$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f8be97b-27d6-4b35-9036-8e015c6e63f2.roa File: 8f8be97b-27d6-4b35-9036-8e015c6e63f2.roa (raw, json) Hash identifier: tMGlIvUVpkb7AW7NqxNFyRGdDJZ24f3wLSpISErwZww= Subject key identifier: 49:6D:1E:FC:2C:58:EB:1A:F3:C6:16:E3:60:3F:5F:97:AB:65:49:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11D24BC8AF21071491180B973ACBD01B8E1BFF8F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f8be97b-27d6-4b35-9036-8e015c6e63f2.roa Signing time: Fri 25 Apr 2025 00:52:18 +0000 ROA not before: Fri 25 Apr 2025 00:52:18 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.178.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:d2:4b:c8:af:21:07:14:91:18:0b:97:3a:cb:d0:1b:8e:1b:ff:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:52:18 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=309d1ee5d3ca9c0990ff932673978b199debff0d043ef9c1b91c92501ae91d29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f3:a8:c1:8b:b4:fc:8c:82:4a:d8:0b:d2:00: 3b:06:7a:9d:a0:ea:ba:80:63:2d:24:37:56:7f:46: 9a:a0:14:5e:c3:5c:e3:6b:00:d7:37:46:56:7e:d9: 3f:34:c6:93:2e:0e:65:a3:4c:3f:57:33:68:70:dd: 84:5a:5c:47:ab:a3:94:98:6a:ab:d1:5e:a4:ed:48: 40:33:1b:c9:f3:84:b3:d2:c8:d8:b4:4f:28:8d:60: 02:ae:20:8a:30:9b:58:35:2a:39:91:58:4d:54:8a: 41:da:44:9a:ab:42:65:50:76:62:23:95:d2:d8:8a: 57:e5:b5:00:52:1d:43:c8:48:76:9c:f7:7c:7c:d8: 7d:ef:f4:db:af:b5:48:b8:ab:f8:37:6b:99:9b:b0: 60:f0:de:2b:46:1c:5b:45:9f:82:1a:1f:bd:33:96: 50:42:2c:9f:d5:44:2f:3b:5b:84:bb:df:b6:64:85: 89:78:c1:46:a6:1c:52:dd:9b:e6:fd:86:17:cf:88: 30:ff:de:b3:3d:9e:0d:f8:34:96:40:06:7f:86:bf: 2d:9d:e3:a8:3a:be:e9:9a:1e:b0:b9:c3:61:2d:87: 35:bb:64:e6:8e:ac:b8:b2:96:75:49:3e:86:20:23: dc:a5:c6:83:ee:ba:f1:83:51:94:70:91:01:b6:bd: b7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6D:1E:FC:2C:58:EB:1A:F3:C6:16:E3:60:3F:5F:97:AB:65:49:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f8be97b-27d6-4b35-9036-8e015c6e63f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.178.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4c:04:7a:c7:f0:5f:9f:8f:a3:84:ce:1a:91:e0:1d:08:be:da: d7:13:f3:ab:78:06:fc:ee:d0:77:5a:64:05:0e:1e:87:81:86: 29:a2:25:ca:9e:16:42:14:0e:75:a3:0e:db:c0:07:e3:51:ab: 27:54:98:91:04:0b:15:f6:ab:d0:72:65:8b:e6:3b:c9:cf:e1: 44:24:fb:60:b7:93:e6:34:4c:f3:8a:96:bd:d9:63:c6:62:2b: f4:52:37:0b:6f:0f:3b:b0:6e:e0:92:7c:1d:3e:53:39:6e:b6: bf:dc:82:8a:62:4b:af:2e:99:85:2b:70:bd:44:d7:06:25:a7: 95:6e:f9:d8:0f:23:5c:17:bb:a2:4b:0f:c7:5f:b4:55:41:23: 93:ca:e7:dd:2c:b8:7b:71:ab:49:4d:d1:8f:68:06:23:28:c0: 6a:e8:f3:98:c0:6d:14:b0:9b:1b:46:44:f1:a1:51:99:3c:0d: 3b:84:06:e7:af:1f:72:8b:07:5a:4f:b0:be:bb:d8:4e:b4:34: c1:58:93:df:d6:ef:03:34:8a:df:16:71:59:57:87:ef:f5:44: 42:72:53:17:11:e5:f9:5c:8d:ac:e7:05:77:ea:24:67:27:21: d9:1b:b0:1b:48:32:fb:e4:79:d2:56:47:72:22:c8:e1:83:0d: 76:e0:0f:45 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEdJLyK8hBxSRGAuXOsvQG44b/48wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDA1MjE4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDlkMWVlNWQzY2E5YzA5OTBmZjkzMjY3Mzk3OGIxOTlk ZWJmZjBkMDQzZWY5YzFiOTFjOTI1MDFhZTkxZDI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ86jBi7T8jIJK2AvSADsGep2g6rqAYy0kN1Z/RpqgFF7D XONrANc3RlZ+2T80xpMuDmWjTD9XM2hw3YRaXEero5SYaqvRXqTtSEAzG8nzhLPS yNi0TyiNYAKuIIowm1g1KjmRWE1UikHaRJqrQmVQdmIjldLYilfltQBSHUPISHac 93x82H3v9NuvtUi4q/g3a5mbsGDw3itGHFtFn4IaH70zllBCLJ/VRC87W4S737Zk hYl4wUamHFLdm+b9hhfPiDD/3rM9ng34NJZABn+Gvy2d46g6vumaHrC5w2EthzW7 ZOaOrLiylnVJPoYgI9ylxoPuuvGDUZRwkQG2vbdlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSW0e/CxY6xrzxhbjYD9fl6tlSZ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmOGJlOTdiLTI3ZDYtNGIzNS05MDM2LThlMDE1YzZlNjNmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4sjANBgkqhkiG9w0BAQsFAAOCAQEATAR6x/Bfn4+jhM4akeAdCL7a1xPz q3gG/O7Qd1pkBQ4eh4GGKaIlyp4WQhQOdaMO28AH41GrJ1SYkQQLFfar0HJli+Y7 yc/hRCT7YLeT5jRM84qWvdljxmIr9FI3C28PO7Bu4JJ8HT5TOW62v9yCimJLry6Z hStwvUTXBiWnlW752A8jXBe7oksPx1+0VUEjk8rn3Sy4e3GrSU3Rj2gGIyjAaujz mMBtFLCbG0ZE8aFRmTwNO4QG568fcosHWk+wvrvYTrQ0wViT39bvAzSK3xZxWVeH 7/VEQnJTFxHl+VyNrOcFd+okZych2RuwG0gy++R50lZHciLI4YMNduAPRQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:39:57 2025 by rpki-client