$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/4c455a0a-a2f3-4993-8823-e7067f11b897.roa File: 4c455a0a-a2f3-4993-8823-e7067f11b897.roa (raw, json) Hash identifier: oPKa4JutGGTE8p1swW9dOT2dpzhwv68M0A6pR6zB6jE= Subject key identifier: FA:3B:D9:CB:B9:84:9E:7A:56:88:14:75:AF:40:2F:06:2F:D5:B9:98 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 771A1F66648E1DA09069CBDA63F1D075E6AE4688 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/4c455a0a-a2f3-4993-8823-e7067f11b897.roa Signing time: Tue 15 Apr 2025 00:50:13 +0000 ROA not before: Tue 15 Apr 2025 00:50:13 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:1a:1f:66:64:8e:1d:a0:90:69:cb:da:63:f1:d0:75:e6:ae:46:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 15 00:50:13 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=41098e6cfacc588a6aabe9365d351aee3938c29a8e2a1fd08c63553c987a0c69, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:79:c9:02:80:9e:1b:2a:bf:d7:86:99:b0:26: 55:f0:b8:cf:45:d7:f7:7e:10:56:a3:ac:44:2d:73: c7:36:2b:fe:33:ca:2d:bb:37:32:57:63:1c:08:f6: dd:c0:93:2e:22:aa:c1:e9:e6:5c:07:45:49:ff:82: 3f:d2:d2:05:9a:6c:aa:c5:fa:81:62:b3:62:05:b4: b6:13:17:4f:d6:2a:fd:8b:7b:da:2a:1e:56:56:93: d8:25:c5:71:23:99:0e:81:bc:3a:c5:ad:f7:5b:91: ae:57:68:c6:4c:61:fe:c2:96:d1:65:67:dc:03:5b: 03:d1:19:13:da:c5:66:4f:c0:31:3c:87:84:95:5c: 4c:40:64:d3:7f:29:a1:9d:75:60:d0:6f:da:91:53: 04:2d:75:23:7e:e4:4a:a0:51:13:94:8a:40:77:98: 99:90:f1:0f:55:17:9a:e2:94:73:d8:f3:7a:83:56: 13:45:60:a1:1d:f0:2a:5b:d0:cc:ce:39:72:cb:9a: 92:e9:0e:b4:65:b0:b9:8f:2d:1f:6d:4f:52:88:34: d9:3e:56:96:34:44:6c:6e:ba:22:b0:e9:8b:2d:6b: 91:1a:cc:81:39:48:0a:68:fc:44:79:6a:1f:9e:6b: 66:11:09:06:1e:8f:d4:39:88:26:fc:c6:97:44:0c: 61:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:3B:D9:CB:B9:84:9E:7A:56:88:14:75:AF:40:2F:06:2F:D5:B9:98 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/4c455a0a-a2f3-4993-8823-e7067f11b897.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.19.0/24 Signature Algorithm: sha256WithRSAEncryption 65:07:a1:f4:58:2c:bb:59:bd:87:fb:2f:35:8c:b1:d7:5c:37: c3:f6:12:ab:66:e4:9f:a9:bc:2c:38:c2:98:9a:3c:95:53:5f: 23:67:d6:9f:f5:de:9c:55:0a:94:53:63:14:eb:0b:d7:85:e1: 06:d7:78:f5:66:21:2e:48:63:fa:5c:36:44:01:29:27:4e:07: a4:0f:2a:8f:22:6c:92:09:16:56:c7:d4:6b:ab:ad:96:31:97: dc:66:06:05:6b:4b:19:c8:03:e6:79:51:7d:8b:1f:d6:bc:07: 29:be:e4:d2:47:07:a5:be:0f:06:19:62:28:8b:e7:4a:25:23: f6:65:5f:ee:66:a6:91:9d:d7:02:3c:dc:93:f6:3c:9f:88:93: ab:02:52:dd:f8:68:b9:ff:b8:a7:97:9e:d4:78:4f:64:2c:4f: f5:88:87:56:6e:57:33:2e:02:bc:24:f2:a6:71:d7:41:28:7f: 13:d3:6e:9c:e2:e1:0f:7a:a0:22:c3:85:26:3c:86:28:03:26: 4f:3a:7d:81:88:f4:3b:04:71:5c:08:81:52:1e:e6:67:2e:4c: 6a:27:06:6e:8c:d2:6f:15:cb:06:b5:52:18:24:35:99:07:5b: 01:6d:bd:25:66:57:8c:68:a3:d0:97:55:00:9d:dd:7b:54:06: 39:47:97:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdxofZmSOHaCQacvaY/HQdeauRogwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDE1MDA1MDEzWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTA5OGU2Y2ZhY2M1ODhhNmFhYmU5MzY1ZDM1MWFlZTM5 MzhjMjlhOGUyYTFmZDA4YzYzNTUzYzk4N2EwYzY5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzeckCgJ4bKr/XhpmwJlXwuM9F1/d+EFajrEQtc8c2K/4z yi27NzJXYxwI9t3Aky4iqsHp5lwHRUn/gj/S0gWabKrF+oFis2IFtLYTF0/WKv2L e9oqHlZWk9glxXEjmQ6BvDrFrfdbka5XaMZMYf7CltFlZ9wDWwPRGRPaxWZPwDE8 h4SVXExAZNN/KaGddWDQb9qRUwQtdSN+5EqgUROUikB3mJmQ8Q9VF5rilHPY83qD VhNFYKEd8Cpb0MzOOXLLmpLpDrRlsLmPLR9tT1KINNk+VpY0RGxuuiKw6Ysta5Ea zIE5SApo/ER5ah+ea2YRCQYej9Q5iCb8xpdEDGHJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+jvZy7mEnnpWiBR1r0AvBi/VuZgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzRjNDU1YTBhLWEyZjMtNDk5My04ODIzLWU3MDY3ZjExYjg5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUhMwDQYJKoZIhvcNAQELBQADggEBAGUHofRYLLtZvYf7LzWMsddcN8P2 Eqtm5J+pvCw4wpiaPJVTXyNn1p/13pxVCpRTYxTrC9eF4QbXePVmIS5IY/pcNkQB KSdOB6QPKo8ibJIJFlbH1GurrZYxl9xmBgVrSxnIA+Z5UX2LH9a8Bym+5NJHB6W+ DwYZYiiL50olI/ZlX+5mppGd1wI83JP2PJ+Ik6sCUt34aLn/uKeXntR4T2QsT/WI h1ZuVzMuArwk8qZx10EofxPTbpzi4Q96oCLDhSY8higDJk86fYGI9DsEcVwIgVIe 5mcuTGonBm6M0m8Vywa1UhgkNZkHWwFtvSVmV4xoo9CXVQCd3XtUBjlHl7A= -----END CERTIFICATE-----Generated at Sat Apr 26 20:49:39 2025 by rpki-client