$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f3e78c9d-caff-4237-aaba-b40f901e3c8a.roa File: f3e78c9d-caff-4237-aaba-b40f901e3c8a.roa (raw, json) Hash identifier: K4PxvozPrITHzBP+o6O772xedyNGDPFzAZHR0JmsLpQ= Subject key identifier: F9:98:32:F0:61:FC:52:3B:91:D0:F8:ED:4E:51:84:F3:F0:C0:1E:04 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 694DCF7F1B37762D1D8BD11D17FC17EF1B6D6830 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f3e78c9d-caff-4237-aaba-b40f901e3c8a.roa Signing time: Mon 31 Mar 2025 16:11:06 +0000 ROA not before: Mon 31 Mar 2025 16:11:06 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:4d:cf:7f:1b:37:76:2d:1d:8b:d1:1d:17:fc:17:ef:1b:6d:68:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Mar 31 16:11:06 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a3:d3:6a:dd:de:d8:90:7a:c9:6b:54:9d:e6: c7:b8:af:20:69:ed:86:fd:70:cf:31:67:98:d5:41: 9f:7e:d0:9b:2c:1d:dd:7d:d5:c6:5b:dd:43:2d:54: 0c:e0:0c:f7:95:ea:53:41:e5:b6:9f:c5:08:8b:e5: c1:d2:b0:09:77:04:0a:bc:15:da:91:4e:3d:2d:98: 62:10:02:07:e5:09:d4:b2:67:d9:ae:c9:af:9b:af: 2d:3a:48:9f:96:57:aa:75:4b:29:27:cd:84:51:75: 6d:28:37:1b:a0:dc:2d:92:a1:66:46:69:b7:ae:8a: c7:77:50:11:85:33:8b:61:57:0b:40:39:1c:d7:d6: 58:50:af:53:ac:ae:2c:5f:eb:6f:d7:56:f2:8d:48: 05:2b:94:70:86:dc:f4:92:91:a3:80:86:db:f3:08: db:12:47:8f:33:be:e1:c4:c7:d4:cd:99:e4:a5:10: 84:f4:41:c0:31:fb:82:c3:f4:85:d9:a2:19:ec:4e: 83:cb:2b:ac:0d:72:ff:a5:3c:6c:4d:d5:27:cd:fd: 49:f2:5b:85:50:3a:19:26:9c:a5:b3:86:45:69:b1: 9c:23:38:fe:9b:e9:1d:83:99:d3:be:fa:36:35:c7: a0:c5:8c:dd:38:6d:60:e6:80:7f:a1:d6:e7:df:2f: 21:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:98:32:F0:61:FC:52:3B:91:D0:F8:ED:4E:51:84:F3:F0:C0:1E:04 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f3e78c9d-caff-4237-aaba-b40f901e3c8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.1.0/24 Signature Algorithm: sha256WithRSAEncryption 44:4d:93:c0:9b:15:d3:0b:d1:36:34:16:6f:77:42:ce:7f:1e: c6:8a:19:52:3d:dd:23:3d:e6:83:b8:b0:b6:d9:02:98:66:9e: a3:84:8a:4a:35:35:ce:74:a4:ab:cd:59:06:2c:72:79:9d:ea: ed:32:72:3d:19:77:56:f7:2b:bd:b7:d2:6f:38:27:af:ac:54: 3e:6a:f8:07:ba:33:a7:ed:9f:10:19:83:a1:c6:12:75:69:5f: 3a:66:1e:68:f5:be:93:46:3e:1f:cd:e6:ba:4a:d0:af:74:59: ce:0a:da:2a:45:58:e1:99:0f:b8:6e:1d:ec:1d:61:21:0a:5a: 7d:24:50:d8:cb:fb:46:11:0e:c2:9b:e2:5d:ca:14:93:29:e1: ed:13:a9:02:c7:0e:5c:10:5d:b2:21:14:59:57:2d:af:1d:4f: 10:da:36:f8:1f:5e:8e:99:68:e3:31:10:8d:cb:28:b1:5b:83: fe:0f:9c:da:a8:d7:f9:58:08:e2:42:2d:a6:e4:ad:1c:c8:2c: 06:c6:c8:50:28:54:ca:e4:6c:4d:21:f8:c5:32:2b:98:e5:1a: f2:88:bb:64:c6:59:4a:fd:16:8b:35:43:2e:ff:5a:4b:9c:47: b1:25:7d:e5:31:bc:a2:a2:79:e2:3e:cd:f3:ef:f3:f4:d4:64: 85:3e:3b:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaU3Pfxs3di0di9EdF/wX7xttaDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMzMxMTYxMTA2WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNThiNDFmNGJjNTZhZjlkYzljNTg3OTc1N2QzYzNhZWZi NWUwNjRiMmQ3ZTI0MTNhODBjNzE0NTJkYmVmMjVlMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOo9Nq3d7YkHrJa1Sd5se4ryBp7Yb9cM8xZ5jVQZ9+0Jss Hd191cZb3UMtVAzgDPeV6lNB5bafxQiL5cHSsAl3BAq8FdqRTj0tmGIQAgflCdSy Z9muya+bry06SJ+WV6p1SyknzYRRdW0oNxug3C2SoWZGabeuisd3UBGFM4thVwtA ORzX1lhQr1Osrixf62/XVvKNSAUrlHCG3PSSkaOAhtvzCNsSR48zvuHEx9TNmeSl EIT0QcAx+4LD9IXZohnsToPLK6wNcv+lPGxN1SfN/UnyW4VQOhkmnKWzhkVpsZwj OP6b6R2DmdO++jY1x6DFjN04bWDmgH+h1uffLyFvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+Zgy8GH8UjuR0PjtTlGE8/DAHgQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2YzZTc4YzlkLWNhZmYtNDIzNy1hYWJhLWI0MGY5MDFlM2M4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwEwDQYJKoZIhvcNAQELBQADggEBAERNk8CbFdML0TY0Fm93Qs5/HsaK GVI93SM95oO4sLbZAphmnqOEiko1Nc50pKvNWQYscnmd6u0ycj0Zd1b3K7230m84 J6+sVD5q+Ae6M6ftnxAZg6HGEnVpXzpmHmj1vpNGPh/N5rpK0K90Wc4K2ipFWOGZ D7huHewdYSEKWn0kUNjL+0YRDsKb4l3KFJMp4e0TqQLHDlwQXbIhFFlXLa8dTxDa NvgfXo6ZaOMxEI3LKLFbg/4PnNqo1/lYCOJCLabkrRzILAbGyFAoVMrkbE0h+MUy K5jlGvKIu2TGWUr9Fos1Qy7/WkucR7ElfeUxvKKieeI+zfPv8/TUZIU+O/g= -----END CERTIFICATE-----Generated at Sat Apr 5 11:08:28 2025 by rpki-client