$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa File: 5fa46662-88d2-4fa9-9076-26587048b3d0.roa (raw, json) Hash identifier: 5HHMUljdGdoHLFCy998PKfLrlhCsiYhomlmjgx/7NZY= Subject key identifier: 86:7A:5B:12:E4:D9:EA:9C:C5:23:B2:20:22:40:8A:24:16:A9:75:7C Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 2E33FC46E663B5C6DBF9AB141D7462B0128DC155 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:33:fc:46:e6:63:b5:c6:db:f9:ab:14:1d:74:62:b0:12:8d:c1:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:0e:c2:8d:4b:37:f6:29:7a:c1:f0:ff:e1: 59:e5:e9:ee:94:fe:bc:e2:b1:6c:cb:0b:75:9e:b6: 5a:b6:ad:83:91:3f:c7:40:0c:f6:f3:9a:d1:4a:5b: 24:fb:79:dc:59:d8:90:d6:12:64:6d:9d:31:ba:e7: 87:dd:82:7f:89:ed:a7:ed:e4:6a:65:1e:3b:fa:91: 9d:a1:48:ed:af:b9:76:05:6e:ba:00:5a:80:77:43: e9:a6:ce:20:2f:6d:2d:06:25:90:ec:53:66:da:fc: 12:80:b3:6b:96:d1:de:00:05:98:57:d3:1c:c0:81: 44:65:5c:84:26:26:4c:3a:8f:11:15:d5:b2:3e:46: 93:86:c2:f9:c5:19:21:51:48:1e:a8:57:66:20:51: 76:1d:84:fc:52:de:e6:12:55:a7:a5:01:da:b0:b8: 89:69:48:02:33:d5:2a:ab:26:0a:8c:ce:66:c3:bf: 79:00:2c:54:92:4e:23:3f:90:06:d4:8a:3f:3d:37: d5:a8:bb:f4:0d:1f:a1:51:48:06:75:d2:50:12:59: 6b:16:57:53:cd:50:a0:4f:ca:ca:38:97:4b:b1:6c: 0f:21:43:47:7a:3f:e7:a4:f4:23:ac:97:25:d1:a3: 4a:82:fe:8e:25:59:f4:11:7c:24:93:aa:07:89:a4: 21:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7A:5B:12:E4:D9:EA:9C:C5:23:B2:20:22:40:8A:24:16:A9:75:7C X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.8.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:22:8a:33:bf:44:3f:35:c4:66:55:db:31:9e:70:e0:a6:3f: 07:36:ab:8e:30:06:82:49:07:3e:7c:f6:55:b0:8c:c2:8b:79: 2f:52:02:66:ce:33:30:3d:67:50:da:7a:35:80:a7:8b:ec:d1: 49:1f:34:f0:22:35:0f:55:ad:25:6d:3f:1e:77:3d:bd:a4:e8: 52:25:54:45:76:24:06:5f:47:0e:7d:c1:bb:84:8c:cd:bc:45: 04:10:d5:18:72:a0:d0:25:c0:74:91:e3:8d:91:d6:82:69:be: 93:13:89:7f:d4:68:fb:99:cb:f0:78:5a:f8:3c:c1:ba:39:ef: 03:d0:e8:83:1f:ec:e5:1b:55:7c:b9:0a:8a:3f:20:74:36:a4: 08:d3:49:c7:6e:55:ba:51:7a:57:62:a6:19:7d:a9:fe:df:ee: 48:7c:a3:92:44:c8:68:ac:54:08:72:83:a6:85:11:80:42:fb: bb:d3:ea:e2:ba:c7:8a:ef:85:44:37:5f:81:0e:ea:cb:b2:a3: 3f:be:b3:18:e8:57:aa:1f:30:6a:9d:17:68:78:5a:70:14:f6: 14:10:18:65:c5:18:85:39:28:05:70:85:b3:ec:06:b2:6a:8a: 26:23:a4:4f:aa:56:3b:82:5c:67:42:85:74:76:6c:f3:43:36: e8:49:62:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULjP8RuZjtcbb+asUHXRisBKNwVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODhkNDRkMzUyOWIyMzRhYjNjZjgwMTc4NjY3NDc5MmUz MWU1NzhhNWIzZmI2MzhlZTM4NjkzZTYxZGI3MDZmMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy2g7CjUs39il6wfD/4Vnl6e6U/rzisWzLC3Wetlq2rYOR P8dADPbzmtFKWyT7edxZ2JDWEmRtnTG654fdgn+J7aft5GplHjv6kZ2hSO2vuXYF broAWoB3Q+mmziAvbS0GJZDsU2ba/BKAs2uW0d4ABZhX0xzAgURlXIQmJkw6jxEV 1bI+RpOGwvnFGSFRSB6oV2YgUXYdhPxS3uYSVaelAdqwuIlpSAIz1SqrJgqMzmbD v3kALFSSTiM/kAbUij89N9Wou/QNH6FRSAZ10lASWWsWV1PNUKBPyso4l0uxbA8h Q0d6P+ek9COslyXRo0qC/o4lWfQRfCSTqgeJpCGxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhnpbEuTZ6pzFI7IgIkCKJBapdXwwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzVmYTQ2NjYyLTg4ZDItNGZhOS05MDc2LTI2NTg3MDQ4YjNkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwgwDQYJKoZIhvcNAQELBQADggEBACwiijO/RD81xGZV2zGecOCmPwc2 q44wBoJJBz589lWwjMKLeS9SAmbOMzA9Z1DaejWAp4vs0UkfNPAiNQ9VrSVtPx53 Pb2k6FIlVEV2JAZfRw59wbuEjM28RQQQ1RhyoNAlwHSR442R1oJpvpMTiX/UaPuZ y/B4Wvg8wbo57wPQ6IMf7OUbVXy5Coo/IHQ2pAjTScduVbpReldiphl9qf7f7kh8 o5JEyGisVAhyg6aFEYBC+7vT6uK6x4rvhUQ3X4EO6suyoz++sxjoV6ofMGqdF2h4 WnAU9hQQGGXFGIU5KAVwhbPsBrJqiiYjpE+qVjuCXGdChXR2bPNDNuhJYoo= -----END CERTIFICATE-----Generated at Wed Feb 5 15:49:10 2025 by rpki-client