$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b6131711-2e50-49df-8722-877c18d3e6a9.roa File: b6131711-2e50-49df-8722-877c18d3e6a9.roa (raw, json) Hash identifier: 2i24JYz1Gp5LXcwNWaFL8vs4pLbZre4irNU1gdgLYWE= Subject key identifier: 8F:12:F7:76:06:F8:E9:3E:A3:F5:33:5A:91:C1:98:B4:D1:C2:93:42 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5FC234C90B84BE6918E6C82C94FE9DA9320B7440 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b6131711-2e50-49df-8722-877c18d3e6a9.roa Signing time: Tue 05 Aug 2025 18:01:16 +0000 ROA not before: Tue 05 Aug 2025 18:01:16 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c2:34:c9:0b:84:be:69:18:e6:c8:2c:94:fe:9d:a9:32:0b:74:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 5 18:01:16 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=36d625824a8fa97ec038bea3e6583f55dd7f26d1902b5a7a1147272cf5c1089d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4c:7e:e0:56:b9:01:77:af:af:be:e9:96:ee: ce:70:fd:fe:ea:d8:01:3f:80:28:31:67:b1:ce:68: c1:62:00:2d:5f:b0:c9:38:46:c1:ee:88:0b:d5:70: bb:eb:66:80:89:2b:2a:d7:e2:73:02:82:09:56:43: 62:12:7b:35:df:44:a8:90:44:b2:44:60:41:e2:e7: 96:a6:68:6a:a7:0f:df:93:3b:21:5f:2f:64:64:26: 2b:08:22:bf:64:a6:34:74:21:b4:58:1b:c1:0c:d6: 3c:9d:b3:a0:62:98:be:6e:21:e8:05:87:6b:d6:86: 24:b8:91:80:12:09:31:fe:48:f9:ca:79:07:07:72: b6:57:1f:50:1f:78:d0:6a:d6:20:e5:74:78:38:34: a8:a2:45:fb:8e:83:d3:01:67:0c:47:51:38:d3:b8: 24:53:42:fd:34:56:04:2c:7b:5b:7b:5c:2d:4c:49: f0:bd:ec:63:3a:8b:52:64:de:94:cb:1f:38:35:8e: ca:63:fc:ef:91:af:b9:8e:d9:1d:b2:0b:85:5f:d3: 71:43:3a:d2:fa:7e:2b:de:7d:67:57:29:b1:2a:92: 42:06:12:e6:fd:bf:63:eb:3d:cf:40:f3:08:f8:48: 96:38:d9:c0:78:b0:cd:b5:a4:4f:e4:56:ee:c2:f9: 5f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:12:F7:76:06:F8:E9:3E:A3:F5:33:5A:91:C1:98:B4:D1:C2:93:42 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b6131711-2e50-49df-8722-877c18d3e6a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.9.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:46:27:d7:74:36:87:79:41:c6:a3:7f:54:be:5c:48:37:c5: 48:d2:09:d3:af:6d:87:a2:b3:b9:bc:6b:20:88:ab:49:b0:e7: 5f:93:ae:ae:eb:c7:04:21:b1:67:f0:4b:b5:5a:7c:06:bd:d3: bf:e0:e6:16:48:85:90:a7:fa:80:cc:7d:f1:e8:a7:40:b2:62: b0:64:ff:3a:4b:e6:a6:f4:b8:66:3d:76:d4:d0:e7:17:d2:8f: f1:b7:44:85:03:ae:f2:77:79:94:58:d1:d6:fa:7b:29:c5:bd: 01:13:00:7f:f5:93:65:82:5f:48:b0:f9:e3:a9:95:a6:bb:e9: 38:4b:b1:f8:35:4d:7e:94:55:7c:ac:77:52:41:30:a8:9e:89: 5a:8d:1e:e2:59:7d:19:93:1b:99:90:a1:01:96:bf:5d:3c:55: ac:22:57:62:89:ed:c2:cd:38:97:8f:97:46:12:3c:27:0b:d7: a4:92:64:8b:90:fb:18:0b:21:12:b0:3f:b5:72:27:8a:1b:0c: d0:d9:16:d9:f8:28:e0:5e:6b:58:df:b3:2e:2b:2d:a0:a9:30: 2a:82:d6:1d:6f:1b:1a:f0:12:5e:79:3b:2d:7e:a5:80:d2:cb: 9c:66:27:c7:7c:cf:45:6c:97:ad:21:e6:90:f9:af:6f:a0:7d: 38:40:69:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX8I0yQuEvmkY5sgslP6dqTILdEAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODA1MTgwMTE2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmQ2MjU4MjRhOGZhOTdlYzAzOGJlYTNlNjU4M2Y1NWRk N2YyNmQxOTAyYjVhN2ExMTQ3MjcyY2Y1YzEwODlkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGTH7gVrkBd6+vvumW7s5w/f7q2AE/gCgxZ7HOaMFiAC1f sMk4RsHuiAvVcLvrZoCJKyrX4nMCgglWQ2ISezXfRKiQRLJEYEHi55amaGqnD9+T OyFfL2RkJisIIr9kpjR0IbRYG8EM1jyds6BimL5uIegFh2vWhiS4kYASCTH+SPnK eQcHcrZXH1AfeNBq1iDldHg4NKiiRfuOg9MBZwxHUTjTuCRTQv00VgQse1t7XC1M SfC97GM6i1Jk3pTLHzg1jspj/O+Rr7mO2R2yC4Vf03FDOtL6fivefWdXKbEqkkIG Eub9v2PrPc9A8wj4SJY42cB4sM21pE/kVu7C+V/jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjxL3dgb46T6j9TNakcGYtNHCk0IwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2I2MTMxNzExLTJlNTAtNDlkZi04NzIyLTg3N2MxOGQzZTZhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgkwDQYJKoZIhvcNAQELBQADggEBAEpGJ9d0Nod5Qcajf1S+XEg3xUjS CdOvbYeis7m8ayCIq0mw51+Trq7rxwQhsWfwS7VafAa907/g5hZIhZCn+oDMffHo p0CyYrBk/zpL5qb0uGY9dtTQ5xfSj/G3RIUDrvJ3eZRY0db6eynFvQETAH/1k2WC X0iw+eOplaa76ThLsfg1TX6UVXysd1JBMKieiVqNHuJZfRmTG5mQoQGWv108Vawi V2KJ7cLNOJePl0YSPCcL16SSZIuQ+xgLIRKwP7VyJ4obDNDZFtn4KOBea1jfsy4r LaCpMCqC1h1vGxrwEl55Oy1+pYDSy5xmJ8d8z0Vsl60h5pD5r2+gfThAaXg= -----END CERTIFICATE-----Generated at Wed Aug 6 07:52:55 2025 by rpki-client