$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c8b42a12-b0de-4168-9a5f-d2aaa5831b36.roa File: c8b42a12-b0de-4168-9a5f-d2aaa5831b36.roa (raw, json) Hash identifier: oo7XwNXr9FpJ1BtGKM8iznVV0RRkmZld2jyXyhkavCM= Subject key identifier: 85:35:98:13:00:97:A1:95:6C:2F:5F:76:6A:8F:9B:BA:90:8E:20:40 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 279CB7340116B357A777030432AFA6139E00AC56 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c8b42a12-b0de-4168-9a5f-d2aaa5831b36.roa Signing time: Tue 15 Apr 2025 00:50:23 +0000 ROA not before: Tue 15 Apr 2025 00:50:23 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:9c:b7:34:01:16:b3:57:a7:77:03:04:32:af:a6:13:9e:00:ac:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 15 00:50:23 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=03f28f83adb0ac721a436c6dc5be28cf9ca701074e785dd5cbd3e7c92fa93698, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:04:99:d1:e1:ce:19:cb:f1:02:5e:2b:f5:be: 69:4f:b6:bd:db:34:06:8a:55:78:a2:a1:0b:78:4d: 6f:12:50:db:8f:e1:bf:55:79:81:e0:6c:91:10:fd: cb:77:ae:37:39:4b:cf:b5:4a:e2:c0:86:ae:14:7e: 55:57:34:cd:b0:a9:36:25:91:95:37:5f:c0:13:a6: 34:d7:28:ee:2a:d9:0b:54:cc:95:12:1b:f1:20:a6: 13:8a:8b:f9:0c:36:f1:5b:ab:f5:a3:8f:10:93:66: 76:3c:45:4c:9d:c3:b9:e6:a5:6d:a8:f0:42:58:13: c4:98:08:27:fb:0f:49:6c:60:69:0e:18:ed:e1:e0: 40:4c:21:30:7c:2d:6c:c9:b6:0f:d5:75:ba:19:fd: 92:21:54:f1:d0:bf:87:ce:48:48:c1:1c:7e:6a:26: 1b:41:2b:02:9f:50:32:c3:cb:5b:25:f5:10:1d:61: 1d:2a:78:8e:96:a9:88:86:47:fe:75:3f:3f:7a:75: 6e:e8:bb:9b:60:f9:a0:55:bd:c0:69:46:5f:32:9d: 63:78:0d:72:16:60:7c:1a:a5:58:a2:c6:54:f2:fd: 54:0b:ae:f3:f5:05:a6:ba:03:59:14:71:4f:f9:8e: 99:59:38:ea:16:ee:ad:19:41:12:35:8f:19:cd:2b: 25:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:35:98:13:00:97:A1:95:6C:2F:5F:76:6A:8F:9B:BA:90:8E:20:40 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c8b42a12-b0de-4168-9a5f-d2aaa5831b36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.20.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:0e:b1:c8:d1:d9:3e:9a:fb:c5:d8:14:37:0b:0d:8a:ef:bf: bf:37:ba:31:e5:85:67:3d:62:9a:2b:12:23:f3:2e:0e:51:cd: 02:6d:ce:da:85:7e:ed:fd:c1:d6:9f:ae:b2:8e:cd:af:59:77: ec:ca:69:81:f4:e1:b4:0d:7f:08:dc:cc:cd:da:40:cf:05:0a: 93:d6:81:20:4d:9c:0f:79:d6:12:45:e7:a9:7d:48:c2:6d:63: 61:12:75:c3:e3:29:74:5c:0a:06:e1:aa:df:18:d7:13:b0:ca: 66:42:62:f8:f3:4f:b5:ed:41:8a:68:94:53:25:42:7c:92:aa: e0:a0:ae:85:ac:62:07:de:88:95:15:bd:e9:b8:95:13:86:21: 5f:60:ef:03:89:b0:69:1f:c6:d6:7c:af:46:73:1e:a4:1d:77: 2a:e5:f6:30:58:63:37:a2:8d:f5:47:e7:73:31:b4:cf:81:22: 0c:2f:18:19:88:dd:7e:84:cb:44:ff:4f:0e:37:90:5b:a8:8f: 45:dc:b2:81:4c:56:fd:4f:fc:3a:69:a9:e2:ce:2a:be:72:67: bd:f1:a5:47:05:0f:ee:e2:d4:11:1c:15:3b:dc:ea:30:3e:82: 1b:11:48:78:c2:72:f0:3e:e3:eb:c4:57:4d:e0:20:7f:d4:48: 2c:b6:b0:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ5y3NAEWs1endwMEMq+mE54ArFYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDE1MDA1MDIzWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2YyOGY4M2FkYjBhYzcyMWE0MzZjNmRjNWJlMjhjZjlj YTcwMTA3NGU3ODVkZDVjYmQzZTdjOTJmYTkzNjk4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgBJnR4c4Zy/ECXiv1vmlPtr3bNAaKVXiioQt4TW8SUNuP 4b9VeYHgbJEQ/ct3rjc5S8+1SuLAhq4UflVXNM2wqTYlkZU3X8ATpjTXKO4q2QtU zJUSG/EgphOKi/kMNvFbq/WjjxCTZnY8RUydw7nmpW2o8EJYE8SYCCf7D0lsYGkO GO3h4EBMITB8LWzJtg/VdboZ/ZIhVPHQv4fOSEjBHH5qJhtBKwKfUDLDy1sl9RAd YR0qeI6WqYiGR/51Pz96dW7ou5tg+aBVvcBpRl8ynWN4DXIWYHwapViixlTy/VQL rvP1Baa6A1kUcU/5jplZOOoW7q0ZQRI1jxnNKyWNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhTWYEwCXoZVsL192ao+bupCOIEAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2M4YjQyYTEyLWIwZGUtNDE2OC05YTVmLWQyYWFhNTgzMWIzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUhQwDQYJKoZIhvcNAQELBQADggEBAC0OscjR2T6a+8XYFDcLDYrvv783 ujHlhWc9YporEiPzLg5RzQJtztqFfu39wdafrrKOza9Zd+zKaYH04bQNfwjczM3a QM8FCpPWgSBNnA951hJF56l9SMJtY2ESdcPjKXRcCgbhqt8Y1xOwymZCYvjzT7Xt QYpolFMlQnySquCgroWsYgfeiJUVvem4lROGIV9g7wOJsGkfxtZ8r0ZzHqQddyrl 9jBYYzeijfVH53MxtM+BIgwvGBmI3X6Ey0T/Tw43kFuoj0XcsoFMVv1P/DppqeLO Kr5yZ73xpUcFD+7i1BEcFTvc6jA+ghsRSHjCcvA+4+vEV03gIH/USCy2sNI= -----END CERTIFICATE-----Generated at Sat Apr 26 18:32:12 2025 by rpki-client