$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8d9096e0-0a8d-4981-b350-e9a3a2a59a8b.roa File: 8d9096e0-0a8d-4981-b350-e9a3a2a59a8b.roa (raw, json) Hash identifier: oUXTC413RSOpJpX1IW6T9bRjMAYuyIMLTlqUqp5jv+M= Subject key identifier: 8F:1E:A0:63:E9:80:79:A8:35:E8:23:4A:53:45:58:6A:00:C4:81:4E Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5982B8DFE39DD0EDF8DF3E5FC0264F6CAC250598 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8d9096e0-0a8d-4981-b350-e9a3a2a59a8b.roa Signing time: Wed 18 Jun 2025 00:30:04 +0000 ROA not before: Wed 18 Jun 2025 00:30:04 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:82:b8:df:e3:9d:d0:ed:f8:df:3e:5f:c0:26:4f:6c:ac:25:05:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jun 18 00:30:04 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=1265d8dbf21b2df12c0f8668759e41824148d54da6ef952f85f34c93a9c92848, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:71:0e:1f:2c:0d:5c:8a:3a:ce:ab:3d:f0:6b: 4b:ee:af:d1:32:1b:5a:2d:03:cd:78:cc:e7:13:29: 6f:18:a4:e4:fa:0b:80:ca:b9:59:c3:e7:0d:83:62: 6b:74:ab:62:e0:36:58:52:0f:9b:80:71:8a:21:5d: f0:9a:57:d0:81:80:bd:2f:c8:b5:07:d2:e5:03:53: c4:69:04:ea:0f:63:c1:b6:67:a4:7f:22:88:96:bb: ae:fc:b5:d6:25:19:d8:7c:d8:5c:01:81:fb:50:1a: 6c:8e:80:6d:61:4d:63:eb:3e:e3:90:e6:d0:13:4d: 89:b1:59:c9:7f:5d:b4:2d:85:85:0e:c0:39:6c:f8: 71:59:ad:17:9c:dd:55:73:16:f8:fc:ad:8b:04:5b: 87:8a:78:58:46:74:21:9d:e7:30:84:1c:2f:7c:19: 80:e3:c3:b7:da:0a:57:f7:0c:95:f8:11:13:e0:9d: 59:2e:07:09:9d:87:10:5e:db:41:85:a1:cf:63:a3: 13:94:08:e4:6c:fb:d9:fd:a1:a9:90:ec:41:77:d9: 5d:c3:91:e8:b2:75:a0:ba:af:fc:e4:4a:26:c8:d1: eb:73:86:13:9c:cf:15:10:d9:c9:0d:87:1c:71:ca: 30:0f:a2:5b:a9:26:fc:91:8f:a7:66:32:3f:d9:f8: 29:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:1E:A0:63:E9:80:79:A8:35:E8:23:4A:53:45:58:6A:00:C4:81:4E X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8d9096e0-0a8d-4981-b350-e9a3a2a59a8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.255.0/24 Signature Algorithm: sha256WithRSAEncryption 54:eb:76:6f:b7:9a:8e:c3:d6:76:65:70:5c:e3:a6:2d:a5:d7: 8b:cf:18:af:27:28:c3:ee:39:61:7f:e9:71:3b:6d:36:ea:9a: d4:e9:02:20:4a:3c:e4:61:10:02:85:d1:85:2b:92:3d:06:d3: 13:e7:61:b2:b8:55:f6:73:a3:18:2e:30:cb:ca:6e:67:fa:8b: 58:77:49:09:fe:b2:db:46:d4:19:ec:49:06:87:54:e5:b1:83: c4:7a:97:1b:05:f4:ad:ef:7f:c5:f3:25:bd:f8:06:1d:45:98: 5a:d1:97:13:78:46:92:72:51:c6:2f:e1:51:13:33:2a:c6:dc: 54:5a:d1:12:e9:81:c4:39:ab:ff:98:0a:65:eb:41:14:38:f1: d6:b4:79:4e:4f:05:05:1d:9e:ef:58:bd:6d:6f:86:ae:7b:3f: 0f:ea:09:70:13:f9:c2:78:21:38:e4:78:10:4b:db:05:c7:ca: 5a:4d:3f:70:d7:be:5e:4d:fa:93:3c:bf:3f:a3:54:e7:51:95: 5a:9c:c1:2d:f6:9d:b8:75:21:33:5d:e9:23:95:dc:d5:4b:3c: 60:9a:24:68:ef:0b:7e:28:53:53:3f:ae:14:55:a1:2b:51:73: 01:82:e8:4c:ae:9a:1a:4c:08:f6:42:ff:8d:cb:47:b1:21:37: 9d:8f:d6:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWYK43+Od0O343z5fwCZPbKwlBZgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNjE4MDAzMDA0WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjY1ZDhkYmYyMWIyZGYxMmMwZjg2Njg3NTllNDE4MjQx NDhkNTRkYTZlZjk1MmY4NWYzNGM5M2E5YzkyODQ4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCncQ4fLA1cijrOqz3wa0vur9EyG1otA814zOcTKW8YpOT6 C4DKuVnD5w2DYmt0q2LgNlhSD5uAcYohXfCaV9CBgL0vyLUH0uUDU8RpBOoPY8G2 Z6R/IoiWu678tdYlGdh82FwBgftQGmyOgG1hTWPrPuOQ5tATTYmxWcl/XbQthYUO wDls+HFZrRec3VVzFvj8rYsEW4eKeFhGdCGd5zCEHC98GYDjw7faClf3DJX4ERPg nVkuBwmdhxBe20GFoc9joxOUCORs+9n9oamQ7EF32V3DkeiydaC6r/zkSibI0etz hhOczxUQ2ckNhxxxyjAPolupJvyRj6dmMj/Z+CkXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjx6gY+mAeag16CNKU0VYagDEgU4wHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzhkOTA5NmUwLTBhOGQtNDk4MS1iMzUwLWU5YTNhMmE1OWE4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUv8wDQYJKoZIhvcNAQELBQADggEBAFTrdm+3mo7D1nZlcFzjpi2l14vP GK8nKMPuOWF/6XE7bTbqmtTpAiBKPORhEAKF0YUrkj0G0xPnYbK4VfZzoxguMMvK bmf6i1h3SQn+sttG1BnsSQaHVOWxg8R6lxsF9K3vf8XzJb34Bh1FmFrRlxN4RpJy UcYv4VETMyrG3FRa0RLpgcQ5q/+YCmXrQRQ48da0eU5PBQUdnu9YvW1vhq57Pw/q CXAT+cJ4ITjkeBBL2wXHylpNP3DXvl5N+pM8vz+jVOdRlVqcwS32nbh1ITNd6SOV 3NVLPGCaJGjvC34oU1M/rhRVoStRcwGC6EyumhpMCPZC/43LR7EhN52P1uc= -----END CERTIFICATE-----Generated at Sun Jun 29 04:46:43 2025 by rpki-client