$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa File: ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa (raw, json) Hash identifier: 6bST5hoG1DgPbc4GKs1toc8wgk5Y2jfHYykuHTxDoKE= Subject key identifier: 99:5A:C1:9C:C7:AB:77:28:AC:8C:0A:43:6E:41:27:6F:89:AC:F2:58 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 08EE1A4092C06DDDC2C75B54590045DC49498E91 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa Signing time: Mon 31 Mar 2025 16:11:31 +0000 ROA not before: Mon 31 Mar 2025 16:11:31 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:ee:1a:40:92:c0:6d:dd:c2:c7:5b:54:59:00:45:dc:49:49:8e:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Mar 31 16:11:31 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6a:50:71:8a:2d:05:60:97:7e:2d:ab:e8:26: f9:d0:01:ac:b6:f1:ec:7e:71:29:ff:98:30:67:c5: ff:c9:de:f3:e4:ec:30:41:9b:a2:e9:c4:58:5a:a1: d9:58:d1:cc:7a:62:9c:a1:51:e6:7c:57:a7:bb:89: e9:1d:7c:7f:71:71:0e:02:47:b0:3f:b4:b6:bc:d3: 34:6f:e9:13:53:26:af:b7:16:d3:06:3d:2e:96:64: f3:71:9d:33:67:04:87:27:68:a2:a6:cb:bb:cd:1e: c5:ac:b7:1e:58:f0:e2:c2:15:0c:52:8e:02:82:24: aa:5c:d0:61:9e:67:7a:98:5a:cc:c6:0a:fc:a4:58: 38:7f:a2:7e:86:4c:83:bd:4f:00:b6:fe:7b:0a:79: a7:67:c9:6e:d1:2d:56:52:9a:99:75:92:70:f6:13: 01:99:a5:f8:ac:e8:0c:75:6a:a1:b6:ad:80:c1:5b: 90:a6:cf:97:4b:d0:e4:75:56:9c:3a:df:d3:0d:4b: 0b:3c:9a:b4:a6:f1:2b:c0:d9:d2:7f:16:aa:8f:06: ca:d4:b8:e3:e5:34:f7:44:58:95:f3:7d:56:d1:4f: 0f:da:de:32:c4:a6:c3:02:c6:75:9c:5d:1c:7d:31: 07:b2:2a:11:b3:0d:39:a6:2b:06:0f:e3:85:e3:d7: 55:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5A:C1:9C:C7:AB:77:28:AC:8C:0A:43:6E:41:27:6F:89:AC:F2:58 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.64.0/18 Signature Algorithm: sha256WithRSAEncryption 7a:f6:a0:1a:d1:6c:5c:44:2b:72:23:2d:56:e8:83:ee:75:ef: 58:25:d9:80:6c:1a:40:7b:b8:8c:a3:85:f4:58:49:4a:09:71: 8c:30:fe:1e:85:2b:e1:b5:65:3b:a9:c1:cc:8f:62:83:01:c9: e3:1e:22:35:84:a3:f6:ed:fc:14:30:e3:96:ca:27:cc:fa:6b: b5:48:a1:31:30:43:37:1c:b6:5e:80:0c:3c:c4:1d:49:62:cb: 31:f5:d9:40:4b:f5:59:56:35:16:3f:95:5d:0d:40:94:f7:d4: 5b:29:af:e0:cb:41:14:b1:d8:72:0c:e7:50:5a:d5:b7:77:51: 54:99:1e:cd:a6:81:3e:07:f7:31:c3:e8:f6:c0:06:cd:2d:18: 1d:7d:8f:5a:51:1e:c6:34:34:00:f5:8e:ad:7c:57:22:3e:a3: a1:b5:ba:87:69:22:dd:96:45:d2:d0:1e:fd:1e:56:cc:fe:39: 1b:6a:d4:d5:78:56:4d:f5:d1:d2:18:fc:b2:e6:8b:8c:87:67: 06:c4:b8:0d:e9:cd:17:f3:15:4e:b7:da:85:39:1f:58:1d:92: cb:52:91:0d:6c:e9:0d:51:3f:f8:39:47:46:35:32:40:dd:29: fe:a1:8a:22:00:ce:2a:d8:b4:f0:5f:60:5c:31:9e:07:43:0c: 8e:e1:dd:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCO4aQJLAbd3Cx1tUWQBF3ElJjpEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMzMxMTYxMTMxWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDBjZDExOWZjNWExZWJkZmVlN2Y5M2ExMTgyZTZmOGUy NDBjNzYyNzE5YzMyNGI4OWQzOGVlYmMyOThiMzQxMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwalBxii0FYJd+LavoJvnQAay28ex+cSn/mDBnxf/J3vPk 7DBBm6LpxFhaodlY0cx6YpyhUeZ8V6e7iekdfH9xcQ4CR7A/tLa80zRv6RNTJq+3 FtMGPS6WZPNxnTNnBIcnaKKmy7vNHsWstx5Y8OLCFQxSjgKCJKpc0GGeZ3qYWszG CvykWDh/on6GTIO9TwC2/nsKeadnyW7RLVZSmpl1knD2EwGZpfis6Ax1aqG2rYDB W5Cmz5dL0OR1Vpw639MNSws8mrSm8SvA2dJ/FqqPBsrUuOPlNPdEWJXzfVbRTw/a 3jLEpsMCxnWcXRx9MQeyKhGzDTmmKwYP44Xj11VzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmVrBnMerdyisjApDbkEnb4ms8lgwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2NjYWE4OGM3LTA1NGItNGNlMS05MmU4LTYyZGQ5NDE3MThlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZgf0AwDQYJKoZIhvcNAQELBQADggEBAHr2oBrRbFxEK3IjLVbog+5171gl 2YBsGkB7uIyjhfRYSUoJcYww/h6FK+G1ZTupwcyPYoMByeMeIjWEo/bt/BQw45bK J8z6a7VIoTEwQzcctl6ADDzEHUliyzH12UBL9VlWNRY/lV0NQJT31Fspr+DLQRSx 2HIM51Ba1bd3UVSZHs2mgT4H9zHD6PbABs0tGB19j1pRHsY0NAD1jq18VyI+o6G1 uodpIt2WRdLQHv0eVsz+ORtq1NV4Vk310dIY/LLmi4yHZwbEuA3pzRfzFU632oU5 H1gdkstSkQ1s6Q1RP/g5R0Y1MkDdKf6hiiIAzirYtPBfYFwxngdDDI7h3ao= -----END CERTIFICATE-----Generated at Sat Apr 5 12:25:10 2025 by rpki-client