$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c715fe80-d529-43c6-8fe3-0fe4f18f0712.roa File: c715fe80-d529-43c6-8fe3-0fe4f18f0712.roa (raw, json) Hash identifier: whZOCCTnm3hg0+X8/bPXJSrLX7T6dT1Hy1xyw3iLNkw= Subject key identifier: D5:24:88:1F:CA:DE:7C:03:6D:40:9D:B4:CB:A7:88:B1:FB:19:66:98 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 306EFD801921947F391B4969BEDE4FD61AF1AC4B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c715fe80-d529-43c6-8fe3-0fe4f18f0712.roa Signing time: Fri 25 Apr 2025 17:30:11 +0000 ROA not before: Fri 25 Apr 2025 17:30:11 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:6e:fd:80:19:21:94:7f:39:1b:49:69:be:de:4f:d6:1a:f1:ac:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:30:11 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=b76b8de38d8c39b6f2ea5a012368c8067f5b48b67c67b774c0c1af7694280230, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:10:66:3d:0f:41:e9:58:74:7c:12:8b:a6: 5b:57:fe:b6:7f:d0:6e:7b:c8:e8:2c:28:fe:5e:ba: 5a:b1:fc:07:84:02:ea:2b:15:8a:db:84:10:92:0a: 45:ac:70:54:03:dc:a9:00:d1:fe:3f:a2:c9:ce:cc: 5b:09:f8:10:7f:3b:e3:b1:fe:b6:25:52:28:79:52: c8:46:07:a1:23:c9:cd:81:61:e0:c2:85:c6:19:e7: 35:dc:35:f5:e5:3a:fc:1a:2b:80:a9:ac:9e:b0:da: 4e:fd:b3:8b:a3:28:bc:1e:a8:9c:26:e3:d6:b0:6c: 97:a1:41:d8:0e:6b:81:16:18:55:d5:18:f5:85:74: 02:78:76:74:06:41:6a:cf:17:a1:ab:dc:b0:b1:5d: 04:5f:1b:99:8a:06:18:b7:93:9d:00:32:fd:76:f1: 8e:16:a8:cd:60:b4:4b:95:6a:c8:ab:ac:f1:18:a8: 1e:60:32:c4:1a:90:b8:b1:33:d3:9d:cd:b0:b9:7d: 34:c6:dd:50:2c:8a:51:2f:47:39:f3:fa:1e:cf:0b: f2:50:48:ed:8d:b3:8a:f3:4c:68:a2:9c:a9:70:d5: 9d:0b:4e:b1:f6:47:2d:cf:66:31:e3:8b:4f:ad:d0: d6:91:19:ff:29:5c:67:0f:19:f1:46:5d:85:d5:ba: a5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:24:88:1F:CA:DE:7C:03:6D:40:9D:B4:CB:A7:88:B1:FB:19:66:98 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c715fe80-d529-43c6-8fe3-0fe4f18f0712.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.10.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:7b:74:b9:99:1b:7a:31:2b:b8:28:53:9e:7f:2f:44:0d:8a: b7:3b:6d:1a:56:b2:c8:dd:a5:87:08:d3:98:84:c0:45:e5:01: e1:1c:2a:3b:ed:2d:85:7c:78:de:76:b6:a2:ca:99:a4:5f:98: ee:9c:a1:78:42:e6:f5:54:73:2d:60:70:c0:c0:c1:73:7d:2c: 18:e6:ac:74:b0:aa:fe:93:ce:59:10:a3:3b:29:7f:a6:8d:46: 76:80:6a:c8:e9:eb:a2:2b:49:76:15:74:11:2d:ce:7e:2a:52: 0a:ab:b0:da:48:e2:93:8b:ca:64:84:53:23:52:86:06:84:3e: 42:e5:3f:61:48:06:9a:e3:11:8f:47:0a:18:95:4d:03:f4:16: 2d:69:5e:27:1f:74:77:74:05:7c:51:2e:f4:30:41:54:70:08: 8d:68:91:2a:b8:5a:b3:67:9c:d9:4b:8a:93:d6:fc:0a:b4:c7: 80:2e:62:0b:89:0e:f5:41:7e:9c:ec:e2:47:56:a8:0e:fd:8c: dd:a5:2b:d4:0f:ed:14:d6:ab:a3:62:f6:ec:98:6f:f1:ee:0e: b3:c7:b4:23:87:d6:fd:ee:3d:1c:05:68:58:24:8c:e6:97:7d: a0:3a:11:40:57:cb:0d:df:b5:b6:bd:96:a0:37:b2:b2:0e:a2: 29:02:d1:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMG79gBkhlH85G0lpvt5P1hrxrEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTczMDExWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzZiOGRlMzhkOGMzOWI2ZjJlYTVhMDEyMzY4YzgwNjdm NWI0OGI2N2M2N2I3NzRjMGMxYWY3Njk0MjgwMjMwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7SxBmPQ9B6Vh0fBKLpltX/rZ/0G57yOgsKP5eulqx/AeE AuorFYrbhBCSCkWscFQD3KkA0f4/osnOzFsJ+BB/O+Ox/rYlUih5UshGB6Ejyc2B YeDChcYZ5zXcNfXlOvwaK4CprJ6w2k79s4ujKLweqJwm49awbJehQdgOa4EWGFXV GPWFdAJ4dnQGQWrPF6Gr3LCxXQRfG5mKBhi3k50AMv128Y4WqM1gtEuVasirrPEY qB5gMsQakLixM9OdzbC5fTTG3VAsilEvRznz+h7PC/JQSO2Ns4rzTGiinKlw1Z0L TrH2Ry3PZjHji0+t0NaRGf8pXGcPGfFGXYXVuqU/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1SSIH8refANtQJ20y6eIsfsZZpgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M3MTVmZTgwLWQ1MjktNDNjNi04ZmUzLTBmZTRmMThmMDcxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgowDQYJKoZIhvcNAQELBQADggEBAIx7dLmZG3oxK7goU55/L0QNirc7 bRpWssjdpYcI05iEwEXlAeEcKjvtLYV8eN52tqLKmaRfmO6coXhC5vVUcy1gcMDA wXN9LBjmrHSwqv6TzlkQozspf6aNRnaAasjp66IrSXYVdBEtzn4qUgqrsNpI4pOL ymSEUyNShgaEPkLlP2FIBprjEY9HChiVTQP0Fi1pXicfdHd0BXxRLvQwQVRwCI1o kSq4WrNnnNlLipPW/Aq0x4AuYguJDvVBfpzs4kdWqA79jN2lK9QP7RTWq6Ni9uyY b/HuDrPHtCOH1v3uPRwFaFgkjOaXfaA6EUBXyw3ftba9lqA3srIOoikC0dg= -----END CERTIFICATE-----Generated at Sat Apr 26 15:51:23 2025 by rpki-client