$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5fdd81f8-db5f-4144-aac5-a9b268abbb71.roa File: 5fdd81f8-db5f-4144-aac5-a9b268abbb71.roa (raw, json) Hash identifier: /SmIJsk7xOEEmDh7hjtva2RsGBP68I8Xi9FUq4utshk= Subject key identifier: C7:0A:EA:05:F7:04:22:DD:E2:EF:A6:CA:8B:00:39:ED:79:0C:5F:F8 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 39E0C9386648C1977575B48CE93E889732320232 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5fdd81f8-db5f-4144-aac5-a9b268abbb71.roa Signing time: Fri 11 Apr 2025 00:20:07 +0000 ROA not before: Fri 11 Apr 2025 00:20:07 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e0:c9:38:66:48:c1:97:75:75:b4:8c:e9:3e:88:97:32:32:02:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 11 00:20:07 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=1b37333ef9bf3791fafc27de66f0a0ff3eb5511f584740d080dcd71912e8ed8c, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:2a:27:77:b1:49:62:78:57:91:0f:75:6e:f2: 22:e1:b2:ff:bc:31:2c:c6:25:0a:6e:3a:19:0e:4e: 44:cd:c5:48:58:dd:5c:87:43:76:19:e0:48:be:2a: 05:08:40:7f:71:63:11:6c:bc:2d:93:f5:ff:67:e0: 52:87:b9:4f:aa:d3:dc:2e:db:3b:1a:ff:cd:ab:12: 87:e7:70:85:b4:24:99:46:e4:99:84:e7:61:ff:67: c9:06:f9:fd:61:55:ae:78:e4:c1:af:cc:fd:d6:45: e3:26:90:2c:de:2f:f0:08:2e:a0:0c:0b:9c:93:57: bd:23:ef:33:54:0c:38:1b:08:80:2b:29:5e:5a:3a: 8b:7f:f4:78:9f:b6:65:ab:b0:81:ae:5c:5d:32:1b: c9:60:7f:1d:f9:a2:54:bc:cc:6c:ad:33:a7:1e:41: 43:b4:72:99:c3:e8:70:af:6e:be:0d:0b:dd:01:9d: d7:d9:9c:15:67:fe:71:ab:63:14:3f:91:18:ff:18: 19:68:25:dd:50:a7:3f:fb:08:7e:79:49:c2:98:40: d1:c5:f5:bd:61:96:f1:fe:a3:ac:55:23:a4:b4:a8: c8:71:07:03:f1:97:3e:dd:80:3e:d8:37:1f:cd:4e: 81:4f:53:3c:6e:2e:c6:fb:64:a7:62:ca:b9:af:38: 18:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0A:EA:05:F7:04:22:DD:E2:EF:A6:CA:8B:00:39:ED:79:0C:5F:F8 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5fdd81f8-db5f-4144-aac5-a9b268abbb71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.63.0/24 Signature Algorithm: sha256WithRSAEncryption 25:0b:c9:6c:01:77:00:8d:03:0e:d7:49:27:94:22:72:2f:fb: c1:7c:b9:ac:a2:b7:d0:a0:3a:47:d8:98:49:2c:84:15:67:01: 9e:21:ed:55:2b:42:cf:55:ad:85:d9:f8:1f:de:52:f5:0c:cd: 2b:36:3c:a6:40:8c:18:db:39:39:b6:e9:f5:9a:fd:5d:a2:62: 10:91:e5:29:9e:e0:38:4f:59:f4:96:c4:ba:79:8f:63:54:90: 1e:47:bf:54:9d:c6:f9:61:c6:49:b6:1c:78:c2:55:6b:0c:d4: e0:54:7a:ef:91:40:77:86:b5:2a:ef:ba:80:03:d9:70:cc:45: 10:29:6d:c3:89:05:05:39:6e:91:9a:2a:df:d4:0f:e3:f7:e6: 9c:bd:29:c9:b7:64:33:81:36:5a:70:3a:16:ea:e2:ec:02:e9: 37:12:a0:64:0b:ff:5e:47:6b:a4:dc:52:6c:5d:2f:88:af:bf: 33:26:c2:4c:1b:65:38:b9:5f:79:f4:eb:72:74:27:14:c7:9c: 76:0c:8e:fb:b6:b6:93:48:dc:3d:8b:16:6f:18:21:8b:2c:7e: 04:7f:71:d7:1c:4c:db:ae:a9:5e:85:d6:3a:4e:d4:44:cc:91: d2:ca:95:73:c3:25:e8:8c:a5:da:79:b1:f4:83:89:8d:fb:61: da:f7:db:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOeDJOGZIwZd1dbSM6T6IlzIyAjIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDExMDAyMDA3WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjM3MzMzZWY5YmYzNzkxZmFmYzI3ZGU2NmYwYTBmZjNl YjU1MTFmNTg0NzQwZDA4MGRjZDcxOTEyZThlZDhjMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbKid3sUlieFeRD3Vu8iLhsv+8MSzGJQpuOhkOTkTNxUhY 3VyHQ3YZ4Ei+KgUIQH9xYxFsvC2T9f9n4FKHuU+q09wu2zsa/82rEofncIW0JJlG 5JmE52H/Z8kG+f1hVa545MGvzP3WReMmkCzeL/AILqAMC5yTV70j7zNUDDgbCIAr KV5aOot/9HiftmWrsIGuXF0yG8lgfx35olS8zGytM6ceQUO0cpnD6HCvbr4NC90B ndfZnBVn/nGrYxQ/kRj/GBloJd1Qpz/7CH55ScKYQNHF9b1hlvH+o6xVI6S0qMhx BwPxlz7dgD7YNx/NToFPUzxuLsb7ZKdiyrmvOBgVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxwrqBfcEIt3i76bKiwA57XkMX/gwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzVmZGQ4MWY4LWRiNWYtNDE0NC1hYWM1LWE5YjI2OGFiYmI3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUj8wDQYJKoZIhvcNAQELBQADggEBACULyWwBdwCNAw7XSSeUInIv+8F8 uayit9CgOkfYmEkshBVnAZ4h7VUrQs9VrYXZ+B/eUvUMzSs2PKZAjBjbOTm26fWa /V2iYhCR5Sme4DhPWfSWxLp5j2NUkB5Hv1Sdxvlhxkm2HHjCVWsM1OBUeu+RQHeG tSrvuoAD2XDMRRApbcOJBQU5bpGaKt/UD+P35py9Kcm3ZDOBNlpwOhbq4uwC6TcS oGQL/15Ha6TcUmxdL4ivvzMmwkwbZTi5X3n063J0JxTHnHYMjvu2tpNI3D2LFm8Y IYssfgR/cdccTNuuqV6F1jpO1ETMkdLKlXPDJeiMpdp5sfSDiY37Ydr325c= -----END CERTIFICATE-----Generated at Sat Apr 26 18:28:47 2025 by rpki-client