$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa File: 3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa (raw, json) Hash identifier: +EFx91obAt/Z/mgeIOlrNXHhC25z0DAmbSGwZ4khySM= Subject key identifier: F6:58:35:FD:9E:23:0B:07:C5:4B:F8:57:1E:AC:A8:00:C4:24:1C:53 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 79084DFD0D9E75C5BB0F2875764E772F1107293F Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:08:4d:fd:0d:9e:75:c5:bb:0f:28:75:76:4e:77:2f:11:07:29:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:33:0b:0c:22:46:86:9d:50:d7:9e:a7:8d:cb: 26:fe:f8:a4:cd:ca:3f:49:4f:0c:b7:fa:65:96:37: 03:8c:03:9b:1d:76:c7:4f:4f:2a:c8:71:10:ef:0c: 6e:e5:4c:93:e2:ca:01:73:19:37:89:d7:4b:54:5e: a0:2e:3c:da:d9:1c:c3:04:80:be:69:ee:c6:f1:65: c6:7e:a9:ab:e1:c0:49:fc:9e:9a:ef:d6:44:6c:bb: df:d1:d0:91:2b:a1:64:52:16:f1:0c:f6:a7:fc:eb: f8:59:c2:f7:21:51:6a:d8:77:5f:3d:26:75:cf:cb: 7f:64:59:89:66:5f:02:ee:7a:0e:c7:fb:48:c3:df: af:2b:da:be:c8:e6:ec:97:0c:a4:19:38:63:ce:eb: 2e:70:72:b3:c0:ec:68:33:1f:af:37:83:de:00:52: 95:5c:88:42:1d:d6:6e:87:c8:ed:fb:c6:14:c4:d3: 90:f2:a8:c3:1a:34:71:cd:3a:e7:f9:f8:59:da:a6: 28:5a:27:c1:db:87:81:bd:d6:7e:24:35:ae:ee:d6: c4:74:a5:fb:53:3a:cb:c7:58:e3:34:26:e4:2e:ea: 16:3e:c9:1a:7a:90:52:cc:16:43:2d:e5:b8:2b:c2: 31:74:5a:85:69:dd:49:49:57:96:7e:86:96:b3:cd: 4a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:58:35:FD:9E:23:0B:07:C5:4B:F8:57:1E:AC:A8:00:C4:24:1C:53 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.32.0/19 Signature Algorithm: sha256WithRSAEncryption 11:91:7f:6d:a4:63:58:14:97:6d:0f:c6:0a:15:b8:49:ba:01: f8:6f:ef:93:c0:f7:29:ca:18:d7:cc:5a:e9:24:bd:ce:ef:d0: eb:44:56:b0:f3:64:5a:88:03:03:64:86:ce:a3:24:c8:df:6d: 01:31:ba:2d:21:50:6a:91:5d:35:1f:02:5d:74:0a:63:d7:0f: 8f:e5:0e:2d:8e:18:00:29:9e:07:1a:fb:ca:10:80:1a:b8:70: fa:9e:b5:1b:92:16:35:58:44:c3:4e:a4:09:f6:0b:38:48:57: 63:c8:a9:d0:a2:73:8d:a0:c1:28:71:58:3d:c1:44:68:af:ca: 48:d7:14:8f:dd:1e:2a:c1:39:35:85:92:1c:69:fe:d3:89:9d: ca:5f:c4:dd:ee:94:b9:af:62:1b:83:13:52:97:04:be:5f:fc: e9:8c:3f:6d:ba:60:d2:5e:47:67:18:64:24:da:e4:57:f5:f3: 40:a7:a4:b2:7d:00:12:8d:7d:9c:89:91:e7:5a:c4:2b:dc:49: c0:6f:ad:ec:e9:61:86:00:be:5e:3f:56:c4:a2:d6:df:24:b2: 23:ff:d2:e0:b6:4c:30:e2:5b:c9:23:d6:6f:98:a7:a7:04:bf: cd:45:3e:90:a7:96:b2:41:33:66:47:dd:f1:a4:ee:f8:d0:9e: 70:a3:20:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeQhN/Q2edcW7Dyh1dk53LxEHKT8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MGU0MjczYmY2NDMwNTg2YTA0MjdmYTRlMjY5MWVkMjRj ZDQ5ZDg5ZTVlMTc3ZTk4NTE0NDY0MjA3NDcyYjU1MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwMwsMIkaGnVDXnqeNyyb++KTNyj9JTwy3+mWWNwOMA5sd dsdPTyrIcRDvDG7lTJPiygFzGTeJ10tUXqAuPNrZHMMEgL5p7sbxZcZ+qavhwEn8 nprv1kRsu9/R0JEroWRSFvEM9qf86/hZwvchUWrYd189JnXPy39kWYlmXwLueg7H +0jD368r2r7I5uyXDKQZOGPO6y5wcrPA7GgzH683g94AUpVciEId1m6HyO37xhTE 05DyqMMaNHHNOuf5+FnapihaJ8Hbh4G91n4kNa7u1sR0pftTOsvHWOM0JuQu6hY+ yRp6kFLMFkMt5bgrwjF0WoVp3UlJV5Z+hpazzUq1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9lg1/Z4jCwfFS/hXHqyoAMQkHFMwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzNmZDYxMTdiLTVmNmItNDNmZS1iZjBhLWI2NmY4ZDM1ZTQ1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVgfyAwDQYJKoZIhvcNAQELBQADggEBABGRf22kY1gUl20PxgoVuEm6Afhv 75PA9ynKGNfMWukkvc7v0OtEVrDzZFqIAwNkhs6jJMjfbQExui0hUGqRXTUfAl10 CmPXD4/lDi2OGAApngca+8oQgBq4cPqetRuSFjVYRMNOpAn2CzhIV2PIqdCic42g wShxWD3BRGivykjXFI/dHirBOTWFkhxp/tOJncpfxN3ulLmvYhuDE1KXBL5f/OmM P226YNJeR2cYZCTa5Ff180CnpLJ9ABKNfZyJkedaxCvcScBvrezpYYYAvl4/VsSi 1t8ksiP/0uC2TDDiW8kj1m+Yp6cEv81FPpCnlrJBM2ZH3fGk7vjQnnCjIF0= -----END CERTIFICATE-----Generated at Wed Feb 5 15:47:06 2025 by rpki-client