$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa File: cc0cfc1a-62af-4984-9516-b068332cb387.roa (raw, json) Hash identifier: JPSEp5n3I7ZYz71tz2ObG+LKkY8KkQhaecBzVrp3CEk= Subject key identifier: 09:27:E1:27:FA:0B:97:EF:C3:16:2D:C2:D2:F8:72:D2:5B:95:D7:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E812CDD02AD6DF378CDA07C1AD39F06021AFB8F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa Signing time: Mon 02 Jun 2025 16:01:58 +0000 ROA not before: Mon 02 Jun 2025 16:01:58 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:81:2c:dd:02:ad:6d:f3:78:cd:a0:7c:1a:d3:9f:06:02:1a:fb:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 16:01:58 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=fbb8228ecffb4341b69fd8f455d9665680d6943100107caac53454e25dd10fe3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:80:b3:b3:b4:38:43:b7:4e:a0:20:33:f7:db: 32:23:94:b7:9e:d5:74:dc:dd:33:b8:a1:0b:4a:d9: 8f:c2:49:ad:4a:a9:c4:1f:53:6c:20:de:08:e9:33: d0:4c:b2:b3:cc:b3:05:d2:6a:ae:20:fe:31:d0:76: bb:40:36:d4:a0:07:35:c8:76:e3:2e:af:fe:2d:28: 7d:2d:91:6a:77:ee:cd:84:ec:91:5f:9d:dc:e3:4f: e3:95:99:76:2a:e6:9c:43:85:52:56:6f:a7:e2:e5: 18:eb:c9:90:e1:ae:86:89:bb:38:c1:03:9c:aa:5b: ad:c2:45:5e:25:73:03:26:1e:42:f6:5b:36:1c:89: 24:04:8e:38:79:45:a6:3b:06:62:c1:1b:41:23:2a: 5d:ab:44:b4:1c:52:93:ae:fc:a4:7d:fd:f4:18:15: 2d:12:9c:d8:a2:e3:6c:88:81:36:05:d0:9a:75:b9: 62:6c:4a:43:df:ec:22:28:0c:2c:27:a9:91:f2:7b: b6:29:ba:59:a7:14:66:b6:35:e4:3d:c7:e1:ba:44: 8a:ba:1d:23:be:f3:6c:7a:fc:75:e8:77:3f:99:c7: d0:f0:cc:85:65:99:49:eb:49:de:ac:70:71:0c:f1: 86:2e:99:b4:41:2e:ee:c3:36:9e:e3:9e:35:e9:c6: 91:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:27:E1:27:FA:0B:97:EF:C3:16:2D:C2:D2:F8:72:D2:5B:95:D7:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc0cfc1a-62af-4984-9516-b068332cb387.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:db:9d:ef:50:14:e1:20:47:8b:57:70:08:f5:77:1b:ea:c0: 15:c8:9c:d3:a8:5d:3a:28:a8:ce:dc:2c:76:de:d1:7b:7e:bc: 5d:25:48:d2:fa:fb:73:cc:62:bd:16:3b:2d:77:24:3c:1c:eb: 2d:44:28:4c:3c:7a:29:ab:7b:8f:82:78:ae:96:6e:16:ef:56: ca:74:65:88:a9:9d:4b:ab:36:d1:19:9e:43:ac:08:eb:a2:3f: 93:b0:58:e5:fb:59:06:e7:98:df:bd:da:b7:c4:ee:03:10:91: 13:f8:79:dc:b4:10:cf:ae:7a:92:91:dd:18:8a:73:23:dd:b5: 84:50:1c:83:06:90:39:67:f4:04:ce:30:45:7a:34:f7:07:f2: 0c:68:af:01:eb:14:e9:52:8a:25:e0:0d:28:78:cf:58:01:83: 53:03:02:30:48:fe:ca:8e:30:c6:1a:b5:02:af:e4:e7:6d:d2: 16:b3:51:15:88:0e:15:56:11:52:ee:45:59:11:f2:c7:33:05: 58:f7:9d:80:d6:b4:8a:9f:f5:d4:43:8c:57:3a:3a:90:fe:a1: cc:69:1b:96:51:0c:df:09:af:40:f6:f2:76:ab:81:a5:79:76: ff:80:ba:15:77:df:11:ab:75:39:e0:78:79:d7:6b:82:9a:2f: 3c:f0:60:65 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPoEs3QKtbfN4zaB8GtOfBgIa+48wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTYwMTU4WhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmI4MjI4ZWNmZmI0MzQxYjY5ZmQ4ZjQ1NWQ5NjY1Njgw ZDY5NDMxMDAxMDdjYWFjNTM0NTRlMjVkZDEwZmUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzgLOztDhDt06gIDP32zIjlLee1XTc3TO4oQtK2Y/CSa1K qcQfU2wg3gjpM9BMsrPMswXSaq4g/jHQdrtANtSgBzXIduMur/4tKH0tkWp37s2E 7JFfndzjT+OVmXYq5pxDhVJWb6fi5RjryZDhroaJuzjBA5yqW63CRV4lcwMmHkL2 WzYciSQEjjh5RaY7BmLBG0EjKl2rRLQcUpOu/KR9/fQYFS0SnNii42yIgTYF0Jp1 uWJsSkPf7CIoDCwnqZHye7YpulmnFGa2NeQ9x+G6RIq6HSO+82x6/HXodz+Zx9Dw zIVlmUnrSd6scHEM8YYumbRBLu7DNp7jnjXpxpEfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCSfhJ/oLl+/DFi3C0vhy0luV11MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjMGNmYzFhLTYyYWYtNDk4NC05NTE2LWIwNjgzMzJjYjM4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4VjANBgkqhkiG9w0BAQsFAAOCAQEAadud71AU4SBHi1dwCPV3G+rAFcic 06hdOiioztwsdt7Re368XSVI0vr7c8xivRY7LXckPBzrLUQoTDx6Kat7j4J4rpZu Fu9WynRliKmdS6s20RmeQ6wI66I/k7BY5ftZBueY373at8TuAxCRE/h53LQQz656 kpHdGIpzI921hFAcgwaQOWf0BM4wRXo09wfyDGivAesU6VKKJeANKHjPWAGDUwMC MEj+yo4wxhq1Aq/k523SFrNRFYgOFVYRUu5FWRHyxzMFWPedgNa0ip/11EOMVzo6 kP6hzGkbllEM3wmvQPbydquBpXl2/4C6FXffEat1OeB4eddrgpovPPBgZQ== -----END CERTIFICATE-----Generated at Sat Jun 14 07:15:40 2025 by rpki-client