$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d712a7-f3ce-497e-aae6-90aa99ab8e9f.roa File: 69d712a7-f3ce-497e-aae6-90aa99ab8e9f.roa (raw, json) Hash identifier: zk8y7NHTt81FTFdHgKkLz3UG+qvQCwwFbFQdH2lzSVA= Subject key identifier: 5A:58:F0:48:53:4F:90:3E:7A:E5:CA:B1:88:A1:4F:91:82:8F:10:BC Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 525FE722F1CF1599B9DD4B92F649302740C1884D Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d712a7-f3ce-497e-aae6-90aa99ab8e9f.roa Signing time: Fri 25 Apr 2025 17:30:53 +0000 ROA not before: Fri 25 Apr 2025 17:30:53 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:5f:e7:22:f1:cf:15:99:b9:dd:4b:92:f6:49:30:27:40:c1:88:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:30:53 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=1f91effe6eeae0f77109189a1c7d88b6363160452f91794e76952fef2dc968a9, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f5:b0:9b:ff:b6:74:95:1f:34:6d:ca:74:fb: 21:93:06:4d:fa:46:1d:35:66:03:73:59:c5:a7:ed: cf:0b:0f:00:ff:cf:2a:26:f7:88:ca:3e:6a:a7:f1: bb:d8:4c:94:fa:18:a5:09:be:b4:f7:b5:ff:b8:2f: e1:6a:97:85:9c:d4:7b:32:46:d7:03:79:3a:31:88: a8:ff:b9:13:0b:85:a9:6f:24:19:4b:d1:93:bf:7c: 7f:27:a8:cc:07:64:92:2e:1c:af:1f:84:87:37:27: 3d:6b:55:f3:7a:35:32:94:e6:d2:c0:4d:d2:3d:22: 41:a1:93:3b:e0:39:e2:3a:88:64:df:dc:de:7d:62: 1c:42:85:d9:66:00:11:de:f9:bc:86:6b:51:f4:d6: 2f:45:43:20:29:6a:ac:52:61:80:5e:dd:a1:7f:1d: 6c:99:5d:e9:c1:ca:38:14:c9:0b:80:bc:75:61:aa: 9a:f9:6c:be:29:88:e7:cd:82:53:93:4f:e9:13:b1: 92:38:0b:f0:13:45:ff:f1:5c:8a:3e:b2:59:d1:3f: 35:59:ed:47:2b:6f:56:58:b5:db:4d:31:6a:d4:20: 0f:48:d0:e7:57:da:8b:0a:0d:02:e3:30:dd:69:a8: 18:55:7b:e3:b8:aa:1f:76:29:26:d0:13:79:22:c1: 52:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:58:F0:48:53:4F:90:3E:7A:E5:CA:B1:88:A1:4F:91:82:8F:10:BC X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/69d712a7-f3ce-497e-aae6-90aa99ab8e9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.15.0/24 Signature Algorithm: sha256WithRSAEncryption 81:49:05:8f:e3:b0:ca:b1:a7:8a:f3:7a:44:4f:23:80:d1:f4: 7b:92:87:ba:ae:c7:db:a5:df:85:28:6e:5e:9b:7a:80:dc:ab: 0e:30:4a:8f:c9:34:30:ea:36:e4:35:34:18:8f:e3:75:aa:85: 0f:b3:0e:b7:27:03:2e:6b:c4:0c:4e:b0:20:e0:80:51:5e:d7: 7c:cd:e3:8c:51:62:82:11:fe:da:c2:4e:50:42:75:37:b3:fe: b0:5e:4e:83:2a:5e:70:43:af:cf:81:da:9e:c4:be:e3:48:36: 38:ad:2c:9f:18:b0:3f:5a:94:85:66:d7:88:16:33:63:aa:dc: ec:28:23:1a:47:65:16:9e:5b:28:e3:0e:a0:3e:35:07:74:5a: 9a:83:db:80:18:80:6f:61:6e:4f:59:00:b2:8b:40:4b:25:62: 9b:57:24:f6:ad:1b:d2:84:8b:90:36:f0:ee:8c:f6:51:7c:db: c0:3f:d7:3e:d5:21:e0:a6:6d:9e:aa:5b:fb:be:59:9b:20:29: 27:97:bf:19:08:a6:04:4a:0b:07:68:d6:a0:3d:eb:16:02:c4: 26:20:b0:17:00:31:43:c1:b7:52:f0:0b:6e:f8:d1:ad:87:b7: 58:a1:a7:1c:51:33:93:f2:5e:c6:e2:23:2f:52:08:31:28:aa: 65:c4:35:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUl/nIvHPFZm53UuS9kkwJ0DBiE0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTczMDUzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjkxZWZmZTZlZWFlMGY3NzEwOTE4OWExYzdkODhiNjM2 MzE2MDQ1MmY5MTc5NGU3Njk1MmZlZjJkYzk2OGE5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu9bCb/7Z0lR80bcp0+yGTBk36Rh01ZgNzWcWn7c8LDwD/ zyom94jKPmqn8bvYTJT6GKUJvrT3tf+4L+Fql4Wc1HsyRtcDeToxiKj/uRMLhalv JBlL0ZO/fH8nqMwHZJIuHK8fhIc3Jz1rVfN6NTKU5tLATdI9IkGhkzvgOeI6iGTf 3N59YhxChdlmABHe+byGa1H01i9FQyApaqxSYYBe3aF/HWyZXenByjgUyQuAvHVh qpr5bL4piOfNglOTT+kTsZI4C/ATRf/xXIo+slnRPzVZ7Ucrb1ZYtdtNMWrUIA9I 0OdX2osKDQLjMN1pqBhVe+O4qh92KSbQE3kiwVJfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWljwSFNPkD565cqxiKFPkYKPELwwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzY5ZDcxMmE3LWYzY2UtNDk3ZS1hYWU2LTkwYWE5OWFiOGU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUg8wDQYJKoZIhvcNAQELBQADggEBAIFJBY/jsMqxp4rzekRPI4DR9HuS h7qux9ul34Uobl6beoDcqw4wSo/JNDDqNuQ1NBiP43WqhQ+zDrcnAy5rxAxOsCDg gFFe13zN44xRYoIR/trCTlBCdTez/rBeToMqXnBDr8+B2p7EvuNINjitLJ8YsD9a lIVm14gWM2Oq3OwoIxpHZRaeWyjjDqA+NQd0WpqD24AYgG9hbk9ZALKLQEslYptX JPatG9KEi5A28O6M9lF828A/1z7VIeCmbZ6qW/u+WZsgKSeXvxkIpgRKCwdo1qA9 6xYCxCYgsBcAMUPBt1LwC2740a2Ht1ihpxxRM5PyXsbiIy9SCDEoqmXENYs= -----END CERTIFICATE-----Generated at Sat Apr 26 19:52:00 2025 by rpki-client