$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/59b3a7d6-26d4-4809-9bb6-54d8eaf87cf1.roa File: 59b3a7d6-26d4-4809-9bb6-54d8eaf87cf1.roa (raw, json) Hash identifier: OJLIzzxHsesEKeyxxo8smJ5LhuRMKEcHdeTmdQ79XMo= Subject key identifier: 0F:51:BA:9C:B0:03:AF:83:6C:11:FA:84:D3:1D:02:51:B2:34:55:C2 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 05A6E942207CB687E2DFB0C3E2E687116E51ABCA Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/59b3a7d6-26d4-4809-9bb6-54d8eaf87cf1.roa Signing time: Mon 31 Mar 2025 16:11:12 +0000 ROA not before: Mon 31 Mar 2025 16:11:12 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a6:e9:42:20:7c:b6:87:e2:df:b0:c3:e2:e6:87:11:6e:51:ab:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Mar 31 16:11:12 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:62:a0:56:d1:4a:9d:3f:8a:38:c3:7a:dd:34: 9f:34:37:a4:46:6b:57:a4:a9:78:30:7c:bf:e3:e5: 7d:9c:3a:67:95:81:14:d8:16:2a:01:f0:38:01:b2: 4a:6e:73:a0:bb:a8:31:60:76:f1:27:12:4c:ff:c5: 16:01:10:84:8d:ce:16:25:f5:d7:fe:de:86:9b:14: a5:92:a2:77:c2:a9:26:0f:9f:27:11:93:6b:47:54: 79:fe:c7:88:4d:00:e0:a9:28:96:c1:76:1d:16:c4: e3:2d:a3:db:ad:e4:b7:2b:fd:67:52:1c:5b:3c:ea: 50:42:dd:68:d9:97:1d:83:0d:fd:e6:10:14:fb:07: ca:7e:2d:f5:91:db:6a:08:9b:67:36:5a:ea:12:91: dd:bc:f9:d1:23:cd:7c:be:ce:59:5d:ff:6a:a2:95: 5a:c2:27:4f:e1:37:62:00:67:bd:97:4b:f3:57:69: e4:28:9d:1d:f4:c0:78:6c:ea:2e:09:f9:31:f0:7f: db:fe:f5:c5:d2:56:c2:91:fc:67:bd:7f:9e:05:39: c7:61:85:4a:0c:50:9a:26:38:d0:c6:5f:88:52:82: b5:ee:c1:7a:0f:44:ac:27:f7:ad:1d:ee:9e:3c:98: cd:c1:09:da:9b:f5:6a:67:cd:41:79:e5:71:05:81: 6a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:51:BA:9C:B0:03:AF:83:6C:11:FA:84:D3:1D:02:51:B2:34:55:C2 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/59b3a7d6-26d4-4809-9bb6-54d8eaf87cf1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:89:46:b7:fd:e7:ff:7b:3c:4a:f8:cb:27:00:e0:ec:65:fd: 12:e8:e4:97:c3:6c:19:3c:92:d4:43:31:6b:87:ae:5f:e9:00: c6:c5:77:bd:f2:58:86:b5:d7:45:1e:bd:64:f3:5a:09:ad:9e: 87:b5:f1:97:23:0f:df:1a:31:9e:d9:08:fb:35:bf:4e:16:be: 44:7a:e0:d2:56:41:8f:40:6f:78:e1:07:f2:10:d4:97:b2:23: 1e:ae:a7:95:c0:20:0d:cb:b9:53:ab:1a:f5:31:bb:c9:a9:02: 06:d3:36:9f:97:30:4b:0a:2b:25:15:de:a0:aa:47:f3:66:9e: 81:c2:17:f4:5a:90:46:60:dd:55:08:6e:1c:e9:fc:5c:7e:39: 84:2c:37:90:e9:20:38:79:c3:e8:0e:2c:05:3b:59:19:64:63: 74:97:11:d8:40:99:a1:e1:90:16:5d:dc:7b:3a:02:4d:05:7b: 10:99:4f:26:e3:96:04:64:e5:dc:52:af:e6:af:fc:68:a9:bc: eb:2d:2a:df:73:45:20:e8:09:d9:86:5c:00:75:46:2f:43:36: 97:fb:02:44:e2:79:bd:33:07:2f:0b:ba:33:95:db:71:53:27: 73:36:f5:a7:bc:7f:3f:58:da:7b:2c:d7:ee:a8:1c:4d:93:f8: d0:b7:9a:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBabpQiB8tofi37DD4uaHEW5Rq8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMzMxMTYxMTEyWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmJiZjFlYWEwNTU4Njk3NGY5MDBkOWM5MmY5MzlmODcy NTkxNTQyNTYxMDU0YmUwMTE5ODI3MzFlZmMyMjBiMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpYqBW0UqdP4o4w3rdNJ80N6RGa1ekqXgwfL/j5X2cOmeV gRTYFioB8DgBskpuc6C7qDFgdvEnEkz/xRYBEISNzhYl9df+3oabFKWSonfCqSYP nycRk2tHVHn+x4hNAOCpKJbBdh0WxOMto9ut5Lcr/WdSHFs86lBC3WjZlx2DDf3m EBT7B8p+LfWR22oIm2c2WuoSkd28+dEjzXy+zlld/2qilVrCJ0/hN2IAZ72XS/NX aeQonR30wHhs6i4J+THwf9v+9cXSVsKR/Ge9f54FOcdhhUoMUJomONDGX4hSgrXu wXoPRKwn960d7p48mM3BCdqb9WpnzUF55XEFgWrVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUD1G6nLADr4NsEfqE0x0CUbI0VcIwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzU5YjNhN2Q2LTI2ZDQtNDgwOS05YmI2LTU0ZDhlYWY4N2NmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBABqJRrf95/97PEr4yycA4Oxl/RLo 5JfDbBk8ktRDMWuHrl/pAMbFd73yWIa110UevWTzWgmtnoe18ZcjD98aMZ7ZCPs1 v04WvkR64NJWQY9Ab3jhB/IQ1JeyIx6up5XAIA3LuVOrGvUxu8mpAgbTNp+XMEsK KyUV3qCqR/NmnoHCF/RakEZg3VUIbhzp/Fx+OYQsN5DpIDh5w+gOLAU7WRlkY3SX EdhAmaHhkBZd3Hs6Ak0FexCZTybjlgRk5dxSr+av/GipvOstKt9zRSDoCdmGXAB1 Ri9DNpf7AkTieb0zBy8LujOV23FTJ3M29ae8fz9Y2nss1+6oHE2T+NC3mns= -----END CERTIFICATE-----Generated at Sat Apr 5 11:15:48 2025 by rpki-client