$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33ce2add-fe4e-4a9c-8f90-8e6774cb7050.roa File: 33ce2add-fe4e-4a9c-8f90-8e6774cb7050.roa (raw, json) Hash identifier: PiUujyNBqIykd26yX+YPMtketGGosGBU8mQZWqE9fWI= Subject key identifier: EE:62:41:DB:CB:5A:10:49:A5:F7:E9:76:ED:77:25:BE:E7:A6:5A:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D410FF865C1C7AF504C864A31848651EBBF7BA0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33ce2add-fe4e-4a9c-8f90-8e6774cb7050.roa Signing time: Tue 01 Jul 2025 00:20:14 +0000 ROA not before: Tue 01 Jul 2025 00:20:14 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 93.77.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:41:0f:f8:65:c1:c7:af:50:4c:86:4a:31:84:86:51:eb:bf:7b:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:20:14 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=939d47ccfe94933b9082d1b325e4daeb969353b0b6b7a2fa9750735d256a2c53, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f3:76:a2:9c:0a:50:de:d6:8a:e2:c8:b3:23: 3f:5d:fe:2e:a9:5b:78:6e:5c:95:dd:9d:5f:a3:c4: ad:a2:7d:a6:0a:08:0f:3f:63:98:49:3d:2c:b1:ae: 70:97:74:dc:eb:a6:73:09:81:f5:2d:22:87:fc:f7: 68:d9:38:24:78:3a:58:4b:eb:43:e1:b2:86:7a:69: 2b:49:5a:47:40:9b:e9:ad:69:67:a9:fa:7a:8b:ac: 6c:6b:cb:f8:78:e7:cb:12:27:17:33:40:da:43:5a: 41:97:27:a2:d3:68:d1:56:48:5b:08:a8:78:3e:8a: 3c:a7:b6:49:a4:77:e0:72:dd:b5:04:a1:c4:db:13: 47:2f:ee:21:60:b8:e2:9d:77:d5:39:4f:d6:e9:ec: cc:11:7c:4d:e5:a0:27:dc:a1:5a:10:53:67:1e:22: dd:60:af:4f:e9:a2:c8:cf:b2:4a:4f:f9:e1:45:fa: de:36:be:73:6e:7c:b3:24:d7:6b:3c:3f:f9:5f:45: f3:96:a1:e6:49:7f:63:97:84:c2:4f:04:fd:f8:30: 58:81:0f:0a:b3:83:6e:d2:a5:f0:c6:a2:63:73:4c: e1:a2:ed:cb:83:a4:2a:3b:62:17:46:de:fb:97:7e: b8:5f:9a:8a:9f:95:9d:a8:3a:ef:32:53:73:bc:ea: ef:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:62:41:DB:CB:5A:10:49:A5:F7:E9:76:ED:77:25:BE:E7:A6:5A:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33ce2add-fe4e-4a9c-8f90-8e6774cb7050.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.77.128.0/19 Signature Algorithm: sha256WithRSAEncryption 1c:dc:ca:17:60:04:54:96:3f:d8:71:00:c3:03:df:43:24:c1: 80:52:01:3b:1c:1b:70:37:0d:05:5b:e0:ad:21:9c:8f:da:07: 68:76:6f:4a:a8:d8:fe:f7:d4:e5:7b:4a:03:73:c7:13:ad:55: 80:da:9c:52:c8:1b:8e:2c:2e:83:65:82:88:a3:be:b4:07:0e: 59:82:65:8e:09:a6:15:9e:6d:d6:b5:1c:49:03:0f:db:fe:5a: bc:88:6c:8b:e6:46:6c:57:13:39:a8:db:56:62:2c:c4:3f:dd: 26:e7:c9:fc:e5:fe:64:b4:7d:f5:e2:74:55:e0:c2:2a:fc:b5: 21:41:82:1d:f7:42:a5:d0:dc:67:12:4e:0b:b7:42:06:ab:ae: 28:2b:43:08:a4:8a:e4:71:2a:9f:10:b7:ff:f7:36:e4:57:3f: 0a:89:08:4a:96:b0:9c:59:2b:13:51:2d:f0:6a:6f:a8:0f:d2: ea:51:90:70:75:96:b1:c9:73:e9:be:a9:0d:e0:ee:61:52:41: 16:71:1b:0b:43:cb:2b:c1:26:e7:41:a5:b7:6e:40:ce:50:a2: fd:0c:4f:61:d9:0b:a1:e6:7d:03:75:4a:84:d3:ca:37:57:db: aa:73:bd:10:b7:fd:62:b9:09:50:21:bd:56:9f:db:51:13:11: 65:3d:61:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbUEP+GXBx69QTIZKMYSGUeu/e6AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAyMDE0WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzlkNDdjY2ZlOTQ5MzNiOTA4MmQxYjMyNWU0ZGFlYjk2 OTM1M2IwYjZiN2EyZmE5NzUwNzM1ZDI1NmEyYzUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC283ainApQ3taK4sizIz9d/i6pW3huXJXdnV+jxK2ifaYK CA8/Y5hJPSyxrnCXdNzrpnMJgfUtIof892jZOCR4OlhL60PhsoZ6aStJWkdAm+mt aWep+nqLrGxry/h458sSJxczQNpDWkGXJ6LTaNFWSFsIqHg+ijyntkmkd+By3bUE ocTbE0cv7iFguOKdd9U5T9bp7MwRfE3loCfcoVoQU2ceIt1gr0/posjPskpP+eFF +t42vnNufLMk12s8P/lfRfOWoeZJf2OXhMJPBP34MFiBDwqzg27SpfDGomNzTOGi 7cuDpCo7YhdG3vuXfrhfmoqflZ2oOu8yU3O86u8bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7mJB28taEEml9+l27XclvuemWngwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzY2UyYWRkLWZlNGUtNGE5Yy04ZjkwLThlNjc3NGNiNzA1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVdTYAwDQYJKoZIhvcNAQELBQADggEBABzcyhdgBFSWP9hxAMMD30MkwYBS ATscG3A3DQVb4K0hnI/aB2h2b0qo2P731OV7SgNzxxOtVYDanFLIG44sLoNlgoij vrQHDlmCZY4JphWebda1HEkDD9v+WryIbIvmRmxXEzmo21ZiLMQ/3Sbnyfzl/mS0 ffXidFXgwir8tSFBgh33QqXQ3GcSTgu3QgarrigrQwikiuRxKp8Qt//3NuRXPwqJ CEqWsJxZKxNRLfBqb6gP0upRkHB1lrHJc+m+qQ3g7mFSQRZxGwtDyyvBJudBpbdu QM5Qov0MT2HZC6HmfQN1SoTTyjdX26pzvRC3/WK5CVAhvVaf21ETEWU9YW4= -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:42 2025 by rpki-client