$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa File: d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa (raw, json) Hash identifier: 19qWL150uqEEvrLe2n5bsLnIcT64DZMYOGQDMeTucuI= Subject key identifier: 62:AC:D3:09:76:A4:2B:69:AB:B7:C2:94:B7:B7:41:B3:7F:1D:C0:A2 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 4923C80CC0D404D670D01B678BDD6F647A8B2CD8 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa Signing time: Tue 05 Aug 2025 18:01:14 +0000 ROA not before: Tue 05 Aug 2025 18:01:14 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:23:c8:0c:c0:d4:04:d6:70:d0:1b:67:8b:dd:6f:64:7a:8b:2c:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 5 18:01:14 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=61ccfeff074c6f1bba3abd046ff8fac4f99815ba557323be06f7b2590cb547f4, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7a:cd:ee:ad:24:96:88:13:6e:9b:25:a4:2a: 90:0b:3f:c5:fd:5f:20:45:43:4c:42:e0:a2:7d:d2: 24:fd:42:c8:6d:b4:16:68:61:e4:da:6f:b4:5a:f5: 07:04:35:f5:b5:f1:8e:56:9b:88:fe:56:14:c7:54: d3:71:57:15:3e:53:00:cc:f7:01:2c:5b:2d:83:d0: 54:41:58:32:3d:18:8a:d0:85:d8:45:eb:23:66:3f: 8b:36:60:97:45:79:13:f4:8f:82:40:7b:a6:a7:b8: 28:6f:22:f2:bc:56:b5:c7:d8:c2:0d:44:83:52:2e: 69:29:06:84:dc:63:d8:84:4a:6d:1c:e0:2e:03:2b: dd:57:52:11:56:ee:e1:92:88:49:40:3a:c5:6e:ac: ad:be:a2:85:74:8b:5f:56:fc:0f:31:4e:e6:cb:71: 4f:97:40:31:18:86:9c:80:f6:fd:93:84:f5:2b:68: 71:88:16:ea:42:6f:c2:3d:f8:dc:65:43:cf:8b:dc: 0a:02:4a:3d:ce:e1:e3:cb:20:f6:22:55:be:40:d8: af:cb:f6:ad:8d:b8:e7:cf:7c:cd:e4:91:c8:9a:f9: 8c:e2:2e:b1:46:8d:ce:72:4c:51:29:db:98:ab:fe: b6:f1:ec:5d:ab:ce:03:8d:6a:b7:84:8c:5a:a5:26: 13:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:AC:D3:09:76:A4:2B:69:AB:B7:C2:94:B7:B7:41:B3:7F:1D:C0:A2 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.11.0/24 Signature Algorithm: sha256WithRSAEncryption a8:f3:1f:17:fb:be:24:a7:db:58:ba:b2:28:ef:09:79:f6:24: 6f:91:23:2e:56:95:ab:94:e3:33:c1:62:49:49:87:93:7e:ad: 83:54:90:62:a1:82:a7:45:49:d1:77:4c:32:8c:c1:a4:b6:cb: 57:82:9e:ce:97:8d:e9:0c:32:88:6a:de:17:69:7f:2d:48:19: 2e:c3:b4:a6:63:3a:33:84:51:3a:95:89:56:18:1a:db:ff:b5: 7e:47:b3:a5:87:c6:18:ee:48:e7:cd:d9:2a:c9:f0:4d:6d:7c: 73:e9:49:75:c9:8a:9d:e5:35:e0:e3:d7:4d:cf:79:0e:5f:00: 5e:a5:f5:bc:62:d6:1d:16:a2:dc:55:3e:6e:70:37:2c:19:52: f9:b0:eb:42:30:49:72:9e:7a:7e:20:04:f0:54:d2:4c:e3:42: 43:7f:52:59:c2:db:bc:83:2f:b4:0a:a1:59:fe:3c:07:43:b5: 0a:d9:f5:fc:9b:a3:87:13:ea:41:d9:62:c6:f5:31:78:4a:cf: 64:30:5f:65:5d:f9:74:72:61:6e:b9:ad:6a:65:fc:bd:59:c5: f6:d1:5d:09:9a:8d:78:72:4f:9c:9a:9b:84:4c:36:13:32:50: a8:42:01:fc:3f:7c:9d:7b:79:ac:fe:37:32:6c:68:0c:9a:28: 80:a6:ec:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSSPIDMDUBNZw0Btni91vZHqLLNgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA1MTgwMTE0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWNjZmVmZjA3NGM2ZjFiYmEzYWJkMDQ2ZmY4ZmFjNGY5 OTgxNWJhNTU3MzIzYmUwNmY3YjI1OTBjYjU0N2Y0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3es3urSSWiBNumyWkKpALP8X9XyBFQ0xC4KJ90iT9Qsht tBZoYeTab7Ra9QcENfW18Y5Wm4j+VhTHVNNxVxU+UwDM9wEsWy2D0FRBWDI9GIrQ hdhF6yNmP4s2YJdFeRP0j4JAe6anuChvIvK8VrXH2MINRINSLmkpBoTcY9iESm0c 4C4DK91XUhFW7uGSiElAOsVurK2+ooV0i19W/A8xTubLcU+XQDEYhpyA9v2ThPUr aHGIFupCb8I9+NxlQ8+L3AoCSj3O4ePLIPYiVb5A2K/L9q2NuOfPfM3kkcia+Yzi LrFGjc5yTFEp25ir/rbx7F2rzgONareEjFqlJhOVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYqzTCXakK2mrt8KUt7dBs38dwKIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2QwYzQyOGQ0LTk2YTMtNGRmNi1iMjYwLWJiMjA2N2UwYWMyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgswDQYJKoZIhvcNAQELBQADggEBAKjzHxf7viSn21i6sijvCXn2JG+R Iy5WlauU4zPBYklJh5N+rYNUkGKhgqdFSdF3TDKMwaS2y1eCns6XjekMMohq3hdp fy1IGS7DtKZjOjOEUTqViVYYGtv/tX5Hs6WHxhjuSOfN2SrJ8E1tfHPpSXXJip3l NeDj103PeQ5fAF6l9bxi1h0WotxVPm5wNywZUvmw60IwSXKeen4gBPBU0kzjQkN/ UlnC27yDL7QKoVn+PAdDtQrZ9fybo4cT6kHZYsb1MXhKz2QwX2Vd+XRyYW65rWpl /L1ZxfbRXQmajXhyT5yam4RMNhMyUKhCAfw/fJ17eaz+NzJsaAyaKICm7Fk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:15 2025 by rpki-client