$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5badb39b-b8ba-4eb1-b806-461be5bd804c.roa File: 5badb39b-b8ba-4eb1-b806-461be5bd804c.roa (raw, json) Hash identifier: ysiXn4szyqdZRZ4ia/JieX/vkkGUmjPiXzgmNrFlOXo= Subject key identifier: AA:E2:22:F9:95:96:E2:11:F2:37:3C:69:14:A7:BB:44:A6:DA:B4:8C Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 066282F997B4DB0526B247E4AF1D4AE72CF27568 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5badb39b-b8ba-4eb1-b806-461be5bd804c.roa Signing time: Fri 25 Apr 2025 17:30:51 +0000 ROA not before: Fri 25 Apr 2025 17:30:51 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:62:82:f9:97:b4:db:05:26:b2:47:e4:af:1d:4a:e7:2c:f2:75:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:30:51 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=7756e90f09b83170985013cd2169aa35673c2e220f6194560b7afc1f8e76cf09, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:b2:c8:81:23:5f:40:8e:d4:7e:4c:c9:8a: 7d:40:02:c7:1e:88:2a:cb:99:00:8a:33:e0:bb:b8: 6a:8a:46:8b:11:c1:40:56:8c:75:94:ee:b7:2e:6c: e8:40:78:50:42:97:e0:7b:c5:3f:cd:5b:76:5c:eb: 2d:99:6e:c2:ba:4e:ae:20:49:99:76:03:22:9e:f2: f9:d4:16:74:85:71:e4:6a:ba:89:ec:a1:9f:63:4e: 05:ea:3e:8a:35:9d:af:b8:bf:09:51:a7:0f:6d:b2: 02:24:f4:f8:2b:49:bb:cf:f9:e4:71:33:13:55:7e: c9:4b:bf:b7:d7:20:bc:fa:aa:c3:62:59:6e:ad:bf: e0:32:96:6e:ec:7d:7c:e1:32:c1:ff:10:70:ec:b6: 90:c8:83:62:87:f7:5c:0b:a0:ec:7a:91:5d:e2:18: cf:34:9f:fc:37:88:cd:d6:80:e1:28:01:61:d3:30: 59:e1:cd:71:2f:b7:f3:16:48:8e:36:76:55:97:ed: 85:76:e5:5a:02:6a:7e:4f:c1:03:e7:99:8e:6e:78: a4:e9:08:d7:34:da:6f:2c:8f:f3:de:03:80:f3:f5: 43:63:09:29:34:5e:28:af:3a:e0:12:31:1b:6c:29: ac:5d:b6:1d:f1:51:68:b2:1b:cb:c1:04:f6:09:71: d2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E2:22:F9:95:96:E2:11:F2:37:3C:69:14:A7:BB:44:A6:DA:B4:8C X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5badb39b-b8ba-4eb1-b806-461be5bd804c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.7.0/24 Signature Algorithm: sha256WithRSAEncryption 25:93:56:5f:4f:e0:92:83:95:aa:de:53:b4:e6:88:a8:ce:05: ce:7e:27:1b:23:9c:cd:f8:c8:49:9b:f9:c6:aa:88:0e:02:5b: 6b:bd:7a:46:4d:91:05:a9:2a:a2:8a:9a:82:d1:0f:4c:90:95: 60:11:8d:3d:8b:5f:9b:d4:6f:4d:7a:c3:f6:44:31:d5:86:04: 27:c2:df:6f:9d:e0:31:e9:7c:66:33:28:02:3a:c8:39:a1:fe: d6:e1:e4:a2:03:ac:66:b8:d5:c4:ff:87:0f:6f:1b:91:e5:4a: f2:81:da:b8:49:8b:28:2e:9e:27:dc:5c:c4:43:12:e2:2a:c8: 30:a7:fc:17:3d:16:31:8d:ab:d7:58:b5:ce:05:c9:73:0d:d5: ef:0e:14:22:fa:4d:ae:02:f9:0b:3e:43:e6:70:83:01:a1:04: 9c:7c:51:17:46:58:f6:74:aa:28:f9:22:8a:20:fb:69:3c:e2: 08:df:26:e6:cc:fe:c0:25:1e:c0:96:e1:c4:17:b6:02:1d:1f: 1d:49:6a:7a:ce:b9:c7:ab:fd:cc:de:dc:24:39:af:de:87:69: 07:bb:dd:6e:35:04:b4:22:a3:e5:82:50:fe:88:34:f0:06:3d: 24:48:1d:c0:a4:02:5a:c0:c9:8c:27:fa:08:32:54:3f:a1:b7: c9:34:6d:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBmKC+Ze02wUmskfkrx1K5yzydWgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTczMDUxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzU2ZTkwZjA5YjgzMTcwOTg1MDEzY2QyMTY5YWEzNTY3 M2MyZTIyMGY2MTk0NTYwYjdhZmMxZjhlNzZjZjA5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHeLLIgSNfQI7UfkzJin1AAsceiCrLmQCKM+C7uGqKRosR wUBWjHWU7rcubOhAeFBCl+B7xT/NW3Zc6y2ZbsK6Tq4gSZl2AyKe8vnUFnSFceRq uonsoZ9jTgXqPoo1na+4vwlRpw9tsgIk9PgrSbvP+eRxMxNVfslLv7fXILz6qsNi WW6tv+Aylm7sfXzhMsH/EHDstpDIg2KH91wLoOx6kV3iGM80n/w3iM3WgOEoAWHT MFnhzXEvt/MWSI42dlWX7YV25VoCan5PwQPnmY5ueKTpCNc02m8sj/PeA4Dz9UNj CSk0XiivOuASMRtsKaxdth3xUWiyG8vBBPYJcdKBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUquIi+ZWW4hHyNzxpFKe7RKbatIwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzViYWRiMzliLWI4YmEtNGViMS1iODA2LTQ2MWJlNWJkODA0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgcwDQYJKoZIhvcNAQELBQADggEBACWTVl9P4JKDlareU7TmiKjOBc5+ JxsjnM34yEmb+caqiA4CW2u9ekZNkQWpKqKKmoLRD0yQlWARjT2LX5vUb016w/ZE MdWGBCfC32+d4DHpfGYzKAI6yDmh/tbh5KIDrGa41cT/hw9vG5HlSvKB2rhJiygu nifcXMRDEuIqyDCn/Bc9FjGNq9dYtc4FyXMN1e8OFCL6Ta4C+Qs+Q+ZwgwGhBJx8 URdGWPZ0qij5Ioog+2k84gjfJubM/sAlHsCW4cQXtgIdHx1JanrOucer/cze3CQ5 r96HaQe73W41BLQio+WCUP6INPAGPSRIHcCkAlrAyYwn+ggyVD+ht8k0bQs= -----END CERTIFICATE-----Generated at Sat Apr 26 15:53:39 2025 by rpki-client