$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f81a06d-c815-4f26-a7e4-79ad12b19938.roa File: 6f81a06d-c815-4f26-a7e4-79ad12b19938.roa (raw, json) Hash identifier: cCD/Sm6nystAPjPzFI9evC30vG3dzmV8shlSczqLAu8= Subject key identifier: 74:92:50:2C:9A:7A:58:0C:D7:8F:0E:91:7E:CD:0A:75:FA:A6:AE:4B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 67C9650B2FD78D0A81E7D27EE13039241DE8C138 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f81a06d-c815-4f26-a7e4-79ad12b19938.roa Signing time: Fri 21 Mar 2025 00:50:26 +0000 ROA not before: Fri 21 Mar 2025 00:50:26 +0000 ROA not after: Fri 25 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c9:65:0b:2f:d7:8d:0a:81:e7:d2:7e:e1:30:39:24:1d:e8:c1:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 21 00:50:26 2025 GMT Not After : Apr 25 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f4:15:49:64:84:5d:d2:1e:c5:65:d1:c4:8b: fc:3f:07:0a:de:18:ca:d5:cd:e7:5e:a3:fe:6b:c2: 41:92:5f:ee:91:6c:0b:17:6d:ce:c8:7f:63:1f:8d: c4:e1:41:ef:cc:6a:8d:79:7a:be:75:98:06:cb:d0: 2f:af:3f:62:fd:54:a0:40:9c:e1:ea:3a:e1:6d:c5: 0c:4a:15:79:95:f8:66:1d:66:0c:73:21:c2:95:be: ac:fb:f0:1b:fa:82:f1:0e:37:4b:1d:81:43:c1:6a: 40:bb:39:ec:ca:e0:90:0e:bb:4c:c4:39:4d:ee:e7: 07:8c:b6:ef:58:9b:4c:c0:a7:14:2a:d1:c1:fc:31: 77:32:09:1b:49:34:65:af:56:71:70:2b:2e:5a:18: cc:c6:41:8e:8c:c3:74:9b:e7:ff:b6:e6:95:b5:ef: 08:75:bc:03:8c:b4:69:4c:bf:75:29:20:f6:55:be: d9:84:e9:d5:a7:2d:cd:71:01:40:8d:52:99:11:46: 4b:5f:28:db:ee:f0:6c:a6:19:30:02:44:f6:36:1d: 41:34:47:14:d6:18:5c:06:af:b6:04:a1:50:06:a9: 13:f0:21:3d:e1:2b:82:a1:6c:f6:f4:db:2f:4a:4a: e0:5a:ce:0c:a6:2b:1c:46:da:1b:de:f5:15:07:18: 0f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:92:50:2C:9A:7A:58:0C:D7:8F:0E:91:7E:CD:0A:75:FA:A6:AE:4B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6f81a06d-c815-4f26-a7e4-79ad12b19938.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.64.0/24 Signature Algorithm: sha256WithRSAEncryption 23:d4:0e:a8:e6:f2:7b:09:da:96:87:5d:e9:29:e5:0a:26:06: a8:db:c7:b2:bd:44:5f:19:b5:b8:f1:65:b2:eb:ca:a1:db:71: 9b:fa:33:be:de:ed:d8:0a:5d:8f:66:4c:c3:2b:4a:90:6a:f8: 7c:5e:7d:74:b7:ce:75:b4:1a:ea:d4:47:e3:c3:61:91:6c:7f: f5:c8:0e:5f:89:2e:45:b7:6a:11:53:db:c1:ee:2c:0d:59:f9: 58:d5:3a:cd:68:9b:71:82:cc:9a:6f:eb:72:cf:a2:6c:5d:a2: bd:78:8d:30:07:8f:d8:11:46:df:64:61:61:57:b5:bd:da:e0: 1a:e4:a0:dd:c4:e7:cd:48:34:aa:c6:50:02:f9:5d:45:75:9a: a4:5b:c7:20:f1:95:f9:86:16:4a:94:73:fe:c9:2a:1c:87:4b: b3:7c:43:06:35:c8:40:4b:48:bf:d0:96:0d:d0:c5:ea:d3:62: b0:86:e3:42:33:1e:91:a7:d6:21:16:68:ea:8f:de:2b:f0:95: 8e:86:c6:b2:9f:21:ee:49:7b:e5:01:42:f3:e8:57:9b:b6:76: 09:75:63:cc:ac:b4:b7:d1:83:73:e6:4b:dd:54:a7:e3:3f:a2: ae:b3:52:25:3f:f9:79:43:04:00:9a:2c:f2:11:09:3f:80:a8: 38:db:38:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ8llCy/XjQqB59J+4TA5JB3owTgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzIxMDA1MDI2WhcNMjUwNDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2M1NGY1N2ZlZGRmMzVjMzMyZTE1ZjJmNTdkZGQwMTA3 OWU3MDNjZjNhNmNmNGYwMThiNDE4Yjg4ZTZiZjkxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM9BVJZIRd0h7FZdHEi/w/BwreGMrVzedeo/5rwkGSX+6R bAsXbc7If2MfjcThQe/Mao15er51mAbL0C+vP2L9VKBAnOHqOuFtxQxKFXmV+GYd ZgxzIcKVvqz78Bv6gvEON0sdgUPBakC7OezK4JAOu0zEOU3u5weMtu9Ym0zApxQq 0cH8MXcyCRtJNGWvVnFwKy5aGMzGQY6Mw3Sb5/+25pW17wh1vAOMtGlMv3UpIPZV vtmE6dWnLc1xAUCNUpkRRktfKNvu8GymGTACRPY2HUE0RxTWGFwGr7YEoVAGqRPw IT3hK4KhbPb02y9KSuBazgymKxxG2hve9RUHGA87AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdJJQLJp6WAzXjw6Rfs0KdfqmrkswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzZmODFhMDZkLWM4MTUtNGYyNi1hN2U0LTc5YWQxMmIxOTkzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUkAwDQYJKoZIhvcNAQELBQADggEBACPUDqjm8nsJ2paHXekp5QomBqjb x7K9RF8ZtbjxZbLryqHbcZv6M77e7dgKXY9mTMMrSpBq+HxefXS3znW0GurUR+PD YZFsf/XIDl+JLkW3ahFT28HuLA1Z+VjVOs1om3GCzJpv63LPomxdor14jTAHj9gR Rt9kYWFXtb3a4BrkoN3E581INKrGUAL5XUV1mqRbxyDxlfmGFkqUc/7JKhyHS7N8 QwY1yEBLSL/Qlg3QxerTYrCG40IzHpGn1iEWaOqP3ivwlY6GxrKfIe5Je+UBQvPo V5u2dgl1Y8ystLfRg3PmS91Up+M/oq6zUiU/+XlDBACaLPIRCT+AqDjbOFA= -----END CERTIFICATE-----Generated at Sat Apr 5 10:53:11 2025 by rpki-client