$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53c74ae-3eb9-41c4-bdb7-8b7fd3609c1e.roa File: d53c74ae-3eb9-41c4-bdb7-8b7fd3609c1e.roa (raw, json) Hash identifier: Vwho7TRD7bJ44MQ9arskM+VTBpXLMAsHh7jjS3VhQQQ= Subject key identifier: 75:10:82:53:E5:AD:D2:34:A5:B0:EE:55:46:91:7A:9B:B6:7F:5C:E7 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 74ACC1C9B510A428BBC67244C2C5277A20806E84 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53c74ae-3eb9-41c4-bdb7-8b7fd3609c1e.roa Signing time: Tue 20 May 2025 17:40:11 +0000 ROA not before: Tue 20 May 2025 17:40:11 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 173.82.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ac:c1:c9:b5:10:a4:28:bb:c6:72:44:c2:c5:27:7a:20:80:6e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: May 20 17:40:11 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=36b74b7dc637ef78817f46ab6d816b7cf2b1478c64fc91312bf24d868ef5f890, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e7:ca:b7:9d:9d:d3:e4:7c:8e:07:ff:07:b4: 9b:03:d7:d6:32:47:50:19:79:fb:7a:ab:27:cb:a4: 69:e9:74:e5:b9:cf:50:b6:1c:fe:f1:b6:a2:a8:84: 8c:0a:25:16:0b:cf:ec:0e:f3:c6:44:b7:35:c0:c2: dd:9d:62:fb:0f:db:a3:07:9a:c1:47:54:2f:90:0a: 9f:3c:7a:dc:65:32:c0:d5:47:bb:d6:d3:e8:08:50: f6:59:53:25:53:b9:8d:14:16:a1:23:c6:c7:4c:60: 41:ba:13:5f:53:0c:46:be:29:2c:12:12:6b:e5:04: 54:81:18:87:a6:fb:2e:f5:10:8f:e3:f8:52:ef:f0: fa:dd:b1:1a:64:d1:cf:61:f5:ec:49:bc:3f:ed:26: f2:35:46:d5:44:e4:36:9e:63:e2:81:a7:59:2e:de: 4d:b8:f8:d6:d1:84:8b:fd:23:44:52:fb:fb:4a:13: cd:39:11:e0:36:f9:df:81:16:7d:32:55:6a:5e:b7: 67:a7:4d:a0:cc:84:03:81:2f:47:0b:f4:3d:b5:23: 52:70:74:e8:63:e8:d6:24:21:00:39:ac:f5:62:37: 28:81:c7:15:ca:e6:5d:bf:0f:f6:ae:f6:aa:8d:c2: ac:88:43:78:b6:ad:9f:dc:84:ee:f9:6d:de:7b:82: 6e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:10:82:53:E5:AD:D2:34:A5:B0:EE:55:46:91:7A:9B:B6:7F:5C:E7 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/d53c74ae-3eb9-41c4-bdb7-8b7fd3609c1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.4.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:3e:5b:03:6f:37:50:cb:a6:f1:cc:1b:ad:ec:ce:0d:14:c5: be:d3:eb:db:50:bc:5a:1e:05:e3:72:78:44:c1:e9:96:61:69: 0b:64:2a:ec:cb:66:65:35:d6:3c:4e:59:30:99:09:19:d9:5c: a4:3f:42:3a:ec:81:2a:05:bf:28:69:7b:09:1a:56:44:42:30: b6:6e:6d:9a:48:11:53:54:0e:1e:2d:f9:3e:49:ff:38:df:e4: 5b:06:60:1b:49:93:61:8b:87:b1:ed:0e:07:db:75:4f:56:0e: 4d:86:6f:5b:f7:8b:af:e7:cc:42:79:20:0a:fd:b4:39:88:89: 73:c9:08:fb:df:fb:92:56:06:92:6b:1d:83:44:f6:ea:c6:43: be:28:b4:b1:2f:2d:8c:70:4f:56:a0:c4:2e:18:86:38:ba:36: d7:a6:76:99:0e:43:60:37:75:b6:6d:dd:e1:4a:aa:12:47:67: 10:3c:57:42:9f:df:75:85:aa:84:e0:da:86:d4:75:5a:0c:54: f4:41:52:cb:5d:b9:cd:e8:dc:cb:ee:b9:4c:75:a0:c6:eb:47: c4:f6:f7:c6:f7:98:c6:b3:00:7f:ee:32:c2:ce:5d:65:59:43: b7:f2:5f:a4:12:b9:95:14:18:38:62:ad:21:7a:30:dd:c2:b5: 2d:5f:7b:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdKzBybUQpCi7xnJEwsUneiCAboQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNTIwMTc0MDExWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmI3NGI3ZGM2MzdlZjc4ODE3ZjQ2YWI2ZDgxNmI3Y2Yy YjE0NzhjNjRmYzkxMzEyYmYyNGQ4NjhlZjVmODkwMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv58q3nZ3T5HyOB/8HtJsD19YyR1AZeft6qyfLpGnpdOW5 z1C2HP7xtqKohIwKJRYLz+wO88ZEtzXAwt2dYvsP26MHmsFHVC+QCp88etxlMsDV R7vW0+gIUPZZUyVTuY0UFqEjxsdMYEG6E19TDEa+KSwSEmvlBFSBGIem+y71EI/j +FLv8PrdsRpk0c9h9exJvD/tJvI1RtVE5DaeY+KBp1ku3k24+NbRhIv9I0RS+/tK E805EeA2+d+BFn0yVWpet2enTaDMhAOBL0cL9D21I1JwdOhj6NYkIQA5rPViNyiB xxXK5l2/D/au9qqNwqyIQ3i2rZ/chO75bd57gm6XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdRCCU+Wt0jSlsO5VRpF6m7Z/XOcwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2Q1M2M3NGFlLTNlYjktNDFjNC1iZGI3LThiN2ZkMzYwOWMxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgQwDQYJKoZIhvcNAQELBQADggEBAE4+WwNvN1DLpvHMG63szg0Uxb7T 69tQvFoeBeNyeETB6ZZhaQtkKuzLZmU11jxOWTCZCRnZXKQ/QjrsgSoFvyhpewka VkRCMLZubZpIEVNUDh4t+T5J/zjf5FsGYBtJk2GLh7HtDgfbdU9WDk2Gb1v3i6/n zEJ5IAr9tDmIiXPJCPvf+5JWBpJrHYNE9urGQ74otLEvLYxwT1agxC4Yhji6Ntem dpkOQ2A3dbZt3eFKqhJHZxA8V0Kf33WFqoTg2obUdVoMVPRBUstduc3o3MvuuUx1 oMbrR8T298b3mMazAH/uMsLOXWVZQ7fyX6QSuZUUGDhirSF6MN3CtS1fe64= -----END CERTIFICATE-----Generated at Sat Jun 14 23:58:22 2025 by rpki-client