$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7886a458-feff-41db-ba90-69c2775beda9.roa File: 7886a458-feff-41db-ba90-69c2775beda9.roa (raw, json) Hash identifier: oN208Lz2rOG2LL6uOEPTfU/KLmrynefjAFi31Df1TbY= Subject key identifier: 70:22:14:11:74:F0:0A:69:C8:92:0A:42:E1:AC:B6:BF:61:BD:BA:A2 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 391DBF39AD846F6B3968A4989CCE2A554BCCD285 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7886a458-feff-41db-ba90-69c2775beda9.roa Signing time: Fri 11 Jul 2025 18:00:04 +0000 ROA not before: Fri 11 Jul 2025 18:00:04 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:1d:bf:39:ad:84:6f:6b:39:68:a4:98:9c:ce:2a:55:4b:cc:d2:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:00:04 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=04b45410b2c9fa9c1883382e83c83e7cb6219dd60c5a0c04ae6c0f9a48d5d2a6, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:f2:cc:e4:91:ad:03:2d:47:e4:25:a3:5e:ac: d6:04:d7:d9:05:54:23:28:ba:3d:cf:0a:3b:b2:9c: 57:c7:60:e7:46:0e:b3:b1:7a:f8:8c:3d:ac:2c:3f: 2d:07:1b:ce:e2:86:73:4d:41:12:0d:4d:fa:3e:85: 35:f3:f7:f1:17:9e:11:08:b0:25:f6:ea:3d:73:9c: ae:6c:38:5f:a4:da:5b:c8:f4:e1:43:dd:a1:d5:04: 24:ef:68:60:5c:4a:ee:4e:1d:34:15:6c:eb:55:b4: bd:2f:6c:e4:b5:1f:55:46:e4:07:32:ba:00:91:9c: b8:1c:d5:d8:d0:56:b3:22:78:1e:6f:f9:e6:26:66: cb:d6:62:fc:ad:29:c6:fa:42:1d:31:b8:fe:31:44: 32:8e:e1:81:5b:b9:29:ec:ec:50:f6:f0:b8:f5:f0: f8:5e:05:a6:fc:d7:40:84:3e:76:29:3e:63:12:09: 76:b1:5b:d5:b3:6e:92:93:3d:36:09:b8:51:77:2e: e4:64:27:f3:07:e1:88:27:a9:41:9a:95:1a:8b:54: d3:3b:0b:fc:40:64:0f:2e:9e:7f:92:9d:55:94:ca: d8:0a:8a:07:86:05:4b:0b:10:12:8c:ca:91:6e:b5: 89:96:93:46:70:5c:4e:ff:14:16:66:01:25:b4:a5: bf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:22:14:11:74:F0:0A:69:C8:92:0A:42:E1:AC:B6:BF:61:BD:BA:A2 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7886a458-feff-41db-ba90-69c2775beda9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.18.0/24 Signature Algorithm: sha256WithRSAEncryption 04:2b:ad:a6:4b:08:58:07:c7:20:2a:27:48:b9:6a:6f:83:ef: 26:70:93:67:97:9b:66:1b:c5:b4:1e:9d:5b:bb:f7:53:bd:6b: 2d:d3:fd:ce:e1:0f:7f:21:7f:b2:fb:62:95:d7:c3:6b:54:d5: d5:88:74:95:10:20:a4:af:e2:14:5c:a3:b5:18:8b:e9:80:18: 02:42:15:12:75:bd:78:cd:4d:2e:9b:5d:57:64:97:2d:b4:25: 12:a9:ef:4e:36:2c:17:54:af:db:fe:e1:d4:9d:f5:2b:41:3e: 31:9f:3c:9c:69:85:77:5b:b2:f7:d0:46:46:67:a2:e1:4a:77: 25:86:95:6c:7c:42:58:9d:0f:27:05:9e:33:e6:d8:40:a7:67: 44:a0:24:ae:73:10:28:a0:20:8e:82:e4:8d:65:10:a6:00:63: cf:08:72:04:97:7f:23:ce:0f:13:86:a8:e4:a4:42:63:6b:c8: b1:c9:6e:84:6d:6d:08:3b:3d:11:ae:f0:07:fe:e5:92:e7:77: f0:c7:7b:84:84:00:c2:e8:04:8f:58:9e:03:d6:9f:69:2a:07: 1c:a8:aa:92:98:db:d0:cd:34:6b:db:f7:f9:07:dc:82:a0:8e: 65:7c:7a:ad:07:3e:b0:73:23:17:21:6e:03:2a:bc:15:10:83: 51:e0:a2:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOR2/Oa2Eb2s5aKSYnM4qVUvM0oUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgwMDA0WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGI0NTQxMGIyYzlmYTljMTg4MzM4MmU4M2M4M2U3Y2I2 MjE5ZGQ2MGM1YTBjMDRhZTZjMGY5YTQ4ZDVkMmE2MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL8szkka0DLUfkJaNerNYE19kFVCMouj3PCjuynFfHYOdG DrOxeviMPawsPy0HG87ihnNNQRINTfo+hTXz9/EXnhEIsCX26j1znK5sOF+k2lvI 9OFD3aHVBCTvaGBcSu5OHTQVbOtVtL0vbOS1H1VG5AcyugCRnLgc1djQVrMieB5v +eYmZsvWYvytKcb6Qh0xuP4xRDKO4YFbuSns7FD28Lj18PheBab810CEPnYpPmMS CXaxW9WzbpKTPTYJuFF3LuRkJ/MH4YgnqUGalRqLVNM7C/xAZA8unn+SnVWUytgK igeGBUsLEBKMypFutYmWk0ZwXE7/FBZmASW0pb8jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcCIUEXTwCmnIkgpC4ay2v2G9uqIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzc4ODZhNDU4LWZlZmYtNDFkYi1iYTkwLTY5YzI3NzViZWRhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUhIwDQYJKoZIhvcNAQELBQADggEBAAQrraZLCFgHxyAqJ0i5am+D7yZw k2eXm2YbxbQenVu791O9ay3T/c7hD38hf7L7YpXXw2tU1dWIdJUQIKSv4hRco7UY i+mAGAJCFRJ1vXjNTS6bXVdkly20JRKp7042LBdUr9v+4dSd9StBPjGfPJxphXdb svfQRkZnouFKdyWGlWx8QlidDycFnjPm2ECnZ0SgJK5zECigII6C5I1lEKYAY88I cgSXfyPODxOGqOSkQmNryLHJboRtbQg7PRGu8Af+5ZLnd/DHe4SEAMLoBI9YngPW n2kqBxyoqpKY29DNNGvb9/kH3IKgjmV8eq0HPrBzIxchbgMqvBUQg1HgopM= -----END CERTIFICATE-----Generated at Tue Aug 5 16:46:04 2025 by rpki-client