$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7a60eded-a7e8-4c0f-b13c-d04bb244a35b.roa File: 7a60eded-a7e8-4c0f-b13c-d04bb244a35b.roa (raw, json) Hash identifier: 7VtlBtFVnRI/WOaGaXM/B9+2d5Y+SLZuvDwu/U5qhf8= Subject key identifier: 83:B5:00:C8:6C:5A:8D:21:40:5F:12:BD:DD:6E:26:89:0B:2E:92:4F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 793C8DC71754F25653B48762D5093FF49A2EDD2C Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7a60eded-a7e8-4c0f-b13c-d04bb244a35b.roa Signing time: Mon 14 Jul 2025 15:20:18 +0000 ROA not before: Mon 14 Jul 2025 15:20:18 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 173.82.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:3c:8d:c7:17:54:f2:56:53:b4:87:62:d5:09:3f:f4:9a:2e:dd:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 14 15:20:18 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=7673580ce49f94f3fade329135bffd3ca55fcd8f415ca2a6a36d26dd08abeab4, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:d9:15:76:f3:5b:03:a7:41:48:ff:22:e0: 6b:46:1e:8f:15:a5:f8:6b:60:86:cb:92:49:0d:25: b2:e6:62:11:72:24:8c:97:26:08:62:00:8e:6a:90: 2b:4b:62:a5:fb:ee:35:b2:10:84:b7:ec:dd:19:c9: 5f:bc:13:2b:91:53:16:80:8c:40:9c:94:f8:5e:c0: 5d:9b:5f:1f:08:a2:70:3a:74:39:f3:bb:d3:f5:f1: 4c:c2:2f:e4:eb:20:41:31:f4:84:d4:d4:2c:53:7c: 5c:cf:fd:78:d2:cb:b6:0e:21:b4:33:b4:ec:8c:7c: 8d:c9:7a:eb:33:62:c3:8d:cd:3c:58:f4:c9:1f:a6: d7:63:24:a7:42:95:6e:3c:89:52:44:e7:72:8a:61: 04:3b:c6:33:81:8c:76:b3:7b:5d:43:59:cd:f5:6e: c5:d8:66:87:73:e3:3e:af:90:a2:48:99:b1:bb:03: bc:5b:93:82:97:40:73:fa:53:10:59:f1:50:14:dc: 9b:b1:c2:b0:8c:7b:fb:eb:53:d1:09:d5:0b:92:52: e5:a2:a8:40:bb:9c:b0:32:c5:2b:14:79:9e:6d:d4: 1d:4f:bc:7b:17:f9:71:e6:99:2f:c8:fe:09:18:de: fc:a4:65:76:1c:f2:42:3e:0e:cb:c3:a4:bb:83:57: 07:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B5:00:C8:6C:5A:8D:21:40:5F:12:BD:DD:6E:26:89:0B:2E:92:4F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7a60eded-a7e8-4c0f-b13c-d04bb244a35b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.255.0/24 Signature Algorithm: sha256WithRSAEncryption 99:30:01:c6:fa:61:f7:66:7e:cb:3f:a5:b1:f5:33:20:ac:70: 8b:67:9c:55:2d:54:52:f5:2a:bb:94:d8:3f:58:a0:14:6d:46: ed:58:c4:9d:f5:2e:37:01:5d:89:03:77:e1:f7:69:58:f0:cc: 72:5d:d3:2d:08:33:b9:77:6c:2a:cb:40:4d:19:66:7d:08:fa: 0a:d5:8f:73:cd:bb:79:56:87:89:71:ae:65:b1:86:08:57:11: b1:b3:7c:01:3d:10:fa:02:4d:53:fb:a4:30:26:2f:30:99:71: 0d:02:9b:ac:26:14:ac:cd:e0:0a:30:8c:73:bd:be:ea:ab:94: aa:af:66:75:85:70:b1:57:f8:e1:1a:94:be:c5:b5:3f:40:87: b2:e6:6e:ad:19:52:a7:69:eb:ef:49:3f:fb:4f:bd:e2:f0:7d: bc:01:13:4a:57:42:9f:ed:fe:7f:e6:30:6a:5a:6b:43:67:87: 63:55:39:6e:14:33:a0:cf:72:00:70:3d:25:18:f6:3f:72:1f: bf:59:54:58:b8:2f:e4:68:bf:4b:72:11:3e:a1:e7:52:8d:b4: 32:77:95:95:7f:18:46:b4:66:43:d5:fa:c6:b1:2a:12:fd:59: 81:4c:03:ae:97:63:48:28:56:ba:31:8c:04:a2:a6:f5:94:ea: f8:f4:4f:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeTyNxxdU8lZTtIdi1Qk/9Jou3SwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzE0MTUyMDE4WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjczNTgwY2U0OWY5NGYzZmFkZTMyOTEzNWJmZmQzY2E1 NWZjZDhmNDE1Y2EyYTZhMzZkMjZkZDA4YWJlYWI0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmytkVdvNbA6dBSP8i4GtGHo8VpfhrYIbLkkkNJbLmYhFy JIyXJghiAI5qkCtLYqX77jWyEIS37N0ZyV+8EyuRUxaAjECclPhewF2bXx8IonA6 dDnzu9P18UzCL+TrIEEx9ITU1CxTfFzP/XjSy7YOIbQztOyMfI3JeuszYsONzTxY 9MkfptdjJKdClW48iVJE53KKYQQ7xjOBjHaze11DWc31bsXYZodz4z6vkKJImbG7 A7xbk4KXQHP6UxBZ8VAU3JuxwrCMe/vrU9EJ1QuSUuWiqEC7nLAyxSsUeZ5t1B1P vHsX+XHmmS/I/gkY3vykZXYc8kI+DsvDpLuDVwfrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg7UAyGxajSFAXxK93W4miQsukk8wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzdhNjBlZGVkLWE3ZTgtNGMwZi1iMTNjLWQwNGJiMjQ0YTM1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUv8wDQYJKoZIhvcNAQELBQADggEBAJkwAcb6Yfdmfss/pbH1MyCscItn nFUtVFL1KruU2D9YoBRtRu1YxJ31LjcBXYkDd+H3aVjwzHJd0y0IM7l3bCrLQE0Z Zn0I+grVj3PNu3lWh4lxrmWxhghXEbGzfAE9EPoCTVP7pDAmLzCZcQ0Cm6wmFKzN 4AowjHO9vuqrlKqvZnWFcLFX+OEalL7FtT9Ah7Lmbq0ZUqdp6+9JP/tPveLwfbwB E0pXQp/t/n/mMGpaa0Nnh2NVOW4UM6DPcgBwPSUY9j9yH79ZVFi4L+Rov0tyET6h 51KNtDJ3lZV/GEa0ZkPV+saxKhL9WYFMA66XY0goVroxjASipvWU6vj0T8o= -----END CERTIFICATE-----Generated at Mon Aug 4 14:22:14 2025 by rpki-client