$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71686793-835a-45ec-ab49-31bec463864e.roa File: 71686793-835a-45ec-ab49-31bec463864e.roa (raw, json) Hash identifier: 3lub3R/zFzA9Vc8plYJfkDpLk1MveX4a9D3pi39FodE= Subject key identifier: 15:55:08:D2:A2:1C:3F:F7:6C:E6:05:F4:74:62:D6:70:17:2C:8D:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A924A534B5FAD59830DDEF36CB3116D75E182AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71686793-835a-45ec-ab49-31bec463864e.roa Signing time: Tue 08 Apr 2025 00:30:24 +0000 ROA not before: Tue 08 Apr 2025 00:30:24 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.199.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:92:4a:53:4b:5f:ad:59:83:0d:de:f3:6c:b3:11:6d:75:e1:82:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:30:24 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=991c290c0c7c589c940766696ba6f35ca7ba2441ba30e366460b21c3da9faa7f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:24:4b:18:9d:c6:3b:5a:68:49:6b:88:49: 72:34:4e:d9:b8:7f:68:7d:5d:8b:bd:5d:21:56:4a: 50:4c:81:77:fc:28:75:7d:05:bb:e7:c1:ee:3e:2a: 17:85:bb:21:75:8d:c7:00:c8:70:8e:5f:89:57:6b: 0c:c7:c8:86:a9:7f:a4:67:30:78:80:93:6c:6c:27: b9:8e:83:69:8f:c6:53:ae:b5:55:03:92:64:a2:16: 92:6c:e5:68:9a:de:e9:96:42:ac:41:83:53:9f:ae: 82:1b:27:94:43:f9:b6:a3:5e:03:c7:d4:9a:5f:c9: db:1e:33:ff:af:69:d0:89:85:9e:b7:18:08:43:ca: 79:45:84:d0:72:0a:c9:43:06:ad:25:2d:55:98:e3: dd:0c:2e:27:c6:42:5a:7e:66:3f:77:9c:53:22:ad: a6:3f:ba:01:f0:96:5b:7b:fa:70:07:0d:60:7e:f3: ba:d6:66:db:51:8f:4c:c9:85:8e:99:32:d9:30:50: dc:1d:bf:17:e8:d5:94:d7:83:0c:6b:04:f0:a1:67: ca:80:f2:3d:c7:fd:04:af:e1:e1:12:f7:7f:11:0b: bb:8e:17:67:86:9d:1f:f7:f3:8e:e2:cb:a3:58:f9: d4:ff:d8:36:bd:5d:5f:34:74:59:3b:bd:4c:40:a4: d0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:55:08:D2:A2:1C:3F:F7:6C:E6:05:F4:74:62:D6:70:17:2C:8D:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71686793-835a-45ec-ab49-31bec463864e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.199.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:ee:af:0a:8a:cc:9c:57:2b:af:44:a2:dc:7a:68:c8:66:f3: aa:90:1e:f6:c5:64:eb:04:28:d0:70:98:1e:ab:35:d3:2b:f3: 64:3b:38:1f:77:1f:a1:51:3f:eb:cc:cc:8a:31:07:07:1e:77: 80:f5:99:0b:81:b4:c2:b6:d5:7e:86:64:85:f0:8d:54:69:1d: 4c:5a:fb:64:10:3e:15:65:a5:94:af:15:7e:2b:d2:3d:1c:e0: 7b:56:f9:82:00:34:e5:4d:e5:57:7f:3f:67:16:01:bf:3f:b5: a2:cd:da:95:d9:d1:db:92:9d:ab:8e:a2:fd:3b:ef:9c:38:b9: ee:dc:22:57:fb:f4:a5:65:c0:d5:22:4b:9d:ec:06:10:9f:a0: 9c:94:26:f7:02:85:a9:cc:2b:fb:da:56:bf:95:f6:45:39:c5: de:ea:4c:a3:d7:ad:20:1a:47:76:2a:6b:f0:76:35:03:ba:73: 87:2f:0f:32:ac:b3:56:f6:3d:33:1e:70:33:fe:07:9f:8f:3b: 93:14:45:86:f8:ff:45:ea:9a:b8:b1:4c:6f:d6:c0:e7:bd:1f: dd:28:5f:3e:9f:38:89:d6:2b:19:89:69:2a:a2:f3:65:d7:19: 8b:32:26:bb:97:8f:f7:e1:f0:44:d7:22:74:f8:9d:fd:8a:7b: 2a:17:ed:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUepJKU0tfrVmDDd7zbLMRbXXhgq8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAzMDI0WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTFjMjkwYzBjN2M1ODljOTQwNzY2Njk2YmE2ZjM1Y2E3 YmEyNDQxYmEzMGUzNjY0NjBiMjFjM2RhOWZhYTdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz7yRLGJ3GO1poSWuISXI0Ttm4f2h9XYu9XSFWSlBMgXf8 KHV9Bbvnwe4+KheFuyF1jccAyHCOX4lXawzHyIapf6RnMHiAk2xsJ7mOg2mPxlOu tVUDkmSiFpJs5Wia3umWQqxBg1OfroIbJ5RD+bajXgPH1JpfydseM/+vadCJhZ63 GAhDynlFhNByCslDBq0lLVWY490MLifGQlp+Zj93nFMiraY/ugHwllt7+nAHDWB+ 87rWZttRj0zJhY6ZMtkwUNwdvxfo1ZTXgwxrBPChZ8qA8j3H/QSv4eES938RC7uO F2eGnR/3847iy6NY+dT/2Da9XV80dFk7vUxApNDFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFVUI0qIcP/ds5gX0dGLWcBcsjT0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxNjg2NzkzLTgzNWEtNDVlYy1hYjQ5LTMxYmVjNDYzODY0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4xzANBgkqhkiG9w0BAQsFAAOCAQEAPu6vCorMnFcrr0Si3HpoyGbzqpAe 9sVk6wQo0HCYHqs10yvzZDs4H3cfoVE/68zMijEHBx53gPWZC4G0wrbVfoZkhfCN VGkdTFr7ZBA+FWWllK8VfivSPRzge1b5ggA05U3lV38/ZxYBvz+1os3aldnR25Kd q46i/TvvnDi57twiV/v0pWXA1SJLnewGEJ+gnJQm9wKFqcwr+9pWv5X2RTnF3upM o9etIBpHdipr8HY1A7pzhy8PMqyzVvY9Mx5wM/4Hn487kxRFhvj/ReqauLFMb9bA 570f3ShfPp84idYrGYlpKqLzZdcZizImu5eP9+HwRNcidPid/Yp7KhfttA== -----END CERTIFICATE-----Generated at Wed Apr 16 17:19:17 2025 by rpki-client