$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/494ac592-fba5-41f1-ab2a-ccd1bdb60cab.roa File: 494ac592-fba5-41f1-ab2a-ccd1bdb60cab.roa (raw, json) Hash identifier: wtk5K9qY9mA93VLwOeXoF4Z7coInVSETECn2u6xMdUc= Subject key identifier: A2:40:C9:4B:C2:4B:0B:C9:43:95:5E:F9:C7:D7:70:1D:9E:AA:31:C9 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 68F44816BD9FEBD03647096FA20700BBDDEC6706 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/494ac592-fba5-41f1-ab2a-ccd1bdb60cab.roa Signing time: Wed 04 Jun 2025 00:50:22 +0000 ROA not before: Wed 04 Jun 2025 00:50:22 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:f4:48:16:bd:9f:eb:d0:36:47:09:6f:a2:07:00:bb:dd:ec:67:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 4 00:50:22 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=b251decb2229bafc45e9f303cce3d6fb10184466ff44d26166ebe0174bf86f67, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:11:a5:49:47:96:fb:26:f6:60:f1:76:26: 4f:a9:ab:c1:13:be:f5:6b:81:e5:94:54:89:1e:a6: c5:4f:8d:72:5c:2c:87:55:49:e2:45:8c:47:ec:03: 44:ee:db:c6:90:42:ba:57:77:57:4c:89:77:9d:75: 08:fd:82:47:52:05:70:6f:fa:7b:e4:47:10:cc:89: 5b:04:e8:f4:9e:07:88:62:58:26:71:dc:98:39:94: d1:8c:d1:46:2c:ba:88:69:2b:01:09:4b:bf:4e:d9: eb:5a:29:da:3e:ef:a0:b9:01:74:1f:ad:33:b5:74: 54:48:63:71:f1:67:c2:9c:fa:49:9a:b8:16:79:9f: 79:3e:45:72:35:54:59:52:de:ec:af:ef:3b:35:c2: 93:91:d9:5f:09:83:6c:7d:4e:80:46:b3:be:4b:35: 0d:1d:82:61:7d:ca:b2:a3:11:82:1d:44:89:c9:cb: ad:a4:a4:97:cd:f2:1a:df:40:d8:b1:30:4c:7d:73: 3d:b2:5a:73:21:1e:43:06:90:f1:03:91:e9:be:6a: d2:ac:e8:2d:0a:51:3e:a4:e0:3e:53:ee:55:c4:33: 36:47:63:79:c8:de:df:b6:ac:13:7a:22:ec:84:2b: 97:cc:32:86:64:58:73:c6:98:77:f8:1c:7c:b9:29: 57:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:40:C9:4B:C2:4B:0B:C9:43:95:5E:F9:C7:D7:70:1D:9E:AA:31:C9 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/494ac592-fba5-41f1-ab2a-ccd1bdb60cab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.72.0/24 Signature Algorithm: sha256WithRSAEncryption 35:1e:d9:58:21:0c:7e:94:51:e7:a6:c4:b9:cd:34:8c:ee:1d: 13:42:72:2d:c6:9f:e0:a2:97:9a:6a:b1:e3:d9:15:85:50:0a: d4:59:ce:10:a9:8f:0e:b6:67:85:41:96:39:d7:64:f1:74:6a: c6:d0:c9:f5:62:c0:3e:2c:17:cd:d9:3b:0a:c8:a3:4f:ee:48: 6f:a9:96:48:50:7b:ac:77:b6:95:32:54:db:ca:63:58:97:e2: 3d:43:44:cc:22:1d:d8:2d:ef:4e:b6:b4:9e:3f:af:2b:26:a0: 3d:9e:11:2a:72:6f:cb:15:3b:e6:18:94:ee:49:17:a3:fb:a4: 99:e8:08:25:a3:b8:53:75:90:2b:9c:b5:62:83:b1:24:f9:b5: ab:3f:61:8d:90:5a:a4:46:71:45:aa:b6:3f:51:ec:af:d1:03: 82:57:9d:52:32:08:e7:ff:c3:86:b6:92:44:db:94:36:8e:86: 90:91:77:69:a7:e4:82:63:bb:cb:fe:5f:96:df:f8:f7:e0:f6: 52:5e:da:ee:19:d4:ca:f2:6a:d3:4c:9b:b1:3d:13:9c:c1:0f: cf:67:63:a7:0a:1e:08:9c:c1:43:e3:26:60:11:43:74:ae:4d: cf:20:1c:a1:54:27:63:a8:90:2c:6a:8a:1d:f9:7f:47:10:b3: bf:b6:df:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaPRIFr2f69A2RwlvogcAu93sZwYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjA0MDA1MDIyWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjUxZGVjYjIyMjliYWZjNDVlOWYzMDNjY2UzZDZmYjEw MTg0NDY2ZmY0NGQyNjE2NmViZTAxNzRiZjg2ZjY3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBDxGlSUeW+yb2YPF2Jk+pq8ETvvVrgeWUVIkepsVPjXJc LIdVSeJFjEfsA0Tu28aQQrpXd1dMiXeddQj9gkdSBXBv+nvkRxDMiVsE6PSeB4hi WCZx3Jg5lNGM0UYsuohpKwEJS79O2etaKdo+76C5AXQfrTO1dFRIY3HxZ8Kc+kma uBZ5n3k+RXI1VFlS3uyv7zs1wpOR2V8Jg2x9ToBGs75LNQ0dgmF9yrKjEYIdRInJ y62kpJfN8hrfQNixMEx9cz2yWnMhHkMGkPEDkem+atKs6C0KUT6k4D5T7lXEMzZH Y3nI3t+2rBN6IuyEK5fMMoZkWHPGmHf4HHy5KVevAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUokDJS8JLC8lDlV75x9dwHZ6qMckwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQ5NGFjNTkyLWZiYTUtNDFmMS1hYjJhLWNjZDFiZGI2MGNhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUkgwDQYJKoZIhvcNAQELBQADggEBADUe2VghDH6UUeemxLnNNIzuHRNC ci3Gn+Cil5pqsePZFYVQCtRZzhCpjw62Z4VBljnXZPF0asbQyfViwD4sF83ZOwrI o0/uSG+plkhQe6x3tpUyVNvKY1iX4j1DRMwiHdgt7062tJ4/rysmoD2eESpyb8sV O+YYlO5JF6P7pJnoCCWjuFN1kCuctWKDsST5tas/YY2QWqRGcUWqtj9R7K/RA4JX nVIyCOf/w4a2kkTblDaOhpCRd2mn5IJju8v+X5bf+Pfg9lJe2u4Z1MryatNMm7E9 E5zBD89nY6cKHgicwUPjJmARQ3SuTc8gHKFUJ2OokCxqih35f0cQs7+23wA= -----END CERTIFICATE-----Generated at Sat Jun 14 06:16:19 2025 by rpki-client