$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa File: 86b0210e-c29a-4d8e-9093-155ac5d225de.roa (raw, json) Hash identifier: PG84zgPFlzE+CMoxpG2HazWieeDdnf1Sdil7gJz2nEU= Subject key identifier: 79:73:74:D3:D3:5F:4F:D5:E8:54:0E:BD:6D:98:14:79:FF:FE:89:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48DD11998B0809B98857924EA4C42FD7FFA9A5AB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa Signing time: Wed 07 May 2025 00:41:16 +0000 ROA not before: Wed 07 May 2025 00:41:16 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.103.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:dd:11:99:8b:08:09:b9:88:57:92:4e:a4:c4:2f:d7:ff:a9:a5:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:41:16 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=3b3bbc74a7a0662e6bf5e39db4d8d903a983cdd6baf6c3512313797a641970e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:34:3f:ac:e8:89:75:52:f8:82:52:e5:2b:fe: 3b:75:cd:c0:42:36:a0:fd:87:44:17:ff:c0:58:b8: e0:6e:78:9d:88:07:54:0c:e1:73:77:93:e2:e8:ee: 8c:17:34:88:c4:ea:6d:d7:2b:43:72:1e:29:62:ea: 48:e1:6a:41:2f:8d:bb:70:fb:9e:66:d0:41:34:6a: 84:72:2e:b7:af:85:15:a9:19:6e:9e:11:9b:5e:57: 45:7c:c7:90:88:8d:da:4b:48:1d:31:da:90:d7:12: 44:df:ac:78:95:09:74:63:e9:3c:de:e6:25:03:92: 51:c6:64:e3:35:89:1b:a2:27:d7:76:ff:ee:c6:af: a4:27:7f:3a:e9:9c:db:97:92:16:7a:18:87:d7:94: 18:d9:a7:b0:bc:91:ec:37:ac:0f:08:96:c6:c2:f9: 13:ab:91:05:b5:36:1b:52:53:13:49:8f:5f:f8:1a: f5:89:77:b5:66:a2:53:d7:74:a4:78:0e:00:8c:30: 9d:7b:e4:c2:d9:85:78:cd:da:79:59:7c:a1:30:1b: 09:f8:9f:59:da:11:04:2b:86:52:09:45:e1:41:cb: 66:a0:1f:42:71:f6:85:f5:be:de:4a:d4:b4:86:18: 3b:46:90:14:da:c8:d6:9e:a0:80:48:06:f1:1a:a6: f4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:73:74:D3:D3:5F:4F:D5:E8:54:0E:BD:6D:98:14:79:FF:FE:89:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b0210e-c29a-4d8e-9093-155ac5d225de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.103.0.0/16 Signature Algorithm: sha256WithRSAEncryption c4:ad:cf:21:07:87:cd:92:f6:6b:13:4a:7f:cf:af:71:ae:cf: ff:18:52:3f:f3:44:64:13:30:23:00:ff:55:df:38:c7:73:7e: 77:b4:55:55:67:2b:f7:00:17:24:67:31:a3:8e:57:03:30:d4: 96:1a:8a:65:6f:b0:db:f1:13:bb:22:37:9f:e7:0c:02:4f:34: 38:f4:f2:6f:83:df:e6:36:81:f9:db:3c:df:90:e3:56:af:9d: b7:50:5b:2c:bc:31:b2:75:ce:9c:1d:0c:d3:c0:a9:ea:73:70: b9:59:7a:01:18:a3:73:26:ac:34:6d:dc:7d:98:0f:f0:2f:d4: d8:78:94:5c:6b:b6:97:57:9d:a7:fc:59:cc:c9:6e:7c:77:55: de:a5:c5:78:09:b1:a6:87:c3:84:05:7f:63:41:e1:d4:74:42: a9:86:7a:cc:c1:8f:0a:4b:2b:18:fa:67:de:50:d1:1b:60:d9: d9:50:4c:95:ab:74:a8:94:19:4e:4e:23:a0:1e:d5:a2:ae:a7: 44:c4:1a:54:b7:46:0d:21:8b:d2:77:09:b3:db:ef:c6:26:3a: 1f:72:21:2d:01:d3:d3:39:1e:4e:c7:36:20:81:5a:43:73:40: e2:b7:bb:75:cc:05:79:8e:e8:0f:5b:51:9c:38:5b:dd:36:d8: 3e:01:63:7d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSN0RmYsICbmIV5JOpMQv1/+ppaswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA0MTE2WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjNiYmM3NGE3YTA2NjJlNmJmNWUzOWRiNGQ4ZDkwM2E5 ODNjZGQ2YmFmNmMzNTEyMzEzNzk3YTY0MTk3MGUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0ND+s6Il1UviCUuUr/jt1zcBCNqD9h0QX/8BYuOBueJ2I B1QM4XN3k+Lo7owXNIjE6m3XK0NyHili6kjhakEvjbtw+55m0EE0aoRyLrevhRWp GW6eEZteV0V8x5CIjdpLSB0x2pDXEkTfrHiVCXRj6Tze5iUDklHGZOM1iRuiJ9d2 /+7Gr6QnfzrpnNuXkhZ6GIfXlBjZp7C8kew3rA8IlsbC+ROrkQW1NhtSUxNJj1/4 GvWJd7VmolPXdKR4DgCMMJ175MLZhXjN2nlZfKEwGwn4n1naEQQrhlIJReFBy2ag H0Jx9oX1vt5K1LSGGDtGkBTayNaeoIBIBvEapvRnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeXN009NfT9XoVA69bZgUef/+iXIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2YjAyMTBlLWMyOWEtNGQ4ZS05MDkzLTE1NWFjNWQyMjVkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ZzANBgkqhkiG9w0BAQsFAAOCAQEAxK3PIQeHzZL2axNKf8+vca7P/xhS P/NEZBMwIwD/Vd84x3N+d7RVVWcr9wAXJGcxo45XAzDUlhqKZW+w2/ETuyI3n+cM Ak80OPTyb4Pf5jaB+ds835DjVq+dt1BbLLwxsnXOnB0M08Cp6nNwuVl6ARijcyas NG3cfZgP8C/U2HiUXGu2l1edp/xZzMlufHdV3qXFeAmxpofDhAV/Y0Hh1HRCqYZ6 zMGPCksrGPpn3lDRG2DZ2VBMlat0qJQZTk4joB7Voq6nRMQaVLdGDSGL0ncJs9vv xiY6H3IhLQHT0zkeTsc2IIFaQ3NA4re7dcwFeY7oD1tRnDhb3TbYPgFjfQ== -----END CERTIFICATE-----Generated at Sun May 11 15:02:17 2025 by rpki-client