$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5badb39b-b8ba-4eb1-b806-461be5bd804c.roa File: 5badb39b-b8ba-4eb1-b806-461be5bd804c.roa (raw, json) Hash identifier: lEBKUE/55Q6/ji/ZbQoQJd/5qv2ZBDV4IDF1yp+Ib7E= Subject key identifier: 96:7E:6A:FA:10:D9:FA:4A:13:8F:28:23:B5:92:D4:43:D7:6A:AA:7B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 2D6E07DB7E091B72764A890AB7D7F55CF74276D6 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5badb39b-b8ba-4eb1-b806-461be5bd804c.roa Signing time: Fri 11 Jul 2025 18:00:19 +0000 ROA not before: Fri 11 Jul 2025 18:00:19 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:6e:07:db:7e:09:1b:72:76:4a:89:0a:b7:d7:f5:5c:f7:42:76:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:00:19 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=d3b2251841f06dcd1372bb3f38f6fd57608952427821c19f6ef4628f4514df75, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:3d:37:4f:90:88:5f:a6:db:e0:00:51:62:19: 61:cd:88:fb:2b:f3:bb:d1:31:48:81:de:4b:f1:d6: 3f:4e:79:e4:78:5b:75:e0:07:e0:56:c3:e7:b4:d7: 0d:25:10:d9:90:eb:f4:4a:7a:24:63:ff:ca:f0:48: f7:fc:06:c4:85:43:84:c3:66:1f:ab:12:1b:a5:f0: 03:c8:f7:d5:a8:89:80:7d:d7:8f:56:de:f2:84:dc: cb:58:75:10:88:b6:b4:9d:c6:1c:a7:dc:56:91:ef: f7:f2:3c:7e:9a:3a:e3:02:1d:95:4d:c4:6f:4e:33: 2e:3b:72:4a:af:ad:8d:4d:a4:bf:eb:98:12:81:b9: 1b:b8:d7:3e:1a:8f:4c:b0:29:6f:5f:3a:3a:8f:a9: 84:01:d9:2d:2e:d2:ee:32:d5:cc:76:83:61:7c:78: dd:5f:cd:f9:12:a0:ff:44:d1:3c:65:57:a7:84:30: ac:1b:c5:3f:79:29:9b:6a:40:df:a1:d0:9b:5b:3e: 24:6c:5d:34:b3:cf:4e:c3:3a:5a:6b:a4:53:91:69: 24:85:5b:21:12:31:c7:04:bd:1c:95:ca:b2:49:8a: bb:65:a9:b3:7a:ea:bd:36:ba:83:c5:fe:1a:b0:d4: 29:37:76:d9:a9:f6:9d:cf:d0:05:b7:08:8a:a6:63: e5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7E:6A:FA:10:D9:FA:4A:13:8F:28:23:B5:92:D4:43:D7:6A:AA:7B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5badb39b-b8ba-4eb1-b806-461be5bd804c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.7.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:32:da:5e:8f:c0:14:1b:a8:48:8f:d6:de:0d:18:d5:9d:95: cf:32:aa:39:9a:d3:fe:cc:81:a9:f4:8a:a0:a7:48:47:76:bf: bd:7a:53:7a:db:02:df:d2:e8:2b:73:c6:f9:b1:f1:f0:0b:f1: 4c:86:b7:fa:7e:69:89:31:6c:2c:89:17:1d:ea:16:a6:d0:73: c5:b9:fc:4d:51:42:76:90:1b:60:06:66:39:42:95:26:12:0d: 24:68:8e:2e:78:a3:0b:bc:ea:28:80:e6:58:c5:6f:1b:4e:d4: 26:58:87:e2:78:c8:a8:65:ab:e9:a8:e5:de:39:61:d6:ca:67: 9d:05:d5:13:e2:66:21:36:7e:be:a2:ca:95:0d:32:48:3e:4b: c9:5f:da:19:5e:ee:4a:8f:1a:3d:f8:7b:5d:6e:ed:2a:05:6a: f3:15:1a:2b:5d:21:39:71:db:09:78:79:b8:57:f3:2f:34:d2: 53:da:48:3a:11:4b:38:90:92:8b:27:15:e8:e8:d0:b9:4c:35: ea:74:d0:94:60:85:5e:88:72:51:84:3a:45:85:74:cf:50:cf: ba:7b:79:31:12:1a:7a:43:66:ec:08:fb:3b:31:18:f7:3f:e8: 69:dd:2b:c8:9b:21:12:47:1b:a1:55:5b:f5:bf:95:52:94:c4: d7:9f:8c:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULW4H234JG3J2SokKt9f1XPdCdtYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgwMDE5WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2IyMjUxODQxZjA2ZGNkMTM3MmJiM2YzOGY2ZmQ1NzYw ODk1MjQyNzgyMWMxOWY2ZWY0NjI4ZjQ1MTRkZjc1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDPTdPkIhfptvgAFFiGWHNiPsr87vRMUiB3kvx1j9OeeR4 W3XgB+BWw+e01w0lENmQ6/RKeiRj/8rwSPf8BsSFQ4TDZh+rEhul8API99WoiYB9 149W3vKE3MtYdRCItrSdxhyn3FaR7/fyPH6aOuMCHZVNxG9OMy47ckqvrY1NpL/r mBKBuRu41z4aj0ywKW9fOjqPqYQB2S0u0u4y1cx2g2F8eN1fzfkSoP9E0TxlV6eE MKwbxT95KZtqQN+h0JtbPiRsXTSzz07DOlprpFORaSSFWyESMccEvRyVyrJJirtl qbN66r02uoPF/hqw1Ck3dtmp9p3P0AW3CIqmY+UBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUln5q+hDZ+koTjygjtZLUQ9dqqnswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzViYWRiMzliLWI4YmEtNGViMS1iODA2LTQ2MWJlNWJkODA0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgcwDQYJKoZIhvcNAQELBQADggEBAIoy2l6PwBQbqEiP1t4NGNWdlc8y qjma0/7Mgan0iqCnSEd2v716U3rbAt/S6Ctzxvmx8fAL8UyGt/p+aYkxbCyJFx3q FqbQc8W5/E1RQnaQG2AGZjlClSYSDSRoji54owu86iiA5ljFbxtO1CZYh+J4yKhl q+mo5d45YdbKZ50F1RPiZiE2fr6iypUNMkg+S8lf2hle7kqPGj34e11u7SoFavMV GitdITlx2wl4ebhX8y800lPaSDoRSziQkosnFejo0LlMNep00JRghV6IclGEOkWF dM9Qz7p7eTESGnpDZuwI+zsxGPc/6GndK8ibIRJHG6FVW/W/lVKUxNefjH8= -----END CERTIFICATE-----Generated at Mon Aug 4 21:50:20 2025 by rpki-client