$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0bd193b-fffc-45c4-bd44-e59fff3c0c0d.roa File: e0bd193b-fffc-45c4-bd44-e59fff3c0c0d.roa (raw, json) Hash identifier: IQLtpZYcbSt79kGK/NQSZUZ4yp9+kintsddlx4KpzGo= Subject key identifier: 56:FB:C9:FB:C3:1A:47:3B:82:E0:6D:3F:ED:C5:18:5C:90:EC:59:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25F35842492BB46BD5DC4381BE4C88585D2B42DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0bd193b-fffc-45c4-bd44-e59fff3c0c0d.roa Signing time: Mon 16 Jun 2025 15:22:00 +0000 ROA not before: Mon 16 Jun 2025 15:22:00 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f3:58:42:49:2b:b4:6b:d5:dc:43:81:be:4c:88:58:5d:2b:42:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:22:00 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=ba86c9ebf395733b130e1225a639101cef3b5c078b23df164bd444b8d5031a19, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c6:21:a8:6f:b0:9f:de:be:d8:d9:3f:7a:99: 2b:b0:40:f6:a7:87:37:a7:43:e9:bc:f7:27:73:ab: 17:f8:9a:cf:43:40:26:f9:75:34:82:e3:95:3c:db: 23:f6:a4:45:75:de:2e:70:2a:ae:11:27:08:df:fd: 2a:6e:bc:cc:fa:bd:4d:9f:28:0b:09:f1:bc:7d:23: 3c:81:db:29:ec:e0:e4:70:f5:d1:a0:98:ec:9f:0e: 67:14:55:e1:7d:db:12:8b:63:99:29:91:50:53:24: 18:0d:20:6b:2b:16:c2:9e:96:19:8c:94:38:3f:96: c4:7a:29:06:fa:8a:dd:be:3e:17:e8:2b:02:9c:35: 98:14:05:b0:01:62:5e:ab:5c:22:36:be:be:b6:1a: dc:15:f0:f9:37:e3:ec:69:87:64:9c:81:bd:05:ec: 78:7d:93:f3:04:c8:61:ad:73:9e:cb:2a:c0:1c:85: 67:18:e4:0a:1f:14:e1:b3:4c:a7:bc:6f:d1:0f:42: 4e:85:d4:6f:96:25:31:b6:3a:8f:d9:e5:95:2c:f4: b3:b1:03:ec:09:3c:0d:14:d4:ad:9e:20:e0:2e:e3: ed:9d:9c:88:9d:52:a8:e0:92:ab:af:1d:61:51:aa: 66:0d:2f:75:66:cc:aa:a4:23:3a:57:c4:f2:4f:5c: b3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:FB:C9:FB:C3:1A:47:3B:82:E0:6D:3F:ED:C5:18:5C:90:EC:59:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0bd193b-fffc-45c4-bd44-e59fff3c0c0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:8b:e3:d3:c9:e8:02:60:6b:c5:21:ef:aa:c1:7e:13:00:d1: e1:d4:08:41:f1:cf:a4:db:fa:7d:92:e7:19:f0:2f:9d:a6:a7: 9a:cc:0f:5e:22:f0:8a:f7:42:96:78:4f:a7:68:1a:72:de:6a: c0:a9:72:ca:ff:c4:9f:d5:36:41:4d:7e:6a:a1:27:9d:36:f8: f4:f6:9d:78:d3:a6:0c:0b:a9:c8:59:ed:4a:5a:65:74:93:b1: 6e:e6:43:c3:e4:5e:55:29:00:2a:05:3b:36:dd:5e:c2:de:48: ba:f0:ac:ae:e0:eb:41:ee:fe:27:dd:86:50:07:d6:53:90:72: d4:4e:c5:59:be:64:b1:d2:3d:70:e5:d1:82:8d:cb:fd:9e:81: a8:15:f7:b8:66:b8:52:ee:0f:eb:05:36:49:ca:77:31:65:bc: ce:7e:1d:fd:5d:da:1f:0e:90:d6:b4:8a:03:78:47:cd:72:7a: 6f:53:39:aa:f3:c8:26:bb:9a:f1:33:53:1b:97:c4:d8:24:00: 98:23:42:4a:47:c5:e4:37:94:15:d6:4b:95:67:f2:87:49:33: ab:f2:81:b4:3b:0f:71:5a:ac:eb:57:fc:e0:03:73:7f:dc:9d: 7d:0c:8d:f1:3d:ec:57:91:0d:0d:b4:9a:ce:8d:b8:32:b7:c5: 00:5b:fe:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJfNYQkkrtGvV3EOBvkyIWF0rQtswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUyMjAwWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTg2YzllYmYzOTU3MzNiMTMwZTEyMjVhNjM5MTAxY2Vm M2I1YzA3OGIyM2RmMTY0YmQ0NDRiOGQ1MDMxYTE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuxiGob7Cf3r7Y2T96mSuwQPanhzenQ+m89ydzqxf4ms9D QCb5dTSC45U82yP2pEV13i5wKq4RJwjf/SpuvMz6vU2fKAsJ8bx9IzyB2yns4ORw 9dGgmOyfDmcUVeF92xKLY5kpkVBTJBgNIGsrFsKelhmMlDg/lsR6KQb6it2+Phfo KwKcNZgUBbABYl6rXCI2vr62GtwV8Pk34+xph2Scgb0F7Hh9k/MEyGGtc57LKsAc hWcY5AofFOGzTKe8b9EPQk6F1G+WJTG2Oo/Z5ZUs9LOxA+wJPA0U1K2eIOAu4+2d nIidUqjgkquvHWFRqmYNL3VmzKqkIzpXxPJPXLMBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVvvJ+8MaRzuC4G0/7cUYXJDsWdkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwYmQxOTNiLWZmZmMtNDVjNC1iZDQ0LWU1OWZmZjNjMGMwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4xDANBgkqhkiG9w0BAQsFAAOCAQEAFYvj08noAmBrxSHvqsF+EwDR4dQI QfHPpNv6fZLnGfAvnaanmswPXiLwivdClnhPp2gact5qwKlyyv/En9U2QU1+aqEn nTb49PadeNOmDAupyFntSlpldJOxbuZDw+ReVSkAKgU7Nt1ewt5IuvCsruDrQe7+ J92GUAfWU5By1E7FWb5ksdI9cOXRgo3L/Z6BqBX3uGa4Uu4P6wU2Scp3MWW8zn4d /V3aHw6Q1rSKA3hHzXJ6b1M5qvPIJrua8TNTG5fE2CQAmCNCSkfF5DeUFdZLlWfy h0kzq/KBtDsPcVqs61f84ANzf9ydfQyN8T3sV5ENDbSazo24MrfFAFv+mw== -----END CERTIFICATE-----Generated at Sun Jun 29 08:13:20 2025 by rpki-client