$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74841582-8bed-4d9b-98bf-557048954c2d.roa File: 74841582-8bed-4d9b-98bf-557048954c2d.roa (raw, json) Hash identifier: 0GJLgbvmsartrbbwLKABBH/8erdOoDK/JnwnDH8OMHs= Subject key identifier: C1:F3:2D:91:B4:18:AE:5B:CF:D0:31:72:2E:D8:3F:B2:3B:27:5F:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 497D945E880317DAB3A560023BCD321025AD343D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74841582-8bed-4d9b-98bf-557048954c2d.roa Signing time: Tue 20 May 2025 15:20:22 +0000 ROA not before: Tue 20 May 2025 15:20:22 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 77.121.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:7d:94:5e:88:03:17:da:b3:a5:60:02:3b:cd:32:10:25:ad:34:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:20:22 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=1395479fc3913290468c754575673e746231468bad367cd4d2931d5a2991b03a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:95:63:bb:5a:e5:b3:84:2b:af:2d:0f:8a:4f: a0:56:c9:38:e2:3c:5b:86:51:98:0b:bb:82:55:91: 0d:ad:fe:ba:4e:1b:55:87:96:e5:b6:54:bb:31:9b: b0:b0:f8:d0:c3:13:6d:32:df:07:59:3c:f6:2d:73: 02:a5:4e:42:66:33:7b:8d:7e:2d:07:6b:1e:de:10: 6b:92:5a:14:9b:80:8d:20:7b:15:86:ff:29:5b:78: 91:e7:e6:29:e6:81:6a:f0:92:64:23:68:d6:b7:f1: 6f:b2:aa:99:c7:ee:d9:5f:57:a5:5f:37:09:24:5c: 0b:2f:cc:1f:6b:bb:94:0a:ab:1b:bf:f7:5c:42:fb: c2:75:0c:18:fd:0e:b5:c6:62:60:79:f0:c8:27:23: 4f:e8:fb:9d:31:8a:91:a4:c2:9e:54:d9:34:8d:8b: 01:fa:d0:53:cd:c3:b6:b7:86:ad:bf:6f:62:cc:52: 9c:1e:f4:59:47:a4:e7:64:42:fb:fa:32:c8:c7:fe: 3e:27:07:c5:5f:4d:a4:51:d5:1a:cc:28:47:b7:b5: 68:b9:56:7d:11:84:76:69:1a:84:13:58:d2:21:91: af:47:25:bf:4d:e8:f4:18:e7:52:d1:d7:53:3b:c2: 92:53:92:14:68:a7:ed:93:c5:f9:ea:be:2a:88:73: 10:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F3:2D:91:B4:18:AE:5B:CF:D0:31:72:2E:D8:3F:B2:3B:27:5F:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74841582-8bed-4d9b-98bf-557048954c2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.121.128.0/17 Signature Algorithm: sha256WithRSAEncryption a4:f9:ad:e4:17:78:65:8f:2d:b3:38:d6:16:c5:e9:9c:dd:30: 4e:29:17:3c:53:01:9f:c1:8e:c5:37:0f:a7:3b:66:ff:ad:18: c5:88:67:52:fa:e1:a1:32:38:3e:70:b9:f3:4d:be:2d:f4:64: 2e:ee:a2:c8:c6:0d:0b:2d:1a:8c:d1:a7:28:e8:3b:d6:6d:f6: ec:29:ca:fe:50:4b:f5:70:49:b6:18:23:98:47:c0:95:4e:69: 5a:12:91:f6:15:d0:46:1d:a9:b7:01:28:88:55:9a:53:8a:5e: 17:40:07:2a:3d:d7:89:b0:59:87:c8:90:0b:f6:53:3a:59:29: 26:29:20:3a:16:9e:80:1b:f2:69:1b:80:4f:7c:dd:00:c1:82: eb:45:c0:02:9e:84:72:5d:a8:98:56:6f:a3:b1:d6:82:fe:23: 86:55:ae:ba:46:e0:7d:04:a3:d5:c2:89:6d:3c:82:ea:2b:28: a2:a6:49:ab:f6:5e:ac:a9:b6:1b:f3:8d:5b:52:83:a0:de:34: 8f:c5:54:cd:37:77:6d:d5:be:49:2a:0c:9b:1c:72:3e:3a:ef: 5e:64:33:8a:96:cc:49:a8:8a:2d:b8:5c:fc:6d:c2:ee:70:a7: 38:e2:0c:4c:cc:ec:79:6f:be:fb:03:bc:c8:8d:75:05:36:c2: ab:76:ff:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSX2UXogDF9qzpWACO80yECWtND0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUyMDIyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzk1NDc5ZmMzOTEzMjkwNDY4Yzc1NDU3NTY3M2U3NDYy MzE0NjhiYWQzNjdjZDRkMjkzMWQ1YTI5OTFiMDNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDylWO7WuWzhCuvLQ+KT6BWyTjiPFuGUZgLu4JVkQ2t/rpO G1WHluW2VLsxm7Cw+NDDE20y3wdZPPYtcwKlTkJmM3uNfi0Hax7eEGuSWhSbgI0g exWG/ylbeJHn5inmgWrwkmQjaNa38W+yqpnH7tlfV6VfNwkkXAsvzB9ru5QKqxu/ 91xC+8J1DBj9DrXGYmB58MgnI0/o+50xipGkwp5U2TSNiwH60FPNw7a3hq2/b2LM Upwe9FlHpOdkQvv6MsjH/j4nB8VfTaRR1RrMKEe3tWi5Vn0RhHZpGoQTWNIhka9H Jb9N6PQY51LR11M7wpJTkhRop+2TxfnqviqIcxCJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwfMtkbQYrlvP0DFyLtg/sjsnX1YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0ODQxNTgyLThiZWQtNGQ5Yi05OGJmLTU1NzA0ODk1NGMyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdNeYAwDQYJKoZIhvcNAQELBQADggEBAKT5reQXeGWPLbM41hbF6ZzdME4p FzxTAZ/BjsU3D6c7Zv+tGMWIZ1L64aEyOD5wufNNvi30ZC7uosjGDQstGozRpyjo O9Zt9uwpyv5QS/VwSbYYI5hHwJVOaVoSkfYV0EYdqbcBKIhVmlOKXhdAByo914mw WYfIkAv2UzpZKSYpIDoWnoAb8mkbgE983QDBgutFwAKehHJdqJhWb6Ox1oL+I4ZV rrpG4H0Eo9XCiW08guorKKKmSav2XqypthvzjVtSg6DeNI/FVM03d23VvkkqDJsc cj46715kM4qWzEmoii24XPxtwu5wpzjiDEzM7HlvvvsDvMiNdQU2wqt2/yY= -----END CERTIFICATE-----Generated at Sun Jun 1 05:31:27 2025 by rpki-client