$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fa850b1-98aa-437a-9e64-c470fb18d5de.roa File: 3fa850b1-98aa-437a-9e64-c470fb18d5de.roa (raw, json) Hash identifier: CMzTW4NoMP52gTjExALRsmAjSX9SVFJyqHm6RZpxG40= Subject key identifier: F4:FC:1C:40:14:D8:AC:63:DF:B5:2E:E7:14:4C:02:D8:78:8E:4D:71 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2174B42B7F1E45FE12645022DF565F83C1B02CBE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fa850b1-98aa-437a-9e64-c470fb18d5de.roa Signing time: Tue 19 Aug 2025 16:40:18 +0000 ROA not before: Tue 19 Aug 2025 16:40:18 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:74:b4:2b:7f:1e:45:fe:12:64:50:22:df:56:5f:83:c1:b0:2c:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 19 16:40:18 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=5b2b046e9000233d11f5fb7b02a066fd42382cd2004db468f386872dd5cd0ff0, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c0:c2:40:78:da:3f:57:56:76:2e:1f:0c:c0: 13:d5:34:73:ab:d3:1c:99:39:f1:ee:a9:ef:00:08: da:19:42:ed:62:33:50:df:f9:c3:f6:f8:54:4e:a2: 9d:ca:74:bb:5d:6a:e0:7d:cb:f3:d6:36:60:85:29: fa:9b:e0:75:50:a5:c5:26:09:97:91:ab:d9:8c:a5: 3d:5c:8c:7b:7b:7e:16:81:9b:46:ea:83:7f:6d:8e: 68:23:e0:cb:ce:c3:eb:4a:58:cd:a0:f0:b5:59:f9: 78:cf:3f:bb:a1:60:3d:2e:57:a1:ca:14:48:ec:c9: 24:ad:78:52:6c:e2:0c:f1:09:3f:4e:99:7b:40:a7: 18:0d:6f:b1:b9:63:9c:ef:37:12:46:78:70:c1:7d: 4a:e4:b0:0c:bf:8d:99:25:bd:49:f2:24:9b:30:b8: f7:39:8f:da:72:e3:46:7b:48:9e:bb:c9:ee:43:cc: ac:2b:be:3a:bc:a7:9e:46:aa:4f:37:3d:86:14:03: ad:dc:76:b3:39:e2:cf:51:42:34:08:65:81:e3:3b: 31:11:5b:b3:35:48:af:c9:16:ac:65:92:d2:63:18: 22:0f:c4:32:ab:27:8f:01:6e:d0:93:c4:9f:44:81: d5:00:14:04:c2:0e:fe:6f:bd:54:76:b0:f7:a7:76: 30:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:FC:1C:40:14:D8:AC:63:DF:B5:2E:E7:14:4C:02:D8:78:8E:4D:71 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3fa850b1-98aa-437a-9e64-c470fb18d5de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.73.0/24 Signature Algorithm: sha256WithRSAEncryption 05:9d:83:14:f2:5a:f6:d7:16:7e:aa:da:17:5f:59:c6:83:71: 2f:09:f7:0c:2f:25:5f:5b:18:99:bd:3e:0a:ff:6d:5a:91:02: f4:67:96:cf:59:04:4c:b0:71:ed:d2:cf:10:a7:92:91:bf:21: 6c:43:f1:0f:51:05:6a:8e:90:d7:de:67:43:db:8c:6a:f6:8c: e4:92:83:8d:10:09:f1:9f:9f:95:b4:9c:4e:c1:58:87:38:b3: 73:47:0a:b6:70:3f:54:b8:e5:e5:cc:69:80:31:15:92:d7:c5: d0:80:6b:d5:7a:ed:d0:56:8a:e7:7a:99:79:ab:d5:9d:60:ba: 63:24:83:c4:ab:2e:b8:94:0b:3a:bc:47:ab:41:12:22:37:74: 3e:c9:02:de:84:e5:79:cd:b7:26:66:a9:74:14:f2:bd:c1:64: 05:91:51:c4:25:92:af:e0:f9:59:32:1e:c9:34:88:3e:33:5c: a7:44:ab:ab:2a:15:b7:9d:68:2a:16:e4:36:57:f0:40:ee:ac: e0:37:d2:81:af:45:52:56:22:ee:c1:5e:47:0b:07:c1:87:c7: 08:66:d2:ae:ab:9f:0c:b8:bc:b2:f8:0a:fc:64:2a:d2:77:18: fd:52:55:3c:79:eb:78:ce:fe:03:56:bc:e9:3e:ae:c9:1a:2b: e8:86:4a:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIXS0K38eRf4SZFAi31Zfg8GwLL4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE5MTY0MDE4WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjJiMDQ2ZTkwMDAyMzNkMTFmNWZiN2IwMmEwNjZmZDQy MzgyY2QyMDA0ZGI0NjhmMzg2ODcyZGQ1Y2QwZmYwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7wMJAeNo/V1Z2Lh8MwBPVNHOr0xyZOfHuqe8ACNoZQu1i M1Df+cP2+FROop3KdLtdauB9y/PWNmCFKfqb4HVQpcUmCZeRq9mMpT1cjHt7fhaB m0bqg39tjmgj4MvOw+tKWM2g8LVZ+XjPP7uhYD0uV6HKFEjsySSteFJs4gzxCT9O mXtApxgNb7G5Y5zvNxJGeHDBfUrksAy/jZklvUnyJJswuPc5j9py40Z7SJ67ye5D zKwrvjq8p55Gqk83PYYUA63cdrM54s9RQjQIZYHjOzERW7M1SK/JFqxlktJjGCIP xDKrJ48BbtCTxJ9EgdUAFATCDv5vvVR2sPendjCXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9PwcQBTYrGPftS7nFEwC2HiOTXEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzNmYTg1MGIxLTk4YWEtNDM3YS05ZTY0LWM0NzBmYjE4ZDVkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUkkwDQYJKoZIhvcNAQELBQADggEBAAWdgxTyWvbXFn6q2hdfWcaDcS8J 9wwvJV9bGJm9Pgr/bVqRAvRnls9ZBEywce3SzxCnkpG/IWxD8Q9RBWqOkNfeZ0Pb jGr2jOSSg40QCfGfn5W0nE7BWIc4s3NHCrZwP1S45eXMaYAxFZLXxdCAa9V67dBW iud6mXmr1Z1gumMkg8SrLriUCzq8R6tBEiI3dD7JAt6E5XnNtyZmqXQU8r3BZAWR UcQlkq/g+VkyHsk0iD4zXKdEq6sqFbedaCoW5DZX8EDurOA30oGvRVJWIu7BXkcL B8GHxwhm0q6rnwy4vLL4CvxkKtJ3GP1SVTx563jO/gNWvOk+rskaK+iGSrM= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:45 2025 by rpki-client