$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e96848dd-3369-4e73-af27-2bec7ae42c0e.roa File: e96848dd-3369-4e73-af27-2bec7ae42c0e.roa (raw, json) Hash identifier: FjSjtZWlYQHomS1XmXAlXv3ut4TXJ7aCD42ATsL7PCY= Subject key identifier: 43:9B:64:F6:4A:8C:D9:02:B1:BF:45:1E:57:A6:1E:E5:94:4E:A5:47 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1D7AA13579F6DFB5DBADD67376B998AD3D59012C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e96848dd-3369-4e73-af27-2bec7ae42c0e.roa Signing time: Tue 04 Mar 2025 22:31:02 +0000 ROA not before: Tue 04 Mar 2025 22:31:02 +0000 ROA not after: Tue 08 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:7a:a1:35:79:f6:df:b5:db:ad:d6:73:76:b9:98:ad:3d:59:01:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 4 22:31:02 2025 GMT Not After : Apr 8 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:57:9b:fa:50:c5:ec:a9:96:0c:48:95:f5:1b: db:43:39:a3:74:5c:c2:db:a4:56:33:30:7a:f8:eb: 04:96:47:26:cb:1b:28:7d:a5:47:e6:31:44:e6:5b: df:c1:7a:34:f8:6a:22:5e:04:88:3e:fc:72:88:1c: 68:f4:43:c4:7f:5a:39:f5:fe:81:89:f4:81:f7:73: 17:b3:a8:75:c8:5c:0d:bb:ee:2d:54:9a:90:81:16: f7:cb:b3:5e:f2:7c:af:07:b9:51:65:1d:dc:3f:c9: 53:29:48:7b:80:a3:56:74:1d:a2:e8:e3:96:4d:75: bd:a9:d6:1e:b8:4b:87:33:4b:38:30:63:db:37:56: 84:89:38:86:b9:a5:26:00:2f:ba:81:40:97:70:99: 64:7f:5f:34:d0:20:ae:d5:b6:33:28:3c:2c:91:f5: 50:10:3b:ae:bd:25:96:fb:6d:5b:03:40:f5:0f:88: 9f:4d:10:0d:c0:5d:66:74:3f:1f:72:ce:5d:50:a1: c5:3f:b3:ce:aa:b5:cb:9f:a0:3d:e0:8b:f4:34:dc: 48:99:1b:cf:73:93:7e:f4:2f:ee:32:87:8f:21:01: 48:60:7f:b5:25:9e:8e:af:5d:d5:58:5f:f2:a6:2c: c9:b5:f5:9e:24:ca:00:8e:9f:bf:d3:89:ec:c1:fa: 45:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:9B:64:F6:4A:8C:D9:02:B1:BF:45:1E:57:A6:1E:E5:94:4E:A5:47 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e96848dd-3369-4e73-af27-2bec7ae42c0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.4.0/24 Signature Algorithm: sha256WithRSAEncryption ad:0a:f6:d5:d7:a0:9e:74:8f:a9:9c:2e:09:40:95:ae:aa:4b: f9:c4:fa:e8:43:ae:61:5a:ad:f5:e2:4b:d9:4c:8b:2c:04:78: eb:c6:ee:20:98:05:8b:ee:67:de:5b:52:88:32:c3:20:a8:42: ad:90:82:30:df:82:2e:4a:9a:d5:a6:8b:33:77:d6:b0:b6:bb: 40:a3:58:c5:2d:5b:99:67:4c:cf:9f:1c:f8:ab:02:5e:fc:44: 4c:99:05:61:29:48:0a:cf:2a:73:8e:4e:2d:2a:de:37:80:f4: 5b:78:56:e0:10:b7:f7:ce:5b:85:4a:d4:f2:f3:50:71:5d:53: da:38:a5:03:16:f1:2a:46:36:b3:b0:7d:84:ce:eb:66:a6:10: c0:e3:71:63:3b:da:65:88:7d:e6:da:1c:89:cb:4d:b2:b6:02: b3:60:b2:cb:2c:8b:2c:7a:cb:10:24:96:9d:fa:50:04:98:d5: d3:4d:9b:5d:12:eb:51:09:f4:b3:a9:c0:c0:84:d4:97:f4:28: 68:28:27:90:d5:1a:ec:87:2a:16:0b:c1:59:42:b4:cf:be:40: 33:5c:16:36:df:ec:ae:70:3b:ab:a0:82:2f:e0:e2:e8:8d:38: 1f:15:c4:f6:24:c4:41:9a:b5:74:2f:65:da:e2:5d:5d:a3:67: 50:0e:fa:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHXqhNXn237XbrdZzdrmYrT1ZASwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwMzA0MjIzMTAyWhcNMjUwNDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2E5MmY0NDlmNTNjNGVjNzM1OGIwMzE1MDNjZjE0ZWVl ZTI5NTgyMTFkMjhjYmM0OTgyY2NhZDE3NGJjYWMzMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4V5v6UMXsqZYMSJX1G9tDOaN0XMLbpFYzMHr46wSWRybL Gyh9pUfmMUTmW9/BejT4aiJeBIg+/HKIHGj0Q8R/Wjn1/oGJ9IH3cxezqHXIXA27 7i1UmpCBFvfLs17yfK8HuVFlHdw/yVMpSHuAo1Z0HaLo45ZNdb2p1h64S4czSzgw Y9s3VoSJOIa5pSYAL7qBQJdwmWR/XzTQIK7VtjMoPCyR9VAQO669JZb7bVsDQPUP iJ9NEA3AXWZ0Px9yzl1QocU/s86qtcufoD3gi/Q03EiZG89zk370L+4yh48hAUhg f7Ulno6vXdVYX/KmLMm19Z4kygCOn7/TiezB+kVhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ5tk9kqM2QKxv0UeV6Ye5ZROpUcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U5Njg0OGRkLTMzNjktNGU3My1hZjI3LTJiZWM3YWU0MmMwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgQwDQYJKoZIhvcNAQELBQADggEBAK0K9tXXoJ50j6mcLglAla6qS/nE +uhDrmFarfXiS9lMiywEeOvG7iCYBYvuZ95bUogywyCoQq2QgjDfgi5KmtWmizN3 1rC2u0CjWMUtW5lnTM+fHPirAl78REyZBWEpSArPKnOOTi0q3jeA9Ft4VuAQt/fO W4VK1PLzUHFdU9o4pQMW8SpGNrOwfYTO62amEMDjcWM72mWIfebaHInLTbK2ArNg ssssiyx6yxAklp36UASY1dNNm10S61EJ9LOpwMCE1Jf0KGgoJ5DVGuyHKhYLwVlC tM++QDNcFjbf7K5wO6uggi/g4uiNOB8VxPYkxEGatXQvZdriXV2jZ1AO+sM= -----END CERTIFICATE-----Generated at Thu Mar 13 23:49:23 2025 by rpki-client