$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1d13217f-f773-4398-981b-ffc64bffbbc2.roa File: 1d13217f-f773-4398-981b-ffc64bffbbc2.roa (raw, json) Hash identifier: sVh2uqtATjhvYcxMQFxldWp5ZwBW7nTWJk810HbBe0s= Subject key identifier: 11:B2:1A:93:07:81:F2:3C:A7:F2:16:57:6A:AF:82:B1:20:6B:EF:BB Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 789E5DBD568C422F835449B9B253866EF7927709 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1d13217f-f773-4398-981b-ffc64bffbbc2.roa Signing time: Sat 10 May 2025 00:50:09 +0000 ROA not before: Sat 10 May 2025 00:50:09 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:9e:5d:bd:56:8c:42:2f:83:54:49:b9:b2:53:86:6e:f7:92:77:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 10 00:50:09 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=fd9255a271220e36cc429bcc98283aa898d15450738326c08bd01bdfaaf33081, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ca:de:74:df:93:04:92:ae:3c:15:de:3f:e6: 5a:f0:99:f8:69:fc:87:13:b3:32:0e:a3:c0:91:fe: 27:03:99:77:3f:f3:8e:0c:4d:be:0f:a7:24:76:75: dd:0b:6f:1f:fa:c9:4d:2f:33:1d:55:84:57:5e:19: 63:84:2a:3d:82:c8:4a:5c:13:ba:7b:5f:2d:f7:74: f4:08:8b:b2:16:03:b5:7c:2c:be:46:8c:4d:b8:af: 9b:8a:ff:a8:85:99:c0:cc:0a:95:aa:d5:19:db:e3: 8e:11:e4:fe:1d:0d:3f:60:cf:29:1c:fc:da:a1:95: 63:14:9b:90:04:1b:ae:52:29:8d:a6:53:9f:78:97: d4:11:ee:7f:27:dc:87:78:0e:93:ff:b7:89:46:f7: f5:61:18:f3:67:31:1d:92:e0:03:58:fa:26:2f:9e: 7e:86:75:f2:e2:3b:df:75:b5:d5:0f:4e:4c:2b:2e: 38:46:f3:63:17:d1:34:2a:49:48:d7:b8:0c:3c:2d: c2:f1:67:a6:da:ab:c8:5d:e7:0a:4b:15:cd:27:37: 42:6c:c4:9c:5b:71:68:5c:82:f7:d8:3c:ed:58:68: 97:4c:e2:3d:25:0f:7f:3b:86:bc:f5:43:74:b9:6b: ab:0b:97:4f:55:02:1c:e8:a2:81:f8:4b:e1:65:e6: 58:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B2:1A:93:07:81:F2:3C:A7:F2:16:57:6A:AF:82:B1:20:6B:EF:BB X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1d13217f-f773-4398-981b-ffc64bffbbc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.17.0/24 Signature Algorithm: sha256WithRSAEncryption ac:b6:4b:7a:70:7a:e1:2a:1f:7c:03:0f:03:ce:08:a4:0b:03: 88:b6:18:4a:e1:b2:29:fe:5f:c1:6d:1f:d8:58:f8:7c:86:a1: 2d:06:86:0b:6a:18:e0:d9:80:fe:5b:a7:18:65:57:1a:37:33: 8a:0d:75:b5:91:06:33:94:31:87:e0:a4:8a:b1:c6:56:73:b1: d1:d3:59:db:de:49:95:35:8f:20:15:0b:53:9d:0f:63:36:6c: 65:35:e3:cc:77:4c:84:4f:e4:22:67:88:e5:eb:12:42:82:52: 0c:3a:a0:dd:51:b1:ce:af:8d:b6:71:27:6d:90:af:45:93:2b: 2f:bd:9d:1f:26:6e:77:a5:ec:40:9d:c6:21:1c:48:ab:a0:7b: a6:8c:f0:88:ba:81:de:dc:2b:94:c8:4c:b7:05:e2:bc:89:e6: 87:b1:48:c2:ca:3d:85:cb:c0:16:f1:4d:d5:78:66:da:cf:21: 8d:4f:09:93:fa:1c:4f:de:f5:85:22:33:cc:0f:1a:51:d3:17: 01:28:04:28:8b:a5:45:97:e0:0b:40:f5:08:cd:ce:00:23:32: a2:91:90:ca:2c:da:c9:aa:ba:eb:d7:90:f1:b0:cc:d8:f4:64: 3f:4f:e4:07:fa:cb:fd:55:f0:31:bf:5c:5f:24:b3:b8:29:b8: 0b:1b:4b:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeJ5dvVaMQi+DVEm5slOGbveSdwkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTEwMDA1MDA5WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDkyNTVhMjcxMjIwZTM2Y2M0MjliY2M5ODI4M2FhODk4 ZDE1NDUwNzM4MzI2YzA4YmQwMWJkZmFhZjMzMDgxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVyt5035MEkq48Fd4/5lrwmfhp/IcTszIOo8CR/icDmXc/ 844MTb4PpyR2dd0Lbx/6yU0vMx1VhFdeGWOEKj2CyEpcE7p7Xy33dPQIi7IWA7V8 LL5GjE24r5uK/6iFmcDMCpWq1Rnb444R5P4dDT9gzykc/NqhlWMUm5AEG65SKY2m U594l9QR7n8n3Id4DpP/t4lG9/VhGPNnMR2S4ANY+iYvnn6GdfLiO991tdUPTkwr LjhG82MX0TQqSUjXuAw8LcLxZ6baq8hd5wpLFc0nN0JsxJxbcWhcgvfYPO1YaJdM 4j0lD387hrz1Q3S5a6sLl09VAhzoooH4S+Fl5lghAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEbIakweB8jyn8hZXaq+CsSBr77swHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzFkMTMyMTdmLWY3NzMtNDM5OC05ODFiLWZmYzY0YmZmYmJjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUhEwDQYJKoZIhvcNAQELBQADggEBAKy2S3pweuEqH3wDDwPOCKQLA4i2 GErhsin+X8FtH9hY+HyGoS0GhgtqGODZgP5bpxhlVxo3M4oNdbWRBjOUMYfgpIqx xlZzsdHTWdveSZU1jyAVC1OdD2M2bGU148x3TIRP5CJniOXrEkKCUgw6oN1Rsc6v jbZxJ22Qr0WTKy+9nR8mbnel7ECdxiEcSKuge6aM8Ii6gd7cK5TITLcF4ryJ5oex SMLKPYXLwBbxTdV4ZtrPIY1PCZP6HE/e9YUiM8wPGlHTFwEoBCiLpUWX4AtA9QjN zgAjMqKRkMos2smquuvXkPGwzNj0ZD9P5Af6y/1V8DG/XF8ks7gpuAsbS7I= -----END CERTIFICATE-----Generated at Mon Jun 2 16:38:13 2025 by rpki-client