$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa File: 3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa (raw, json) Hash identifier: BDwxwYHduq9UrCynVL8C8/Ge8xxtLkhvOJH1RtuInvU= Subject key identifier: 5E:AD:4B:92:86:EB:6E:FE:77:99:38:93:F4:13:98:73:B3:20:EF:3A Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 220F8A4D254A6ABD581BB5A1917B8559CFEA2675 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 13 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0f:8a:4d:25:4a:6a:bd:58:1b:b5:a1:91:7b:85:59:cf:ea:26:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:14:07:a6:7a:4f:6a:2d:8b:72:87:75:3b:20: dd:4d:d1:9e:e8:cb:80:ce:cf:9e:11:bd:18:03:97: b5:c3:0f:f5:51:fa:21:16:2a:55:87:ad:17:3c:34: 69:85:5d:cc:c1:50:fc:2f:52:e4:72:cd:d6:f6:75: 8a:e7:69:f4:4e:6a:c8:01:c2:e2:7f:cc:d4:0d:d4: ed:e6:d8:47:84:6a:07:b1:a1:17:ad:ee:4c:32:cc: c4:a1:78:a1:5d:f4:4a:af:e0:05:6e:98:08:32:83: 30:0f:09:83:2c:06:70:0b:4c:15:26:1f:45:67:5f: 50:bf:9f:82:24:b5:10:e9:02:34:40:36:48:21:40: 75:8d:b5:9f:9e:e0:8d:22:c2:e3:9e:3c:4b:d3:87: 63:ac:90:ca:bb:41:ce:4f:83:52:4d:d8:1e:28:54: 0b:59:ef:ed:63:69:72:49:76:b6:73:f1:7e:1f:16: 10:ad:71:71:3b:19:99:c8:7e:f2:95:17:ba:7a:1f: f1:2c:92:c8:2a:17:e1:33:f1:b2:64:2a:05:bf:2e: 2d:a1:8b:8a:dc:f9:21:bc:f5:6d:57:a5:bc:bc:ca: fb:fd:c3:dd:91:19:33:fb:91:eb:e5:5b:ca:5a:29: 30:96:74:fb:d8:46:57:f5:f2:01:15:90:0f:65:b6: 2d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AD:4B:92:86:EB:6E:FE:77:99:38:93:F4:13:98:73:B3:20:EF:3A X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.32.0/19 Signature Algorithm: sha256WithRSAEncryption 18:ec:2e:d6:a8:1a:3e:cf:33:3c:e7:05:3b:13:19:dd:47:9e: 6a:7f:5f:55:53:ad:7e:71:a4:e5:65:a9:07:7c:b4:fc:c8:b7: 87:58:db:78:e1:1c:ff:33:85:bd:18:fe:53:89:cf:6e:2a:61: c6:3c:12:bc:a0:85:2c:39:67:b1:8a:dc:27:7f:c8:0c:d5:88: a9:00:9e:b7:fa:0b:93:85:c0:24:34:1e:17:2f:b5:04:9f:a2: 1b:81:31:ac:25:32:b5:5d:ef:9c:1f:47:75:4a:1a:49:92:0d: 31:e0:32:e4:91:7c:06:0a:ca:c4:d0:6d:ae:ff:74:c4:c5:e8: 13:8f:a1:3d:0d:04:97:13:90:dc:17:6b:5e:ea:bc:5e:93:40: d4:23:45:44:e3:19:46:a1:df:00:13:73:2b:0f:5e:a6:0d:eb: 8d:da:30:6e:0d:8c:4e:25:1e:73:dc:24:a1:42:5f:ad:df:2d: d9:6f:14:eb:57:c4:55:ce:25:52:03:82:b0:dc:e8:99:43:2d: 83:1e:03:17:30:2c:4c:fc:94:4a:8e:19:96:cd:d2:38:c7:d3: 8e:ea:b4:24:4e:6b:1f:3d:b5:b8:d7:5a:e7:f6:39:07:11:e5: e7:34:8b:fd:36:75:15:f3:f0:58:27:22:88:b1:be:1f:6d:84: ae:a8:1a:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIg+KTSVKar1YG7WhkXuFWc/qJnUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDJiMWU2ZDU5YzExYWI4YTc1YzRkNjQ3NGMwNzU5NjUw ZmI5MDI5NjVlMWE3ZGEyNTBiNTI0YjRhMjQyNTcyMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmFAemek9qLYtyh3U7IN1N0Z7oy4DOz54RvRgDl7XDD/VR +iEWKlWHrRc8NGmFXczBUPwvUuRyzdb2dYrnafROasgBwuJ/zNQN1O3m2EeEagex oRet7kwyzMSheKFd9Eqv4AVumAgygzAPCYMsBnALTBUmH0VnX1C/n4IktRDpAjRA NkghQHWNtZ+e4I0iwuOePEvTh2OskMq7Qc5Pg1JN2B4oVAtZ7+1jaXJJdrZz8X4f FhCtcXE7GZnIfvKVF7p6H/EsksgqF+Ez8bJkKgW/Li2hi4rc+SG89W1Xpby8yvv9 w92RGTP7kevlW8paKTCWdPvYRlf18gEVkA9lti2FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXq1Lkobrbv53mTiT9BOYc7Mg7zowHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzNmZDYxMTdiLTVmNmItNDNmZS1iZjBhLWI2NmY4ZDM1ZTQ1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVgfyAwDQYJKoZIhvcNAQELBQADggEBABjsLtaoGj7PMzznBTsTGd1Hnmp/ X1VTrX5xpOVlqQd8tPzIt4dY23jhHP8zhb0Y/lOJz24qYcY8EryghSw5Z7GK3Cd/ yAzViKkAnrf6C5OFwCQ0HhcvtQSfohuBMawlMrVd75wfR3VKGkmSDTHgMuSRfAYK ysTQba7/dMTF6BOPoT0NBJcTkNwXa17qvF6TQNQjRUTjGUah3wATcysPXqYN643a MG4NjE4lHnPcJKFCX63fLdlvFOtXxFXOJVIDgrDc6JlDLYMeAxcwLEz8lEqOGZbN 0jjH047qtCROax89tbjXWuf2OQcR5ec0i/02dRXz8FgnIoixvh9thK6oGv8= -----END CERTIFICATE-----Generated at Mon Feb 10 16:36:57 2025 by rpki-client