$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1d13217f-f773-4398-981b-ffc64bffbbc2.roa File: 1d13217f-f773-4398-981b-ffc64bffbbc2.roa (raw, json) Hash identifier: BfhdG/w624oGcQxCKh6dMMNUJFepXdTXDEWz0SkWO1w= Subject key identifier: 74:B9:25:9D:95:F8:10:15:31:DE:C8:96:07:9E:64:67:AE:B1:7F:13 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3AC3F1BB9B011CCE521FBDFECBDE461066090C8B Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1d13217f-f773-4398-981b-ffc64bffbbc2.roa Signing time: Tue 15 Apr 2025 00:50:14 +0000 ROA not before: Tue 15 Apr 2025 00:50:14 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:c3:f1:bb:9b:01:1c:ce:52:1f:bd:fe:cb:de:46:10:66:09:0c:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Apr 15 00:50:14 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=4ab1f3431b109931c3738665bbb64371f7d40dd5b73526dcee4cd16cc8e800d5, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4c:a0:67:e5:ee:17:a9:97:e6:32:88:7f:95: f2:59:8e:c3:f6:ec:22:32:a6:67:b6:94:93:f1:3a: e3:32:2e:ac:b9:d8:a2:a4:aa:fe:d9:c1:be:66:09: bf:1f:0b:9f:42:9c:ed:a5:3a:80:95:6b:b0:d2:76: e4:b9:59:63:62:90:e7:ea:1f:0d:3c:14:c1:89:42: 82:c6:a4:3c:44:00:8a:0e:56:60:54:19:ce:c7:d4: 7c:f9:80:dc:ed:e3:2f:88:a9:14:4a:f7:bc:a7:be: a9:be:e3:65:47:3c:ae:28:de:cb:2e:46:cc:eb:3c: 4e:e0:47:a5:7a:32:cf:f3:b1:48:8b:df:49:27:4e: 1e:d1:fb:3a:1a:a0:56:98:7c:0f:b0:20:63:80:ed: 65:86:45:0e:4b:57:5c:00:e9:a8:0c:a7:a2:fc:ae: 47:5c:6f:dc:ec:d8:ac:fb:52:f0:cd:25:09:3d:75: a5:3b:0f:f1:1d:be:10:75:aa:21:cf:aa:20:39:82: e3:86:e3:9e:c8:4e:9b:c4:40:8b:26:d0:a9:22:58: 20:76:31:6b:96:3c:e3:08:44:52:f6:26:51:d0:a9: 62:ca:8d:e8:78:d2:1c:ac:8f:78:94:70:f3:1c:f6: d9:e7:9a:a2:6d:63:03:93:53:04:ff:df:78:8f:10: ed:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B9:25:9D:95:F8:10:15:31:DE:C8:96:07:9E:64:67:AE:B1:7F:13 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/1d13217f-f773-4398-981b-ffc64bffbbc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.17.0/24 Signature Algorithm: sha256WithRSAEncryption 91:7a:6b:7e:53:69:4f:2d:d7:36:35:2b:97:b1:7e:23:0f:be: 75:14:75:d5:c5:87:17:1c:df:7d:72:91:4f:f3:71:d3:ba:e6: 15:75:3a:4b:a1:0f:ff:d9:04:72:ee:9c:01:2a:70:93:45:ea: 4f:10:ec:e2:48:11:a3:50:d3:52:0c:1f:6a:21:a8:bd:f7:0b: 9c:78:71:92:0c:80:e0:11:ab:db:eb:97:b9:53:37:3a:dd:32: 5b:59:ee:7a:45:aa:e4:35:ab:f0:53:95:f3:26:89:b1:f3:84: 5e:4a:fe:34:43:38:8c:c1:e4:84:b1:ae:da:a3:b8:f7:8a:38: 31:a6:61:33:6a:35:d9:0e:8e:8e:f8:41:6f:03:42:72:00:37: 1a:c0:b5:e8:00:c5:11:35:f9:b9:a9:f0:6c:d9:b8:99:ca:96: 05:a8:7a:ce:6e:44:23:5c:74:96:3d:6d:38:b3:cd:b7:77:9e: b7:02:b1:da:0f:6b:b9:cc:d8:d6:6a:64:55:88:5c:43:1e:0b: 0e:d1:67:42:91:42:52:23:c1:9b:aa:57:ff:f4:f2:c0:c7:4d: ad:de:5b:e6:d5:8f:1c:6f:8b:59:ca:55:ef:3e:44:28:42:d7: 97:88:15:2d:60:e2:c8:40:c4:9f:54:9b:15:f6:81:67:72:93: 6b:53:e3:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOsPxu5sBHM5SH73+y95GEGYJDIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNDE1MDA1MDE0WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YWIxZjM0MzFiMTA5OTMxYzM3Mzg2NjViYmI2NDM3MWY3 ZDQwZGQ1YjczNTI2ZGNlZTRjZDE2Y2M4ZTgwMGQ1MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmTKBn5e4XqZfmMoh/lfJZjsP27CIypme2lJPxOuMyLqy5 2KKkqv7Zwb5mCb8fC59CnO2lOoCVa7DSduS5WWNikOfqHw08FMGJQoLGpDxEAIoO VmBUGc7H1Hz5gNzt4y+IqRRK97ynvqm+42VHPK4o3ssuRszrPE7gR6V6Ms/zsUiL 30knTh7R+zoaoFaYfA+wIGOA7WWGRQ5LV1wA6agMp6L8rkdcb9zs2Kz7UvDNJQk9 daU7D/EdvhB1qiHPqiA5guOG457ITpvEQIsm0KkiWCB2MWuWPOMIRFL2JlHQqWLK jeh40hysj3iUcPMc9tnnmqJtYwOTUwT/33iPEO3RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdLklnZX4EBUx3siWB55kZ66xfxMwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzFkMTMyMTdmLWY3NzMtNDM5OC05ODFiLWZmYzY0YmZmYmJjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUhEwDQYJKoZIhvcNAQELBQADggEBAJF6a35TaU8t1zY1K5exfiMPvnUU ddXFhxcc331ykU/zcdO65hV1OkuhD//ZBHLunAEqcJNF6k8Q7OJIEaNQ01IMH2oh qL33C5x4cZIMgOARq9vrl7lTNzrdMltZ7npFquQ1q/BTlfMmibHzhF5K/jRDOIzB 5ISxrtqjuPeKODGmYTNqNdkOjo74QW8DQnIANxrAtegAxRE1+bmp8GzZuJnKlgWo es5uRCNcdJY9bTizzbd3nrcCsdoPa7nM2NZqZFWIXEMeCw7RZ0KRQlIjwZuqV//0 8sDHTa3eW+bVjxxvi1nKVe8+RChC15eIFS1g4shAxJ9UmxX2gWdyk2tT4+Y= -----END CERTIFICATE-----Generated at Tue May 6 08:25:38 2025 by rpki-client