$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b21c677d-50e7-454f-babb-5348e47e691d.roa File: b21c677d-50e7-454f-babb-5348e47e691d.roa (raw, json) Hash identifier: umanqug2tRN1aTshadVkOBKO1PgJd8x5mUHdKAG6TvU= Subject key identifier: 25:68:A5:45:58:AC:F6:02:06:DB:9A:AD:BB:90:80:A0:A6:98:4A:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59D0F1033511257BE7245C1E3A505E693BF2FA45 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b21c677d-50e7-454f-babb-5348e47e691d.roa Signing time: Wed 07 May 2025 00:41:27 +0000 ROA not before: Wed 07 May 2025 00:41:27 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.185.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:d0:f1:03:35:11:25:7b:e7:24:5c:1e:3a:50:5e:69:3b:f2:fa:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:41:27 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=fcbad70d290a2309eb8c19e47a43403ab3adbe192f05060a6370482c8ed65236, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f6:4d:23:e9:11:ca:a0:ca:65:ae:2b:92:97: fa:21:98:ad:ed:48:e4:6b:3c:05:11:be:bc:79:a5: 83:9d:a2:56:66:7c:00:2b:0d:cd:11:7f:c4:3c:4d: 2e:fa:0f:0d:9c:79:9e:79:62:c9:57:05:d5:a7:35: cf:d7:ca:64:c3:0a:c8:5b:c0:54:e6:d7:97:76:52: d9:2c:3b:cb:63:75:02:5a:26:cb:2e:84:f8:55:fd: e1:b9:3a:c1:88:f8:26:2b:bb:43:ee:27:73:b4:93: 20:ff:0c:b3:38:3b:12:1f:a2:04:4c:b7:b7:ea:0c: 5d:16:bf:44:0d:f9:35:c2:4c:e8:52:51:62:5e:87: be:8d:d6:b3:92:8a:10:5d:c9:09:33:35:87:02:00: e8:e8:29:da:f0:fe:ed:a6:50:c8:e2:01:36:db:1f: a7:e0:14:5d:61:f2:54:b9:e3:9d:d5:b7:b6:2d:dc: 2d:40:f3:09:08:6c:78:8e:17:be:75:0f:12:3b:45: 50:34:13:f3:eb:45:27:cc:b2:9a:f6:d4:f8:b3:77: 03:20:8e:ac:37:6f:41:17:86:3e:20:9d:7c:48:56: 8d:a5:c2:3b:48:c5:d0:ae:a3:d0:7f:18:22:54:ee: 14:70:5b:a6:44:6f:f5:52:da:4f:2f:cd:79:39:96: c1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:68:A5:45:58:AC:F6:02:06:DB:9A:AD:BB:90:80:A0:A6:98:4A:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b21c677d-50e7-454f-babb-5348e47e691d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.185.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:51:37:28:f2:18:e4:61:83:44:77:b3:d1:be:b0:fc:92:38: d7:09:9b:1d:fd:92:49:7d:43:09:08:96:0e:a4:a7:c2:0b:83: 3b:a1:79:69:42:32:ca:87:1b:1b:2c:82:34:54:5c:ba:eb:90: ec:f6:51:65:0b:60:1b:6b:62:8f:1b:27:f7:bf:62:aa:7f:f6: e7:13:f2:eb:47:b0:51:1e:28:76:0e:73:3a:8e:9e:b4:b6:8d: 28:dc:4f:03:b2:6e:bd:29:31:84:62:82:bf:af:e9:79:56:b2: 57:fd:2c:d8:d9:dc:40:e6:ec:c0:c2:77:39:2d:9e:72:c6:5b: 71:6a:ef:0d:ab:e1:46:ff:5b:ce:6e:03:c9:7b:1a:4a:55:c5: e6:fb:88:e2:a1:27:eb:a1:3d:ce:f8:31:a9:a4:03:bc:12:9c: 6a:9b:53:3e:71:de:32:8a:80:ca:81:a5:21:1b:c7:76:eb:51: 6d:a2:f2:a3:32:df:a3:7b:d3:e2:5b:13:ab:74:13:38:5b:0c: 13:7a:a9:18:43:91:37:ee:1f:e1:56:99:65:41:3d:58:63:76: 0b:0c:c5:ce:ad:8e:48:94:be:07:fc:66:00:ef:7d:b5:5c:75: 01:28:00:d6:33:a7:ec:fd:4a:cb:dd:4d:a8:ba:5c:c1:73:71: 60:5d:d0:28 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWdDxAzURJXvnJFweOlBeaTvy+kUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA0MTI3WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2JhZDcwZDI5MGEyMzA5ZWI4YzE5ZTQ3YTQzNDAzYWIz YWRiZTE5MmYwNTA2MGE2MzcwNDgyYzhlZDY1MjM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu9k0j6RHKoMplriuSl/ohmK3tSORrPAURvrx5pYOdolZm fAArDc0Rf8Q8TS76Dw2ceZ55YslXBdWnNc/XymTDCshbwFTm15d2UtksO8tjdQJa JssuhPhV/eG5OsGI+CYru0PuJ3O0kyD/DLM4OxIfogRMt7fqDF0Wv0QN+TXCTOhS UWJeh76N1rOSihBdyQkzNYcCAOjoKdrw/u2mUMjiATbbH6fgFF1h8lS5453Vt7Yt 3C1A8wkIbHiOF751DxI7RVA0E/PrRSfMspr21PizdwMgjqw3b0EXhj4gnXxIVo2l wjtIxdCuo9B/GCJU7hRwW6ZEb/VS2k8vzXk5lsH9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJWilRVis9gIG25qtu5CAoKaYSocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyMWM2NzdkLTUwZTctNDU0Zi1iYWJiLTUzNDhlNDdlNjkxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4uTANBgkqhkiG9w0BAQsFAAOCAQEArVE3KPIY5GGDRHez0b6w/JI41wmb Hf2SSX1DCQiWDqSnwguDO6F5aUIyyocbGyyCNFRcuuuQ7PZRZQtgG2tijxsn979i qn/25xPy60ewUR4odg5zOo6etLaNKNxPA7JuvSkxhGKCv6/peVayV/0s2NncQObs wMJ3OS2ecsZbcWrvDavhRv9bzm4DyXsaSlXF5vuI4qEn66E9zvgxqaQDvBKcaptT PnHeMoqAyoGlIRvHdutRbaLyozLfo3vT4lsTq3QTOFsME3qpGEORN+4f4VaZZUE9 WGN2CwzFzq2OSJS+B/xmAO99tVx1ASgA1jOn7P1Ky91NqLpcwXNxYF3QKA== -----END CERTIFICATE-----Generated at Fri May 9 18:39:59 2025 by rpki-client