$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2fe9db9b-190c-4cb8-b39b-c434b766e412.roa File: 2fe9db9b-190c-4cb8-b39b-c434b766e412.roa (raw, json) Hash identifier: 5b9/tIkEXxnv+3Q+oDvAHqTSZbvVcGaGBgMSSlPVPrw= Subject key identifier: BF:DD:CF:C2:B6:85:13:36:AD:F1:F2:0C:9E:18:63:B7:60:9A:E8:7B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 68CCB3F5AD06ABE8EF6BA26943A391AEC3A64CFE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2fe9db9b-190c-4cb8-b39b-c434b766e412.roa Signing time: Fri 25 Apr 2025 17:30:53 +0000 ROA not before: Fri 25 Apr 2025 17:30:53 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:cc:b3:f5:ad:06:ab:e8:ef:6b:a2:69:43:a3:91:ae:c3:a6:4c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:30:53 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=b37867ed0d05930e55ae4b7de3cc582754591d20e4b9baf78dbb491cd51b74f7, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:52:9b:8a:e0:e1:33:aa:a1:5d:08:21:44:a2: 76:bd:44:a6:6b:78:b5:f8:57:05:f8:51:2a:5a:c9: 88:15:03:be:12:9d:8f:20:53:de:51:74:e9:96:18: c7:89:85:20:e3:f8:a7:15:62:ff:e1:c4:ac:a3:5a: 13:3f:92:dd:73:c1:d6:a5:80:5f:59:13:6f:df:0c: 51:36:7c:9e:59:5d:e6:89:c8:b5:55:1b:93:79:09: ff:96:f5:9d:89:f9:ba:2e:db:9e:02:b8:e4:ef:8f: d3:63:5e:fe:4e:26:f4:89:84:fc:1c:b1:a2:2d:fe: d5:bf:a7:09:40:b4:68:c1:9e:df:2e:4a:b9:ea:c9: 61:e9:b9:9a:48:2e:ef:92:e8:ad:0b:61:d4:67:78: 96:f2:3e:a8:19:5d:81:a2:6a:a9:89:a4:b0:68:38: e7:91:f5:a0:d1:1d:76:88:c2:76:c9:69:4f:35:1c: 56:ff:91:9c:c0:f3:51:0f:5f:34:1f:94:f7:9b:02: a1:98:75:27:13:43:fd:66:93:e5:f3:28:df:af:f4: e9:f1:1e:6d:d6:7c:0c:52:ec:29:fa:91:62:fa:49: 85:6b:03:58:33:d8:52:be:39:a9:a7:5a:61:aa:fa: e9:58:1a:ee:2c:ef:1b:e2:4a:6a:af:c2:e6:b3:e8: 2f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DD:CF:C2:B6:85:13:36:AD:F1:F2:0C:9E:18:63:B7:60:9A:E8:7B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/2fe9db9b-190c-4cb8-b39b-c434b766e412.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.16.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f6:ef:80:3b:c6:99:d3:b2:97:31:3c:20:45:f3:ea:79:24: 1f:04:79:75:cf:24:14:f8:98:b1:00:78:0c:c4:72:99:55:cc: 71:1c:13:a6:c8:db:38:cf:0e:3b:ac:98:41:fe:82:c3:9e:4b: 2a:3e:39:3f:d9:60:db:b1:57:db:b7:01:6b:3a:a1:ad:8d:4f: ec:c8:ad:7e:94:6c:d3:43:93:9f:f5:24:50:93:2d:72:f1:48: 28:79:bf:ce:81:71:b6:2a:a7:20:86:09:8a:a7:8b:65:c0:d7: 7b:04:98:8e:9d:03:e4:5c:4b:bc:90:a1:9e:ed:59:8f:1c:bc: 16:f9:70:77:d4:63:e6:99:b0:cb:24:23:b4:d5:55:69:ce:ff: c4:f9:31:cc:35:67:ba:5e:2e:53:7d:d7:78:1b:3e:23:0b:41: e2:9f:82:dc:44:68:2c:4f:f6:c7:6f:54:03:be:98:94:d8:f5: 58:d2:34:b2:4a:aa:4d:a2:c5:54:3b:0e:6c:56:80:66:27:ef: 8f:1c:96:8a:26:8e:d5:4a:5f:22:ef:1d:9a:50:65:14:b1:02: 8d:7f:9a:6c:d1:7c:84:04:af:48:77:e7:42:6e:88:38:4c:9b: d7:5d:a6:e1:1f:29:4c:34:69:7b:ff:37:ac:5f:95:e0:21:84: 6b:94:a0:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaMyz9a0Gq+jva6JpQ6ORrsOmTP4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTczMDUzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzc4NjdlZDBkMDU5MzBlNTVhZTRiN2RlM2NjNTgyNzU0 NTkxZDIwZTRiOWJhZjc4ZGJiNDkxY2Q1MWI3NGY3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqUpuK4OEzqqFdCCFEona9RKZreLX4VwX4USpayYgVA74S nY8gU95RdOmWGMeJhSDj+KcVYv/hxKyjWhM/kt1zwdalgF9ZE2/fDFE2fJ5ZXeaJ yLVVG5N5Cf+W9Z2J+bou254CuOTvj9NjXv5OJvSJhPwcsaIt/tW/pwlAtGjBnt8u SrnqyWHpuZpILu+S6K0LYdRneJbyPqgZXYGiaqmJpLBoOOeR9aDRHXaIwnbJaU81 HFb/kZzA81EPXzQflPebAqGYdScTQ/1mk+XzKN+v9OnxHm3WfAxS7Cn6kWL6SYVr A1gz2FK+OamnWmGq+ulYGu4s7xviSmqvwuaz6C8XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv93PwraFEzat8fIMnhhjt2Ca6HswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzJmZTlkYjliLTE5MGMtNGNiOC1iMzliLWM0MzRiNzY2ZTQxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUhAwDQYJKoZIhvcNAQELBQADggEBAF7274A7xpnTspcxPCBF8+p5JB8E eXXPJBT4mLEAeAzEcplVzHEcE6bI2zjPDjusmEH+gsOeSyo+OT/ZYNuxV9u3AWs6 oa2NT+zIrX6UbNNDk5/1JFCTLXLxSCh5v86BcbYqpyCGCYqni2XA13sEmI6dA+Rc S7yQoZ7tWY8cvBb5cHfUY+aZsMskI7TVVWnO/8T5Mcw1Z7peLlN913gbPiMLQeKf gtxEaCxP9sdvVAO+mJTY9VjSNLJKqk2ixVQ7DmxWgGYn748cloomjtVKXyLvHZpQ ZRSxAo1/mmzRfIQEr0h350JuiDhMm9ddpuEfKUw0aXv/N6xfleAhhGuUoOY= -----END CERTIFICATE-----Generated at Sat Apr 26 18:28:48 2025 by rpki-client