd:09:98:06:5f:62:fe:dc:0e:0d:eb:f6:fd:68: 2a:45:d0:ca:d9:13:db:15:7c:b3:94:b5:8a:72:bd: 52:ac:97:4a:c9:c4:1a:0a:19:19:16:fb:ea:70:b9: 74:fe:54:9b:7f:69:67:c7:de:70:f5:3d:4b:7d:da: 4c:38:91:c6:38:89:df:13:a2:fe:54:e7:37:cc:e1: c7:22:9b:0f:08:99:1e:db:0b:41:92:f1:5c:61:2d: 6e:6d:39:48:3b:30:7f:dc:63:0a:3b:89:5b:b3:09: f1:0a:d1:a5:86:69:1e:a9:5e:91:f3:77:61:47:0f: 5d:44:c6:88:8b:32:f7:d5:c8:94:87:84:38:5d:e8: 6c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E6:1F:E2:EB:02:A4:D1:5B:CD:37:81:73:1B:9E:7F:05:12:38:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/475aec83-7583-444d-bcf3-8a330c25dcb2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:c8:31:63:16:43:a5:37:8b:48:6e:bc:01:12:1e:15:c5:87: 4b:7d:92:cf:70:59:8b:4a:8b:e4:7e:38:f1:11:12:c7:46:40: 6b:29:c3:02:dd:90:23:ea:0a:2e:56:d7:40:02:e7:07:b5:38: 60:75:d9:35:86:70:22:26:6c:d1:64:2e:3c:18:c6:e0:a9:3e: d2:00:8f:0c:e2:5d:3a:8c:26:ef:71:38:97:a6:f4:3e:2d:f2: ac:07:a9:d8:a1:a3:47:95:bc:f6:1b:0b:8d:57:8a:3c:f0:b2: b8:6e:18:b1:e2:b9:38:c3:dc:13:07:e3:9c:da:e7:d2:41:62: 71:3a:cc:a0:04:fe:b6:1c:7f:1c:af:80:9f:e9:c8:54:fd:3e: 81:2a:97:31:7e:ee:e2:9a:e8:a0:7a:88:0a:31:0b:a5:73:9d: 0c:c5:e5:36:a2:11:ee:6d:3c:7d:4d:8c:b9:f1:81:f0:cd:a6: eb:d6:6a:25:e6:88:d5:16:89:30:9c:83:ae:73:39:79:a7:23: cf:d4:80:26:9f:41:9f:9f:d0:ec:d4:1a:d5:ab:10:77:53:eb: d6:a9:6d:7e:56:17:e6:da:a7:6f:9b:59:0b:d0:4d:c4:2a:6e: a9:f1:89:50:4f:ad:42:99:9a:03:58:48:09:ec:f4:1a:9b:3a: ca:10:7b:3d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXsqxHhGD1zd37TMgf4pdWGhn3XcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTU1MjAwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NmMwOTE3ODhkNWNmMTExYWFmZmFhZmU4ZTRkNjZkZmI5 NmUwOTFjZTk3MTE5MTg2OTg3NTZjNWYyN2ZlMGM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV68AjRuSg3FUngXzY4CPxrg1vtbFTi5R4m/q5dzoBTn2p inLphbHDA5kJTYqxkKFnh65CJGhSnmRM5dm8gxHK1Pp934KVnpKN0bacQTenWppR xqotUbT2OGAFNG3Q6C5obmMdqaVxedERD8v7I8d/dwvFdQhYKm7NCZgGX2L+3A4N 6/b9aCpF0MrZE9sVfLOUtYpyvVKsl0rJxBoKGRkW++pwuXT+VJt/aWfH3nD1PUt9 2kw4kcY4id8Tov5U5zfM4ccimw8ImR7bC0GS8VxhLW5tOUg7MH/cYwo7iVuzCfEK 0aWGaR6pXpHzd2FHD11ExoiLMvfVyJSHhDhd6GwhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfOYf4usCpNFbzTeBcxuefwUSOM4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3NWFlYzgzLTc1ODMtNDQ0ZC1iY2YzLThhMzMwYzI1ZGNiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ATANBgkqhkiG9w0BAQsFAAOCAQEAT8gxYxZDpTeLSG68ARIeFcWHS32S z3BZi0qL5H448RESx0ZAaynDAt2QI+oKLlbXQALnB7U4YHXZNYZwIiZs0WQuPBjG 4Kk+0gCPDOJdOowm73E4l6b0Pi3yrAep2KGjR5W89hsLjVeKPPCyuG4YseK5OMPc EwfjnNrn0kFicTrMoAT+thx/HK+An+nIVP0+gSqXMX7u4prooHqICjELpXOdDMXl NqIR7m08fU2MufGB8M2m69ZqJeaI1RaJMJyDrnM5eacjz9SAJp9Bn5/Q7NQa1asQ d1Pr1qltflYX5tqnb5tZC9BNxCpuqfGJUE+tQpmaA1hICez0Gps6yhB7PQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:03:07 2025 by rpki-client