$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa File: d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa (raw, json) Hash identifier: BWfqjOIKzqkO8ZycArODqEwFVcwjEP2Ctvr4TQCMb0c= Subject key identifier: B7:23:8B:6A:10:C8:31:68:03:8D:0F:6E:B2:7C:2B:7D:17:AF:80:10 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3A6AD11056F21C6CD7921625A3902C629C544949 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa Signing time: Fri 25 Apr 2025 17:30:13 +0000 ROA not before: Fri 25 Apr 2025 17:30:13 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:6a:d1:10:56:f2:1c:6c:d7:92:16:25:a3:90:2c:62:9c:54:49:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 25 17:30:13 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=3fc91280e6b929c06511000bbff3cfea7fdca4b3f5e55ef6baf0846da22ad45e, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d0:2a:13:53:ef:53:d4:05:2f:15:a3:69:65: 67:c2:c1:69:c4:fe:00:3d:af:8f:94:df:83:cc:c9: 4c:ae:7d:a0:0a:a0:c3:2e:31:61:56:f7:cd:23:13: a6:66:1f:14:63:c0:bd:85:65:29:cf:a5:aa:d9:81: b2:5e:50:c9:b0:ab:98:a4:7d:bf:9d:7a:15:ff:77: f5:35:72:a0:b3:48:4e:a1:51:50:7e:ec:a9:b2:41: ae:c6:97:7c:da:ed:39:f2:6f:38:2e:6d:ef:eb:b8: 55:38:49:e1:a9:57:0d:c7:d1:7a:b9:fb:8c:4d:b5: 56:4c:ee:67:5e:cd:20:f4:57:aa:19:c8:f4:47:4c: 8d:ff:f6:49:3c:59:f2:91:83:d0:10:cf:21:18:ed: 96:dd:ad:e5:79:d0:e5:76:87:5c:c6:3f:9e:de:17: 9c:e7:05:fa:d8:27:7e:69:94:cb:52:60:b9:1c:ac: c7:b9:b3:3f:42:e5:4c:2a:52:99:3d:d2:0b:7e:c0: 6a:b2:fc:31:af:76:fd:09:a8:e7:d9:52:83:b2:bc: 8f:94:7d:37:ba:cd:88:3f:55:e1:59:21:21:47:6d: 04:a9:89:1b:d4:5b:ba:14:f7:74:fa:24:7b:03:cb: cb:10:5f:43:96:70:1b:05:ab:06:1a:55:00:1c:c3: b3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:23:8B:6A:10:C8:31:68:03:8D:0F:6E:B2:7C:2B:7D:17:AF:80:10 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d0c428d4-96a3-4df6-b260-bb2067e0ac20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.11.0/24 Signature Algorithm: sha256WithRSAEncryption 95:25:d8:37:ae:fd:fd:32:de:c6:a8:22:a7:9b:9a:24:66:e2: 82:9f:93:eb:b5:20:77:4a:eb:dc:26:d8:a6:54:16:b1:9d:d5: 6d:35:0c:a4:36:bc:57:88:0a:90:1f:08:1e:dc:11:c2:fc:8d: db:ae:1d:ae:b9:d9:da:c2:3d:1b:77:79:2d:de:f2:d2:6e:34: 46:23:b8:3d:dc:00:ee:57:ac:68:18:bf:b5:d6:63:76:ec:cb: cd:cc:60:52:0a:4d:a2:4f:47:f8:71:8f:ff:ce:e9:1d:80:1e: 0c:54:cf:e2:96:06:21:77:d8:78:8a:44:e1:57:e1:5d:79:72: 6c:ec:80:a9:60:39:3c:92:67:b8:f6:f4:0a:f8:b0:1d:3c:0b: 9f:a6:85:60:49:ad:14:70:cb:76:51:53:6c:40:22:b7:3e:d5: 43:06:f5:50:39:36:c8:a7:cd:b8:53:1e:fb:e6:f4:f5:34:78: 29:c7:d2:5e:de:1b:90:52:8e:28:ba:ad:1b:eb:72:b7:ab:b5: 19:2a:a9:33:ec:61:04:ec:52:b6:53:09:43:f5:ec:b7:e4:2c: 1a:f1:77:d4:8d:6e:b7:c0:7b:56:f9:d3:86:d6:34:a1:aa:ca: cb:c2:11:e6:c0:97:7b:cd:11:84:d6:12:4f:df:32:6a:87:05: a7:b0:fd:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOmrREFbyHGzXkhYlo5AsYpxUSUkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI1MTczMDEzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmM5MTI4MGU2YjkyOWMwNjUxMTAwMGJiZmYzY2ZlYTdm ZGNhNGIzZjVlNTVlZjZiYWYwODQ2ZGEyMmFkNDVlMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX0CoTU+9T1AUvFaNpZWfCwWnE/gA9r4+U34PMyUyufaAK oMMuMWFW980jE6ZmHxRjwL2FZSnPparZgbJeUMmwq5ikfb+dehX/d/U1cqCzSE6h UVB+7KmyQa7Gl3za7Tnybzgube/ruFU4SeGpVw3H0Xq5+4xNtVZM7mdezSD0V6oZ yPRHTI3/9kk8WfKRg9AQzyEY7ZbdreV50OV2h1zGP57eF5znBfrYJ35plMtSYLkc rMe5sz9C5UwqUpk90gt+wGqy/DGvdv0JqOfZUoOyvI+UfTe6zYg/VeFZISFHbQSp iRvUW7oU93T6JHsDy8sQX0OWcBsFqwYaVQAcw7MTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtyOLahDIMWgDjQ9usnwrfRevgBAwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2QwYzQyOGQ0LTk2YTMtNGRmNi1iMjYwLWJiMjA2N2UwYWMyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgswDQYJKoZIhvcNAQELBQADggEBAJUl2Deu/f0y3saoIqebmiRm4oKf k+u1IHdK69wm2KZUFrGd1W01DKQ2vFeICpAfCB7cEcL8jduuHa652drCPRt3eS3e 8tJuNEYjuD3cAO5XrGgYv7XWY3bsy83MYFIKTaJPR/hxj//O6R2AHgxUz+KWBiF3 2HiKROFX4V15cmzsgKlgOTySZ7j29Ar4sB08C5+mhWBJrRRwy3ZRU2xAIrc+1UMG 9VA5NsinzbhTHvvm9PU0eCnH0l7eG5BSjii6rRvrcrertRkqqTPsYQTsUrZTCUP1 7LfkLBrxd9SNbrfAe1b504bWNKGqysvCEebAl3vNEYTWEk/fMmqHBaew/Vs= -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:08 2025 by rpki-client