$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5928830b-bdc0-40c2-82a8-029c15dbefb1.roa File: 5928830b-bdc0-40c2-82a8-029c15dbefb1.roa (raw, json) Hash identifier: vAXbPblsMLkZBlX2ukBLgQsbVE/wxFLneahMyOYHQBM= Subject key identifier: 7A:66:E8:77:6F:78:F9:5B:30:38:F2:1D:1B:ED:1C:09:C2:B1:C8:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42CCE882419FA0DEC86845816FDA785A1D554AD4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5928830b-bdc0-40c2-82a8-029c15dbefb1.roa Signing time: Sat 22 Mar 2025 00:10:15 +0000 ROA not before: Sat 22 Mar 2025 00:10:15 +0000 ROA not after: Sat 26 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 93.76.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:cc:e8:82:41:9f:a0:de:c8:68:45:81:6f:da:78:5a:1d:55:4a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 22 00:10:15 2025 GMT Not After : Apr 26 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a3:51:d1:7d:70:f4:71:7e:07:01:c8:ab:34: 9f:ab:31:a5:14:8e:9d:f3:af:95:18:5c:38:c2:44: e5:7e:c0:66:e7:73:f5:ee:05:b2:f9:e0:ee:26:35: b4:b1:e5:46:8f:f6:54:66:54:14:d6:c9:f6:84:74: 81:aa:23:76:61:62:37:dd:9f:6d:6a:5d:e5:92:57: b7:79:15:7a:3c:72:12:b8:5c:7e:cd:f9:f5:b2:35: 71:78:ef:36:85:66:d0:fc:c1:ad:54:0a:7f:19:89: 05:ed:fd:b1:da:e5:56:d6:d0:0a:07:87:5d:e7:ad: c6:01:97:eb:03:ee:26:a7:f9:87:8c:f0:d9:a3:00: fc:d2:d1:d7:c6:89:4b:d9:85:a9:2d:56:f5:a8:c7: c4:6f:65:cd:d5:d3:00:09:f7:0b:cf:0f:12:5f:5f: ae:45:92:51:11:c4:46:33:5b:a7:03:64:64:2f:c0: 62:47:31:f9:c3:5d:76:34:ed:5c:f0:fc:0f:68:a9: 6e:68:bf:88:71:a1:eb:e0:de:e3:b9:bd:80:d1:84: 49:40:64:1b:6b:18:9b:00:3d:f0:d6:bc:c4:67:2f: 24:91:34:bd:fb:bc:67:d0:7b:c8:7f:2b:9d:53:b5: f2:73:bc:8d:6d:39:28:fa:bd:cc:bd:b6:a0:52:87: d0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:66:E8:77:6F:78:F9:5B:30:38:F2:1D:1B:ED:1C:09:C2:B1:C8:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5928830b-bdc0-40c2-82a8-029c15dbefb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.76.128.0/17 Signature Algorithm: sha256WithRSAEncryption 75:86:a4:1c:1a:63:8b:a7:18:e7:eb:a9:ce:6e:79:c7:61:19: 93:e8:ed:81:37:d7:32:04:d4:31:81:e0:17:f7:d9:5b:93:0e: c9:44:92:f5:7f:6a:33:03:1e:00:d7:ef:f3:a0:38:b8:df:43: e2:49:a3:50:08:15:63:da:f1:d9:95:ad:09:33:e3:42:68:b8: a9:a9:c5:52:1b:10:b1:07:da:c6:f7:ef:90:bd:44:a5:b1:fa: 3e:3c:50:b8:03:20:49:37:e9:5a:a5:20:81:9c:6a:3a:be:1b: 80:37:e7:3c:32:5f:ee:23:ef:a7:d4:aa:0c:f9:59:1c:a0:f0: 78:a5:83:2e:22:57:cf:60:59:ef:98:16:4d:c7:0c:ae:18:15: 52:53:e6:2a:17:36:b3:3f:fd:90:f2:63:cc:7d:74:32:2d:3b: 91:b0:97:c7:d2:f7:92:55:03:9b:8e:81:9b:50:61:30:9f:74: 53:9d:b7:ee:b7:01:5b:da:73:e3:3b:11:61:5e:19:d1:8d:c3: bd:91:5a:1f:87:87:86:71:2b:bd:db:32:66:b2:ab:38:a2:67: ef:28:23:0a:2e:1e:f0:1d:3c:c8:48:d3:54:25:cc:b6:3e:bf: 1b:90:f2:6e:e5:98:47:a6:b2:04:e9:f0:b8:ae:49:60:97:4a: ce:92:7f:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQszogkGfoN7IaEWBb9p4Wh1VStQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzIyMDAxMDE1WhcNMjUwNDI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTg4ODViNjhmZTEzYTY1M2RmMGVhMDk3YzljYjVlODgx NGYwOWQzZTFlMmZmNmFmNzhiY2VjNjdmOTc4ODYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwo1HRfXD0cX4HAcirNJ+rMaUUjp3zr5UYXDjCROV+wGbn c/XuBbL54O4mNbSx5UaP9lRmVBTWyfaEdIGqI3ZhYjfdn21qXeWSV7d5FXo8chK4 XH7N+fWyNXF47zaFZtD8wa1UCn8ZiQXt/bHa5VbW0AoHh13nrcYBl+sD7ian+YeM 8NmjAPzS0dfGiUvZhaktVvWox8RvZc3V0wAJ9wvPDxJfX65FklERxEYzW6cDZGQv wGJHMfnDXXY07Vzw/A9oqW5ov4hxoevg3uO5vYDRhElAZBtrGJsAPfDWvMRnLySR NL37vGfQe8h/K51TtfJzvI1tOSj6vcy9tqBSh9DrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUembod294+VswOPIdG+0cCcKxyNwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5Mjg4MzBiLWJkYzAtNDBjMi04MmE4LTAyOWMxNWRiZWZiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddTIAwDQYJKoZIhvcNAQELBQADggEBAHWGpBwaY4unGOfrqc5uecdhGZPo 7YE31zIE1DGB4Bf32VuTDslEkvV/ajMDHgDX7/OgOLjfQ+JJo1AIFWPa8dmVrQkz 40JouKmpxVIbELEH2sb375C9RKWx+j48ULgDIEk36VqlIIGcajq+G4A35zwyX+4j 76fUqgz5WRyg8Hilgy4iV89gWe+YFk3HDK4YFVJT5ioXNrM//ZDyY8x9dDItO5Gw l8fS95JVA5uOgZtQYTCfdFOdt+63AVvac+M7EWFeGdGNw72RWh+Hh4ZxK73bMmay qziiZ+8oIwouHvAdPMhI01QlzLY+vxuQ8m7lmEemsgTp8LiuSWCXSs6Sf7Q= -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:59 2025 by rpki-client