$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/36d19c61-2356-453b-bdde-185259d9b804.roa File: 36d19c61-2356-453b-bdde-185259d9b804.roa (raw, json) Hash identifier: 662N0Q/VTy1hRXasjDKvpxDoC4fBEoXyKcR/17jGwFI= Subject key identifier: 66:55:02:35:03:08:E4:5F:5D:8D:B7:64:B0:37:79:A4:5E:63:FC:1D Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 757836E554CBDC79487736A4F46B1D644687AB19 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/36d19c61-2356-453b-bdde-185259d9b804.roa Signing time: Fri 25 Apr 2025 17:30:50 +0000 ROA not before: Fri 25 Apr 2025 17:30:50 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:78:36:e5:54:cb:dc:79:48:77:36:a4:f4:6b:1d:64:46:87:ab:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:30:50 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=42de40d6ad9f6ee1192a74313d69d599a50e9cf67dc4008c7eb132133879b072, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:95:10:f9:a4:92:dd:cb:1b:ae:37:ca:d0:99: e5:13:2c:d4:4e:88:b8:e4:3b:a9:b1:a1:39:46:6a: 67:c7:57:94:89:a6:03:3e:4a:a9:b8:f4:2e:53:a6: c0:27:a8:54:db:15:22:dd:13:52:2e:0a:e7:73:e8: 29:76:cd:7c:f4:23:9d:3b:db:52:82:30:1d:99:cd: 8d:8e:59:06:a1:5a:ab:61:77:06:90:d9:ea:32:42: ce:10:6b:c4:3f:8a:49:6f:53:3f:bb:8d:8d:02:0f: e0:3c:31:70:06:90:6d:34:bd:1e:0a:23:c2:49:fa: ce:35:0e:74:5c:d3:47:16:68:ba:33:b3:0c:6a:58: a7:b3:70:79:91:d6:cd:8a:d5:40:3e:e9:03:0f:21: 79:cb:31:59:cd:f0:e7:b9:12:17:c2:e3:69:88:61: 93:aa:b1:2b:8b:e7:4c:85:7c:61:26:53:d0:f5:9e: 8c:8f:2f:a4:a0:7d:b3:5a:cc:d4:31:21:7f:cb:c7: e0:76:9a:a9:29:b8:cd:de:d7:2a:0b:cf:eb:84:37: 66:4c:59:0f:30:da:da:df:c7:7b:05:fd:7b:be:e0: 41:0b:c0:60:69:91:cb:bb:db:b9:1a:10:70:23:49: 8a:d5:9f:95:28:5e:87:a3:4f:72:7f:02:ef:1e:02: cc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:55:02:35:03:08:E4:5F:5D:8D:B7:64:B0:37:79:A4:5E:63:FC:1D X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/36d19c61-2356-453b-bdde-185259d9b804.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.5.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:80:49:19:24:5c:b5:fd:ec:53:ef:ff:ce:8d:5b:a3:20:71: 9b:16:6f:a9:e4:bc:9a:3a:19:65:d8:e3:a4:77:c5:2d:fc:20: 8c:f9:a7:1a:10:b5:87:9e:4f:c5:83:0c:15:47:d8:87:d3:5a: d2:e5:b7:04:b0:b3:78:f9:f9:8b:84:63:9c:f9:2e:c8:79:0d: 3b:92:04:e0:b4:96:98:80:2d:18:1c:35:fb:08:a9:0b:e0:0c: 27:f4:e4:c8:a6:5f:58:0c:3a:2c:72:9e:24:df:f5:ac:58:90: d4:69:f3:f7:59:46:c2:bf:f0:3d:be:d0:8e:d0:f1:f0:85:26: 2e:df:41:69:5d:dd:48:1b:fb:41:83:a5:93:85:14:03:7a:0f: f2:06:76:e0:95:9f:b9:3a:c7:d4:91:12:73:f4:b8:87:dc:6c: b4:57:cd:e2:f1:d3:df:28:86:83:f6:8b:a9:3f:2c:79:c0:bf: dc:27:d8:bc:0c:b0:9c:ce:7b:52:74:bc:a0:8d:c5:0a:41:f2: d6:91:df:33:42:be:cb:aa:f7:81:0e:5f:2c:f5:8b:11:a6:26: aa:1a:06:a2:43:92:9d:22:f6:85:11:8a:f2:5d:56:82:03:26: 13:74:88:b2:3c:24:bd:ff:0e:c7:74:7f:c1:8e:7d:80:3e:0c: 4e:58:0a:16 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdXg25VTL3HlIdzak9GsdZEaHqxkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTczMDUwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmRlNDBkNmFkOWY2ZWUxMTkyYTc0MzEzZDY5ZDU5OWE1 MGU5Y2Y2N2RjNDAwOGM3ZWIxMzIxMzM4NzliMDcyMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLlRD5pJLdyxuuN8rQmeUTLNROiLjkO6mxoTlGamfHV5SJ pgM+Sqm49C5TpsAnqFTbFSLdE1IuCudz6Cl2zXz0I50721KCMB2ZzY2OWQahWqth dwaQ2eoyQs4Qa8Q/iklvUz+7jY0CD+A8MXAGkG00vR4KI8JJ+s41DnRc00cWaLoz swxqWKezcHmR1s2K1UA+6QMPIXnLMVnN8Oe5EhfC42mIYZOqsSuL50yFfGEmU9D1 noyPL6SgfbNazNQxIX/Lx+B2mqkpuM3e1yoLz+uEN2ZMWQ8w2trfx3sF/Xu+4EEL wGBpkcu727kaEHAjSYrVn5UoXoejT3J/Au8eAszvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZlUCNQMI5F9djbdksDd5pF5j/B0wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzM2ZDE5YzYxLTIzNTYtNDUzYi1iZGRlLTE4NTI1OWQ5YjgwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgUwDQYJKoZIhvcNAQELBQADggEBAE2ASRkkXLX97FPv/86NW6MgcZsW b6nkvJo6GWXY46R3xS38IIz5pxoQtYeeT8WDDBVH2IfTWtLltwSws3j5+YuEY5z5 Lsh5DTuSBOC0lpiALRgcNfsIqQvgDCf05MimX1gMOixyniTf9axYkNRp8/dZRsK/ 8D2+0I7Q8fCFJi7fQWld3Ugb+0GDpZOFFAN6D/IGduCVn7k6x9SREnP0uIfcbLRX zeLx098ohoP2i6k/LHnAv9wn2LwMsJzOe1J0vKCNxQpB8taR3zNCvsuq94EOXyz1 ixGmJqoaBqJDkp0i9oURivJdVoIDJhN0iLI8JL3/Dsd0f8GOfYA+DE5YChY= -----END CERTIFICATE-----Generated at Sat Apr 26 14:52:25 2025 by rpki-client