$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa File: 9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa (raw, json) Hash identifier: VMJVjEBlD2FTil+Fm6jcX+zQ+MJVpizDOwejyxqFPBY= Subject key identifier: E2:25:04:54:E6:59:71:B7:0E:85:3C:0A:79:03:6C:FC:32:4A:64:90 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 33EFFE7D6757BBFADFA46F8B99DBC3A98216BDFC Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa Signing time: Mon 31 Mar 2025 16:11:04 +0000 ROA not before: Mon 31 Mar 2025 16:11:04 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ef:fe:7d:67:57:bb:fa:df:a4:6f:8b:99:db:c3:a9:82:16:bd:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Mar 31 16:11:04 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9d:7c:69:c0:65:8b:7d:54:f6:31:ef:2e:30: e0:98:1c:bd:7c:37:e7:fa:03:88:55:8e:8e:ef:01: a5:b7:a1:f6:f6:ca:c0:ac:0b:69:ef:fd:e3:0a:64: 4d:7d:eb:66:5b:19:6b:f0:91:e1:85:8e:b8:b0:30: c2:e5:fb:8b:c7:91:90:5d:f6:89:7c:98:da:63:47: 83:40:75:d2:76:13:b7:60:6a:d5:60:48:cc:34:f4: 03:3d:09:e6:85:fe:40:44:c3:00:3c:91:47:8b:56: 7c:8a:b7:c8:eb:a0:b0:e1:18:05:e3:f2:86:b9:6f: 88:26:54:bc:36:08:b9:44:79:2e:3a:2a:5d:6a:c0: 17:c6:91:de:09:d8:b8:f9:1e:71:aa:df:b6:16:c1: 21:f4:7d:b5:fb:dd:46:a4:12:dc:ae:23:ba:1b:25: e4:62:9a:a8:14:56:23:b9:cc:24:b8:0b:1b:1a:73: d1:e8:25:ba:72:56:c4:71:6a:53:9a:fc:ba:b7:91: fb:dd:8e:ac:d6:8e:da:be:41:85:ea:e8:88:76:82: c1:58:c0:de:88:9f:6e:5a:79:54:3d:f2:22:b7:2d: 83:e7:89:03:ae:44:23:b9:79:80:79:f7:e8:bb:2a: e0:f9:77:6c:f7:35:9d:d0:8a:ff:57:d8:45:df:cf: bd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:25:04:54:E6:59:71:B7:0E:85:3C:0A:79:03:6C:FC:32:4A:64:90 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9bfde94a-1d95-4dce-b0b2-727172f5e49d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.8.0/21 Signature Algorithm: sha256WithRSAEncryption 86:7e:5d:28:e2:06:87:c9:ed:33:91:d3:7e:81:e3:ed:56:80: 06:05:a7:88:24:55:67:ac:0c:61:e7:c1:0d:8e:e2:bf:83:bf: a4:62:f0:2a:66:fb:73:6b:c5:27:b8:16:59:9d:6a:0e:9b:12: fb:37:46:0d:0f:ca:e3:96:98:3e:a9:91:d2:c0:34:b1:bb:80: ae:9b:24:e1:04:d8:c5:f8:30:aa:40:72:a0:83:68:14:57:d8: 16:8f:b2:db:62:c9:70:f0:12:07:29:03:a3:db:b1:10:d8:17: 72:a7:06:d9:49:22:95:06:3d:29:dc:c1:da:0e:e1:fe:aa:45: c3:1d:ae:16:2f:bb:44:0b:af:ca:d4:ba:a4:a7:3f:98:a5:3a: 96:c8:8c:4e:f2:ab:4a:e0:11:0c:5c:6a:83:3a:b4:22:9c:50: b5:df:f2:d0:02:44:61:ae:c2:a0:b1:41:0f:38:28:73:b8:7c: b3:35:ad:41:b2:5f:2d:98:da:13:73:31:e0:02:57:c3:6b:67: 3d:30:70:81:8e:99:43:ca:33:a2:9e:6f:3c:c4:17:b2:34:c8: d1:0b:e3:a8:9d:b8:13:96:e9:71:59:2a:54:ca:72:cd:ba:82: 81:86:e2:30:6a:b6:55:25:4a:16:3e:81:fb:b2:ff:ed:c0:18: 58:ad:20:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM+/+fWdXu/rfpG+LmdvDqYIWvfwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMzMxMTYxMTA0WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjJmZmIzMThiMjMzZGMyMGUxNTE2ZWI3MzIwYjBlMGYy MTk4M2VmMDc5NmRjZTU4M2NmNjcwMDBjODBiYjVlMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSnXxpwGWLfVT2Me8uMOCYHL18N+f6A4hVjo7vAaW3ofb2 ysCsC2nv/eMKZE1962ZbGWvwkeGFjriwMMLl+4vHkZBd9ol8mNpjR4NAddJ2E7dg atVgSMw09AM9CeaF/kBEwwA8kUeLVnyKt8jroLDhGAXj8oa5b4gmVLw2CLlEeS46 Kl1qwBfGkd4J2Lj5HnGq37YWwSH0fbX73UakEtyuI7obJeRimqgUViO5zCS4Cxsa c9HoJbpyVsRxalOa/Lq3kfvdjqzWjtq+QYXq6Ih2gsFYwN6In25aeVQ98iK3LYPn iQOuRCO5eYB59+i7KuD5d2z3NZ3Qiv9X2EXfz73rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4iUEVOZZcbcOhTwKeQNs/DJKZJAwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzliZmRlOTRhLTFkOTUtNGRjZS1iMGIyLTcyNzE3MmY1ZTQ5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwgwDQYJKoZIhvcNAQELBQADggEBAIZ+XSjiBofJ7TOR036B4+1WgAYF p4gkVWesDGHnwQ2O4r+Dv6Ri8Cpm+3NrxSe4Flmdag6bEvs3Rg0PyuOWmD6pkdLA NLG7gK6bJOEE2MX4MKpAcqCDaBRX2BaPsttiyXDwEgcpA6PbsRDYF3KnBtlJIpUG PSncwdoO4f6qRcMdrhYvu0QLr8rUuqSnP5ilOpbIjE7yq0rgEQxcaoM6tCKcULXf 8tACRGGuwqCxQQ84KHO4fLM1rUGyXy2Y2hNzMeACV8NrZz0wcIGOmUPKM6KebzzE F7I0yNEL46iduBOW6XFZKlTKcs26goGG4jBqtlUlShY+gfuy/+3AGFitIO4= -----END CERTIFICATE-----Generated at Sat Apr 5 11:03:17 2025 by rpki-client