$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c715fe80-d529-43c6-8fe3-0fe4f18f0712.roa File: c715fe80-d529-43c6-8fe3-0fe4f18f0712.roa (raw, json) Hash identifier: aLrtOdYHWj4vhYh1nbY6M3/rFAAacZlkTOfqnzfVDgQ= Subject key identifier: 02:45:28:A2:20:9F:70:B9:FD:F3:98:D0:27:1A:CE:58:5A:14:7C:5B Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 523EFF4CFA233AF09D1AAC42380F87114E18A739 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c715fe80-d529-43c6-8fe3-0fe4f18f0712.roa Signing time: Fri 11 Jul 2025 18:01:02 +0000 ROA not before: Fri 11 Jul 2025 18:01:02 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:3e:ff:4c:fa:23:3a:f0:9d:1a:ac:42:38:0f:87:11:4e:18:a7:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:01:02 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=e1468431d9b6ea28de81a1bd5c9efa704184ddacb232fdeb419af673b8fe2359, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:3a:cc:88:b5:af:e3:38:d6:7d:2d:1f:73:92: 07:89:bb:7c:aa:d0:55:8f:6f:1a:21:4a:7f:77:8c: 99:7e:d2:06:c9:f9:8c:e5:68:cc:b0:31:3d:28:c8: bd:4a:45:c0:75:51:18:b1:da:74:09:4a:46:2e:ba: 29:2c:84:f9:1c:65:b6:c5:cf:ae:5e:49:4b:9c:f9: f6:63:a1:d4:81:ec:8c:61:77:cd:d7:82:b9:c4:a5: a6:75:0b:f0:bc:d4:f4:45:6c:e6:7a:6f:e7:4b:79: d1:62:54:dd:c0:63:86:50:00:c2:b8:4a:c2:1d:6c: bb:5e:96:9e:f7:28:84:e9:d6:f5:f1:35:98:4a:66: a1:97:5d:44:16:d0:21:33:e7:b7:d5:2f:f1:5d:e5: e9:1d:48:4b:6f:bc:6a:49:08:6d:54:ee:63:28:64: 27:cb:57:07:49:d3:57:b8:51:51:65:b3:6e:4f:10: cf:8f:6c:6a:d1:e1:7c:38:b4:fe:e0:d5:c2:d3:9f: 88:d8:60:03:be:81:a6:19:3b:3a:9d:c0:a5:6c:f3: d4:df:23:f1:94:7d:f3:e6:70:1a:fc:97:4a:32:55: f7:0f:7f:50:ba:f2:14:31:f0:0d:e4:89:c8:47:6e: 20:09:c1:6c:86:67:4c:d3:7a:ad:ad:96:7f:1a:40: 4e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:45:28:A2:20:9F:70:B9:FD:F3:98:D0:27:1A:CE:58:5A:14:7C:5B X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c715fe80-d529-43c6-8fe3-0fe4f18f0712.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.10.0/24 Signature Algorithm: sha256WithRSAEncryption 92:28:29:8e:13:d3:b9:f7:a1:3c:dc:cc:37:9f:f4:7c:e7:7d: 52:f1:58:aa:3d:2b:88:6f:98:7f:8e:76:de:d9:66:af:d1:0f: 9b:c2:a8:45:c8:48:ab:30:36:8d:f8:38:4f:78:4f:e5:8d:53: 86:5e:67:4a:a2:3b:4b:c5:38:c4:c6:23:24:3c:ca:bb:c4:ea: 16:59:10:6d:85:fc:43:82:e6:3e:e2:64:c9:e3:fc:bc:f4:1b: bd:6a:1a:26:07:09:2e:d5:ac:be:e1:b3:15:f1:0a:04:2e:b8: 9e:d5:d2:76:e3:ea:5e:ea:fe:d4:ae:39:80:3d:15:74:94:3d: a1:c2:5f:80:80:4f:8b:0f:ee:45:ea:04:e0:8c:24:f0:56:c6: ba:5f:f4:c2:14:ae:2f:9a:e9:dc:b9:02:e4:fc:2a:b8:3f:53: c7:5f:6b:11:c0:ba:08:a6:c9:14:74:27:62:8c:db:53:a0:a5: ca:af:fd:a7:7b:38:0c:fb:8e:b7:d6:f1:39:b4:88:18:62:0b: 45:46:1e:8b:de:b8:44:f1:0c:65:6a:ef:2e:b0:f4:65:c0:cc: ea:cd:d5:65:39:09:48:06:57:a9:bc:f7:a6:61:b5:e4:b3:3c: 19:34:f1:7b:a5:f5:86:b2:15:d0:55:1a:5e:35:16:1c:7a:34: 2a:ba:0b:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUj7/TPojOvCdGqxCOA+HEU4YpzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgwMTAyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTQ2ODQzMWQ5YjZlYTI4ZGU4MWExYmQ1YzllZmE3MDQx ODRkZGFjYjIzMmZkZWI0MTlhZjY3M2I4ZmUyMzU5MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMOsyIta/jONZ9LR9zkgeJu3yq0FWPbxohSn93jJl+0gbJ +YzlaMywMT0oyL1KRcB1URix2nQJSkYuuikshPkcZbbFz65eSUuc+fZjodSB7Ixh d83XgrnEpaZ1C/C81PRFbOZ6b+dLedFiVN3AY4ZQAMK4SsIdbLtelp73KITp1vXx NZhKZqGXXUQW0CEz57fVL/Fd5ekdSEtvvGpJCG1U7mMoZCfLVwdJ01e4UVFls25P EM+PbGrR4Xw4tP7g1cLTn4jYYAO+gaYZOzqdwKVs89TfI/GUffPmcBr8l0oyVfcP f1C68hQx8A3kichHbiAJwWyGZ0zTeq2tln8aQE6dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAkUooiCfcLn985jQJxrOWFoUfFswHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M3MTVmZTgwLWQ1MjktNDNjNi04ZmUzLTBmZTRmMThmMDcxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgowDQYJKoZIhvcNAQELBQADggEBAJIoKY4T07n3oTzczDef9HznfVLx WKo9K4hvmH+Odt7ZZq/RD5vCqEXISKswNo34OE94T+WNU4ZeZ0qiO0vFOMTGIyQ8 yrvE6hZZEG2F/EOC5j7iZMnj/Lz0G71qGiYHCS7VrL7hsxXxCgQuuJ7V0nbj6l7q /tSuOYA9FXSUPaHCX4CAT4sP7kXqBOCMJPBWxrpf9MIUri+a6dy5AuT8Krg/U8df axHAugimyRR0J2KM21Ogpcqv/ad7OAz7jrfW8Tm0iBhiC0VGHoveuETxDGVq7y6w 9GXAzOrN1WU5CUgGV6m896ZhteSzPBk08Xul9YayFdBVGl41Fhx6NCq6C8I= -----END CERTIFICATE-----Generated at Mon Aug 4 21:43:58 2025 by rpki-client