$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa File: 7d8956ca-c7c5-4819-a13e-59940ce8965b.roa (raw, json) Hash identifier: zA4Dr94A2r/S119i3espwvjNs4T4LTrR2Ep2Pf/HvRc= Subject key identifier: 3D:4B:36:8E:82:14:E7:2E:10:36:45:07:7C:20:2F:59:74:32:F6:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29A78423C0A306DC3D109053B09749A3B7AA781C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa Signing time: Tue 08 Apr 2025 00:31:56 +0000 ROA not before: Tue 08 Apr 2025 00:31:56 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a7:84:23:c0:a3:06:dc:3d:10:90:53:b0:97:49:a3:b7:aa:78:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:31:56 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=be25e7f9e7c32b8a50764e43d8f95db1650932228b523381387d225deb4205fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bc:d4:7e:cd:cf:6d:be:f3:70:ed:4f:9a:bd: 64:65:4f:08:68:ad:06:2e:3c:ab:7f:41:d1:ac:ad: fb:80:60:60:99:85:bd:60:b3:e5:f0:12:6a:11:95: fb:5c:a1:5a:c9:b3:a4:19:a0:3f:e5:cb:06:fb:43: 16:d7:00:10:a4:d3:f0:59:7e:aa:d8:72:00:32:33: 82:2e:57:40:74:b8:12:96:34:da:c2:39:19:2e:b2: 31:1a:ee:a3:5a:1f:4d:2f:f1:45:26:01:04:a2:f9: 44:d6:2a:cc:5d:8d:e4:0d:3a:9e:40:a0:f2:30:a3: 26:74:62:55:a3:3e:7e:42:ff:cb:b7:96:88:eb:e7: 92:61:8b:78:a0:b8:6b:25:60:3c:d3:0e:47:36:7f: 70:a8:20:fd:1a:05:0e:13:8b:ee:ec:06:61:a1:20: f6:69:7e:ab:c6:63:fd:ff:a6:64:76:31:e9:33:37: 15:da:73:d1:d5:4d:6c:d8:fa:f7:df:2f:38:00:74: 79:22:61:b0:3b:d4:d3:a8:44:66:a7:c5:bc:4d:44: e1:26:aa:bb:dc:49:29:0a:90:5f:2c:eb:ca:f7:93: 37:55:85:78:12:37:51:f4:f9:db:c2:a7:7b:d3:1c: 61:32:4d:09:0c:78:35:c2:4d:40:65:3f:de:fc:33: e5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:4B:36:8E:82:14:E7:2E:10:36:45:07:7C:20:2F:59:74:32:F6:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption 58:4d:38:a0:9a:3e:0d:bc:0a:0c:2f:cd:99:23:ed:22:01:c2: c9:8a:ba:f7:c8:61:5b:59:97:d2:20:63:89:48:ae:6c:e8:78: de:8f:49:f9:19:4a:c0:c6:5b:95:16:ec:aa:ed:a4:e4:5f:e2: 6c:01:b7:de:62:1a:65:9f:99:fc:46:de:a9:bf:09:c6:0a:79: ea:40:06:75:14:be:b8:03:ec:75:c3:6f:3c:e9:42:b5:d6:be: 7c:cc:b9:30:5f:58:ca:9e:36:3f:8b:d8:04:f2:70:f7:c1:51: 40:61:2d:2d:eb:ff:74:82:a3:2f:33:af:82:02:6d:05:d0:1a: b3:86:c0:6f:86:73:28:a1:ee:e1:33:64:93:85:41:52:63:bb: c5:af:90:1a:2e:c8:84:70:03:3e:9c:31:43:7f:86:9a:f2:77: c9:09:e5:46:ff:20:78:2c:68:2a:61:86:45:88:02:cd:41:1b: 0b:07:fa:dc:24:f8:10:b0:37:fb:05:b7:63:48:05:e5:d4:83: 70:18:02:59:32:c2:b0:22:53:75:d5:4c:70:14:67:91:df:84: 77:c6:d6:05:ad:07:9f:14:00:f6:00:1f:3f:a1:5c:08:01:83: bd:55:df:af:b7:59:4d:e9:d4:2a:f3:d5:26:d0:1e:21:05:3c: 45:86:b8:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKaeEI8CjBtw9EJBTsJdJo7eqeBwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAzMTU2WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTI1ZTdmOWU3YzMyYjhhNTA3NjRlNDNkOGY5NWRiMTY1 MDkzMjIyOGI1MjMzODEzODdkMjI1ZGViNDIwNWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8vNR+zc9tvvNw7U+avWRlTwhorQYuPKt/QdGsrfuAYGCZ hb1gs+XwEmoRlftcoVrJs6QZoD/lywb7QxbXABCk0/BZfqrYcgAyM4IuV0B0uBKW NNrCORkusjEa7qNaH00v8UUmAQSi+UTWKsxdjeQNOp5AoPIwoyZ0YlWjPn5C/8u3 lojr55Jhi3iguGslYDzTDkc2f3CoIP0aBQ4Ti+7sBmGhIPZpfqvGY/3/pmR2Mekz NxXac9HVTWzY+vffLzgAdHkiYbA71NOoRGanxbxNROEmqrvcSSkKkF8s68r3kzdV hXgSN1H0+dvCp3vTHGEyTQkMeDXCTUBlP978M+VdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPUs2joIU5y4QNkUHfCAvWXQy9kIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdkODk1NmNhLWM3YzUtNDgxOS1hMTNlLTU5OTQwY2U4OTY1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4NzANBgkqhkiG9w0BAQsFAAOCAQEAWE04oJo+DbwKDC/NmSPtIgHCyYq6 98hhW1mX0iBjiUiubOh43o9J+RlKwMZblRbsqu2k5F/ibAG33mIaZZ+Z/Ebeqb8J xgp56kAGdRS+uAPsdcNvPOlCtda+fMy5MF9Yyp42P4vYBPJw98FRQGEtLev/dIKj LzOvggJtBdAas4bAb4ZzKKHu4TNkk4VBUmO7xa+QGi7IhHADPpwxQ3+GmvJ3yQnl Rv8geCxoKmGGRYgCzUEbCwf63CT4ELA3+wW3Y0gF5dSDcBgCWTLCsCJTddVMcBRn kd+Ed8bWBa0HnxQA9gAfP6FcCAGDvVXfr7dZTenUKvPVJtAeIQU8RYa4QQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:06 2025 by rpki-client