$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa File: 661f32c0-f8f7-4621-8aaf-7a270e451918.roa (raw, json) Hash identifier: 2xFyqpff46yPTLqAzzFQ61eXtUxfBrzR/oAPk0INK04= Subject key identifier: 72:5F:AC:00:DE:1E:AB:D5:63:45:EE:B7:79:0B:15:4C:18:67:FE:04 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 4F7F9B3F181D021B0B6834AF795F00E7CAA5B666 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:7f:9b:3f:18:1d:02:1b:0b:68:34:af:79:5f:00:e7:ca:a5:b6:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a1:74:d3:26:45:23:25:29:f0:f1:a1:c8:58: 34:f6:75:37:38:f2:6d:93:56:ec:7f:6c:b5:c7:73: f1:df:5d:00:0c:0c:4a:cc:98:6c:5f:4e:8d:37:ca: 8c:36:6a:10:a2:e9:e8:ee:36:19:74:73:0c:9a:5c: 87:c6:0d:19:83:69:79:47:fb:ef:2d:bb:a8:5b:c3: d5:e6:d0:18:12:22:6d:1b:67:86:58:e7:24:14:d5: cc:93:02:f2:d2:9a:55:69:e8:e8:99:a5:71:22:47: ff:6b:7b:81:71:ad:26:97:56:49:78:82:4f:1a:6d: c7:c5:df:f7:4e:f9:90:89:b0:43:b1:c7:9e:77:78: cd:f5:08:c7:de:34:cf:5a:48:b8:76:b3:ca:78:50: 6b:67:30:b8:26:18:4a:e2:15:ce:f2:ad:7e:90:15: 15:b3:79:a6:d0:ac:45:e7:9c:cb:51:49:c1:0d:1e: 12:2a:83:91:22:8a:42:ff:8b:44:ad:21:5d:24:ea: d7:fb:de:b4:5a:b9:b2:87:13:34:f6:02:b8:01:98: 6f:ae:50:01:72:e8:68:c1:c3:0c:db:7e:67:0b:cc: 56:e5:69:7d:9f:56:50:d8:3b:a9:27:b1:99:18:9b: a9:65:7b:91:2e:8f:77:a2:f8:50:34:4d:4a:2c:94: ac:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5F:AC:00:DE:1E:AB:D5:63:45:EE:B7:79:0B:15:4C:18:67:FE:04 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/661f32c0-f8f7-4621-8aaf-7a270e451918.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.9.0/24 Signature Algorithm: sha256WithRSAEncryption 72:1b:a5:3c:8b:09:7b:79:b5:d3:44:19:ef:76:18:f7:8e:8d: 18:f9:26:9c:bb:e7:3c:23:86:db:bd:7b:e9:76:32:a3:59:38: ae:2e:b5:46:3b:04:5b:31:0a:a0:b4:99:c1:54:09:45:2d:d6: b9:f0:87:1c:ca:b7:33:32:c2:2f:10:42:7a:a1:ee:65:db:76: 12:05:5e:38:19:4e:7c:ae:f3:dc:35:eb:59:fd:b0:ad:99:da: 3d:6a:af:31:62:b2:5a:2e:ea:3c:c4:22:20:df:d5:a6:81:58: 24:63:24:7a:d0:b7:4b:f5:17:16:71:7a:1b:09:f0:01:3d:a4: 61:74:0c:c4:15:16:49:88:e0:61:e9:9d:17:25:7b:d9:bd:46: b5:17:0d:37:ac:e9:86:ba:10:88:64:27:c3:4e:87:9c:d6:8a: 05:96:5f:6d:fa:cb:3b:2e:d0:c6:6a:9e:3c:1e:87:57:9b:c9: 6b:1a:c0:25:9e:a1:1f:00:ea:36:e6:03:c9:ec:7b:a8:33:71: 92:48:e4:46:06:00:ed:61:fe:eb:8b:5a:c9:57:17:82:59:02: 94:cc:48:fa:2c:ae:ba:68:33:e4:5e:32:92:9b:37:58:ca:7a: 65:e8:c8:73:be:41:e8:88:cb:63:6c:a3:5f:b4:1e:6d:d2:6e: f8:4b:6c:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT3+bPxgdAhsLaDSveV8A58qltmYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTQzY2YwN2Y3N2FkNzc2ODJjOWJhYjA0MzZmYzc2YmJm NDZlNDMxZjJkZDkwZTRlNzQ3MTJmYWVjZTUzM2FjMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzoXTTJkUjJSnw8aHIWDT2dTc48m2TVux/bLXHc/HfXQAM DErMmGxfTo03yow2ahCi6ejuNhl0cwyaXIfGDRmDaXlH++8tu6hbw9Xm0BgSIm0b Z4ZY5yQU1cyTAvLSmlVp6OiZpXEiR/9re4FxrSaXVkl4gk8abcfF3/dO+ZCJsEOx x553eM31CMfeNM9aSLh2s8p4UGtnMLgmGEriFc7yrX6QFRWzeabQrEXnnMtRScEN HhIqg5EiikL/i0StIV0k6tf73rRaubKHEzT2ArgBmG+uUAFy6GjBwwzbfmcLzFbl aX2fVlDYO6knsZkYm6lle5Euj3ei+FA0TUoslKzZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcl+sAN4eq9VjRe63eQsVTBhn/gQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzY2MWYzMmMwLWY4ZjctNDYyMS04YWFmLTdhMjcwZTQ1MTkxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwkwDQYJKoZIhvcNAQELBQADggEBAHIbpTyLCXt5tdNEGe92GPeOjRj5 Jpy75zwjhtu9e+l2MqNZOK4utUY7BFsxCqC0mcFUCUUt1rnwhxzKtzMywi8QQnqh 7mXbdhIFXjgZTnyu89w161n9sK2Z2j1qrzFislou6jzEIiDf1aaBWCRjJHrQt0v1 FxZxehsJ8AE9pGF0DMQVFkmI4GHpnRcle9m9RrUXDTes6Ya6EIhkJ8NOh5zWigWW X236yzsu0MZqnjweh1ebyWsawCWeoR8A6jbmA8nse6gzcZJI5EYGAO1h/uuLWslX F4JZApTMSPosrrpoM+ReMpKbN1jKemXoyHO+QeiIy2Nso1+0Hm3SbvhLbCM= -----END CERTIFICATE-----Generated at Wed Feb 5 15:57:20 2025 by rpki-client