$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/20cde4dc-81ed-4d96-a8e5-159a6cdc0767.roa File: 20cde4dc-81ed-4d96-a8e5-159a6cdc0767.roa (raw, json) Hash identifier: CrRiKZ2uBvgpjjGRsyHztkkmyJKnLxo2AHIaqNsJ2ok= Subject key identifier: C3:2A:5C:C2:CC:8B:5E:BC:C6:E9:87:6B:35:17:C0:21:08:8D:1B:74 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 4594406EC1F71C2998E3B16815CC18C0CCC364EB Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/20cde4dc-81ed-4d96-a8e5-159a6cdc0767.roa Signing time: Mon 31 Mar 2025 16:11:10 +0000 ROA not before: Mon 31 Mar 2025 16:11:10 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:94:40:6e:c1:f7:1c:29:98:e3:b1:68:15:cc:18:c0:cc:c3:64:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Mar 31 16:11:10 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:31:a8:1c:be:69:19:bb:de:75:04:8d:a3:b8: 6e:75:bb:8e:4b:3c:d6:18:68:31:d9:82:f9:56:17: a3:f8:1d:fb:a2:b2:b5:5c:4e:37:f2:7e:3b:ca:d1: b9:56:27:d0:79:9d:02:b1:06:d0:1f:be:7a:13:b1: 92:ca:91:b1:54:e5:f6:c5:cd:a3:9a:64:c5:c2:5f: e8:e6:32:7c:f8:44:08:52:cd:21:4d:e3:b3:2d:95: a1:82:92:bc:23:e6:e2:d1:95:48:29:80:8a:d6:9d: bf:31:58:29:d9:26:b5:78:da:4c:24:5b:97:04:86: 6d:46:f3:ea:b9:fc:c3:1e:b8:85:35:4b:34:82:f4: d0:fe:99:7e:96:e1:71:02:53:6e:3e:fe:de:90:9f: f5:c8:05:fc:2a:49:d4:4a:7e:d7:05:65:34:3f:9b: b9:af:89:c6:95:29:0e:03:63:0c:4b:04:16:a9:5d: b6:e6:93:3b:50:f9:db:bf:25:6e:34:cb:c5:ef:0f: 5d:63:13:56:0d:30:09:8d:56:28:b2:2c:30:49:a3: f8:c6:cb:a0:15:6b:ce:5a:9d:7d:87:3c:5e:8d:7b: e6:5f:c0:8b:21:19:09:83:76:b3:d4:e7:ee:b8:f0: 79:d4:6f:2a:ee:95:61:95:69:53:ce:0e:80:fb:3c: 49:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:2A:5C:C2:CC:8B:5E:BC:C6:E9:87:6B:35:17:C0:21:08:8D:1B:74 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/20cde4dc-81ed-4d96-a8e5-159a6cdc0767.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.2.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:54:fd:17:3d:d8:d1:49:17:ee:f7:2a:f5:f2:93:c9:ca:1b: 1a:59:b0:18:f7:d6:f7:d0:c0:8b:d0:b3:f9:49:a0:b8:fb:81: aa:65:97:cc:8a:3b:a8:96:77:ba:57:5c:de:45:7d:98:5c:05: 77:33:d5:b8:86:e2:93:67:21:d7:ea:0d:30:50:4c:20:cd:a8: 5b:6a:3f:5e:f0:df:c7:ce:ea:a2:87:20:af:22:a0:48:7e:9e: c7:71:b3:2b:ec:06:0c:fe:28:2f:0a:58:bb:f9:2c:97:0a:64: f6:03:75:0f:67:ec:7d:e4:a4:21:3b:3c:84:3f:af:e8:cd:65: 6e:cb:d1:1f:dc:13:4d:d8:4b:0b:91:e2:28:9d:bb:1a:c0:c8: 1d:87:c3:ce:c0:11:25:88:67:d1:b7:a8:90:c4:f1:07:1d:e8: bd:90:fb:51:64:bd:6c:b6:3b:14:9c:b4:c6:df:d1:59:94:0e: 03:2d:af:d3:c1:7b:6f:ff:0e:93:79:5e:6c:c3:16:e1:9c:8d: cc:68:e3:f9:29:c2:d3:07:ca:d1:c9:43:56:46:db:a4:41:a0: fc:e2:47:f0:e3:60:cf:0e:50:5a:5e:2f:a9:c6:2b:77:1a:34: a7:0a:a7:92:7b:ee:54:9c:0f:86:9c:38:75:b1:6c:f7:a8:db: 28:7f:c6:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURZRAbsH3HCmY47FoFcwYwMzDZOswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMzMxMTYxMTEwWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTM2ZThhYzBhODRmNmQ2MjY1OWI4NzEyNzM0Y2M5OTI0 ODJmNTliZTk1ZjI1YTliMzI1ZDdiY2ZjZjVjZDEzMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGMagcvmkZu951BI2juG51u45LPNYYaDHZgvlWF6P4Hfui srVcTjfyfjvK0blWJ9B5nQKxBtAfvnoTsZLKkbFU5fbFzaOaZMXCX+jmMnz4RAhS zSFN47MtlaGCkrwj5uLRlUgpgIrWnb8xWCnZJrV42kwkW5cEhm1G8+q5/MMeuIU1 SzSC9ND+mX6W4XECU24+/t6Qn/XIBfwqSdRKftcFZTQ/m7mvicaVKQ4DYwxLBBap XbbmkztQ+du/JW40y8XvD11jE1YNMAmNViiyLDBJo/jGy6AVa85anX2HPF6Ne+Zf wIshGQmDdrPU5+648HnUbyrulWGVaVPODoD7PEkdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwypcwsyLXrzG6YdrNRfAIQiNG3QwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzIwY2RlNGRjLTgxZWQtNGQ5Ni1hOGU1LTE1OWE2Y2RjMDc2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgfwIwDQYJKoZIhvcNAQELBQADggEBABtU/Rc92NFJF+73KvXyk8nKGxpZ sBj31vfQwIvQs/lJoLj7gapll8yKO6iWd7pXXN5FfZhcBXcz1biG4pNnIdfqDTBQ TCDNqFtqP17w38fO6qKHIK8ioEh+nsdxsyvsBgz+KC8KWLv5LJcKZPYDdQ9n7H3k pCE7PIQ/r+jNZW7L0R/cE03YSwuR4iiduxrAyB2Hw87AESWIZ9G3qJDE8Qcd6L2Q +1FkvWy2OxSctMbf0VmUDgMtr9PBe2//DpN5XmzDFuGcjcxo4/kpwtMHytHJQ1ZG 26RBoPziR/DjYM8OUFpeL6nGK3caNKcKp5J77lScD4acOHWxbPeo2yh/xio= -----END CERTIFICATE-----Generated at Sat Apr 5 11:03:23 2025 by rpki-client