$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a373310-e697-4fb7-91aa-bd2254f6ceaa.roa File: 7a373310-e697-4fb7-91aa-bd2254f6ceaa.roa (raw, json) Hash identifier: 9gn6p0kQD1eUjumd2p35U3sOsxY7kii36AZ+tTq0Gi8= Subject key identifier: 83:EF:0A:DC:60:9A:60:7F:5D:3A:AF:DA:EE:77:95:3C:ED:D2:0F:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B41EA720ECCC45E87AEB30B628E3D6BFF6EC63D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a373310-e697-4fb7-91aa-bd2254f6ceaa.roa Signing time: Wed 16 Apr 2025 00:10:21 +0000 ROA not before: Wed 16 Apr 2025 00:10:21 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 93.78.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:41:ea:72:0e:cc:c4:5e:87:ae:b3:0b:62:8e:3d:6b:ff:6e:c6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:10:21 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=4940cab916ef08017eea263a656dbee74d030aa963b4da7152e9fa4a98518847, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:90:dd:c5:04:6d:28:84:85:f5:e5:56:36:ca: 93:27:25:01:cf:4c:2e:fb:f7:7b:a8:9c:94:5c:33: 1d:e9:f4:73:49:e0:9a:80:48:c6:82:8b:cd:11:ac: 4f:65:51:3e:f3:76:fc:92:41:56:0f:87:bb:4f:68: d8:b5:df:a0:02:f3:40:58:ab:1e:6f:07:e1:7f:6f: 13:7f:04:ae:47:eb:c6:6a:c4:86:82:16:43:ab:74: ff:7c:de:af:86:aa:81:f1:2b:45:e4:4d:69:93:09: bc:7f:1e:07:17:71:ac:d8:6c:66:35:e5:be:37:22: 22:88:50:77:c7:62:ae:03:5a:d7:11:89:ce:04:d5: 10:e1:7e:cb:08:ca:1e:18:8e:25:58:b9:27:01:08: e9:8d:d7:c6:30:db:ab:4b:71:d7:e9:d0:13:c8:e8: c3:16:0f:ad:6d:5e:4f:bd:8f:74:36:fc:d7:0d:06: 61:d7:b4:96:50:35:d9:d4:b2:f4:a8:62:d1:f1:c5: 3d:83:b5:74:57:63:83:a4:92:f6:45:e7:f6:7a:2e: 96:22:30:ba:ed:f4:a2:8e:cb:7f:74:b7:76:6a:03: 70:21:ee:9d:c9:90:ab:b4:fd:a9:78:7c:0e:b0:7c: bb:15:29:91:57:2c:c9:1e:ee:9c:df:9b:f0:e3:c7: a4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:EF:0A:DC:60:9A:60:7F:5D:3A:AF:DA:EE:77:95:3C:ED:D2:0F:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a373310-e697-4fb7-91aa-bd2254f6ceaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.78.128.0/17 Signature Algorithm: sha256WithRSAEncryption 7c:c0:3a:7d:f7:4d:da:09:84:4e:9e:f9:b2:ee:de:86:3e:05: 0f:81:0c:e5:9f:5b:0a:eb:c8:af:89:06:39:e3:04:f9:b8:d4: 4a:a2:e7:04:3f:e6:c6:7b:38:54:f7:40:9d:0e:f9:4f:dd:40: b5:3f:c9:83:19:3d:39:b9:07:fe:22:86:da:06:34:ee:4f:43: 3e:9f:78:cb:2c:7c:d3:ce:18:b8:eb:71:a0:bb:cb:80:90:62: 2f:12:82:30:91:2a:22:ff:41:6b:55:8d:b1:03:37:90:ef:10: 31:32:dd:6f:05:4b:80:1f:d4:c9:1f:8f:00:5f:56:e8:ed:cb: 7e:cf:e6:4c:5e:86:49:19:24:b2:6d:af:86:c4:b2:a8:57:8d: 98:95:b7:6b:06:55:e9:1d:8c:8d:bd:a3:00:50:c0:83:26:b0: 97:1c:67:70:b5:58:78:bf:f5:38:a0:eb:79:19:74:6d:d3:36: 0e:e1:b7:5f:4b:ad:7b:fa:19:2b:51:7c:65:46:7e:26:d9:89: 91:3e:07:30:38:77:25:c4:ea:49:a7:db:95:39:a1:27:93:d8: 49:cb:b4:c9:78:85:ed:9d:d7:6c:a9:ba:ac:d9:c2:64:1e:d2: bc:bb:77:56:45:74:8b:6e:da:1c:a6:c8:67:14:4b:55:1f:0f: 05:d4:53:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK0Hqcg7MxF6HrrMLYo49a/9uxj0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MDAxMDIxWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTQwY2FiOTE2ZWYwODAxN2VlYTI2M2E2NTZkYmVlNzRk MDMwYWE5NjNiNGRhNzE1MmU5ZmE0YTk4NTE4ODQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1kN3FBG0ohIX15VY2ypMnJQHPTC7793uonJRcMx3p9HNJ 4JqASMaCi80RrE9lUT7zdvySQVYPh7tPaNi136AC80BYqx5vB+F/bxN/BK5H68Zq xIaCFkOrdP983q+GqoHxK0XkTWmTCbx/HgcXcazYbGY15b43IiKIUHfHYq4DWtcR ic4E1RDhfssIyh4YjiVYuScBCOmN18Yw26tLcdfp0BPI6MMWD61tXk+9j3Q2/NcN BmHXtJZQNdnUsvSoYtHxxT2DtXRXY4OkkvZF5/Z6LpYiMLrt9KKOy390t3ZqA3Ah 7p3JkKu0/al4fA6wfLsVKZFXLMke7pzfm/Djx6RvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg+8K3GCaYH9dOq/a7neVPO3SD/EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhMzczMzEwLWU2OTctNGZiNy05MWFhLWJkMjI1NGY2Y2VhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddToAwDQYJKoZIhvcNAQELBQADggEBAHzAOn33TdoJhE6e+bLu3oY+BQ+B DOWfWwrryK+JBjnjBPm41Eqi5wQ/5sZ7OFT3QJ0O+U/dQLU/yYMZPTm5B/4ihtoG NO5PQz6feMssfNPOGLjrcaC7y4CQYi8SgjCRKiL/QWtVjbEDN5DvEDEy3W8FS4Af 1MkfjwBfVujty37P5kxehkkZJLJtr4bEsqhXjZiVt2sGVekdjI29owBQwIMmsJcc Z3C1WHi/9Tig63kZdG3TNg7ht19LrXv6GStRfGVGfibZiZE+BzA4dyXE6kmn25U5 oSeT2EnLtMl4he2d12ypuqzZwmQe0ry7d1ZFdItu2hymyGcUS1UfDwXUU+o= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:54 2025 by rpki-client