$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74841582-8bed-4d9b-98bf-557048954c2d.roa File: 74841582-8bed-4d9b-98bf-557048954c2d.roa (raw, json) Hash identifier: KvgT1uK1WM1xhqsQztOMzPbD1zAtVbEa3WjcfW0K5jA= Subject key identifier: 5A:9C:C0:B0:71:66:12:6F:BA:3C:9E:A7:5A:EB:62:BA:F2:1A:08:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 9D927B84FDEE8EDCD020A144AE26CEE815A860 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74841582-8bed-4d9b-98bf-557048954c2d.roa Signing time: Fri 25 Apr 2025 15:11:05 +0000 ROA not before: Fri 25 Apr 2025 15:11:05 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 77.121.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9d:92:7b:84:fd:ee:8e:dc:d0:20:a1:44:ae:26:ce:e8:15:a8:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:11:05 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=92612c9ce43d2ec42b253509ed736ac756217e132a90df37f4de0d9b4c57007f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:64:f9:4b:39:63:e7:a9:88:40:75:f5:be:f3: 6b:a0:96:b4:65:6f:f1:e5:d7:94:b8:5b:a4:3f:d1: 82:b7:c7:8b:0e:48:3b:b7:38:47:25:9f:a0:1f:21: 6d:27:01:07:d8:6d:58:c6:a5:9d:2a:5e:0e:41:af: 8c:34:11:33:ef:89:93:b6:68:de:ef:23:5d:56:31: ff:84:5d:a3:30:70:d8:84:45:f5:93:11:ed:ae:bb: 55:bc:4f:df:24:75:ed:37:3d:c1:5f:96:28:39:91: 80:a7:de:87:d2:32:2d:28:6d:b0:98:b7:b1:a5:38: 08:05:18:ad:c2:fa:ce:33:30:84:f8:1e:c3:55:fd: aa:80:66:6e:09:6a:c3:a6:ef:f7:dc:c4:62:8c:05: ae:e4:3a:6b:62:0d:22:bd:9c:bf:b7:6d:78:0d:13: 2a:ef:5b:d1:a8:73:7a:b2:13:db:05:67:2b:c3:d3: 5c:ae:49:c7:57:fa:04:3b:4f:d8:43:4e:25:80:73: b3:dd:b3:90:25:fa:f7:b7:6f:e7:8d:3f:36:c0:94: db:49:c9:04:9e:9e:c9:7c:b7:7c:3d:25:5f:d9:60: cd:02:4d:cb:bd:db:14:05:77:fa:7c:e4:c9:ff:62: cc:88:11:f3:28:01:f5:3b:1c:c9:42:ab:9a:de:a1: e6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:9C:C0:B0:71:66:12:6F:BA:3C:9E:A7:5A:EB:62:BA:F2:1A:08:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74841582-8bed-4d9b-98bf-557048954c2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.121.128.0/17 Signature Algorithm: sha256WithRSAEncryption 75:b3:04:73:b1:ba:36:f7:21:d6:62:49:f9:f4:8e:91:d5:00: 06:4b:96:6f:2e:88:aa:be:75:6f:71:5a:d7:98:da:85:2e:c6: 6a:49:7c:c9:fa:80:14:2d:55:ab:73:75:fe:e6:6a:83:5a:3a: 25:fc:46:cd:cd:c5:5d:b6:09:20:58:44:6c:58:fa:a7:00:76: b4:3c:3e:85:e5:3b:f8:7d:59:df:05:57:2d:f2:d1:83:7b:78: aa:41:27:9f:20:ae:59:2a:c9:e8:1d:fe:4a:ca:cf:ec:dc:e0: 3a:33:f0:f5:ff:50:58:dd:f5:e1:6c:5d:1d:d4:ad:aa:69:31: 44:84:5c:07:0f:df:7f:0e:8d:63:71:e2:34:00:e0:3a:8d:7e: 0e:58:2b:1e:1f:a8:13:a6:59:6c:03:6d:d7:50:d6:d4:ec:51: 20:a8:a1:3f:d9:a3:40:3c:51:f6:29:00:6c:cf:9c:16:82:f0: 59:c6:5a:3e:9c:ee:c6:98:30:b0:66:5e:32:cb:b9:d2:49:f3: b2:40:3e:96:4f:78:eb:ad:69:9e:54:38:d2:17:4b:c7:ba:a9: 57:80:18:dd:fb:4f:f6:69:92:0a:69:22:84:fe:0d:5b:af:e1: e2:25:5b:be:47:52:0d:51:43:9d:d5:42:95:c4:2d:35:8d:e2: 41:0f:ee:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAJ2Se4T97o7c0CChRK4mzugVqGAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUxMTA1WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjYxMmM5Y2U0M2QyZWM0MmIyNTM1MDllZDczNmFjNzU2 MjE3ZTEzMmE5MGRmMzdmNGRlMGQ5YjRjNTcwMDdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxZPlLOWPnqYhAdfW+82uglrRlb/Hl15S4W6Q/0YK3x4sO SDu3OEcln6AfIW0nAQfYbVjGpZ0qXg5Br4w0ETPviZO2aN7vI11WMf+EXaMwcNiE RfWTEe2uu1W8T98kde03PcFflig5kYCn3ofSMi0obbCYt7GlOAgFGK3C+s4zMIT4 HsNV/aqAZm4JasOm7/fcxGKMBa7kOmtiDSK9nL+3bXgNEyrvW9Goc3qyE9sFZyvD 01yuScdX+gQ7T9hDTiWAc7Pds5Al+ve3b+eNPzbAlNtJyQSensl8t3w9JV/ZYM0C Tcu92xQFd/p85Mn/YsyIEfMoAfU7HMlCq5reoeZVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWpzAsHFmEm+6PJ6nWutiuvIaCAcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0ODQxNTgyLThiZWQtNGQ5Yi05OGJmLTU1NzA0ODk1NGMyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdNeYAwDQYJKoZIhvcNAQELBQADggEBAHWzBHOxujb3IdZiSfn0jpHVAAZL lm8uiKq+dW9xWteY2oUuxmpJfMn6gBQtVatzdf7maoNaOiX8Rs3NxV22CSBYRGxY +qcAdrQ8PoXlO/h9Wd8FVy3y0YN7eKpBJ58grlkqyegd/krKz+zc4Doz8PX/UFjd 9eFsXR3UrappMUSEXAcP338OjWNx4jQA4DqNfg5YKx4fqBOmWWwDbddQ1tTsUSCo oT/Zo0A8UfYpAGzPnBaC8FnGWj6c7saYMLBmXjLLudJJ87JAPpZPeOutaZ5UONIX S8e6qVeAGN37T/ZpkgppIoT+DVuv4eIlW75HUg1RQ53VQpXELTWN4kEP7vQ= -----END CERTIFICATE-----Generated at Sat Apr 26 15:05:30 2025 by rpki-client