$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c69534-e366-48e6-b04a-56bd3a94dba6.roa File: 68c69534-e366-48e6-b04a-56bd3a94dba6.roa (raw, json) Hash identifier: mpSI188yGlYJAFE8T54csvtCo86vgQ2hzgGpOZCidvU= Subject key identifier: 94:DA:83:42:94:A8:AE:3A:AE:E1:3E:1D:FE:E3:62:B6:53:7D:FC:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69AEB22A700AB4A8C21523FE1B2A7163E46F0808 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c69534-e366-48e6-b04a-56bd3a94dba6.roa Signing time: Fri 25 Apr 2025 20:07:03 +0000 ROA not before: Fri 25 Apr 2025 20:07:03 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.146.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ae:b2:2a:70:0a:b4:a8:c2:15:23:fe:1b:2a:71:63:e4:6f:08:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 20:07:03 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=18043566a775391d83cfe86fff9cc4e51e60e6e8e9e3b650e99fe1016674faa2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:69:56:54:ba:d5:3a:24:83:53:84:06:3b:4a: 1a:d8:07:95:94:18:fa:7b:d7:5d:91:3f:6b:f1:f4: 54:09:33:d8:a8:28:2e:82:8a:e3:59:4f:6c:a2:17: 71:bb:0f:7a:59:8f:ae:a4:03:4f:fa:bc:68:ed:31: f8:da:4b:e9:a4:39:1c:48:67:2a:c9:37:39:08:43: 4e:28:5e:03:26:fd:d2:15:05:82:d4:ab:f8:27:04: 5b:a6:75:53:ef:60:4d:fa:be:03:09:be:59:94:51: 8f:8e:a3:1d:09:21:7a:93:73:32:98:02:e2:3a:d3: c8:bf:63:58:0f:3e:ac:ce:8d:c5:af:48:ea:05:38: 7c:0c:a1:bc:bb:71:9e:9a:cf:f2:27:72:e6:87:8c: df:db:35:65:bb:d4:3c:77:0e:d9:42:67:3a:7b:56: 22:4d:10:15:9b:92:49:f5:53:fe:1e:40:8d:f0:b9: 5b:a6:3e:59:b3:33:fa:7a:3e:d4:f4:7f:48:95:e8: e4:c7:43:32:16:1b:54:d5:9b:f7:c7:72:0e:ec:a2: 63:46:73:94:2b:b4:a1:8d:10:6c:8b:02:82:e3:be: ce:f0:b8:90:15:31:70:22:0b:1a:61:e0:db:cb:3e: ef:97:33:19:01:0b:69:94:59:ce:e0:82:b6:53:bd: 88:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:DA:83:42:94:A8:AE:3A:AE:E1:3E:1D:FE:E3:62:B6:53:7D:FC:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c69534-e366-48e6-b04a-56bd3a94dba6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.146.0.0/16 Signature Algorithm: sha256WithRSAEncryption bd:63:9d:62:3b:4c:8b:df:8c:6e:71:c9:04:4f:4a:af:bf:8a: bb:bc:9a:74:a8:f7:84:86:d2:ef:f2:e7:a0:35:ec:1a:a2:f9: bd:48:a5:82:36:54:40:7b:75:4f:3a:27:de:ac:83:63:43:f7: 99:ce:98:dd:5f:5d:55:73:5b:2e:ea:ea:33:be:9b:3e:c0:59: 7d:71:1c:a9:ed:03:79:68:ec:55:6b:1f:0a:8c:28:ce:67:83: 7e:a4:9c:12:5f:bc:32:d7:1d:d1:c1:19:5a:f4:31:2e:dd:46: a8:aa:6c:29:8b:e3:d5:9b:60:b5:99:2e:49:1d:f6:1c:cd:35: ec:a1:10:a6:b9:92:44:af:92:d0:c3:e9:ae:80:8f:1c:bf:fa: 19:55:c6:88:a0:b0:25:83:12:f6:e0:a6:d4:3c:6f:31:ac:18: c2:ef:37:9b:e3:09:d7:44:9d:56:50:eb:89:ad:e8:b2:9c:48: 4f:de:b5:86:e7:40:63:f5:c6:ea:68:ee:6a:a1:c7:8d:cf:36: 3e:17:66:d1:e0:d5:15:71:81:38:b9:6e:ad:87:1e:25:ee:a9: e9:4b:0d:0a:6f:af:87:48:57:8d:f3:b0:f2:a3:ed:fd:f7:41: 1a:76:98:48:fd:b6:91:bd:55:f8:e7:c0:83:f0:68:08:0b:44: d3:d7:fa:11 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaa6yKnAKtKjCFSP+GypxY+RvCAgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MjAwNzAzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxODA0MzU2NmE3NzUzOTFkODNjZmU4NmZmZjljYzRlNTFl NjBlNmU4ZTllM2I2NTBlOTlmZTEwMTY2NzRmYWEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUaVZUutU6JINThAY7ShrYB5WUGPp7112RP2vx9FQJM9io KC6CiuNZT2yiF3G7D3pZj66kA0/6vGjtMfjaS+mkORxIZyrJNzkIQ04oXgMm/dIV BYLUq/gnBFumdVPvYE36vgMJvlmUUY+Oox0JIXqTczKYAuI608i/Y1gPPqzOjcWv SOoFOHwMoby7cZ6az/IncuaHjN/bNWW71Dx3DtlCZzp7ViJNEBWbkkn1U/4eQI3w uVumPlmzM/p6PtT0f0iV6OTHQzIWG1TVm/fHcg7somNGc5QrtKGNEGyLAoLjvs7w uJAVMXAiCxph4NvLPu+XMxkBC2mUWc7ggrZTvYiVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlNqDQpSorjqu4T4d/uNitlN9/OgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4YzY5NTM0LWUzNjYtNDhlNi1iMDRhLTU2YmQzYTk0ZGJhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4kjANBgkqhkiG9w0BAQsFAAOCAQEAvWOdYjtMi9+MbnHJBE9Kr7+Ku7ya dKj3hIbS7/LnoDXsGqL5vUilgjZUQHt1Tzon3qyDY0P3mc6Y3V9dVXNbLurqM76b PsBZfXEcqe0DeWjsVWsfCowozmeDfqScEl+8Mtcd0cEZWvQxLt1GqKpsKYvj1Ztg tZkuSR32HM017KEQprmSRK+S0MPproCPHL/6GVXGiKCwJYMS9uCm1DxvMawYwu83 m+MJ10SdVlDria3ospxIT961hudAY/XG6mjuaqHHjc82Phdm0eDVFXGBOLlurYce Je6p6UsNCm+vh0hXjfOw8qPt/fdBGnaYSP22kb1V+OfAg/BoCAtE09f6EQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:24 2025 by rpki-client