$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa File: 1fecfeb1-6716-4dba-8f93-41774a220829.roa (raw, json) Hash identifier: i5bKg+1bKzDHFs2v0Fs/hV7Ujr++53e7Tyv5u6SMVBA= Subject key identifier: 3F:A0:7F:0A:AC:30:B5:2D:74:47:99:24:DD:4E:F9:7C:9C:26:DF:8A Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 40A5AE66FF3368CAC674F30882A95440C5111EFB Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa Signing time: Tue 20 May 2025 15:31:00 +0000 ROA not before: Tue 20 May 2025 15:31:00 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:a5:ae:66:ff:33:68:ca:c6:74:f3:08:82:a9:54:40:c5:11:1e:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 20 15:31:00 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=74e718c181a67014eea63ff27df95a27726c732a14e748f0ec5a96ba4396087a, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:ba:0c:2a:36:33:48:3d:cd:16:65:e9:f4: 17:99:d5:51:7c:73:0b:72:ce:6c:df:b8:a3:e5:3d: 8e:98:3d:15:1c:e1:29:29:69:68:09:54:98:58:17: 3b:e3:56:0d:6f:e2:81:b2:e8:57:1a:99:1d:7c:23: 9c:1f:4e:e8:89:2e:8c:15:7e:ef:b1:9d:5e:e6:2b: 1e:ad:22:0d:44:11:04:75:f0:8c:75:8e:de:6f:a3: f1:1b:db:45:23:49:8f:b4:30:24:29:bb:04:00:29: 26:d5:71:f7:31:91:9e:f7:e1:f8:0e:bb:67:a0:8e: 63:3e:2e:08:a3:cc:73:4a:8b:a7:f5:a1:d4:e5:f0: 78:28:b0:f5:23:44:ac:d7:a1:56:cd:dc:91:55:8e: 94:62:f1:9d:4d:0a:26:ba:6d:8f:ee:97:7b:e1:45: b4:03:f6:82:19:3f:58:00:9a:9c:cf:75:a4:b8:6f: 00:be:5c:08:7d:56:25:13:da:c6:49:c6:c5:4d:43: af:06:1d:19:97:da:ed:aa:75:70:6a:1d:e5:d6:52: 72:fa:2d:5d:2e:01:5e:19:b5:00:e5:e1:7a:cd:ab: be:c2:b9:e8:88:56:f7:e8:6b:7f:1b:bb:cc:5a:11: 9b:48:5c:ce:c2:3f:74:38:35:57:d7:d1:8b:49:c4: bd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A0:7F:0A:AC:30:B5:2D:74:47:99:24:DD:4E:F9:7C:9C:26:DF:8A X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/21 Signature Algorithm: sha256WithRSAEncryption 6d:52:d1:29:35:47:18:94:7e:30:4f:41:d5:67:d8:1c:ff:3b: 97:3b:17:24:47:10:7d:3f:3d:cc:0b:c7:02:80:bf:a1:e1:57: 73:d9:6c:d1:33:f9:7f:b4:ad:e1:90:48:4b:32:a8:7f:89:c2: a5:9e:fa:6f:fa:b2:cf:d4:ae:09:14:a5:21:03:6c:3f:12:74: 6a:dd:0c:0f:18:94:13:a0:45:96:39:2a:a1:72:17:13:b0:e1: 5f:95:dc:28:54:30:91:f1:97:6b:a1:a8:68:04:5a:d9:b7:6b: a1:03:ce:43:76:a5:4f:17:8c:ac:ac:f1:89:e0:64:02:94:ea: d7:03:46:38:b7:ec:7b:d9:a5:08:39:e1:5a:0f:7d:db:f2:94: aa:40:ec:f1:18:99:b5:b7:0c:c8:d8:17:06:ce:bb:86:e5:e1: 94:61:1a:40:bb:8f:76:64:32:4a:13:52:e8:70:1a:b6:35:9d: e2:df:43:74:5f:2a:fb:91:d4:28:f6:9e:b6:c2:98:80:ba:a2: 80:05:c0:9e:c9:0b:6f:77:3c:0a:3e:df:45:06:b3:ee:80:76: e1:ac:aa:4d:82:c3:57:88:f8:9e:0e:4d:7e:2c:22:0f:d3:17: 49:6a:9f:67:4c:2e:36:c7:2d:2b:10:3f:85:94:e7:75:d3:69: 2b:a8:a4:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQKWuZv8zaMrGdPMIgqlUQMURHvswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNTIwMTUzMTAwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGU3MThjMTgxYTY3MDE0ZWVhNjNmZjI3ZGY5NWEyNzcy NmM3MzJhMTRlNzQ4ZjBlYzVhOTZiYTQzOTYwODdhMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCijroMKjYzSD3NFmXp9BeZ1VF8cwtyzmzfuKPlPY6YPRUc 4SkpaWgJVJhYFzvjVg1v4oGy6FcamR18I5wfTuiJLowVfu+xnV7mKx6tIg1EEQR1 8Ix1jt5vo/Eb20UjSY+0MCQpuwQAKSbVcfcxkZ734fgOu2egjmM+LgijzHNKi6f1 odTl8HgosPUjRKzXoVbN3JFVjpRi8Z1NCia6bY/ul3vhRbQD9oIZP1gAmpzPdaS4 bwC+XAh9ViUT2sZJxsVNQ68GHRmX2u2qdXBqHeXWUnL6LV0uAV4ZtQDl4XrNq77C ueiIVvfoa38bu8xaEZtIXM7CP3Q4NVfX0YtJxL0RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUP6B/CqwwtS10R5kk3U75fJwm34owHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzFmZWNmZWIxLTY3MTYtNGRiYS04ZjkzLTQxNzc0YTIyMDgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwAwDQYJKoZIhvcNAQELBQADggEBAG1S0Sk1RxiUfjBPQdVn2Bz/O5c7 FyRHEH0/PcwLxwKAv6HhV3PZbNEz+X+0reGQSEsyqH+JwqWe+m/6ss/UrgkUpSED bD8SdGrdDA8YlBOgRZY5KqFyFxOw4V+V3ChUMJHxl2uhqGgEWtm3a6EDzkN2pU8X jKys8YngZAKU6tcDRji37HvZpQg54VoPfdvylKpA7PEYmbW3DMjYFwbOu4bl4ZRh GkC7j3ZkMkoTUuhwGrY1neLfQ3RfKvuR1Cj2nrbCmIC6ooAFwJ7JC293PAo+30UG s+6AduGsqk2Cw1eI+J4OTX4sIg/TF0lqn2dMLjbHLSsQP4WU53XTaSuopBc= -----END CERTIFICATE-----Generated at Wed Jun 4 10:49:18 2025 by rpki-client