$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7fa37aaa-0fab-4469-8db2-5ab72b7949ad.roa File: 7fa37aaa-0fab-4469-8db2-5ab72b7949ad.roa (raw, json) Hash identifier: Wl+5PK5CxzmsSg3fohmHe21dmN2ZM+uvMwTtPZx6GT0= Subject key identifier: 71:14:3F:AE:98:EA:60:43:54:A5:9F:73:14:CF:2A:0B:26:BC:6B:45 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3DBD19EC532F661BEDEEA42B83C1679532717195 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7fa37aaa-0fab-4469-8db2-5ab72b7949ad.roa Signing time: Mon 16 Jun 2025 18:50:11 +0000 ROA not before: Mon 16 Jun 2025 18:50:11 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 173.82.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:bd:19:ec:53:2f:66:1b:ed:ee:a4:2b:83:c1:67:95:32:71:71:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 16 18:50:11 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=3e130721a6f417c857a9c78264dc5b6af7e59c70f74e8e40f6c34c20a0f2272f, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a8:01:cd:ee:d3:45:f3:23:22:43:d4:28:9d: 3e:f4:20:0b:5e:7d:f9:1b:86:0f:b1:e8:66:13:76: e0:e7:5b:e2:4a:38:79:04:7b:22:5e:40:c0:c9:e1: 97:c5:57:90:93:01:8b:56:b4:1c:58:58:18:09:e0: 05:7a:91:6e:8c:bb:e6:0c:8a:6a:88:cf:8a:63:a0: 6e:f3:e6:7a:85:ce:55:ca:02:cb:c0:91:c1:29:a6: 5d:84:a9:ed:7e:47:e7:06:2d:75:7b:d3:82:d4:be: 68:14:3a:27:34:43:76:c1:3d:4d:fc:23:41:cd:15: ec:1a:90:c1:8c:3c:0d:31:ed:bc:6b:cf:68:97:b8: 2c:ae:d3:89:96:a1:03:ec:2a:6d:73:f5:fa:8e:3a: be:83:0e:f4:63:6d:17:f9:25:b6:0d:44:be:bd:d3: b9:0d:71:8a:5d:a2:85:a0:c7:d1:ad:5a:2d:1e:e9: 82:ec:84:ec:29:41:0a:73:ff:47:49:ae:35:29:70: 98:8a:e6:29:ea:ae:71:57:89:bf:27:94:b5:d1:cb: 31:39:aa:13:ad:34:a6:1e:92:0d:36:c1:e5:77:6b: 14:59:a8:c4:0d:04:23:72:0b:9e:10:89:ae:b8:4f: fa:a2:5d:36:90:0e:7f:21:d2:3d:bb:b1:8f:70:b5: 5c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:14:3F:AE:98:EA:60:43:54:A5:9F:73:14:CF:2A:0B:26:BC:6B:45 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/7fa37aaa-0fab-4469-8db2-5ab72b7949ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.6.0/24 Signature Algorithm: sha256WithRSAEncryption 27:e3:d7:8d:e7:16:64:1f:01:93:f1:4d:18:a5:fc:7a:69:a8: 6b:05:dd:67:82:83:e7:7b:15:03:0a:b8:f0:68:02:81:79:b6: d3:bf:22:76:d0:73:33:b8:b4:24:92:95:e7:55:f3:ed:0e:c7: 68:93:8c:a4:b6:12:c8:b1:ff:f2:01:8d:91:1d:b4:7e:e8:fa: 72:41:6f:59:43:c9:ca:85:02:14:f7:a1:78:5a:e8:d3:46:e7: 88:6b:70:ec:75:51:71:1d:3d:65:58:62:24:36:7e:60:73:fe: b6:fd:4b:ab:c2:c6:14:9a:7f:d6:b4:a7:d5:76:d7:ab:0b:4d: df:91:83:df:4b:22:49:da:71:55:6c:b9:5f:0f:24:d3:d2:4e: 1a:a2:f8:68:58:f9:71:f7:31:a0:06:d0:e3:db:21:46:b3:18: 98:c0:40:26:7f:d2:d7:9f:e3:fa:a2:66:eb:b9:04:1a:a0:47: 54:95:50:f6:9b:58:82:cd:37:8b:95:6d:d0:a3:f2:a7:4b:65: de:3d:c8:15:59:62:72:9a:21:2e:09:99:5d:f6:93:8b:4a:74: a2:e4:f4:4a:21:35:84:f9:eb:61:e2:7a:2a:86:7a:48:f6:a5: 12:81:31:11:3a:b2:25:a6:4b:64:46:ba:7f:5d:b1:54:0e:6d: 1e:4a:c6:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPb0Z7FMvZhvt7qQrg8FnlTJxcZUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE2MTg1MDExWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTEzMDcyMWE2ZjQxN2M4NTdhOWM3ODI2NGRjNWI2YWY3 ZTU5YzcwZjc0ZThlNDBmNmMzNGMyMGEwZjIyNzJmMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEqAHN7tNF8yMiQ9QonT70IAteffkbhg+x6GYTduDnW+JK OHkEeyJeQMDJ4ZfFV5CTAYtWtBxYWBgJ4AV6kW6Mu+YMimqIz4pjoG7z5nqFzlXK AsvAkcEppl2Eqe1+R+cGLXV704LUvmgUOic0Q3bBPU38I0HNFewakMGMPA0x7bxr z2iXuCyu04mWoQPsKm1z9fqOOr6DDvRjbRf5JbYNRL6907kNcYpdooWgx9GtWi0e 6YLshOwpQQpz/0dJrjUpcJiK5inqrnFXib8nlLXRyzE5qhOtNKYekg02weV3axRZ qMQNBCNyC54Qia64T/qiXTaQDn8h0j27sY9wtVzZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcRQ/rpjqYENUpZ9zFM8qCya8a0UwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzdmYTM3YWFhLTBmYWItNDQ2OS04ZGIyLTVhYjcyYjc5NDlhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUgYwDQYJKoZIhvcNAQELBQADggEBACfj143nFmQfAZPxTRil/HppqGsF 3WeCg+d7FQMKuPBoAoF5ttO/InbQczO4tCSSledV8+0Ox2iTjKS2Esix//IBjZEd tH7o+nJBb1lDycqFAhT3oXha6NNG54hrcOx1UXEdPWVYYiQ2fmBz/rb9S6vCxhSa f9a0p9V216sLTd+Rg99LIknacVVsuV8PJNPSThqi+GhY+XH3MaAG0OPbIUazGJjA QCZ/0tef4/qiZuu5BBqgR1SVUPabWILNN4uVbdCj8qdLZd49yBVZYnKaIS4JmV32 k4tKdKLk9EohNYT562HieiqGekj2pRKBMRE6siWmS2RGun9dsVQObR5Kxv0= -----END CERTIFICATE-----Generated at Sun Jun 29 00:44:32 2025 by rpki-client