$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa File: 9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa (raw, json) Hash identifier: eCuZd75YTghRLZWNpv1fF745nkhMgjQ3tga0xS7zfa8= Subject key identifier: E8:C3:26:88:5E:D4:A2:5A:56:33:07:13:94:32:44:A6:05:1B:FF:48 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 2F8BA6B20E6CC58C3168737A5AC6C3E210A398B8 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:8b:a6:b2:0e:6c:c5:8c:31:68:73:7a:5a:c6:c3:e2:10:a3:98:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:9c:23:b8:1f:36:87:3a:a7:44:c3:72:ec:2b: 0a:3b:6e:94:12:55:0e:d1:18:50:bc:2c:11:50:b4: 06:5f:09:96:69:63:c5:8f:82:43:f1:1d:b4:aa:60: 3b:b5:ff:98:f3:77:13:5f:da:43:b6:a0:4b:ed:4b: 0e:49:b9:54:26:51:ab:89:b2:75:65:aa:a5:48:91: 6b:fb:1e:33:5b:c9:ad:a2:d8:da:e1:35:82:f7:4e: 25:8a:b3:cd:47:1b:74:6c:d0:1d:d5:0b:ca:f6:b9: 3d:81:ee:cf:51:58:35:7f:29:ff:9a:00:45:0a:47: 34:94:3d:8d:40:a8:6e:d5:aa:d8:4a:07:e8:54:3a: 72:2c:b9:44:41:6c:26:82:57:b7:7b:3a:1b:13:da: 81:6c:20:c6:aa:a2:af:12:2f:fb:70:74:da:13:5e: 03:21:8e:ae:38:85:8b:ef:23:d7:0f:0c:90:60:4d: b0:da:b0:a1:73:70:70:de:64:9d:5c:25:ef:4f:a6: 98:55:c0:16:99:fb:43:55:f4:b1:38:7d:b8:99:4e: 26:2c:15:e5:5d:34:8e:1e:76:bd:18:dd:77:00:48: fa:c2:1a:0f:dc:a0:83:2b:2a:86:be:22:7c:b9:e9: fc:d8:4c:3d:4a:ac:a4:f2:b2:57:e3:77:25:5e:11: 29:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C3:26:88:5E:D4:A2:5A:56:33:07:13:94:32:44:A6:05:1B:FF:48 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.2.0/23 Signature Algorithm: sha256WithRSAEncryption 09:6b:65:ae:fa:bb:26:a3:17:53:38:29:1b:58:09:7d:f8:76: 33:cc:89:d5:2c:ce:69:24:5a:9d:4f:28:fa:ad:db:3a:4a:47: 54:32:07:49:dc:be:ba:56:ae:a3:e4:57:b3:f6:ec:6a:b1:b6: 5d:71:c0:5b:6c:d4:9f:b8:eb:b6:b1:31:25:6a:98:df:39:19: bb:6e:6e:f9:85:16:d5:8a:bd:88:18:62:73:f9:a8:23:bd:7b: 21:c5:ee:60:61:e8:55:9d:a5:cd:70:9a:bc:e8:be:32:ef:2a: 75:7b:e6:fc:fe:1a:40:e4:f4:06:b8:f0:cb:28:03:00:bf:39: 88:c3:d4:5f:78:d9:e5:b2:50:2b:f7:8f:10:81:d7:a6:91:da: a7:59:e4:09:fc:d6:04:b0:c4:ee:f7:45:5e:37:e4:5d:0e:db: c4:6c:89:cf:99:2e:c2:3b:a9:a3:33:c6:d9:fd:95:3c:b8:83: 4c:92:fc:da:b9:84:ab:d6:32:1c:49:3e:e2:58:e9:02:3b:22: 87:a3:74:e3:fd:30:1c:37:9b:ed:47:4b:51:6b:b5:50:c2:69: c1:93:40:8f:f3:27:26:c6:cc:c5:9b:9e:f8:73:d3:80:07:75: be:45:1d:80:c4:ae:c3:91:35:fa:20:be:ed:07:3e:7e:51:13: 7f:41:36:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL4umsg5sxYwxaHN6WsbD4hCjmLgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWE2NWE0YmE5Mjg5ZjQ1ZjFiNGFhNWZhYWRmNzA3NjUz NzhjYTc5MjlhZmM5YzdjNjYyNDM4ZDZlMTg5ZTgyMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOnCO4HzaHOqdEw3LsKwo7bpQSVQ7RGFC8LBFQtAZfCZZp Y8WPgkPxHbSqYDu1/5jzdxNf2kO2oEvtSw5JuVQmUauJsnVlqqVIkWv7HjNbya2i 2NrhNYL3TiWKs81HG3Rs0B3VC8r2uT2B7s9RWDV/Kf+aAEUKRzSUPY1AqG7VqthK B+hUOnIsuURBbCaCV7d7OhsT2oFsIMaqoq8SL/twdNoTXgMhjq44hYvvI9cPDJBg TbDasKFzcHDeZJ1cJe9PpphVwBaZ+0NV9LE4fbiZTiYsFeVdNI4edr0Y3XcASPrC Gg/coIMrKoa+Iny56fzYTD1KrKTyslfjdyVeESmdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6MMmiF7UolpWMwcTlDJEpgUb/0gwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzllMWU0N2UwLTNiMmYtNDFhYy04MGFkLTliMDhkNDM1M2ZkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgfwIwDQYJKoZIhvcNAQELBQADggEBAAlrZa76uyajF1M4KRtYCX34djPM idUszmkkWp1PKPqt2zpKR1QyB0ncvrpWrqPkV7P27Gqxtl1xwFts1J+467axMSVq mN85GbtubvmFFtWKvYgYYnP5qCO9eyHF7mBh6FWdpc1wmrzovjLvKnV75vz+GkDk 9Aa48MsoAwC/OYjD1F942eWyUCv3jxCB16aR2qdZ5An81gSwxO73RV435F0O28Rs ic+ZLsI7qaMzxtn9lTy4g0yS/Nq5hKvWMhxJPuJY6QI7IoejdOP9MBw3m+1HS1Fr tVDCacGTQI/zJybGzMWbnvhz04AHdb5FHYDErsORNfogvu0HPn5RE39BNl4= -----END CERTIFICATE-----Generated at Wed Feb 5 15:46:19 2025 by rpki-client