$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/717f5e93-b9de-4290-9c65-f643bb0d3642.roa File: 717f5e93-b9de-4290-9c65-f643bb0d3642.roa (raw, json) Hash identifier: 8JOLuSRm1fWhkaKsjvIqms+TkUduJ74Q19pEb1d5Y9A= Subject key identifier: 4C:34:F0:CF:DB:CC:09:BB:2B:7F:39:9C:89:FA:A8:F9:64:AF:E8:61 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 414D3774615F36FDE19471ADEE90307C1A7DB13A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/717f5e93-b9de-4290-9c65-f643bb0d3642.roa Signing time: Fri 11 Jul 2025 18:00:20 +0000 ROA not before: Fri 11 Jul 2025 18:00:20 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:4d:37:74:61:5f:36:fd:e1:94:71:ad:ee:90:30:7c:1a:7d:b1:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:00:20 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=5447a1ec059aa6dffeac3d7dea157f539284fe78064f982c73c5acce93011b0e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:5d:84:15:05:a8:0b:df:74:57:8f:c9:8c:15: 59:53:e2:95:5b:1a:29:b6:b0:a7:4a:8f:1c:aa:f3: 04:46:fb:c0:33:0d:42:26:62:91:6d:f3:d2:e4:70: fc:f9:a8:65:b5:5b:09:ad:23:ba:a5:37:a6:6c:28: 21:85:c5:ec:01:f1:31:47:2c:62:e6:8e:55:e2:12: 35:7b:32:72:3f:0a:ab:54:90:3f:26:7e:25:41:b9: 8e:c4:d6:d7:fa:83:60:9c:cf:cd:ab:3e:8a:e9:0b: b0:c6:d5:22:ce:1b:ac:42:ce:a5:88:ef:ff:cd:4a: 46:46:a9:70:31:92:32:7f:22:c8:ad:b9:77:96:5d: 92:eb:1a:b8:89:1b:7e:8c:cb:89:d3:81:51:5e:60: 7a:ae:dc:65:11:1c:be:27:c7:f1:dd:31:d2:3f:20: e0:53:43:50:39:81:93:84:71:a8:22:0a:37:95:3d: 74:6b:85:a1:1c:24:6d:8e:fc:4d:4d:20:af:e1:a0: b0:8e:68:0a:07:8a:89:11:f7:43:5b:4a:23:1d:a5: 84:e7:9c:d7:d1:b2:17:40:e6:fc:12:9f:90:76:8e: 2a:0f:be:9e:83:3d:b6:c4:95:a4:4c:06:56:65:b6: 01:d7:c9:ef:3c:57:0a:7a:a6:30:92:d5:87:8d:61: 00:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:34:F0:CF:DB:CC:09:BB:2B:7F:39:9C:89:FA:A8:F9:64:AF:E8:61 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/717f5e93-b9de-4290-9c65-f643bb0d3642.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.8.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:7f:87:ad:41:b3:d5:3d:29:0a:be:d6:ad:1c:58:1e:09:cd: c5:5e:67:af:3e:0f:dc:45:f6:07:db:7b:d9:b2:77:1e:5b:86: 85:73:a9:88:ad:0b:f9:a4:a1:f9:34:14:0c:9c:99:16:46:94: d2:e8:b2:a5:cc:88:cb:64:ef:ce:f2:99:12:6d:21:85:2d:9c: cb:e8:5d:dc:eb:16:4f:fa:08:3e:db:52:f9:47:9e:0c:11:a5: d3:db:5e:6d:85:ed:14:d5:60:53:19:65:1c:df:b3:de:29:90: 32:03:3f:b3:2d:5e:be:a6:01:54:c8:d4:30:8d:db:72:f2:c5: 57:87:71:a9:21:df:aa:ef:39:6c:e6:a8:c9:75:8a:30:cc:4d: f1:28:5a:e3:0d:46:0a:84:a7:dd:b5:5f:0b:96:f8:70:83:62: b6:e6:74:a9:4b:d5:e0:66:1c:3d:22:4a:72:a7:32:46:ef:10: bc:30:b9:92:68:76:21:ca:1a:ef:87:fa:56:dc:6d:98:29:7e: 94:26:6f:82:a3:32:ab:00:11:12:35:34:5c:64:3f:6a:0f:75: e9:fc:f1:47:c6:25:52:49:c5:95:db:30:3f:10:4b:e1:5f:21: d2:e4:22:7c:08:97:b2:36:94:f7:19:e5:0f:7b:75:55:02:37: ee:1a:2e:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQU03dGFfNv3hlHGt7pAwfBp9sTowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgwMDIwWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDQ3YTFlYzA1OWFhNmRmZmVhYzNkN2RlYTE1N2Y1Mzky ODRmZTc4MDY0Zjk4MmM3M2M1YWNjZTkzMDExYjBlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHXYQVBagL33RXj8mMFVlT4pVbGim2sKdKjxyq8wRG+8Az DUImYpFt89LkcPz5qGW1WwmtI7qlN6ZsKCGFxewB8TFHLGLmjlXiEjV7MnI/CqtU kD8mfiVBuY7E1tf6g2Ccz82rPorpC7DG1SLOG6xCzqWI7//NSkZGqXAxkjJ/Isit uXeWXZLrGriJG36My4nTgVFeYHqu3GURHL4nx/HdMdI/IOBTQ1A5gZOEcagiCjeV PXRrhaEcJG2O/E1NIK/hoLCOaAoHiokR90NbSiMdpYTnnNfRshdA5vwSn5B2jioP vp6DPbbElaRMBlZltgHXye88Vwp6pjCS1YeNYQChAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTDTwz9vMCbsrfzmcifqo+WSv6GEwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzcxN2Y1ZTkzLWI5ZGUtNDI5MC05YzY1LWY2NDNiYjBkMzY0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUggwDQYJKoZIhvcNAQELBQADggEBAA5/h61Bs9U9KQq+1q0cWB4JzcVe Z68+D9xF9gfbe9mydx5bhoVzqYitC/mkofk0FAycmRZGlNLosqXMiMtk787ymRJt IYUtnMvoXdzrFk/6CD7bUvlHngwRpdPbXm2F7RTVYFMZZRzfs94pkDIDP7MtXr6m AVTI1DCN23LyxVeHcakh36rvOWzmqMl1ijDMTfEoWuMNRgqEp921XwuW+HCDYrbm dKlL1eBmHD0iSnKnMkbvELwwuZJodiHKGu+H+lbcbZgpfpQmb4KjMqsAERI1NFxk P2oPden88UfGJVJJxZXbMD8QS+FfIdLkInwIl7I2lPcZ5Q97dVUCN+4aLjU= -----END CERTIFICATE-----Generated at Tue Aug 5 16:51:40 2025 by rpki-client