$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec82d39f-e496-445b-b47e-f9450ba4b273.roa File: ec82d39f-e496-445b-b47e-f9450ba4b273.roa (raw, json) Hash identifier: oV5rbGWlTGiYQawmN2+uRAzBUMtx7QtxTWR2ZvvsNgk= Subject key identifier: 30:CE:4B:92:74:54:49:AB:ED:C3:C9:3E:C9:87:8E:CD:75:82:37:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65A0A7E4B62596DF1B6D3B3A3923A054224A7E71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec82d39f-e496-445b-b47e-f9450ba4b273.roa Signing time: Fri 30 May 2025 00:22:25 +0000 ROA not before: Fri 30 May 2025 00:22:25 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.93.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:a0:a7:e4:b6:25:96:df:1b:6d:3b:3a:39:23:a0:54:22:4a:7e:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:22:25 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=1b6f2e43ab8311d5c5fc6105369af4b29076758040168f322050f863b7762a64, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4e:02:bb:5d:06:4c:52:d4:1a:9c:6f:83:3d: 98:17:7c:25:f7:81:94:d9:d6:79:bc:5b:70:f1:ce: e0:bf:05:19:82:7b:d4:ef:12:1f:f9:8b:cb:3e:68: a8:3b:28:7a:4e:85:91:2f:3f:9d:d6:12:c2:eb:71: 70:ff:91:d0:e3:99:66:99:46:a3:ad:32:35:02:a5: 2d:5d:3c:56:25:b9:d5:88:55:7a:4b:a9:22:80:b4: 45:2d:9a:ae:b9:a5:25:42:e2:39:3c:79:fb:5d:54: fa:fb:ef:db:80:c1:ec:44:dd:65:43:0f:b6:4f:7b: b9:13:93:a7:55:07:3c:c3:d5:8b:45:b8:3d:b5:16: f5:7d:31:f4:06:a6:0f:f5:f8:37:a8:a3:e0:9a:d7: 94:f9:6c:b6:8f:c6:81:20:21:f9:20:64:8d:86:bd: ad:a1:c2:a9:e3:42:64:e9:cd:a2:64:14:51:3a:c6: e6:3b:8f:f2:74:6d:ce:71:00:84:b0:c1:5a:c8:96: 9f:07:ad:24:7f:be:7d:99:94:6c:75:c2:ab:96:5c: b0:64:84:ac:b8:b6:82:b6:89:5d:18:ca:77:4f:6c: 38:cb:e9:9e:c4:c8:76:c7:59:5b:2c:4d:25:06:0f: 66:48:a7:cf:9a:e3:02:9b:43:e4:ed:38:0b:61:ac: ea:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:CE:4B:92:74:54:49:AB:ED:C3:C9:3E:C9:87:8E:CD:75:82:37:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec82d39f-e496-445b-b47e-f9450ba4b273.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.93.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:ee:e3:f0:d5:69:d5:23:7c:15:26:cb:13:e4:83:a7:89:37: a6:65:85:bd:be:89:b3:d6:80:ec:a6:00:65:3f:4e:86:bd:f6: 1a:df:89:07:94:0d:49:bc:8e:f1:71:45:81:3d:34:9c:21:59: bc:17:57:c7:bc:4b:76:de:6b:28:fa:38:4d:b6:52:2e:85:88: 4d:45:23:53:1a:fe:90:a7:88:80:65:3a:df:15:b9:de:e5:74: b6:b5:f4:f4:a3:0d:89:77:66:b4:80:97:ab:64:4d:6d:e5:a8: c8:f2:c5:c3:93:f8:a9:01:ec:d7:8d:ba:c9:03:2f:1b:6b:4d: 24:04:92:8e:61:34:9e:cb:b5:de:21:2a:d3:f4:cf:6b:f5:fc: 14:fd:a3:39:21:16:1f:37:a7:46:b4:35:34:69:0a:c0:fc:b6: 86:4e:3c:ee:27:f7:3c:17:6b:45:81:22:88:30:76:8d:a0:a2: 07:f2:cb:3e:27:1e:81:8d:60:1e:6b:97:af:48:df:61:58:0d: a1:b3:de:67:54:2e:ae:73:db:9f:ef:7e:aa:1c:e4:2c:6c:eb: 4e:4a:fa:48:e9:26:59:50:af:f8:47:dc:68:35:ac:12:cd:2e: d5:bb:3f:d6:83:56:9d:8a:e7:e1:92:aa:c8:8e:f5:18:b3:61: 8e:7e:c9:c8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZaCn5LYllt8bbTs6OSOgVCJKfnEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAyMjI1WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjZmMmU0M2FiODMxMWQ1YzVmYzYxMDUzNjlhZjRiMjkw NzY3NTgwNDAxNjhmMzIyMDUwZjg2M2I3NzYyYTY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZTgK7XQZMUtQanG+DPZgXfCX3gZTZ1nm8W3DxzuC/BRmC e9TvEh/5i8s+aKg7KHpOhZEvP53WEsLrcXD/kdDjmWaZRqOtMjUCpS1dPFYludWI VXpLqSKAtEUtmq65pSVC4jk8eftdVPr779uAwexE3WVDD7ZPe7kTk6dVBzzD1YtF uD21FvV9MfQGpg/1+Deoo+Ca15T5bLaPxoEgIfkgZI2Gva2hwqnjQmTpzaJkFFE6 xuY7j/J0bc5xAISwwVrIlp8HrSR/vn2ZlGx1wquWXLBkhKy4toK2iV0YyndPbDjL 6Z7EyHbHWVssTSUGD2ZIp8+a4wKbQ+TtOAthrOr5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMM5LknRUSavtw8k+yYeOzXWCN1UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjODJkMzlmLWU0OTYtNDQ1Yi1iNDdlLWY5NDUwYmE0YjI3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4XTANBgkqhkiG9w0BAQsFAAOCAQEAbu7j8NVp1SN8FSbLE+SDp4k3pmWF vb6Js9aA7KYAZT9Ohr32Gt+JB5QNSbyO8XFFgT00nCFZvBdXx7xLdt5rKPo4TbZS LoWITUUjUxr+kKeIgGU63xW53uV0trX09KMNiXdmtICXq2RNbeWoyPLFw5P4qQHs 1426yQMvG2tNJASSjmE0nsu13iEq0/TPa/X8FP2jOSEWHzenRrQ1NGkKwPy2hk48 7if3PBdrRYEiiDB2jaCiB/LLPicegY1gHmuXr0jfYVgNobPeZ1QurnPbn+9+qhzk LGzrTkr6SOkmWVCv+EfcaDWsEs0u1bs/1oNWnYrn4ZKqyI71GLNhjn7JyA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:36:39 2025 by rpki-client