$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b78ad018-6881-4671-9a78-0dc8f34501ca.roa File: b78ad018-6881-4671-9a78-0dc8f34501ca.roa (raw, json) Hash identifier: ZTZ748VLTcVUDQLAnvAv4+j3hE48c1vM8dN7CDQBqPg= Subject key identifier: DA:51:C0:DD:6A:C1:66:25:8D:62:CC:8F:20:B8:F0:FD:DD:FE:DF:91 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 6BD0DC3940C4C0EB69C7CD99509112C5674F773A Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b78ad018-6881-4671-9a78-0dc8f34501ca.roa Signing time: Tue 15 Apr 2025 00:50:11 +0000 ROA not before: Tue 15 Apr 2025 00:50:11 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 29 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d0:dc:39:40:c4:c0:eb:69:c7:cd:99:50:91:12:c5:67:4f:77:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 15 00:50:11 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=8cf9f9da70a62d1f739c79f4e08c3adf4dd4f5bfd00706d2465eaaef61194794, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:d7:81:c0:a2:af:c2:ed:dd:63:6f:7e:b3:45: 5f:5b:6f:a6:17:b8:91:bf:69:80:54:50:4a:0b:4e: a6:77:89:19:2c:17:8c:47:8a:9a:c0:a4:ea:e7:cd: e2:33:bf:92:24:0d:7c:a0:a1:71:68:24:6b:86:fc: 3e:73:d4:a0:15:b2:08:19:eb:9f:90:d2:5c:c0:f7: e8:29:90:3b:93:c1:4c:d8:31:d4:34:bb:bf:8d:b7: b2:bb:58:21:fb:14:69:e5:28:bd:89:28:ea:67:aa: dd:e5:da:e4:e0:43:4e:11:52:ad:d4:d7:79:36:a8: c7:10:2c:c3:bd:f8:a6:b8:3b:fa:c4:d4:f5:97:cf: ab:69:a0:60:20:03:44:19:d5:44:ef:cb:a9:ef:09: 48:8d:00:28:87:8f:d8:61:ec:bc:d5:70:c5:7a:65: 63:45:ac:d6:81:f0:61:8f:58:3a:57:c3:ee:36:ca: f2:05:b5:d7:3c:7b:84:cc:09:59:c5:b4:1c:80:e8: bb:c0:da:0d:fa:f9:27:fe:31:1c:e6:ce:cf:6e:3b: 90:e8:b4:35:73:c6:32:d7:78:33:80:6a:2c:fc:92: fc:12:5a:77:4b:09:c1:bd:15:e4:33:b7:a7:e1:77: 53:7a:07:35:30:64:6b:c3:51:fe:31:7f:e9:92:5f: bb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:51:C0:DD:6A:C1:66:25:8D:62:CC:8F:20:B8:F0:FD:DD:FE:DF:91 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/b78ad018-6881-4671-9a78-0dc8f34501ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.66.0/24 Signature Algorithm: sha256WithRSAEncryption 75:ec:7c:4c:2b:9d:8a:17:99:4c:ec:07:a3:c6:a3:0a:05:1c: da:08:4f:06:b7:c3:bf:f5:9c:8b:ad:b4:3e:00:7d:db:f0:25: 43:0f:3a:bd:45:51:4a:15:f8:4e:0d:1a:ee:bf:6b:72:9c:3b: ae:76:60:c5:8d:57:5c:7c:50:d9:f9:02:0b:7b:84:1b:1c:38: 23:75:55:19:12:ef:90:e3:d2:88:5c:e6:5a:f2:09:e2:b6:84: bf:48:2f:e4:98:6e:5f:33:1e:33:fb:ef:76:2b:98:dd:74:17: bd:79:92:b0:24:b3:09:d0:c4:af:78:be:4f:66:e6:22:a2:71: e6:00:8d:ef:31:0a:fd:ce:d5:c6:1a:0e:1c:80:af:ac:b3:4b: 09:3e:2d:54:9d:02:a7:8f:c9:dc:ac:ff:2c:64:41:a4:4e:44: 41:14:f8:45:cd:b9:58:1f:a5:a6:54:99:be:9a:db:de:31:06: cb:68:90:03:4d:80:ba:43:3f:c0:2d:a3:40:f2:6b:8c:73:5a: 1d:d7:9b:49:77:dd:2b:23:f2:bc:ad:52:1d:aa:6f:76:3a:20: 0a:08:21:1a:2e:3f:61:7b:e9:85:c2:ce:a8:bd:bc:6c:5c:0f: d5:89:ba:c5:fd:d8:dc:8c:e1:31:ef:33:48:b3:70:3c:58:63: cd:98:00:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa9DcOUDEwOtpx82ZUJESxWdPdzowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDE1MDA1MDExWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Y2Y5ZjlkYTcwYTYyZDFmNzM5Yzc5ZjRlMDhjM2FkZjRk ZDRmNWJmZDAwNzA2ZDI0NjVlYWFlZjYxMTk0Nzk0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD314HAoq/C7d1jb36zRV9bb6YXuJG/aYBUUEoLTqZ3iRks F4xHiprApOrnzeIzv5IkDXygoXFoJGuG/D5z1KAVsggZ65+Q0lzA9+gpkDuTwUzY MdQ0u7+Nt7K7WCH7FGnlKL2JKOpnqt3l2uTgQ04RUq3U13k2qMcQLMO9+Ka4O/rE 1PWXz6tpoGAgA0QZ1UTvy6nvCUiNACiHj9hh7LzVcMV6ZWNFrNaB8GGPWDpXw+42 yvIFtdc8e4TMCVnFtByA6LvA2g36+Sf+MRzmzs9uO5DotDVzxjLXeDOAaiz8kvwS WndLCcG9FeQzt6fhd1N6BzUwZGvDUf4xf+mSX7uXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2lHA3WrBZiWNYsyPILjw/d3+35EwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2I3OGFkMDE4LTY4ODEtNDY3MS05YTc4LTBkYzhmMzQ1MDFjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUkIwDQYJKoZIhvcNAQELBQADggEBAHXsfEwrnYoXmUzsB6PGowoFHNoI Twa3w7/1nIuttD4AfdvwJUMPOr1FUUoV+E4NGu6/a3KcO652YMWNV1x8UNn5Agt7 hBscOCN1VRkS75Dj0ohc5lryCeK2hL9IL+SYbl8zHjP773YrmN10F715krAkswnQ xK94vk9m5iKiceYAje8xCv3O1cYaDhyAr6yzSwk+LVSdAqePydys/yxkQaROREEU +EXNuVgfpaZUmb6a294xBstokANNgLpDP8Ato0Dya4xzWh3Xm0l33Ssj8rytUh2q b3Y6IAoIIRouP2F76YXCzqi9vGxcD9WJusX92NyM4THvM0izcDxYY82YADc= -----END CERTIFICATE-----Generated at Sun Apr 27 17:45:43 2025 by rpki-client