$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa File: 5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa (raw, json) Hash identifier: uGfNgZ7Dm2wluQgXrY9OOLGtbNc/IzLlBxGUiK3Bb8E= Subject key identifier: 94:AC:F8:32:B5:BB:42:BC:F8:68:71:5F:0A:FF:95:31:7B:33:FC:7B Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 7021BE3B8721898334DA5C732465E51D61AF10B8 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa Signing time: Mon 31 Mar 2025 16:11:33 +0000 ROA not before: Mon 31 Mar 2025 16:11:33 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:21:be:3b:87:21:89:83:34:da:5c:73:24:65:e5:1d:61:af:10:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Mar 31 16:11:33 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8c:ad:2a:e9:7d:a9:e3:80:99:8a:09:4d:28: 9f:52:0d:b5:27:a2:77:1c:07:07:d3:fd:8b:3e:42: 05:69:dd:34:f9:78:38:1b:3b:40:ba:f8:45:42:97: af:a9:73:89:a1:89:97:76:75:33:74:ca:d4:f6:68: a8:70:28:54:f1:3b:04:0c:da:d6:37:cc:5e:35:60: 06:9f:8b:6a:5d:fd:05:9d:8c:14:a7:76:7e:ac:05: dc:e4:30:97:6a:ba:96:c9:bd:0e:ff:ae:6f:bf:23: b5:d6:bf:8b:b0:08:92:72:a6:c8:49:24:f9:6c:6b: b3:8b:9d:05:f0:24:ff:88:62:59:29:47:2a:4d:be: 5d:df:a6:08:5d:5a:03:2b:ae:0e:84:d6:47:72:8a: 4a:e6:df:11:2f:98:b5:e8:12:8f:6d:c3:c6:15:19: a6:1a:ba:ce:27:11:30:03:60:30:9a:50:f6:98:73: fd:3d:ef:2e:6b:26:f9:52:e0:52:7c:7b:4a:4a:31: 36:fe:af:cf:81:1a:14:9c:d5:a0:16:83:cb:24:c0: ba:a2:bc:9b:be:47:9a:4d:63:af:90:8d:5d:17:f3: 66:64:2c:41:8e:53:3c:dc:95:66:20:03:01:ba:33: 59:c8:c4:a8:bc:cf:7c:e9:80:90:65:2f:d2:f0:57: 61:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AC:F8:32:B5:BB:42:BC:F8:68:71:5F:0A:FF:95:31:7B:33:FC:7B X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5ed51049-d347-4dd0-bf4f-e1cb4adc80ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1c:97:f3:8d:0b:0c:b4:fa:ed:e6:7e:19:6e:35:a5:a1:07:11: c1:9c:59:c9:47:11:83:99:bc:a7:a9:09:7c:34:87:ab:79:a5: 00:42:56:69:ce:89:00:cb:9b:e8:9f:8c:e1:e3:b8:16:1b:d4: c8:a6:9f:f7:2b:01:c7:a7:ac:d2:cd:36:f8:dd:20:93:92:4f: 8c:9c:44:7f:53:1e:27:c9:9c:c8:5d:ef:59:8e:3f:42:b1:4f: 73:4d:46:db:b7:c0:0d:40:1a:69:65:76:6a:8c:b5:0d:97:55: 0b:90:48:94:ca:97:78:db:bb:48:c4:5e:e6:e7:e6:52:00:a8: bf:cd:a7:49:d6:02:07:f1:7e:08:7b:44:e8:92:c7:f5:69:84: df:97:2c:fc:01:1f:98:a5:7f:b9:1d:0a:ad:fb:cc:8e:d2:ae: f8:0b:77:6b:52:a5:4b:65:2a:49:2c:55:76:e6:6a:cd:ea:6f: ae:47:a2:07:c6:c4:38:61:27:0b:ad:a4:4e:2b:2d:29:3f:c1: be:60:89:83:2c:44:9f:b3:71:51:42:02:06:a3:7d:16:ea:03: 47:39:cd:cb:ed:16:89:00:e6:47:97:49:86:6c:2c:6d:67:27: 6a:13:b7:c8:29:ff:fb:ec:9c:d3:b8:d9:2d:fb:a8:6a:4f:df: 0b:8c:54:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcCG+O4chiYM02lxzJGXlHWGvELgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMzMxMTYxMTMzWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2QzYTQzMWE1N2VmNGI2MTA4Y2E5MGNiYjM2YTMyZmVk OWMzMjk2OWFhZjc2NWViOTY5ZTMxMTY2MWEzYzU4MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLjK0q6X2p44CZiglNKJ9SDbUnonccBwfT/Ys+QgVp3TT5 eDgbO0C6+EVCl6+pc4mhiZd2dTN0ytT2aKhwKFTxOwQM2tY3zF41YAafi2pd/QWd jBSndn6sBdzkMJdqupbJvQ7/rm+/I7XWv4uwCJJypshJJPlsa7OLnQXwJP+IYlkp RypNvl3fpghdWgMrrg6E1kdyikrm3xEvmLXoEo9tw8YVGaYaus4nETADYDCaUPaY c/097y5rJvlS4FJ8e0pKMTb+r8+BGhSc1aAWg8skwLqivJu+R5pNY6+QjV0X82Zk LEGOUzzclWYgAwG6M1nIxKi8z3zpgJBlL9LwV2FHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlKz4MrW7Qrz4aHFfCv+VMXsz/HswHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzVlZDUxMDQ5LWQzNDctNGRkMC1iZjRmLWUxY2I0YWRjODBjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBAByX840LDLT67eZ+GW41paEHEcGc WclHEYOZvKepCXw0h6t5pQBCVmnOiQDLm+ifjOHjuBYb1Mimn/crAcenrNLNNvjd IJOST4ycRH9THifJnMhd71mOP0KxT3NNRtu3wA1AGmlldmqMtQ2XVQuQSJTKl3jb u0jEXubn5lIAqL/Np0nWAgfxfgh7ROiSx/VphN+XLPwBH5ilf7kdCq37zI7SrvgL d2tSpUtlKkksVXbmas3qb65HogfGxDhhJwutpE4rLSk/wb5giYMsRJ+zcVFCAgaj fRbqA0c5zcvtFokA5keXSYZsLG1nJ2oTt8gp//vsnNO42S37qGpP3wuMVPE= -----END CERTIFICATE-----Generated at Sat Apr 5 11:12:16 2025 by rpki-client