$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eb53310-23af-4823-a445-b1af14a0f809.roa File: 4eb53310-23af-4823-a445-b1af14a0f809.roa (raw, json) Hash identifier: dbOboHjUJnlluZgTiCuExHi9zNkDTn15l1pKD5k2NkM= Subject key identifier: 90:24:FF:11:F7:89:9D:5C:9E:E2:92:C0:A5:1E:C6:7F:B3:6D:50:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C3B4D54F2F4C337CCB0EB4A52FC60FE261BA521 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eb53310-23af-4823-a445-b1af14a0f809.roa Signing time: Tue 01 Jul 2025 00:20:13 +0000 ROA not before: Tue 01 Jul 2025 00:20:13 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 93.77.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:3b:4d:54:f2:f4:c3:37:cc:b0:eb:4a:52:fc:60:fe:26:1b:a5:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:20:13 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=f53e0e7dabbfd774e4be853d19d4e0192b9231d06d806c1bc88bb3442cd3e20e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:2c:de:70:b1:86:68:36:d9:8a:1c:24:b3:7b: 53:bd:10:32:c2:0e:ab:8e:33:44:a4:9a:af:29:2d: 59:36:e8:53:d2:c3:e9:8d:fd:94:e8:75:06:ce:38: 05:02:3b:cb:0b:8a:68:f6:a0:96:1f:4d:66:21:29: 10:10:13:d2:29:2b:2a:cf:e2:bf:00:5d:7b:5b:f2: 02:95:95:db:0b:c5:96:59:71:a2:98:17:fc:5d:8d: 6a:d0:cc:3e:b2:6c:81:c4:7b:01:e2:eb:86:6d:95: 20:da:9a:11:0d:45:e7:ff:5e:37:82:a2:7b:e8:ca: 8a:b8:fb:21:fb:c1:c2:a7:0c:4b:76:b8:0b:fe:ca: 3f:61:6c:71:9c:a1:2b:0b:e7:61:11:5e:df:0d:7b: ee:69:e4:26:6a:a6:97:fb:4e:5c:7f:04:4b:ae:a3: 31:10:9b:3d:ec:df:64:62:90:7a:23:28:ac:07:1b: 5c:13:f0:8a:3f:04:0a:60:c0:c4:9e:a4:15:d6:79: c8:23:94:4b:fa:e9:ba:34:24:39:e4:2e:6a:fc:83: c5:ac:14:96:61:8a:d5:fe:c7:03:4c:1b:db:8d:2f: 0a:b5:a1:48:f2:04:82:25:db:ff:b8:bb:ec:8c:ba: ac:6f:2d:dc:9e:56:c0:4c:31:af:80:4f:68:fd:ca: b9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:24:FF:11:F7:89:9D:5C:9E:E2:92:C0:A5:1E:C6:7F:B3:6D:50:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4eb53310-23af-4823-a445-b1af14a0f809.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.77.0.0/17 Signature Algorithm: sha256WithRSAEncryption af:35:de:42:31:2c:2d:41:fc:bd:4d:42:28:bc:2a:7c:5a:af: 1d:ca:85:29:83:84:42:73:b1:a1:04:fa:88:a3:93:4b:8a:5a: b3:9e:eb:84:a7:77:3d:1c:75:30:94:39:99:09:9c:39:15:08: 90:4b:4e:ed:f1:83:70:df:81:1f:c8:a6:20:bf:c8:1d:61:17: ea:a0:12:4c:b1:15:f6:62:9c:91:89:ab:bb:4d:c5:b4:7a:51: a1:77:3d:e6:2d:99:b2:22:42:b4:ab:21:34:4b:6d:ef:59:0d: a6:8b:8a:6d:0d:3c:53:06:b6:fc:94:f8:b5:ea:2e:cc:da:b4: 04:11:ea:95:ee:56:3e:ee:2e:8d:8b:e0:3f:58:fe:fc:d7:3f: ee:1d:19:63:02:f0:60:8b:6b:72:a6:ed:04:7b:83:0a:50:2c: 98:e4:a8:34:8d:e4:0f:c3:c7:ad:9d:8d:57:f4:0a:9a:cb:ad: 21:84:8f:2a:6c:e9:42:ef:5d:3d:97:15:a6:8b:80:42:e0:b5: 7d:15:49:90:43:0d:4a:87:57:5e:62:86:7b:1c:f4:87:d2:68: 5d:8e:d3:b5:de:f6:96:1c:5a:80:cc:1c:1d:d9:5f:4a:60:49: 79:96:64:5e:39:39:2c:2c:4e:27:40:ee:43:be:60:a4:68:b6: 5d:cd:81:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHDtNVPL0wzfMsOtKUvxg/iYbpSEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAyMDEzWhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTNlMGU3ZGFiYmZkNzc0ZTRiZTg1M2QxOWQ0ZTAxOTJi OTIzMWQwNmQ4MDZjMWJjODhiYjM0NDJjZDNlMjBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCELN5wsYZoNtmKHCSze1O9EDLCDquOM0Skmq8pLVk26FPS w+mN/ZTodQbOOAUCO8sLimj2oJYfTWYhKRAQE9IpKyrP4r8AXXtb8gKVldsLxZZZ caKYF/xdjWrQzD6ybIHEewHi64ZtlSDamhENRef/XjeConvoyoq4+yH7wcKnDEt2 uAv+yj9hbHGcoSsL52ERXt8Ne+5p5CZqppf7Tlx/BEuuozEQmz3s32RikHojKKwH G1wT8Io/BApgwMSepBXWecgjlEv66bo0JDnkLmr8g8WsFJZhitX+xwNMG9uNLwq1 oUjyBIIl2/+4u+yMuqxvLdyeVsBMMa+AT2j9yrmvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkCT/EfeJnVye4pLApR7Gf7NtUP8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlYjUzMzEwLTIzYWYtNDgyMy1hNDQ1LWIxYWYxNGEwZjgwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddTQAwDQYJKoZIhvcNAQELBQADggEBAK813kIxLC1B/L1NQii8Knxarx3K hSmDhEJzsaEE+oijk0uKWrOe64Sndz0cdTCUOZkJnDkVCJBLTu3xg3DfgR/IpiC/ yB1hF+qgEkyxFfZinJGJq7tNxbR6UaF3PeYtmbIiQrSrITRLbe9ZDaaLim0NPFMG tvyU+LXqLszatAQR6pXuVj7uLo2L4D9Y/vzXP+4dGWMC8GCLa3Km7QR7gwpQLJjk qDSN5A/Dx62djVf0CprLrSGEjyps6ULvXT2XFaaLgELgtX0VSZBDDUqHV15ihnsc 9IfSaF2O07Xe9pYcWoDMHB3ZX0pgSXmWZF45OSwsTidA7kO+YKRotl3Ngb0= -----END CERTIFICATE-----Generated at Fri Jul 4 06:44:54 2025 by rpki-client