$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eb53310-23af-4823-a445-b1af14a0f809.roa File: 4eb53310-23af-4823-a445-b1af14a0f809.roa (raw, json) Hash identifier: dzn2mWw0eljorm6uPT8F7IRo9wQahVb24ZAYMION5wE= Subject key identifier: 5B:00:44:BB:0C:31:44:4F:C0:67:30:C2:75:B1:15:0A:A2:60:CE:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72F5FB44B15139F026BFE81EF37B27CDB56C5355 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eb53310-23af-4823-a445-b1af14a0f809.roa Signing time: Mon 12 May 2025 15:30:21 +0000 ROA not before: Mon 12 May 2025 15:30:21 +0000 ROA not after: Mon 16 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 93.77.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f5:fb:44:b1:51:39:f0:26:bf:e8:1e:f3:7b:27:cd:b5:6c:53:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 15:30:21 2025 GMT Not After : Jun 16 23:59:59 2025 GMT Subject: serialNumber=eb7e639c4c3d2d282155a803f88544a60253550454783d30777a41509e1d59f6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:57:3c:3f:7e:51:cd:11:81:d9:5e:6b:80:4c: 48:56:a8:0b:26:54:58:4d:50:7a:e6:b5:8e:13:32: b8:bf:81:2f:8c:de:ca:1f:6c:e3:db:66:22:32:38: f1:94:7b:ba:f6:e0:00:46:9b:c1:05:29:d8:5d:d6: 09:9e:5e:9e:fd:06:8b:53:e8:dd:ce:b6:96:fc:2b: 0d:00:92:ac:8d:81:55:28:fc:1b:d0:31:54:d2:15: a1:a1:1f:62:9a:05:b6:32:2e:63:8b:5d:b3:69:13: d1:bb:71:d9:08:eb:12:f4:f2:87:8f:ba:e7:24:b5: 76:d7:e8:9e:2b:90:91:9d:3e:5b:c0:b8:a3:58:54: fb:02:5f:d0:06:03:18:8b:4f:eb:73:9e:e3:e0:5c: 03:14:c2:5e:17:7b:ef:ca:b5:32:20:56:11:01:04: d1:98:11:d6:69:5b:19:99:50:ad:08:d0:e6:cd:43: 0d:75:58:8b:c9:f6:b7:23:e5:fa:44:b3:de:99:b1: ee:f4:d8:96:5b:f7:34:b3:ce:e7:4a:36:8b:ce:74: 10:bc:6a:fa:92:34:43:e5:b3:c6:b3:15:9f:e4:4d: f8:ac:65:97:f4:3e:40:c6:9f:93:f6:74:3c:d7:37: b0:c5:30:bb:4a:c8:06:92:53:aa:09:d4:f2:94:21: 17:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:00:44:BB:0C:31:44:4F:C0:67:30:C2:75:B1:15:0A:A2:60:CE:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eb53310-23af-4823-a445-b1af14a0f809.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.77.0.0/17 Signature Algorithm: sha256WithRSAEncryption 68:47:f9:b8:32:4b:5f:31:29:bb:d2:0f:1b:79:9c:76:65:68: 85:c6:b5:54:d5:ca:a9:9a:e9:fc:29:2b:5c:41:d9:77:2d:77: 75:4b:28:05:5d:9d:4a:9d:19:86:1e:9d:48:d0:3f:b1:a0:75: 0f:fe:8b:60:d3:a9:c5:99:72:6f:f3:c9:c9:fe:27:a4:e2:b1: de:84:7a:75:99:5c:42:03:d9:b3:d1:36:1d:02:4e:d8:30:91: 89:93:b8:46:13:b1:54:9b:c8:b0:86:ab:c7:ed:45:62:3e:45: a5:4d:a1:f2:1a:3e:3f:fd:1e:2a:0f:a9:43:b0:09:2b:f4:cd: 34:ae:6b:50:74:e3:b5:e3:d1:70:5e:07:56:35:ed:57:2c:94: 8a:53:6b:ff:59:db:c7:e3:7a:08:64:72:6b:41:50:25:be:87: 5c:11:24:23:76:01:d7:d5:b1:a5:70:8d:8a:29:8e:55:45:e8: 68:dd:63:5c:b9:2b:94:de:24:3d:54:f4:67:51:17:8b:ab:fc: 47:29:19:01:d9:60:d8:c5:17:05:53:ba:2a:dd:c5:10:67:64: 31:1f:1d:cc:77:18:ff:13:2f:b4:62:9e:11:e3:c6:2a:75:42: 66:7e:b1:bd:62:b3:75:ab:ae:c0:21:bd:36:53:7f:a6:fe:8f: 7f:38:20:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcvX7RLFROfAmv+ge83snzbVsU1UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEyMTUzMDIxWhcNMjUwNjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjdlNjM5YzRjM2QyZDI4MjE1NWE4MDNmODg1NDRhNjAy NTM1NTA0NTQ3ODNkMzA3NzdhNDE1MDllMWQ1OWY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxVzw/flHNEYHZXmuATEhWqAsmVFhNUHrmtY4TMri/gS+M 3sofbOPbZiIyOPGUe7r24ABGm8EFKdhd1gmeXp79BotT6N3Otpb8Kw0AkqyNgVUo /BvQMVTSFaGhH2KaBbYyLmOLXbNpE9G7cdkI6xL08oePuucktXbX6J4rkJGdPlvA uKNYVPsCX9AGAxiLT+tznuPgXAMUwl4Xe+/KtTIgVhEBBNGYEdZpWxmZUK0I0ObN Qw11WIvJ9rcj5fpEs96Zse702JZb9zSzzudKNovOdBC8avqSNEPls8azFZ/kTfis ZZf0PkDGn5P2dDzXN7DFMLtKyAaSU6oJ1PKUIRdVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWwBEuwwxRE/AZzDCdbEVCqJgzgIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlYjUzMzEwLTIzYWYtNDgyMy1hNDQ1LWIxYWYxNGEwZjgwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddTQAwDQYJKoZIhvcNAQELBQADggEBAGhH+bgyS18xKbvSDxt5nHZlaIXG tVTVyqma6fwpK1xB2Xctd3VLKAVdnUqdGYYenUjQP7GgdQ/+i2DTqcWZcm/zycn+ J6Tisd6EenWZXEID2bPRNh0CTtgwkYmTuEYTsVSbyLCGq8ftRWI+RaVNofIaPj/9 HioPqUOwCSv0zTSua1B047Xj0XBeB1Y17VcslIpTa/9Z28fjeghkcmtBUCW+h1wR JCN2AdfVsaVwjYopjlVF6GjdY1y5K5TeJD1U9GdRF4ur/EcpGQHZYNjFFwVTuird xRBnZDEfHcx3GP8TL7RinhHjxip1QmZ+sb1is3WrrsAhvTZTf6b+j384INA= -----END CERTIFICATE-----Generated at Tue May 13 04:34:11 2025 by rpki-client