$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e96848dd-3369-4e73-af27-2bec7ae42c0e.roa File: e96848dd-3369-4e73-af27-2bec7ae42c0e.roa (raw, json) Hash identifier: PFiXBMJIuSVyLb71tyD226yGX9MF+Iv+fZtkAiWge+c= Subject key identifier: 02:4D:1F:48:B4:3F:DF:00:C7:CB:30:9F:C5:C5:78:0A:A1:27:F0:89 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 471BDFFD7DADED801607A38E5F90A53C6044C0B7 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e96848dd-3369-4e73-af27-2bec7ae42c0e.roa Signing time: Tue 05 Aug 2025 18:00:45 +0000 ROA not before: Tue 05 Aug 2025 18:00:45 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1b:df:fd:7d:ad:ed:80:16:07:a3:8e:5f:90:a5:3c:60:44:c0:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 5 18:00:45 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=c3e1ebee0ce405612b4a3578494f3265898b676ac3c5b48afbfbb0a84e782118, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d6:10:19:fd:7b:81:f6:fb:f6:6d:f0:8a:42: 19:88:44:f4:88:3f:ae:17:47:8e:75:f8:5f:95:c8: cb:48:9a:37:e9:a9:1c:63:20:1a:0a:ea:3f:81:75: e8:93:ab:82:0e:3c:c2:8b:91:7e:ca:2c:36:06:d0: d5:25:7c:c6:b7:d1:66:27:50:60:22:fb:c6:21:86: 2d:16:fa:16:80:be:bf:e4:0d:1e:dd:0a:a4:a3:2f: 0b:39:eb:d8:a7:84:b7:5d:b6:ca:d1:52:69:c1:b1: 76:7e:00:08:c5:80:ca:d2:e9:77:43:2d:4c:05:cd: 62:0b:36:e8:ce:b0:51:fa:68:d1:09:07:71:b2:ac: 56:95:c9:ff:a3:9f:e0:5b:f1:31:bd:e9:1d:90:68: ae:26:1e:2a:8b:ba:a0:db:bb:ad:06:f0:d0:ce:f1: b8:1d:19:85:90:d5:21:4d:5d:5a:bb:50:10:19:85: 4d:5a:47:fe:13:66:08:d8:c6:72:96:ed:22:96:55: 5f:48:12:09:38:e7:38:1a:3f:fb:91:59:8c:88:f9: c8:08:bc:b8:46:26:85:00:d8:a5:ac:e9:b5:53:ca: ee:97:63:f7:93:92:3c:3e:c2:cb:d4:08:88:3c:38: 2e:a1:fe:00:d2:ef:4b:f4:84:6f:50:26:30:60:b7: 54:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4D:1F:48:B4:3F:DF:00:C7:CB:30:9F:C5:C5:78:0A:A1:27:F0:89 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e96848dd-3369-4e73-af27-2bec7ae42c0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.4.0/24 Signature Algorithm: sha256WithRSAEncryption 19:5d:57:22:1c:06:bc:7d:a1:e8:29:81:75:90:a6:02:c4:4f: 50:35:18:1a:8e:30:a7:9d:b4:55:a3:a2:c6:a8:c3:f3:14:5d: b0:13:d0:8b:0f:22:e7:ef:90:e0:be:56:88:84:0d:27:51:25: 56:d2:9e:48:43:ec:e0:31:a6:77:b8:ee:d8:ba:eb:1a:2f:43: 5f:f0:83:64:49:4d:f1:16:7e:46:aa:6e:aa:46:db:ff:b8:43: b2:64:f7:46:b6:9f:de:22:cb:7e:8a:22:32:c0:ce:86:e7:12: a2:2c:52:6c:62:21:45:04:be:48:e6:aa:0c:7f:b7:53:8a:af: e0:ba:0e:15:04:a8:ac:4b:0e:be:1a:a1:19:3c:0c:a5:30:cd: a8:6c:1d:57:ab:82:10:3f:7a:ab:cf:03:70:1d:1e:47:b3:20: 7e:79:32:f1:96:7f:c9:47:a0:57:60:26:33:bb:6d:33:e6:3b: 7e:f3:08:d2:6b:b1:70:fa:bc:18:df:12:78:97:6a:20:4a:10: 0a:7d:47:7c:d7:6e:8c:6a:e3:b0:ab:50:89:0c:29:c1:32:89: 10:35:a4:59:52:22:5e:3f:37:55:63:e0:2b:87:3c:97:00:0c: a5:f5:e5:e8:b7:55:70:8a:97:ea:01:ba:50:a2:5e:0d:2d:db: 45:98:d1:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURxvf/X2t7YAWB6OOX5ClPGBEwLcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA1MTgwMDQ1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjM2UxZWJlZTBjZTQwNTYxMmI0YTM1Nzg0OTRmMzI2NTg5 OGI2NzZhYzNjNWI0OGFmYmZiYjBhODRlNzgyMTE4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDt1hAZ/XuB9vv2bfCKQhmIRPSIP64XR451+F+VyMtImjfp qRxjIBoK6j+BdeiTq4IOPMKLkX7KLDYG0NUlfMa30WYnUGAi+8Yhhi0W+haAvr/k DR7dCqSjLws569inhLddtsrRUmnBsXZ+AAjFgMrS6XdDLUwFzWILNujOsFH6aNEJ B3GyrFaVyf+jn+Bb8TG96R2QaK4mHiqLuqDbu60G8NDO8bgdGYWQ1SFNXVq7UBAZ hU1aR/4TZgjYxnKW7SKWVV9IEgk45zgaP/uRWYyI+cgIvLhGJoUA2KWs6bVTyu6X Y/eTkjw+wsvUCIg8OC6h/gDS70v0hG9QJjBgt1QbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAk0fSLQ/3wDHyzCfxcV4CqEn8IkwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U5Njg0OGRkLTMzNjktNGU3My1hZjI3LTJiZWM3YWU0MmMwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgQwDQYJKoZIhvcNAQELBQADggEBABldVyIcBrx9oegpgXWQpgLET1A1 GBqOMKedtFWjosaow/MUXbAT0IsPIufvkOC+VoiEDSdRJVbSnkhD7OAxpne47ti6 6xovQ1/wg2RJTfEWfkaqbqpG2/+4Q7Jk90a2n94iy36KIjLAzobnEqIsUmxiIUUE vkjmqgx/t1OKr+C6DhUEqKxLDr4aoRk8DKUwzahsHVerghA/eqvPA3AdHkezIH55 MvGWf8lHoFdgJjO7bTPmO37zCNJrsXD6vBjfEniXaiBKEAp9R3zXboxq47CrUIkM KcEyiRA1pFlSIl4/N1Vj4CuHPJcADKX15ei3VXCKl+oBulCiXg0t20WY0c8= -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:05 2025 by rpki-client