$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4ec4711-a29c-4222-b040-ab79022ab487.roa File: f4ec4711-a29c-4222-b040-ab79022ab487.roa (raw, json) Hash identifier: 21MR4gxiFmrYlpWiOzwUQARbKyupHSRDD9Lq+lZM8dk= Subject key identifier: 56:D1:E9:B1:42:6B:E1:9D:4F:D3:E6:EF:6D:28:CC:56:F1:47:80:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F9C3071425F03E076CED657A8A25F45B6ECB644 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4ec4711-a29c-4222-b040-ab79022ab487.roa Signing time: Tue 18 Mar 2025 00:50:16 +0000 ROA not before: Tue 18 Mar 2025 00:50:16 +0000 ROA not after: Tue 22 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.99.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:9c:30:71:42:5f:03:e0:76:ce:d6:57:a8:a2:5f:45:b6:ec:b6:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 18 00:50:16 2025 GMT Not After : Apr 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:67:9a:c7:dc:8a:82:cf:cd:13:4e:39:1a:3e: 65:a2:32:9c:a9:ba:1e:46:c0:2d:4d:d7:4c:54:9f: 9a:1e:83:e2:91:9e:b0:6a:6f:91:e6:a2:f4:c1:af: 5c:43:ba:46:e9:fa:c2:3a:22:e8:ea:5b:1b:44:48: b4:84:c5:0e:d9:45:4e:80:cf:7e:0c:7c:bd:ae:c2: 4b:32:18:db:32:4b:40:25:27:13:fb:1e:9a:94:af: 6f:4a:3a:21:90:8c:d0:10:ac:42:2d:42:0b:c3:24: c6:d9:34:79:7e:3a:e4:29:fe:72:69:06:91:81:0a: 4f:70:f8:73:8f:37:e0:72:26:dc:42:8c:65:be:9e: 7b:a1:18:8b:b5:6a:12:b2:4e:79:1d:f7:32:f8:10: a9:e4:c7:d1:89:cd:7c:8d:ed:7b:43:0e:58:9e:e4: da:26:f8:c2:fa:e1:52:14:3c:76:6c:ae:00:34:09: 6b:61:36:2a:10:5f:be:07:47:fd:f2:35:29:c7:4d: cd:96:24:0f:ff:c8:ed:95:49:51:68:2b:cb:24:6a: a4:49:e7:39:4e:7b:ce:d9:57:43:d8:68:a6:fa:ad: fb:ad:f0:cb:7a:99:96:1e:9b:de:2e:80:a6:b6:50: a4:59:40:7f:56:26:9e:53:91:9d:27:42:7f:e0:b0: f3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D1:E9:B1:42:6B:E1:9D:4F:D3:E6:EF:6D:28:CC:56:F1:47:80:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4ec4711-a29c-4222-b040-ab79022ab487.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.99.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:ed:4f:95:8b:29:b6:2e:e8:02:47:6a:e4:da:ad:a7:d6:56: 71:58:25:3d:73:b6:ec:32:e5:37:be:bf:7b:c3:26:b0:c9:5b: 1f:26:db:30:45:95:19:33:64:03:48:a1:66:3b:6f:29:f1:f5: 0c:e4:92:71:87:8f:2a:fa:d1:3c:a5:78:2f:d0:9a:f2:af:eb: 8e:f4:85:94:d1:e6:f9:f4:31:3c:d1:fc:6c:95:db:69:e4:e7: dc:b3:af:f7:fa:52:97:77:5d:a8:68:bc:12:c2:63:7a:40:4e: 7d:5c:5a:cf:d6:da:fd:02:70:f9:e0:24:da:ee:b7:ef:84:d7: 0f:29:57:c6:27:25:35:d0:76:22:26:05:65:a3:28:c6:5e:58: 3b:7e:ca:74:9e:7a:4e:58:e9:95:2a:76:05:9d:75:7a:cc:b7: 29:3b:ab:30:23:fa:9b:2e:50:74:ff:12:36:df:c2:09:17:e8: 15:74:db:df:34:ea:83:c7:18:18:1a:9f:48:72:e7:9b:c4:c3: d8:63:50:36:c2:2e:ee:ec:dc:15:f1:f3:6b:62:f2:de:25:66: 35:fb:66:f3:d5:ce:fe:bc:cf:b3:e5:49:b6:33:f0:62:98:96: 9e:15:34:b9:6a:52:7b:53:a6:95:d0:6c:17:e8:13:40:54:b0: fe:b3:0c:ba -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf5wwcUJfA+B2ztZXqKJfRbbstkQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE4MDA1MDE2WhcNMjUwNDIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTVhOTZlMDdmYTk2NjgxZWQwMjNjNzc4YTkyNTc5ZDY1 ZDJmZjU4OTQyNTc3N2ZiYjBhOTdlMTNkMjc3Mjg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXZ5rH3IqCz80TTjkaPmWiMpypuh5GwC1N10xUn5oeg+KR nrBqb5HmovTBr1xDukbp+sI6IujqWxtESLSExQ7ZRU6Az34MfL2uwksyGNsyS0Al JxP7HpqUr29KOiGQjNAQrEItQgvDJMbZNHl+OuQp/nJpBpGBCk9w+HOPN+ByJtxC jGW+nnuhGIu1ahKyTnkd9zL4EKnkx9GJzXyN7XtDDlie5Nom+ML64VIUPHZsrgA0 CWthNioQX74HR/3yNSnHTc2WJA//yO2VSVFoK8skaqRJ5zlOe87ZV0PYaKb6rfut 8Mt6mZYem94ugKa2UKRZQH9WJp5TkZ0nQn/gsPNxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVtHpsUJr4Z1P0+bvbSjMVvFHgEcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0ZWM0NzExLWEyOWMtNDIyMi1iMDQwLWFiNzkwMjJhYjQ4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YzANBgkqhkiG9w0BAQsFAAOCAQEAGu1PlYspti7oAkdq5Nqtp9ZWcVgl PXO27DLlN76/e8MmsMlbHybbMEWVGTNkA0ihZjtvKfH1DOSScYePKvrRPKV4L9Ca 8q/rjvSFlNHm+fQxPNH8bJXbaeTn3LOv9/pSl3ddqGi8EsJjekBOfVxaz9ba/QJw +eAk2u6374TXDylXxiclNdB2IiYFZaMoxl5YO37KdJ56TljplSp2BZ11esy3KTur MCP6my5QdP8SNt/CCRfoFXTb3zTqg8cYGBqfSHLnm8TD2GNQNsIu7uzcFfHza2Ly 3iVmNftm89XO/rzPs+VJtjPwYpiWnhU0uWpSe1OmldBsF+gTQFSw/rMMug== -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:02 2025 by rpki-client