$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa File: e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa (raw, json) Hash identifier: U0wGaO7h2E3cw73Vs4O7RAl433DFfWSZOIn96WoY5Qg= Subject key identifier: 52:F7:C8:F2:8F:62:D1:30:85:54:18:89:F3:D1:A3:04:EE:56:F0:D7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6E2368478DCCE744511F39E2DE7C44E05B234356 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa Signing time: Mon 10 Mar 2025 15:20:20 +0000 ROA not before: Mon 10 Mar 2025 15:20:20 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:23:68:47:8d:cc:e7:44:51:1f:39:e2:de:7c:44:e0:5b:23:43:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 10 15:20:20 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ff:58:a5:08:31:90:31:c2:69:e8:65:a1:d7: ed:d7:8d:db:6b:b9:ce:9e:a2:18:cd:de:fe:29:44: 9b:30:e2:20:d3:fb:63:7a:52:b5:6b:bb:e2:d0:f8: 54:72:cb:e6:5f:8f:4d:80:f4:3a:8a:f5:58:c6:19: c5:3b:18:b8:12:fd:8c:17:04:32:85:4a:8d:a0:a6: b7:4b:21:92:51:81:51:d5:75:a3:3b:49:da:58:33: 2d:5e:1b:82:3d:9a:35:14:fb:75:71:c3:15:5c:42: 5f:75:a2:61:41:6b:48:cf:02:c5:df:2d:a2:7b:fa: 1d:5d:79:4e:29:1f:7e:fc:8e:e6:fb:a9:4b:e0:4c: 3d:6d:20:0f:8b:61:80:eb:06:64:14:25:c4:a1:93: 14:26:d8:7f:2a:cc:91:e4:33:dd:3e:c5:02:12:a5: 4a:48:ba:3f:96:04:60:8b:5f:71:78:3e:d1:87:90: 73:49:20:9e:b7:9c:70:57:b1:c3:64:a9:cb:ba:55: e7:4f:64:2a:29:7b:07:53:69:e8:97:ca:df:a8:85: 71:43:4e:64:42:34:15:89:bd:7d:02:e1:cb:55:7e: bb:9e:24:70:8e:a3:b6:38:7a:da:5b:72:8a:c9:d1: 7c:e9:4f:c8:02:a7:bd:85:8d:2c:c6:7b:ed:fc:31: b6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F7:C8:F2:8F:62:D1:30:85:54:18:89:F3:D1:A3:04:EE:56:F0:D7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:9d:c6:c1:39:95:a0:71:e1:9e:80:d5:06:45:13:10:ad:bf: 13:a4:21:5f:23:09:c3:4e:30:0b:c0:5d:f7:c3:20:00:cf:d4: a4:f8:06:56:60:85:fe:71:e0:15:cb:aa:1f:af:7a:c9:ce:c7: df:27:2e:67:aa:53:0d:8b:3b:c5:d0:44:84:d3:8b:56:27:20: fe:b7:61:29:6e:ba:3b:db:a9:f6:e4:96:7b:05:3e:0b:1c:6d: 17:50:1a:f5:9c:d3:0c:2b:20:e6:b7:39:bb:7f:d4:90:72:fd: d5:04:62:50:a6:d1:71:8d:aa:fe:1b:b2:23:72:da:ff:f9:1a: 75:8d:04:17:2e:be:fb:c9:fd:a0:5b:61:b6:29:9d:61:e4:d0: d4:fb:3f:3e:d5:61:1c:94:49:b4:20:eb:7b:f2:d7:bb:4d:21: 80:a8:1b:51:86:68:7e:1b:7c:34:8c:b5:3d:ae:2f:9a:40:13: 18:0f:99:5c:d4:d8:1e:f2:5f:1d:ff:16:8f:59:58:43:66:2d: 02:bd:83:8d:d1:0e:86:a5:19:86:f3:1e:a5:34:2d:7f:d5:2c: 67:69:37:33:16:1e:21:98:ad:a9:52:3b:59:3f:64:bb:2a:4c: ef:f1:bc:99:a3:09:50:fe:e9:e9:e5:1b:30:da:1e:cf:70:24: 6a:c0:bd:c4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbiNoR43M50RRHzni3nxE4FsjQ1YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzEwMTUyMDIwWhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODgwMzk0ZTU5ZTA5NzUzNDc3NzE0MDgwM2QxYWU2YTA4 NGI0Y2U3MDQ2MGEyMjFiYmM3ZjhkYmFkYjNmZmFjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc/1ilCDGQMcJp6GWh1+3Xjdtruc6eohjN3v4pRJsw4iDT +2N6UrVru+LQ+FRyy+Zfj02A9DqK9VjGGcU7GLgS/YwXBDKFSo2gprdLIZJRgVHV daM7SdpYMy1eG4I9mjUU+3VxwxVcQl91omFBa0jPAsXfLaJ7+h1deU4pH378jub7 qUvgTD1tIA+LYYDrBmQUJcShkxQm2H8qzJHkM90+xQISpUpIuj+WBGCLX3F4PtGH kHNJIJ63nHBXscNkqcu6VedPZCopewdTaeiXyt+ohXFDTmRCNBWJvX0C4ctVfrue JHCOo7Y4etpbcorJ0XzpT8gCp72FjSzGe+38MbZjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUvfI8o9i0TCFVBiJ89GjBO5W8NcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U0MWJlM2NlLWVkMGUtNGM3ZS1hOWZkLTQxMTQ5MDFmYTQwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUjANBgkqhkiG9w0BAQsFAAOCAQEAqp3GwTmVoHHhnoDVBkUTEK2/E6Qh XyMJw04wC8Bd98MgAM/UpPgGVmCF/nHgFcuqH696yc7H3ycuZ6pTDYs7xdBEhNOL Vicg/rdhKW66O9up9uSWewU+CxxtF1Aa9ZzTDCsg5rc5u3/UkHL91QRiUKbRcY2q /huyI3La//kadY0EFy6++8n9oFthtimdYeTQ1Ps/PtVhHJRJtCDre/LXu00hgKgb UYZofht8NIy1Pa4vmkATGA+ZXNTYHvJfHf8Wj1lYQ2YtAr2DjdEOhqUZhvMepTQt f9UsZ2k3MxYeIZitqVI7WT9kuypM7/G8maMJUP7p6eUbMNoez3AkasC9xA== -----END CERTIFICATE-----Generated at Thu Mar 13 23:37:29 2025 by rpki-client