$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa File: 8e2ea47c-7af2-420d-8695-f2f769b2008c.roa (raw, json) Hash identifier: KCzgRUTlayue6yM5PuMnBJRSuZ0vj1WaObVevn3TDGQ= Subject key identifier: 63:02:06:60:E3:16:06:70:FA:13:25:4E:CD:FE:D9:F0:BA:60:87:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EF514CE147F28827C584711EBFC572CB24D41F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa Signing time: Mon 16 Jun 2025 15:30:18 +0000 ROA not before: Mon 16 Jun 2025 15:30:18 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.245.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f5:14:ce:14:7f:28:82:7c:58:47:11:eb:fc:57:2c:b2:4d:41:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:30:18 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=6dfbd474d74598819e60b3b80b8ee6bd95bc5d91733aee08734fd725fe67b9ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:48:7e:23:8b:35:28:3f:34:ce:bd:cf:ac:2f: 9e:76:98:50:33:2f:e1:04:27:4d:77:92:d8:f8:8e: ef:ce:55:27:91:f9:70:c4:af:d2:e1:35:e3:37:df: 5e:dd:ab:fd:a9:94:61:cf:88:96:40:39:c8:7b:da: 0c:9d:27:49:ab:db:91:72:b3:6a:9e:0e:37:b1:51: 4e:79:fa:f0:55:1a:eb:46:08:80:3e:d1:8d:7f:12: d6:ef:36:94:54:ff:ad:9d:20:27:72:45:f9:cb:f1: ee:2c:23:6a:b4:d2:d3:f4:0c:72:ec:2a:3f:7a:28: bf:02:e1:e0:d3:a2:c0:38:49:d3:f5:bc:68:c4:3b: 1e:24:02:09:39:26:cb:23:25:c1:bc:e7:80:43:a6: f6:55:ac:34:eb:ca:b5:27:44:20:21:3a:14:b1:12: 36:3b:26:27:0b:48:e8:38:12:31:05:37:4e:e7:42: 5a:bc:e5:83:19:40:9d:18:2d:f6:d9:b6:f9:e4:4e: e7:74:ef:2f:3b:05:e0:58:3c:95:e6:4c:3c:f4:cd: 4b:23:79:6f:53:76:ee:49:21:d1:f9:82:6a:b4:ae: 0e:d1:88:5b:52:25:92:bc:0e:43:2c:aa:e0:0d:34: aa:58:09:20:41:56:b2:4a:a3:eb:e1:ea:21:c8:f1: ce:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:02:06:60:E3:16:06:70:FA:13:25:4E:CD:FE:D9:F0:BA:60:87:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption a0:ec:9d:39:81:31:14:fc:5d:77:95:86:34:82:f5:7b:77:37: bc:2b:dd:33:c2:1e:69:92:ee:9e:c9:3e:d5:e8:24:62:27:7f: 25:1e:35:ca:5b:c3:64:79:19:83:68:9d:30:39:55:b8:d8:ef: e6:75:98:c0:d6:28:3c:1b:df:17:b2:86:db:2d:e9:de:e6:0a: c9:06:62:3c:bc:62:3e:21:df:60:17:8e:d3:04:7c:db:08:27: a9:39:b4:f6:f0:ca:f0:5a:88:89:f9:e0:f2:66:05:80:e6:18: 96:3b:46:19:84:29:4a:df:63:b2:f8:00:43:61:ad:c3:a7:23: b5:5d:97:d7:ad:9f:eb:bd:3d:2d:20:de:80:8d:1f:1f:ef:a5: cd:49:2e:15:d9:83:d2:a8:34:61:fd:65:d5:07:11:ce:9d:77: 5e:1f:8c:2f:ce:32:d6:c3:90:62:14:5e:3f:5f:ef:31:8f:8d: 39:45:56:6d:d0:11:98:5a:18:c8:9f:5c:91:98:55:aa:57:e9: 87:71:34:f3:24:44:09:b4:fd:40:c6:5a:4f:9b:1c:da:b9:e8: b9:fa:4a:96:f6:68:9f:42:c4:9c:98:0a:e3:ec:66:3f:41:b5: 5a:f1:2b:11:cf:a4:c6:41:49:bf:c7:fb:fe:32:cc:26:55:3b: d2:76:4a:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTvUUzhR/KIJ8WEcR6/xXLLJNQfIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUzMDE4WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGZiZDQ3NGQ3NDU5ODgxOWU2MGIzYjgwYjhlZTZiZDk1 YmM1ZDkxNzMzYWVlMDg3MzRmZDcyNWZlNjdiOWVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpSH4jizUoPzTOvc+sL552mFAzL+EEJ013ktj4ju/OVSeR +XDEr9LhNeM3317dq/2plGHPiJZAOch72gydJ0mr25Fys2qeDjexUU55+vBVGutG CIA+0Y1/EtbvNpRU/62dICdyRfnL8e4sI2q00tP0DHLsKj96KL8C4eDTosA4SdP1 vGjEOx4kAgk5JssjJcG854BDpvZVrDTryrUnRCAhOhSxEjY7JicLSOg4EjEFN07n Qlq85YMZQJ0YLfbZtvnkTud07y87BeBYPJXmTDz0zUsjeW9Tdu5JIdH5gmq0rg7R iFtSJZK8DkMsquANNKpYCSBBVrJKo+vh6iHI8c69AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYwIGYOMWBnD6EyVOzf7Z8Lpgh1wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMmVhNDdjLTdhZjItNDIwZC04Njk1LWYyZjc2OWIyMDA4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49TANBgkqhkiG9w0BAQsFAAOCAQEAoOydOYExFPxdd5WGNIL1e3c3vCvd M8IeaZLunsk+1egkYid/JR41ylvDZHkZg2idMDlVuNjv5nWYwNYoPBvfF7KG2y3p 3uYKyQZiPLxiPiHfYBeO0wR82wgnqTm09vDK8FqIifng8mYFgOYYljtGGYQpSt9j svgAQ2Gtw6cjtV2X162f6709LSDegI0fH++lzUkuFdmD0qg0Yf1l1QcRzp13Xh+M L84y1sOQYhReP1/vMY+NOUVWbdARmFoYyJ9ckZhVqlfph3E08yRECbT9QMZaT5sc 2rnoufpKlvZon0LEnJgK4+xmP0G1WvErEc+kxkFJv8f7/jLMJlU70nZKIg== -----END CERTIFICATE-----Generated at Sun Jun 29 09:35:57 2025 by rpki-client