$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53c74ae-3eb9-41c4-bdb7-8b7fd3609c1e.roa File: d53c74ae-3eb9-41c4-bdb7-8b7fd3609c1e.roa (raw, json) Hash identifier: s5VGKAfS8YxCA/0SzAXbeuD7aLD8dl9k2Hb+AtwEbDo= Subject key identifier: 15:77:C7:25:DD:A5:8C:99:52:D2:38:70:02:11:C2:BE:FE:4B:61:A3 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 14A75149FF72B78722AB7868BCD0169CA545D5C0 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53c74ae-3eb9-41c4-bdb7-8b7fd3609c1e.roa Signing time: Fri 11 Jul 2025 18:00:12 +0000 ROA not before: Fri 11 Jul 2025 18:00:12 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 173.82.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a7:51:49:ff:72:b7:87:22:ab:78:68:bc:d0:16:9c:a5:45:d5:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:00:12 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=13f33f9ea982b82e6142da199099fed33d775078b75025ce571d9e1b8fefe2d1, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2b:63:da:5d:e5:1c:03:bb:94:f7:75:d1:7d: 13:ae:9f:b8:17:0d:d5:e6:83:01:35:c7:81:d1:40: 96:8c:53:fd:eb:e7:8d:be:05:ac:8d:97:7a:b5:3b: 88:18:86:5e:fa:34:79:66:d0:91:6a:a5:5f:8f:38: 77:ac:39:f2:c5:d4:51:f2:24:90:3d:22:64:5d:80: 7c:6c:bf:6e:fd:44:6c:56:68:40:ae:46:ff:6d:2f: 97:f7:b3:fe:5e:5b:3d:59:35:65:c4:0d:83:1d:41: 2e:a0:fb:42:80:00:53:9c:a5:c1:79:21:8a:a4:ea: 67:21:6d:65:3a:47:cb:cb:f4:57:0f:dc:a7:bf:93: c7:9a:ef:9f:4c:fa:c0:a5:64:75:fa:95:eb:77:3c: 82:10:c1:b0:4f:63:69:97:2b:98:54:5a:b0:16:93: 37:cc:c8:01:c9:75:12:de:eb:80:89:87:49:ad:b6: 9f:d7:6f:50:11:3d:7e:d1:60:6e:a0:11:2d:69:05: a2:f7:2b:b4:3b:b6:e6:e5:a9:66:db:f1:e6:85:c1: aa:65:2d:e7:30:35:c2:b2:30:46:8e:c1:ba:31:b7: af:43:a0:cc:05:79:09:4b:55:af:e3:18:d6:38:e8: 13:87:68:65:fa:60:3e:b6:21:c7:c1:48:74:00:74: 7f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:77:C7:25:DD:A5:8C:99:52:D2:38:70:02:11:C2:BE:FE:4B:61:A3 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53c74ae-3eb9-41c4-bdb7-8b7fd3609c1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.4.0/24 Signature Algorithm: sha256WithRSAEncryption 38:4a:b6:f9:d2:19:06:6c:61:39:50:45:b3:e9:36:56:69:82: 34:2a:cf:21:86:0c:69:85:56:e8:72:09:da:6d:77:f8:db:dd: 36:d6:b0:1b:ed:b6:38:53:ec:4c:94:43:a7:a6:6f:59:d0:fb: 49:91:dd:7d:b7:13:92:09:23:b6:06:e9:c7:fb:f1:50:14:ce: 89:50:14:a9:81:76:f6:36:82:19:fd:b8:50:a1:be:33:43:60: fc:79:37:45:48:fd:8c:62:db:33:72:c4:dd:12:fa:71:52:91: fc:0c:21:b4:1a:ca:82:d7:83:f5:0d:63:72:93:8e:8b:49:7d: a3:5c:75:3e:79:12:10:91:b8:81:89:c9:b8:a6:42:b4:d2:ca: 07:28:da:0d:eb:f2:b9:7f:07:f7:21:cc:cd:bc:ed:3b:df:b5: d8:0b:ec:ec:f4:a2:cc:79:44:eb:af:b3:62:8c:73:32:fa:e5: 16:09:3c:62:f5:2c:cb:71:69:4d:d8:64:16:15:85:92:7a:0b: cd:d5:00:f6:48:fb:c4:c1:4f:70:1c:2d:e4:4b:f6:98:8e:3a: f4:19:8c:eb:5b:02:26:5a:97:ec:e2:4b:79:06:eb:0f:9a:17: b3:8e:ba:e6:b7:0d:87:9a:2f:a2:d6:62:01:45:7d:b1:d6:18: 2b:3d:5c:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFKdRSf9yt4ciq3hovNAWnKVF1cAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgwMDEyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2YzM2Y5ZWE5ODJiODJlNjE0MmRhMTk5MDk5ZmVkMzNk Nzc1MDc4Yjc1MDI1Y2U1NzFkOWUxYjhmZWZlMmQxMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcK2PaXeUcA7uU93XRfROun7gXDdXmgwE1x4HRQJaMU/3r 542+BayNl3q1O4gYhl76NHlm0JFqpV+POHesOfLF1FHyJJA9ImRdgHxsv279RGxW aECuRv9tL5f3s/5eWz1ZNWXEDYMdQS6g+0KAAFOcpcF5IYqk6mchbWU6R8vL9FcP 3Ke/k8ea759M+sClZHX6let3PIIQwbBPY2mXK5hUWrAWkzfMyAHJdRLe64CJh0mt tp/Xb1ARPX7RYG6gES1pBaL3K7Q7tublqWbb8eaFwaplLecwNcKyMEaOwboxt69D oMwFeQlLVa/jGNY46BOHaGX6YD62IcfBSHQAdH/XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFXfHJd2ljJlS0jhwAhHCvv5LYaMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q1M2M3NGFlLTNlYjktNDFjNC1iZGI3LThiN2ZkMzYwOWMxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgQwDQYJKoZIhvcNAQELBQADggEBADhKtvnSGQZsYTlQRbPpNlZpgjQq zyGGDGmFVuhyCdptd/jb3TbWsBvttjhT7EyUQ6emb1nQ+0mR3X23E5IJI7YG6cf7 8VAUzolQFKmBdvY2ghn9uFChvjNDYPx5N0VI/Yxi2zNyxN0S+nFSkfwMIbQayoLX g/UNY3KTjotJfaNcdT55EhCRuIGJybimQrTSygco2g3r8rl/B/chzM287TvftdgL 7Oz0osx5ROuvs2KMczL65RYJPGL1LMtxaU3YZBYVhZJ6C83VAPZI+8TBT3AcLeRL 9piOOvQZjOtbAiZal+ziS3kG6w+aF7OOuua3DYeaL6LWYgFFfbHWGCs9XJE= -----END CERTIFICATE-----Generated at Mon Aug 4 14:42:45 2025 by rpki-client