$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261541c-5236-438a-addf-e0379cb8428e.roa File: e261541c-5236-438a-addf-e0379cb8428e.roa (raw, json) Hash identifier: 9RuQlDw5Q6/36K7FPv9Va4Mdp1HsILABtsR9nsHzSZ8= Subject key identifier: 40:FA:56:54:0A:67:DA:FA:89:FC:D7:BD:1B:A2:D7:2D:5F:B8:A8:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71CA8DFD2299851418DE4D7861679AEE649E5045 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261541c-5236-438a-addf-e0379cb8428e.roa Signing time: Wed 07 May 2025 00:41:26 +0000 ROA not before: Wed 07 May 2025 00:41:26 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.162.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ca:8d:fd:22:99:85:14:18:de:4d:78:61:67:9a:ee:64:9e:50:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:41:26 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=baba3e9aaf465d53b9300993d97c039daa5ea40f7144357896492febdbfb9712, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5c:f6:c8:4b:38:dd:21:c6:21:1b:cf:74:01: 1d:04:b4:8f:21:87:57:fb:03:90:87:b8:b5:f7:0f: cc:8d:a3:ec:68:b4:f6:88:1f:48:46:ba:d9:82:8e: 9e:fc:ff:dc:70:c8:26:6c:c4:df:46:a9:e4:c4:e1: 33:14:31:4a:d2:ae:30:7f:aa:d0:d4:68:c0:3c:97: fd:14:6a:e6:b2:7d:7b:02:2e:d3:1b:5a:b0:f6:70: 80:15:e0:07:55:4f:41:44:97:46:e2:22:9d:22:7e: eb:3e:e8:95:a1:1e:50:be:bc:c3:75:03:ea:9d:1e: 6b:a6:21:e9:69:55:63:35:a1:7b:8c:bf:9f:8c:a1: 13:61:1b:05:3c:de:c4:a2:f4:cf:95:99:05:8e:94: f1:e6:ae:bc:85:ae:81:6a:46:c9:14:1d:06:65:2f: 27:bf:60:1c:d1:ac:ae:0b:09:af:fd:21:e9:c8:21: 41:09:ee:10:ce:8c:1c:15:1a:d9:ea:d4:c2:96:ac: b3:27:26:58:0d:10:83:fe:71:3c:db:76:a2:2e:f8: 13:7c:a0:d1:fb:cf:6c:f1:5d:18:f5:79:85:c1:74: 3b:70:31:67:c6:d6:14:f6:c2:b4:38:bb:5b:15:1c: c0:3e:ec:86:31:c8:e7:da:57:f9:71:aa:ce:64:18: 71:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FA:56:54:0A:67:DA:FA:89:FC:D7:BD:1B:A2:D7:2D:5F:B8:A8:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261541c-5236-438a-addf-e0379cb8428e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.162.0.0/16 Signature Algorithm: sha256WithRSAEncryption 42:e7:26:b6:59:d6:4c:2c:e2:22:4c:48:af:f8:e8:59:8b:81: c0:0e:d3:85:27:c3:0e:6a:98:c2:eb:7f:5a:aa:e9:67:02:66: d4:39:d2:48:9e:c5:7a:ba:84:97:72:65:2b:03:19:82:74:73: d7:8d:ec:66:72:19:30:be:f3:95:a3:84:19:f0:d7:6e:91:64: 50:90:a2:96:e2:c1:12:50:ea:c9:74:d2:ca:43:8b:c2:d2:39: 0e:75:18:d3:21:9a:16:2e:ca:3c:89:98:c1:3d:de:b5:c8:31: 2b:25:3e:f2:20:85:18:68:e6:bb:98:bb:2a:ad:45:f8:7a:6c: 61:cd:d4:f9:25:a1:03:37:5d:60:b1:04:4e:93:5e:2d:76:87: 32:50:24:9a:23:f2:57:63:35:71:20:ef:82:97:74:6c:63:5a: 23:4a:71:e3:d8:f2:9d:84:5b:e4:e7:b2:02:03:70:e3:0e:71: 78:22:6c:dc:a9:ff:b2:c0:80:ec:3d:16:b8:cc:25:6b:65:28: 82:52:93:a7:25:0e:e7:40:f7:d5:7b:05:43:8a:86:bc:d5:da: 3f:13:93:cc:22:d3:43:27:78:37:96:8c:0f:12:cd:68:5a:10: 91:0a:31:bc:15:e6:5a:24:e9:e6:3c:08:93:ff:51:aa:89:e9: b4:b5:c2:bb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUccqN/SKZhRQY3k14YWea7mSeUEUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA0MTI2WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWJhM2U5YWFmNDY1ZDUzYjkzMDA5OTNkOTdjMDM5ZGFh NWVhNDBmNzE0NDM1Nzg5NjQ5MmZlYmRiZmI5NzEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuXPbISzjdIcYhG890AR0EtI8hh1f7A5CHuLX3D8yNo+xo tPaIH0hGutmCjp78/9xwyCZsxN9GqeTE4TMUMUrSrjB/qtDUaMA8l/0UauayfXsC LtMbWrD2cIAV4AdVT0FEl0biIp0ifus+6JWhHlC+vMN1A+qdHmumIelpVWM1oXuM v5+MoRNhGwU83sSi9M+VmQWOlPHmrryFroFqRskUHQZlLye/YBzRrK4LCa/9IenI IUEJ7hDOjBwVGtnq1MKWrLMnJlgNEIP+cTzbdqIu+BN8oNH7z2zxXRj1eYXBdDtw MWfG1hT2wrQ4u1sVHMA+7IYxyOfaV/lxqs5kGHF7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQPpWVApn2vqJ/Ne9G6LXLV+4qAAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyNjE1NDFjLTUyMzYtNDM4YS1hZGRmLWUwMzc5Y2I4NDI4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ojANBgkqhkiG9w0BAQsFAAOCAQEAQucmtlnWTCziIkxIr/joWYuBwA7T hSfDDmqYwut/WqrpZwJm1DnSSJ7FerqEl3JlKwMZgnRz143sZnIZML7zlaOEGfDX bpFkUJCiluLBElDqyXTSykOLwtI5DnUY0yGaFi7KPImYwT3etcgxKyU+8iCFGGjm u5i7Kq1F+HpsYc3U+SWhAzddYLEETpNeLXaHMlAkmiPyV2M1cSDvgpd0bGNaI0px 49jynYRb5OeyAgNw4w5xeCJs3Kn/ssCA7D0WuMwla2UoglKTpyUO50D31XsFQ4qG vNXaPxOTzCLTQyd4N5aMDxLNaFoQkQoxvBXmWiTp5jwIk/9RqonptLXCuw== -----END CERTIFICATE-----Generated at Sat May 10 19:44:10 2025 by rpki-client