$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74262974-ff83-4dd1-b926-8b9b458163a4.roa File: 74262974-ff83-4dd1-b926-8b9b458163a4.roa (raw, json) Hash identifier: cASbzuceyRtQvlC+v1OdMDLZ0mdTZ+l9yT166GeyICI= Subject key identifier: B5:B7:5A:11:00:D4:84:6D:3B:B9:5B:48:C3:18:0A:0F:A1:14:42:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 778AFE3C282577819C08ADF40D6E19E74ADE6E42 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74262974-ff83-4dd1-b926-8b9b458163a4.roa Signing time: Wed 07 May 2025 00:50:11 +0000 ROA not before: Wed 07 May 2025 00:50:11 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:8a:fe:3c:28:25:77:81:9c:08:ad:f4:0d:6e:19:e7:4a:de:6e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:50:11 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=74bf797b85046d1c295552f49a069ea05791d2d59ca3b10e3e34850c185c2152, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c6:92:fa:26:11:b3:99:97:ae:67:5d:3a:71: 57:f8:38:18:0a:30:71:b5:be:82:4f:7e:37:81:c2: 49:04:61:12:a2:1c:bc:fc:35:dc:7a:88:68:36:af: 8a:f4:03:ce:7e:b3:b8:10:8a:35:d3:61:28:01:e2: 28:b3:09:9a:0a:4c:87:1c:b1:80:b4:2f:01:8a:35: a0:33:c4:fa:62:eb:1b:bd:5e:82:3f:50:3a:5b:0a: 5e:a1:72:42:8f:16:99:66:d6:d2:2c:c5:bd:81:cd: 34:44:33:cf:3c:5d:17:4d:4a:5d:75:ed:04:6f:bd: 89:56:b9:58:00:4a:de:52:4f:eb:21:8f:26:59:7a: 6c:ba:c6:b1:7f:7e:ae:e4:f6:51:19:12:4b:08:ac: 04:01:52:4c:2e:a1:00:c4:43:c5:9f:27:2f:a6:8d: 63:c2:cb:78:fa:b7:39:8a:ba:92:41:25:d2:61:9a: 14:63:7f:6d:44:a4:11:b6:aa:06:51:0b:e5:8e:51: 40:8d:e8:2a:5e:a2:90:cc:e6:09:3a:60:e2:e3:5b: 74:a9:03:e8:bb:7a:29:fe:09:fa:c3:6d:43:59:fb: 09:55:ba:df:42:5e:67:b4:a9:22:19:ed:c8:6a:11: bb:fe:68:44:af:23:a9:16:2b:83:e6:5a:27:53:90: a3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B7:5A:11:00:D4:84:6D:3B:B9:5B:48:C3:18:0A:0F:A1:14:42:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74262974-ff83-4dd1-b926-8b9b458163a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 98:88:b8:fa:20:23:35:5c:96:a3:52:ff:06:d7:be:3a:3a:ef: 38:6f:c1:85:6b:8d:be:5a:ba:f0:4b:fa:08:dd:4f:94:92:c2: 72:38:0f:bc:b7:a8:37:29:97:71:33:1c:5a:66:81:ea:e9:f3: 9d:2f:fe:24:31:fb:2f:23:ef:14:44:aa:0b:b3:ef:53:a3:0c: c2:7c:ed:41:07:f0:f3:74:de:bc:f2:d6:62:b7:09:6f:1f:14: dc:3c:ca:73:3a:2a:a3:18:9e:7f:46:d5:1f:78:4a:b4:5a:22: 69:c3:01:56:85:59:16:ee:f4:34:a6:4c:5e:30:98:e8:77:68: 73:fd:0c:b0:51:42:a7:15:ad:eb:d7:13:1a:9b:91:e6:99:e8: db:94:e7:4f:ef:23:7e:c5:4f:a7:d7:90:6b:34:c7:04:9c:ba: 49:38:68:91:dc:e3:99:37:c9:1c:82:8b:db:61:05:5c:da:95: fa:f3:4c:28:f0:3b:ca:6f:c5:0c:de:eb:de:0c:cc:e9:de:1c: 4a:eb:d3:7c:c6:da:f9:d5:7d:e4:db:54:32:78:2f:10:15:65: ec:22:80:25:9a:1e:91:a1:af:1b:0a:f1:3c:a6:a9:32:8f:3f: 52:e5:c5:4f:10:cd:e0:98:7a:00:58:55:c6:21:2a:a2:bb:3d: 20:03:7d:cf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUd4r+PCgld4GcCK30DW4Z50rebkIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA1MDExWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGJmNzk3Yjg1MDQ2ZDFjMjk1NTUyZjQ5YTA2OWVhMDU3 OTFkMmQ1OWNhM2IxMGUzZTM0ODUwYzE4NWMyMTUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsxpL6JhGzmZeuZ106cVf4OBgKMHG1voJPfjeBwkkEYRKi HLz8Ndx6iGg2r4r0A85+s7gQijXTYSgB4iizCZoKTIccsYC0LwGKNaAzxPpi6xu9 XoI/UDpbCl6hckKPFplm1tIsxb2BzTREM888XRdNSl117QRvvYlWuVgASt5ST+sh jyZZemy6xrF/fq7k9lEZEksIrAQBUkwuoQDEQ8WfJy+mjWPCy3j6tzmKupJBJdJh mhRjf21EpBG2qgZRC+WOUUCN6CpeopDM5gk6YOLjW3SpA+i7ein+CfrDbUNZ+wlV ut9CXme0qSIZ7chqEbv+aESvI6kWK4PmWidTkKPvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtbdaEQDUhG07uVtIwxgKD6EUQuowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0MjYyOTc0LWZmODMtNGRkMS1iOTI2LThiOWI0NTgxNjNhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4IDANBgkqhkiG9w0BAQsFAAOCAQEAmIi4+iAjNVyWo1L/Bte+OjrvOG/B hWuNvlq68Ev6CN1PlJLCcjgPvLeoNymXcTMcWmaB6unznS/+JDH7LyPvFESqC7Pv U6MMwnztQQfw83TevPLWYrcJbx8U3DzKczoqoxief0bVH3hKtFoiacMBVoVZFu70 NKZMXjCY6Hdoc/0MsFFCpxWt69cTGpuR5pno25TnT+8jfsVPp9eQazTHBJy6STho kdzjmTfJHIKL22EFXNqV+vNMKPA7ym/FDN7r3gzM6d4cSuvTfMba+dV95NtUMngv EBVl7CKAJZoekaGvGwrxPKapMo8/UuXFTxDN4Jh6AFhVxiEqors9IAN9zw== -----END CERTIFICATE-----Generated at Sun May 11 16:53:56 2025 by rpki-client