$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa File: 9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa (raw, json) Hash identifier: QVM+loFODRM9NgkwkTlfQuDuKgwo5FazOrdZCqtxWPU= Subject key identifier: A5:23:2B:2D:59:3A:1D:39:75:A6:A8:4A:F4:51:0C:56:EE:CE:79:DE Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 295F13FB2FAA0768DE54813AAB3C88577CBC4A37 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:5f:13:fb:2f:aa:07:68:de:54:81:3a:ab:3c:88:57:7c:bc:4a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f5:d2:27:64:85:33:cc:1d:90:79:f4:84:32: 52:fa:41:b8:de:5c:d6:1a:10:54:d5:fa:a4:bb:3d: 90:03:bb:6a:64:33:35:eb:87:30:4d:15:92:a3:60: ef:5e:65:67:7c:41:bf:66:8e:4e:17:a6:1b:2e:72: a3:81:e3:4b:63:d5:5b:da:78:28:06:83:d5:43:f4: 21:93:d9:b7:a7:53:39:b8:70:0d:ee:cc:6a:06:95: 82:ca:6f:71:e2:da:ea:da:39:ea:6f:11:69:d6:ba: 62:23:ff:9c:07:26:da:4c:f3:a5:08:3b:8a:35:c7: 27:94:2d:8b:78:a6:de:8e:ca:f9:f0:e7:cf:a2:5f: 30:b3:97:18:f5:e7:9f:11:1b:e4:b4:3b:54:19:80: c1:42:a5:0d:42:e0:ba:b1:30:28:b7:b1:fd:e3:c5: e6:cb:fc:37:9f:e7:a0:4d:1c:bd:e8:c1:24:59:a5: 7f:fb:7f:c7:ef:f9:68:04:bd:d3:f5:6e:d0:11:ce: 96:00:3c:82:b1:c5:b9:60:7f:e7:d5:fa:49:a6:14: 45:bb:f4:79:83:98:0a:46:6e:2c:05:9e:b3:09:8a: 34:99:73:82:a9:d8:fe:73:d3:dd:af:93:9b:3b:bc: 61:c4:85:f1:b7:9c:e4:54:c6:80:6a:bb:22:aa:20: c4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:23:2B:2D:59:3A:1D:39:75:A6:A8:4A:F4:51:0C:56:EE:CE:79:DE X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 04:0d:6a:b3:68:87:70:db:4f:2b:76:39:a1:8a:50:39:0e:89: 1a:fb:fc:40:f1:a4:bb:3c:06:ba:8d:f3:d3:2e:14:4e:b0:6f: 69:78:44:72:e3:54:2c:11:8f:d0:fc:c5:f5:1f:07:cf:6f:94: 21:6b:c5:b0:3a:95:33:ad:41:7b:c5:70:26:59:c5:7a:95:20: 52:15:b8:1d:bb:1d:fa:9b:94:d2:2b:90:63:27:bc:29:fe:72: d7:08:25:62:fc:6d:ea:85:f1:15:87:3e:c4:57:a8:7d:9c:d2: 97:70:14:f0:e4:29:45:c5:33:d1:4f:3f:2c:30:08:18:02:0c: 55:a3:b1:8c:71:86:26:6c:26:02:b5:61:1e:7d:9f:9d:4e:3e: 0b:7c:d5:24:bf:d0:b5:a6:5f:83:55:de:06:d1:53:81:97:c2: 67:ed:d4:a9:ee:cd:96:04:7f:47:57:fa:98:ca:57:55:59:25: 72:e1:21:93:83:65:d5:97:5f:c8:cf:d9:c6:81:67:1e:77:4b: 6a:9e:14:7f:be:55:6a:fc:43:4b:7e:37:32:49:29:0d:cd:75: 7c:af:b2:87:49:cd:b2:a4:87:99:fa:e5:d8:2c:af:19:67:14: e6:50:26:8b:7b:47:74:83:7e:d7:89:ca:b9:58:d9:42:66:09: 6d:7c:d3:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKV8T+y+qB2jeVIE6qzyIV3y8SjcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjU5MTRjNjFkNTE3MDU4Zjc0MzBlMzVmMjMxOThjYzVm OTVmOTM1MjVkNDM1NGYwNmI2MzUwZmJkNmYyYWE4MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ9dInZIUzzB2QefSEMlL6QbjeXNYaEFTV+qS7PZADu2pk MzXrhzBNFZKjYO9eZWd8Qb9mjk4XphsucqOB40tj1VvaeCgGg9VD9CGT2benUzm4 cA3uzGoGlYLKb3Hi2uraOepvEWnWumIj/5wHJtpM86UIO4o1xyeULYt4pt6Oyvnw 58+iXzCzlxj1558RG+S0O1QZgMFCpQ1C4LqxMCi3sf3jxebL/Def56BNHL3owSRZ pX/7f8fv+WgEvdP1btARzpYAPIKxxblgf+fV+kmmFEW79HmDmApGbiwFnrMJijSZ c4Kp2P5z092vk5s7vGHEhfG3nORUxoBquyKqIMRJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpSMrLVk6HTl1pqhK9FEMVu7Oed4wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzlhNmFjZTU0LWYyMzEtNGUyNS04YTM2LWM0NjFkNDlkZmE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBAAQNarNoh3DbTyt2OaGKUDkOiRr7 /EDxpLs8BrqN89MuFE6wb2l4RHLjVCwRj9D8xfUfB89vlCFrxbA6lTOtQXvFcCZZ xXqVIFIVuB27HfqblNIrkGMnvCn+ctcIJWL8beqF8RWHPsRXqH2c0pdwFPDkKUXF M9FPPywwCBgCDFWjsYxxhiZsJgK1YR59n51OPgt81SS/0LWmX4NV3gbRU4GXwmft 1KnuzZYEf0dX+pjKV1VZJXLhIZODZdWXX8jP2caBZx53S2qeFH++VWr8Q0t+NzJJ KQ3NdXyvsodJzbKkh5n65dgsrxlnFOZQJot7R3SDfteJyrlY2UJmCW1807A= -----END CERTIFICATE-----Generated at Wed Feb 5 16:01:58 2025 by rpki-client