$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d712a7-f3ce-497e-aae6-90aa99ab8e9f.roa File: 69d712a7-f3ce-497e-aae6-90aa99ab8e9f.roa (raw, json) Hash identifier: /+Fm7Rl3lVmNSs2M0SUzo1NWAXZWGEK7n8YOraDD8Eo= Subject key identifier: 07:98:B7:14:AD:E0:B7:DE:F2:6B:73:79:B4:4B:A6:40:78:B1:A0:E3 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 538D8D6CB914B7F11C17F5C7A548542F41F1A441 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d712a7-f3ce-497e-aae6-90aa99ab8e9f.roa Signing time: Tue 20 May 2025 17:40:21 +0000 ROA not before: Tue 20 May 2025 17:40:21 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:8d:8d:6c:b9:14:b7:f1:1c:17:f5:c7:a5:48:54:2f:41:f1:a4:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:40:21 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c292e8b662b61ff6ee6de4d750dc79cee5a72593b1ad2f20643a096197cb18b1, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9a:d5:94:9c:a4:88:ea:3b:73:df:33:d7:46: 7e:5b:70:dc:10:65:c1:5d:f1:21:23:5a:af:39:d0: b3:86:b7:bb:dc:b8:44:cb:43:b6:57:26:8f:1d:e2: 1a:26:5a:2a:3c:2a:6c:17:95:b2:f3:8e:d6:26:72: f2:6b:06:0c:12:7f:e4:05:10:5d:d7:79:50:c9:6c: 8b:b1:70:83:02:ac:1f:f7:75:d5:c4:92:72:d7:0e: 95:4a:4c:5b:5d:40:cc:2e:6c:7a:67:c6:c7:97:ed: 50:47:18:05:18:7f:90:fb:b2:e5:56:53:9f:ac:79: d7:b5:af:35:36:cd:d5:ca:3e:a4:36:17:bb:fd:47: df:d1:ca:ce:97:63:cc:e8:af:83:4d:0e:f4:0b:11: 8d:b5:95:d0:f4:95:ec:e1:de:ef:7c:be:36:12:19: 95:3a:fe:5b:ae:4b:20:fc:7c:08:6a:e8:a5:be:0c: 57:1b:b2:bb:68:3c:b0:22:c9:62:ae:55:3f:56:62: 78:ab:d6:c0:8e:a1:37:f3:7f:07:42:09:38:de:1b: 29:74:a1:c2:ea:92:ed:98:3b:99:22:c0:22:21:1b: b0:cd:49:1a:cc:0a:78:c2:eb:7d:28:76:52:eb:39: 32:82:e2:eb:11:ef:5c:77:a5:1c:56:7d:fe:58:cf: 8d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:98:B7:14:AD:E0:B7:DE:F2:6B:73:79:B4:4B:A6:40:78:B1:A0:E3 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d712a7-f3ce-497e-aae6-90aa99ab8e9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.15.0/24 Signature Algorithm: sha256WithRSAEncryption 71:2d:2b:0b:8c:08:0d:a8:92:92:41:6e:2e:8a:b2:73:aa:8a: b1:f4:cb:69:0f:f6:fa:5d:15:78:71:63:2c:77:ab:86:b5:86: 7c:4d:96:0d:53:44:8b:15:b2:37:29:22:31:f9:bd:d4:59:91: 14:e3:48:53:dd:8b:0a:2d:f5:2f:aa:89:ea:67:87:8f:34:e7: a0:18:f2:05:68:93:b2:8a:7e:42:e9:6d:9b:b2:d9:72:63:f1: 4a:d3:b9:a9:75:1b:c8:b6:83:f9:00:6b:d3:d1:f8:6e:1d:b6: 2f:61:1b:a7:b1:2a:96:e7:b5:71:78:2b:c3:80:0a:fc:ee:f8: 49:04:ed:33:4f:7d:a0:55:39:b7:d7:95:7a:57:83:41:e0:16: 12:72:77:46:81:81:2c:6c:49:9f:92:98:96:a8:9b:ed:eb:8c: 68:30:46:87:c9:f9:8d:23:a6:63:ce:03:63:d8:30:b2:a3:da: 37:19:90:85:c8:ce:1c:7a:44:60:19:d6:1d:fd:f8:bb:74:5b: 42:4a:63:91:cd:22:2e:bf:ea:8c:d4:50:96:b7:ae:5b:6d:03: b5:51:10:45:3d:d8:fc:f8:bc:6c:7e:af:b1:ca:ec:f6:34:ff: 34:e7:5f:4c:dd:30:eb:36:8c:3f:6a:fc:95:96:88:5a:63:44: 4a:bf:c6:12 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU42NbLkUt/EcF/XHpUhUL0HxpEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc0MDIxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjkyZThiNjYyYjYxZmY2ZWU2ZGU0ZDc1MGRjNzljZWU1 YTcyNTkzYjFhZDJmMjA2NDNhMDk2MTk3Y2IxOGIxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCimtWUnKSI6jtz3zPXRn5bcNwQZcFd8SEjWq850LOGt7vc uETLQ7ZXJo8d4homWio8KmwXlbLzjtYmcvJrBgwSf+QFEF3XeVDJbIuxcIMCrB/3 ddXEknLXDpVKTFtdQMwubHpnxseX7VBHGAUYf5D7suVWU5+sede1rzU2zdXKPqQ2 F7v9R9/Rys6XY8zor4NNDvQLEY21ldD0lezh3u98vjYSGZU6/luuSyD8fAhq6KW+ DFcbsrtoPLAiyWKuVT9WYnir1sCOoTfzfwdCCTjeGyl0ocLqku2YO5kiwCIhG7DN SRrMCnjC630odlLrOTKC4usR71x3pRxWff5Yz41DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB5i3FK3gt97ya3N5tEumQHixoOMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzY5ZDcxMmE3LWYzY2UtNDk3ZS1hYWU2LTkwYWE5OWFiOGU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUg8wDQYJKoZIhvcNAQELBQADggEBAHEtKwuMCA2okpJBbi6KsnOqirH0 y2kP9vpdFXhxYyx3q4a1hnxNlg1TRIsVsjcpIjH5vdRZkRTjSFPdiwot9S+qiepn h48056AY8gVok7KKfkLpbZuy2XJj8UrTual1G8i2g/kAa9PR+G4dti9hG6exKpbn tXF4K8OACvzu+EkE7TNPfaBVObfXlXpXg0HgFhJyd0aBgSxsSZ+SmJaom+3rjGgw RofJ+Y0jpmPOA2PYMLKj2jcZkIXIzhx6RGAZ1h39+Lt0W0JKY5HNIi6/6ozUUJa3 rlttA7VREEU92Pz4vGx+r7HK7PY0/zTnX0zdMOs2jD9q/JWWiFpjREq/xhI= -----END CERTIFICATE-----Generated at Fri Jun 6 03:28:31 2025 by rpki-client