$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f3e9380-5f7e-4fd5-a4e7-0973081a800c.roa File: 4f3e9380-5f7e-4fd5-a4e7-0973081a800c.roa (raw, json) Hash identifier: q5fcYVOLYFIPezemK9rql57JPItFfGW5mW1nbfTQbns= Subject key identifier: F9:78:EE:94:00:14:5F:13:08:43:45:CF:BB:21:06:98:0B:B3:09:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3438BF81F70DEEDF806675654ABF27FC005F20DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f3e9380-5f7e-4fd5-a4e7-0973081a800c.roa Signing time: Mon 12 May 2025 15:30:20 +0000 ROA not before: Mon 12 May 2025 15:30:20 +0000 ROA not after: Mon 16 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 93.76.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:38:bf:81:f7:0d:ee:df:80:66:75:65:4a:bf:27:fc:00:5f:20:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 15:30:20 2025 GMT Not After : Jun 16 23:59:59 2025 GMT Subject: serialNumber=1094a595ccecd4c6f3845fc80b0eee19ed12042c33541e43235d05c7e8e71d2f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ab:7c:61:da:ef:2e:f7:a2:9c:ed:01:57:3e: da:4b:0d:56:92:b1:f6:d3:ee:32:fe:83:8f:fc:d2: 7b:20:1c:54:3d:1a:fa:ac:50:22:e3:a9:0a:3a:6a: 1b:a2:04:ac:d5:4c:97:7d:16:41:34:ba:27:c7:5b: 46:87:fb:8e:06:03:98:31:dc:29:33:0d:50:c4:01: 1e:f1:6d:9c:4a:19:fd:26:9f:3f:56:76:74:91:d3: 84:fd:27:56:81:26:ef:8f:85:9f:6b:68:23:e4:30: d9:cd:63:5c:e1:9a:b9:0c:10:10:43:70:87:06:21: 0c:ef:10:b4:1c:f8:ea:76:fa:d9:a2:61:e4:38:09: 1a:de:49:fe:07:00:de:49:5b:18:46:83:de:1c:7a: 4c:50:89:bf:11:42:fd:1d:05:ba:c0:39:2b:9e:9f: ec:54:42:49:aa:b8:10:49:40:5f:e3:44:49:fe:b0: ef:8e:73:3d:7a:1c:5a:46:18:7b:b5:ea:f7:43:33: 9e:2e:8a:fd:1d:1c:44:12:d1:c9:80:b3:42:f8:4f: b1:95:02:4a:3f:39:c3:dc:8b:81:b5:21:ea:e2:b9: b7:11:59:41:03:77:b7:b7:27:77:3d:0e:ff:b3:8a: b7:c8:d5:d7:b8:30:38:56:73:d9:69:f5:7b:21:3f: b6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:78:EE:94:00:14:5F:13:08:43:45:CF:BB:21:06:98:0B:B3:09:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f3e9380-5f7e-4fd5-a4e7-0973081a800c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.76.0.0/17 Signature Algorithm: sha256WithRSAEncryption d2:7f:cc:65:48:0d:c8:83:9e:c6:4c:83:a3:c5:bb:56:72:ef: 37:45:42:2f:55:9a:c1:42:35:0f:a5:62:58:10:c7:1f:c4:94: 5b:f2:ed:d9:e8:37:0b:8a:b4:76:52:24:38:39:a1:dc:d3:a2: e7:d4:97:47:18:ed:c5:f0:ad:1b:66:8f:4e:76:b3:4b:5e:ca: 76:89:8c:c9:fd:f6:05:59:08:bc:58:b7:48:4c:0a:99:5e:7a: 86:82:47:39:a5:cf:28:01:24:29:70:f4:53:17:4f:af:46:e6: 89:63:b2:25:c0:09:2c:5f:92:5a:71:9d:fe:e8:9c:8a:31:ed: 9a:5c:d3:05:59:ed:21:32:49:ba:f9:e5:18:63:52:86:be:3e: 0a:da:1a:e6:be:74:7e:65:fc:81:ee:23:c6:72:30:3e:b5:c2: 58:47:66:50:6e:8a:75:2e:2c:14:47:e5:c1:dd:4e:e1:a8:91: 4a:07:61:ae:62:22:f0:09:08:11:ae:51:ff:87:08:83:6b:9b: 1b:95:fd:16:72:79:55:9e:4e:eb:69:ba:ee:42:28:13:1c:95: 46:a1:1f:30:1b:31:44:fb:f7:ae:4e:d2:06:3c:e9:14:b4:0b: 06:a3:b3:d8:81:77:42:1a:59:08:7d:eb:ac:bd:d2:1a:22:9e: e8:02:ad:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNDi/gfcN7t+AZnVlSr8n/ABfIN8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEyMTUzMDIwWhcNMjUwNjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDk0YTU5NWNjZWNkNGM2ZjM4NDVmYzgwYjBlZWUxOWVk MTIwNDJjMzM1NDFlNDMyMzVkMDVjN2U4ZTcxZDJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZq3xh2u8u96Kc7QFXPtpLDVaSsfbT7jL+g4/80nsgHFQ9 GvqsUCLjqQo6ahuiBKzVTJd9FkE0uifHW0aH+44GA5gx3CkzDVDEAR7xbZxKGf0m nz9WdnSR04T9J1aBJu+PhZ9raCPkMNnNY1zhmrkMEBBDcIcGIQzvELQc+Op2+tmi YeQ4CRreSf4HAN5JWxhGg94cekxQib8RQv0dBbrAOSuen+xUQkmquBBJQF/jREn+ sO+Ocz16HFpGGHu16vdDM54uiv0dHEQS0cmAs0L4T7GVAko/OcPci4G1IeriubcR WUEDd7e3J3c9Dv+zirfI1de4MDhWc9lp9XshP7b9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+XjulAAUXxMIQ0XPuyEGmAuzCYkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmM2U5MzgwLTVmN2UtNGZkNS1hNGU3LTA5NzMwODFhODAwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddTAAwDQYJKoZIhvcNAQELBQADggEBANJ/zGVIDciDnsZMg6PFu1Zy7zdF Qi9VmsFCNQ+lYlgQxx/ElFvy7dnoNwuKtHZSJDg5odzToufUl0cY7cXwrRtmj052 s0teynaJjMn99gVZCLxYt0hMCpleeoaCRzmlzygBJClw9FMXT69G5oljsiXACSxf klpxnf7onIox7Zpc0wVZ7SEySbr55RhjUoa+PgraGua+dH5l/IHuI8ZyMD61wlhH ZlBuinUuLBRH5cHdTuGokUoHYa5iIvAJCBGuUf+HCINrmxuV/RZyeVWeTutpuu5C KBMclUahHzAbMUT7965O0gY86RS0Cwajs9iBd0IaWQh966y90hoinugCrfM= -----END CERTIFICATE-----Generated at Sun Jun 1 04:31:09 2025 by rpki-client