$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa File: d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa (raw, json) Hash identifier: zii6XbcRzYUkG+r3jeCdB/CnppL5jzuvnqoDm4UDJkI= Subject key identifier: 69:E7:9E:96:EB:C5:C5:C1:9D:66:28:66:2D:22:30:53:62:45:22:0E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 104E7F45758E681019448DDFBFB537E8B2693DE3 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa Signing time: Tue 20 May 2025 17:50:29 +0000 ROA not before: Tue 20 May 2025 17:50:29 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:4e:7f:45:75:8e:68:10:19:44:8d:df:bf:b5:37:e8:b2:69:3d:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:50:29 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=79b9e8c14450f15e66be9350e267ae1cf6ca0658e2113db3b7367f507c2ab8da, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d8:15:92:5d:32:5f:a1:4d:e4:02:36:90:4b: c3:8c:a7:cf:82:61:37:ae:07:e6:8f:3a:07:01:64: 69:94:04:2a:b3:a2:f6:b5:3d:9a:a3:fa:8f:a9:62: 28:6d:ea:8c:eb:7e:25:19:fe:c8:b3:c1:37:00:9c: 8d:54:6d:c8:cb:88:68:1d:69:3a:89:91:01:b0:6f: 57:2c:80:1c:14:61:9b:12:c7:e0:66:bc:17:65:a8: d5:fa:52:09:20:a9:52:5f:28:7b:90:90:2a:c7:27: 67:a3:89:4f:c7:81:71:5e:b5:97:59:99:db:c5:ea: d8:c1:98:a3:a2:9f:28:91:5d:ce:0d:f0:f2:e7:0e: 04:1a:91:15:70:b4:35:9f:80:fa:2a:be:39:ec:6d: 4e:c0:3e:3d:4d:3b:0d:f6:54:22:bb:73:3c:9d:e8: 91:dd:15:b1:30:1c:79:69:da:30:6b:3d:61:5c:f6: 3b:72:67:92:99:a3:f3:2d:ec:f8:1a:05:86:b3:01: 4e:32:55:15:61:6c:11:ea:a2:f4:35:58:0c:57:70: 30:11:af:b8:02:03:4a:11:8a:91:69:1c:11:63:34: 2d:da:f4:dc:93:fb:0d:dc:33:22:90:b1:fa:9f:a4: 3e:9c:31:45:23:f6:0e:4b:ae:39:64:c4:c2:b0:22: 89:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E7:9E:96:EB:C5:C5:C1:9D:66:28:66:2D:22:30:53:62:45:22:0E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.11.0/24 Signature Algorithm: sha256WithRSAEncryption 01:1f:97:8a:d9:4d:1a:ae:98:ca:02:1f:a3:80:a4:e9:b2:01: c8:f3:1e:19:65:ca:8a:64:55:61:ce:e9:e5:45:35:35:47:cc: b8:00:ac:49:f9:f3:a5:22:1d:27:2c:b3:e6:44:0a:9d:29:7e: 5c:a4:13:81:06:72:d6:33:d7:6a:fc:6b:15:16:bc:93:d1:69: 67:a6:0c:a8:01:e4:84:b1:43:d5:96:7c:cd:a1:14:6f:03:da: 30:4b:57:e2:55:70:1d:ca:b2:93:4a:12:7b:2e:b7:b7:46:78: 6e:6d:ef:96:79:c2:6a:86:56:40:e3:8e:7a:29:9d:37:7d:a3: 2c:ee:fe:fb:95:8c:95:91:6d:a1:f9:32:e9:98:8f:06:b0:f8: 30:20:27:63:05:ef:00:32:5e:35:60:24:2b:ef:ce:42:d9:66: b4:8e:63:55:39:d0:82:44:b2:6c:73:cf:57:aa:47:2f:35:6f: 8f:90:c3:05:df:c7:d9:0f:c1:e8:bb:77:64:86:04:c7:da:2d: 54:fd:b0:bf:d7:7e:13:a4:b5:ee:1f:6e:36:97:3b:b8:5b:8a: 5b:7d:43:da:f5:77:44:67:1d:fc:0c:51:54:8c:bd:a7:3b:4f: 4f:48:23:30:61:d7:0d:0b:a4:54:63:88:dc:7c:67:f3:9f:b7: 07:f8:be:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEE5/RXWOaBAZRI3fv7U36LJpPeMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc1MDI5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWI5ZThjMTQ0NTBmMTVlNjZiZTkzNTBlMjY3YWUxY2Y2 Y2EwNjU4ZTIxMTNkYjNiNzM2N2Y1MDdjMmFiOGRhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDh2BWSXTJfoU3kAjaQS8OMp8+CYTeuB+aPOgcBZGmUBCqz ova1PZqj+o+pYiht6ozrfiUZ/sizwTcAnI1UbcjLiGgdaTqJkQGwb1csgBwUYZsS x+BmvBdlqNX6UgkgqVJfKHuQkCrHJ2ejiU/HgXFetZdZmdvF6tjBmKOinyiRXc4N 8PLnDgQakRVwtDWfgPoqvjnsbU7APj1NOw32VCK7czyd6JHdFbEwHHlp2jBrPWFc 9jtyZ5KZo/Mt7PgaBYazAU4yVRVhbBHqovQ1WAxXcDARr7gCA0oRipFpHBFjNC3a 9NyT+w3cMyKQsfqfpD6cMUUj9g5LrjlkxMKwIom9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaeeeluvFxcGdZihmLSIwU2JFIg4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2QwYzQyOGQ0LTk2YTMtNGRmNi1iMjYwLWJiMjA2N2UwYWMyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgswDQYJKoZIhvcNAQELBQADggEBAAEfl4rZTRqumMoCH6OApOmyAcjz HhllyopkVWHO6eVFNTVHzLgArEn586UiHScss+ZECp0pflykE4EGctYz12r8axUW vJPRaWemDKgB5ISxQ9WWfM2hFG8D2jBLV+JVcB3KspNKEnsut7dGeG5t75Z5wmqG VkDjjnopnTd9oyzu/vuVjJWRbaH5MumYjwaw+DAgJ2MF7wAyXjVgJCvvzkLZZrSO Y1U50IJEsmxzz1eqRy81b4+QwwXfx9kPwei7d2SGBMfaLVT9sL/XfhOkte4fbjaX O7hbilt9Q9r1d0RnHfwMUVSMvac7T09IIzBh1w0LpFRjiNx8Z/Oftwf4vp8= -----END CERTIFICATE-----Generated at Sat Jun 7 04:33:09 2025 by rpki-client