$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa File: e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa (raw, json) Hash identifier: AzmOlJPCeAGpBbKNkKvVA7jw1CBlHyk7HTx0PMitNnM= Subject key identifier: 6D:89:19:61:27:0B:BB:0A:16:9B:B8:8D:94:B0:1E:DF:56:38:C0:E8 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 510DFCF4A82C91FE968B048FA789B038018E4191 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa Signing time: Sat 26 Apr 2025 00:51:22 +0000 ROA not before: Sat 26 Apr 2025 00:51:22 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:0d:fc:f4:a8:2c:91:fe:96:8b:04:8f:a7:89:b0:38:01:8e:41:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 26 00:51:22 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=f2770722090d7d6915c4164fdf1edd952e0f0d41610f53fefc17a7efe60a2817, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:62:1f:cd:b7:a1:fa:64:37:ef:ad:52:44:89: 94:0e:3b:89:4d:87:a9:67:a4:1f:05:0b:46:09:3a: dc:74:7a:10:8a:33:ac:73:99:08:a0:ef:17:a5:af: b7:63:37:f9:6b:56:09:c5:32:f9:b5:1d:ef:4e:f3: 8d:13:02:46:8c:a0:71:c6:e5:1d:91:54:b1:8a:e2: a1:5a:40:d6:24:0b:fc:42:d0:c4:74:e5:53:d8:b6: c9:44:c7:68:cf:18:b8:9d:c3:dd:4d:a3:2d:62:f8: 2f:f0:bb:26:03:90:d2:3d:bf:aa:d2:ae:d9:bf:a0: 92:33:05:b2:a4:67:46:7f:d2:57:5b:02:93:01:47: 3b:d2:3d:f4:88:a6:d1:f9:9a:44:a2:3c:ea:56:53: 45:88:33:11:b4:22:8e:52:b3:b0:95:3f:a0:6b:cb: 8b:6c:ec:48:27:ff:ef:b7:d5:3f:22:4a:56:ec:f4: 2e:11:e0:30:ff:b2:e1:38:13:46:82:d7:a9:97:2b: 71:eb:22:c4:97:65:fc:fd:5a:b8:23:df:c0:50:33: bb:ad:a2:3f:d8:5c:59:9a:fe:02:b0:a8:4c:13:b4: 02:74:ac:4a:a8:d6:e7:23:b4:e4:4f:81:1a:3e:c3: 6e:59:bc:fc:7d:90:98:8e:f4:22:23:7d:d9:3f:4f: 0b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:89:19:61:27:0B:BB:0A:16:9B:B8:8D:94:B0:1E:DF:56:38:C0:E8 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:06:a4:c5:f9:55:9f:03:58:d3:8b:58:45:0b:f9:26:12:68: 89:d4:69:e9:64:fe:91:23:d0:e3:d2:7c:af:8c:7b:97:4d:0e: d2:a2:0e:0e:3f:58:c5:5b:84:49:f5:38:a0:f9:3d:ff:5b:c4: bf:2a:29:b5:44:3b:f4:00:1c:10:52:65:5b:00:98:2a:23:55: 80:96:e2:97:d6:c1:9d:70:78:27:a6:df:1e:19:fd:1f:73:81: 8d:3d:f1:f5:8a:a3:7e:52:fe:eb:06:fe:d0:df:1c:b6:52:70: c1:a5:65:85:43:96:bb:25:21:45:60:cf:0d:41:33:16:ec:4a: 8f:e8:9a:64:00:e2:b6:d9:b0:93:19:81:d7:3a:bd:ba:3e:77: 63:5e:71:86:be:96:f1:4d:a5:31:a8:6a:4d:95:da:6e:98:f6: d7:5c:22:c8:e8:7c:03:28:c4:a3:e8:db:8d:33:38:39:14:2f: f6:a2:3e:37:bb:8f:69:5a:3a:af:a2:c5:fd:bb:15:68:18:e2: 8b:7d:c4:3d:0f:10:88:b4:3b:ce:d1:40:31:d4:fb:54:84:a9: 78:d1:18:61:8d:15:fb:39:5a:4a:05:d9:4c:0b:69:0b:7b:05: 04:8f:74:44:b3:83:d5:d1:dc:22:f1:b4:d4:2e:39:15:2a:47: 97:52:23:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUQ389Kgskf6WiwSPp4mwOAGOQZEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDI2MDA1MTIyWhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjc3MDcyMjA5MGQ3ZDY5MTVjNDE2NGZkZjFlZGQ5NTJl MGYwZDQxNjEwZjUzZmVmYzE3YTdlZmU2MGEyODE3MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLYh/Nt6H6ZDfvrVJEiZQOO4lNh6lnpB8FC0YJOtx0ehCK M6xzmQig7xelr7djN/lrVgnFMvm1He9O840TAkaMoHHG5R2RVLGK4qFaQNYkC/xC 0MR05VPYtslEx2jPGLidw91Noy1i+C/wuyYDkNI9v6rSrtm/oJIzBbKkZ0Z/0ldb ApMBRzvSPfSIptH5mkSiPOpWU0WIMxG0Io5Ss7CVP6Bry4ts7Egn/++31T8iSlbs 9C4R4DD/suE4E0aC16mXK3HrIsSXZfz9Wrgj38BQM7utoj/YXFma/gKwqEwTtAJ0 rEqo1ucjtORPgRo+w25ZvPx9kJiO9CIjfdk/TwtdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbYkZYScLuwoWm7iNlLAe31Y4wOgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U0MWJlM2NlLWVkMGUtNGM3ZS1hOWZkLTQxMTQ5MDFmYTQwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUjANBgkqhkiG9w0BAQsFAAOCAQEAiQakxflVnwNY04tYRQv5JhJoidRp 6WT+kSPQ49J8r4x7l00O0qIODj9YxVuESfU4oPk9/1vEvyoptUQ79AAcEFJlWwCY KiNVgJbil9bBnXB4J6bfHhn9H3OBjT3x9YqjflL+6wb+0N8ctlJwwaVlhUOWuyUh RWDPDUEzFuxKj+iaZADittmwkxmB1zq9uj53Y15xhr6W8U2lMahqTZXabpj211wi yOh8AyjEo+jbjTM4ORQv9qI+N7uPaVo6r6LF/bsVaBjii33EPQ8QiLQ7ztFAMdT7 VISpeNEYYY0V+zlaSgXZTAtpC3sFBI90RLOD1dHcIvG01C45FSpHl1IjQQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:52:47 2025 by rpki-client