$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e893d247-a871-4625-a1dc-d362c9082fa4.roa File: e893d247-a871-4625-a1dc-d362c9082fa4.roa (raw, json) Hash identifier: QO5LPQMv4ShtDz+5IIPaK51xs9NfNasZeq7/biCOfFU= Subject key identifier: 7C:7F:A5:52:12:38:55:3F:C0:94:2E:11:B5:58:6E:5C:66:F4:8D:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D9F2CDDB90DF77C68E0E48039AF0BC04354ADDD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e893d247-a871-4625-a1dc-d362c9082fa4.roa Signing time: Fri 30 May 2025 00:40:19 +0000 ROA not before: Fri 30 May 2025 00:40:19 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 93.78.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:9f:2c:dd:b9:0d:f7:7c:68:e0:e4:80:39:af:0b:c0:43:54:ad:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:40:19 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=3e6a15a242305462e7ca675d9269ed3a68d1f8f1f5516030efcdc36ee79f0951, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8a:97:16:ab:01:11:19:5f:3c:4a:61:45:c2: 27:59:5d:47:b3:4c:8b:a2:57:fb:f4:90:78:50:f0: 99:0e:72:63:1a:ab:7b:62:09:fe:5f:9e:90:39:0d: bd:da:26:c0:2d:11:86:fe:8c:75:b2:1c:22:ab:0e: bf:4a:c5:c3:60:a1:3c:9f:a5:72:1c:d5:e4:c5:62: 1b:33:0e:c7:46:cf:9d:c7:ba:1f:92:54:66:53:2f: 96:ad:17:82:61:65:46:0b:7b:dd:11:ca:c3:7e:bd: 46:b6:2e:5a:5d:e8:cb:92:95:54:db:6b:d6:10:29: dd:ad:87:bf:38:0b:e0:71:48:a7:f9:7e:50:8b:3c: 96:52:c4:7e:d2:3b:d2:55:22:63:07:5a:54:e7:0e: 93:17:a5:60:86:f7:d1:a3:c0:c6:fa:a4:97:06:23: 47:f4:c8:74:57:c8:76:9b:65:3c:dc:b2:c0:de:2e: 79:27:7b:68:66:17:5b:df:61:ab:07:a9:2c:79:b4: c5:5c:ab:39:9f:46:66:6f:30:77:66:63:ee:0f:0b: 37:42:8b:04:db:47:86:1d:c1:04:57:57:10:f6:e9: 51:b8:6a:4e:71:a1:41:95:92:a9:56:0e:c3:8b:32: 00:70:63:dd:80:56:2f:41:5d:f0:23:22:ac:49:f9: 03:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7F:A5:52:12:38:55:3F:C0:94:2E:11:B5:58:6E:5C:66:F4:8D:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e893d247-a871-4625-a1dc-d362c9082fa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.78.0.0/17 Signature Algorithm: sha256WithRSAEncryption d1:f0:53:31:a2:df:ee:a4:86:93:4d:28:13:31:11:d1:07:ec: 4a:89:3d:c2:3e:8e:7d:bc:ac:9a:4d:92:1e:bb:2b:c7:b2:c3: cd:58:33:3f:27:89:2d:7d:6b:c5:b6:31:81:eb:e7:7c:e7:82: 73:31:d0:5a:8e:70:14:fd:db:a0:24:08:0b:81:0d:98:7d:79: 77:59:3b:06:f3:00:0e:9a:1f:b7:3e:cb:64:6a:73:16:0f:ec: 8d:02:29:d6:de:57:e0:dc:db:52:09:f4:d2:0c:ec:88:10:d7: f7:cf:78:fd:f0:db:56:b9:b9:81:a4:98:30:5e:c3:94:7f:a6: 89:c5:a8:d0:a1:54:d1:68:97:4c:46:a0:e0:a6:e7:1d:30:d7: 11:6d:50:3f:07:a1:3f:06:d4:b8:81:d3:58:7d:8d:e3:aa:65: d9:e7:0a:11:18:41:3c:38:73:e9:3d:97:e6:99:93:59:2a:18: 15:e9:5a:fe:d9:87:59:4f:64:5a:41:8a:8a:87:04:fb:48:4b: a1:1b:d1:e2:53:e1:bf:39:12:20:00:09:12:76:a7:99:00:9c: 01:e9:58:56:c2:5b:93:76:bc:52:09:09:60:2d:e9:cd:11:aa: 74:b9:88:d1:43:10:a1:3b:24:5f:b0:b8:7b:e3:07:23:a5:68: 76:ac:16:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULZ8s3bkN93xo4OSAOa8LwENUrd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MDE5WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTZhMTVhMjQyMzA1NDYyZTdjYTY3NWQ5MjY5ZWQzYTY4 ZDFmOGYxZjU1MTYwMzBlZmNkYzM2ZWU3OWYwOTUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsipcWqwERGV88SmFFwidZXUezTIuiV/v0kHhQ8JkOcmMa q3tiCf5fnpA5Db3aJsAtEYb+jHWyHCKrDr9KxcNgoTyfpXIc1eTFYhszDsdGz53H uh+SVGZTL5atF4JhZUYLe90RysN+vUa2Llpd6MuSlVTba9YQKd2th784C+BxSKf5 flCLPJZSxH7SO9JVImMHWlTnDpMXpWCG99GjwMb6pJcGI0f0yHRXyHabZTzcssDe Lnkne2hmF1vfYasHqSx5tMVcqzmfRmZvMHdmY+4PCzdCiwTbR4YdwQRXVxD26VG4 ak5xoUGVkqlWDsOLMgBwY92AVi9BXfAjIqxJ+QO9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfH+lUhI4VT/AlC4RtVhuXGb0jQYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4OTNkMjQ3LWE4NzEtNDYyNS1hMWRjLWQzNjJjOTA4MmZhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddTgAwDQYJKoZIhvcNAQELBQADggEBANHwUzGi3+6khpNNKBMxEdEH7EqJ PcI+jn28rJpNkh67K8eyw81YMz8niS19a8W2MYHr53zngnMx0FqOcBT926AkCAuB DZh9eXdZOwbzAA6aH7c+y2RqcxYP7I0CKdbeV+Dc21IJ9NIM7IgQ1/fPeP3w21a5 uYGkmDBew5R/ponFqNChVNFol0xGoOCm5x0w1xFtUD8HoT8G1LiB01h9jeOqZdnn ChEYQTw4c+k9l+aZk1kqGBXpWv7Zh1lPZFpBioqHBPtIS6Eb0eJT4b85EiAACRJ2 p5kAnAHpWFbCW5N2vFIJCWAt6c0RqnS5iNFDEKE7JF+wuHvjByOlaHasFgs= -----END CERTIFICATE-----Generated at Sun Jun 1 05:18:39 2025 by rpki-client