$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa File: f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa (raw, json) Hash identifier: Zs0S477XmSQuvuR48GT/ygv45RZ5vrb/LKEhrY89F6Y= Subject key identifier: 27:5E:36:C8:FE:F6:21:D5:8C:0B:1E:78:9A:DC:30:5B:3B:48:E2:02 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 424001BC7A788EBB395664A9D5081E4E56C8B7B8 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa Signing time: Mon 13 Jan 2025 00:00:00 +0000 ROA not before: Mon 13 Jan 2025 00:00:00 +0000 ROA not after: Mon 17 Feb 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:40:01:bc:7a:78:8e:bb:39:56:64:a9:d5:08:1e:4e:56:c8:b7:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Jan 13 00:00:00 2025 GMT Not After : Feb 17 23:59:59 2025 GMT Subject: CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:68:79:2f:68:d4:4f:29:8d:93:73:8e:ae:7b: e7:00:6f:19:78:af:82:e2:d5:51:21:b8:34:5d:70: 18:1b:e1:4d:ef:fc:e7:82:1b:31:66:2f:47:f5:b4: 45:76:3e:98:b3:c9:f0:fc:1d:f4:fb:75:ec:2b:0f: 5c:c3:e1:0c:20:57:e3:29:56:7c:fb:81:b1:d9:51: a6:4a:78:05:0e:ca:15:e6:7a:f0:63:ff:a9:70:47: 57:d0:e2:b1:ae:75:fc:c9:78:2a:ba:e8:ab:c9:fc: 24:f5:93:f3:43:84:95:46:65:0a:15:cc:90:ac:6e: 4a:b6:af:70:bf:78:9b:23:a5:74:73:65:03:3a:9d: 53:20:5a:96:c7:20:0b:b1:65:23:8a:95:5f:1b:18: cd:78:09:b5:b2:0d:22:75:87:e9:d8:df:68:98:a2: 1a:21:23:37:e4:2b:c1:52:62:25:78:c6:8e:ac:d4: 1a:8c:52:b7:dd:4c:d7:36:fa:35:52:da:cd:9f:2d: 71:85:8b:6c:bf:b7:97:64:8c:54:a4:06:07:6f:bb: ec:93:69:0b:a0:e9:9c:29:34:2a:ad:a6:87:4e:e4: eb:7f:67:e3:d5:2f:2f:ac:52:bc:71:84:38:e3:4a: 50:c0:fe:91:28:fd:34:d2:07:e3:f7:5c:8c:e3:65: ce:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5E:36:C8:FE:F6:21:D5:8C:0B:1E:78:9A:DC:30:5B:3B:48:E2:02 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1a:f4:cb:71:f8:46:40:b8:6a:46:7c:de:d2:33:75:10:48:4c: a4:cb:86:b1:aa:04:ea:4f:92:5a:3f:c8:5b:03:3c:5c:7f:2d: c4:be:1d:2b:30:7c:4c:76:ae:07:99:b4:6d:78:5c:39:a0:63: 3b:38:7c:d1:54:1e:e4:d7:d0:04:86:c2:37:c5:a6:3b:e8:bd: 37:2e:67:75:75:1d:c5:90:27:87:b2:9e:0a:23:11:ac:4f:c5: 73:78:17:98:02:c9:50:e0:06:6f:a2:7b:e1:7d:e6:c2:26:23: 64:e9:04:56:b0:9e:23:a6:19:9f:5c:6d:0c:29:63:25:07:fd: 5d:0f:e4:c5:bf:9b:ed:69:6e:60:1e:0b:ef:a3:f5:4e:f7:0c: e6:4f:4e:2c:b7:da:cf:0a:6b:69:49:04:fb:00:7f:1c:71:e9: a5:34:1d:04:30:17:af:dc:df:bb:0f:5f:0a:2b:44:cf:39:66: 77:eb:0c:3d:57:eb:be:b8:18:9f:11:24:47:4f:74:86:ee:e0: 73:86:6b:f3:0a:a8:a2:0e:fe:af:c7:58:e7:c0:d4:88:4d:4a: 59:49:95:bd:c7:6e:81:7e:07:45:54:ab:55:c9:d3:e6:b8:d5: 9e:84:d4:02:5a:10:cd:0b:49:1b:1b:be:3c:f9:c8:d5:6e:43: 7e:bb:c0:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQkABvHp4jrs5VmSp1QgeTlbIt7gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwMTEzMDAwMDAwWhcNMjUwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTQ2OWNmZmE3YWRmYzM0OWVlOTQxYTM5ZjE2MWMxYTE1 NWJkMzljZTZlZjdmOGZkYjBhMGZlNWJmYzk1YmNkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfaHkvaNRPKY2Tc46ue+cAbxl4r4Li1VEhuDRdcBgb4U3v /OeCGzFmL0f1tEV2PpizyfD8HfT7dewrD1zD4QwgV+MpVnz7gbHZUaZKeAUOyhXm evBj/6lwR1fQ4rGudfzJeCq66KvJ/CT1k/NDhJVGZQoVzJCsbkq2r3C/eJsjpXRz ZQM6nVMgWpbHIAuxZSOKlV8bGM14CbWyDSJ1h+nY32iYohohIzfkK8FSYiV4xo6s 1BqMUrfdTNc2+jVS2s2fLXGFi2y/t5dkjFSkBgdvu+yTaQug6ZwpNCqtpodO5Ot/ Z+PVLy+sUrxxhDjjSlDA/pEo/TTSB+P3XIzjZc7fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ142yP72IdWMCx54mtwwWztI4gIwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2YyZTVlMTFjLWY0ZTAtNGY5MS04ZWQxLWE2Y2JhNmM1ZTI4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBABr0y3H4RkC4akZ83tIzdRBITKTL hrGqBOpPklo/yFsDPFx/LcS+HSswfEx2rgeZtG14XDmgYzs4fNFUHuTX0ASGwjfF pjvovTcuZ3V1HcWQJ4eyngojEaxPxXN4F5gCyVDgBm+ie+F95sImI2TpBFawniOm GZ9cbQwpYyUH/V0P5MW/m+1pbmAeC++j9U73DOZPTiy32s8Ka2lJBPsAfxxx6aU0 HQQwF6/c37sPXworRM85ZnfrDD1X6764GJ8RJEdPdIbu4HOGa/MKqKIO/q/HWOfA 1IhNSllJlb3HboF+B0VUq1XJ0+a41Z6E1AJaEM0LSRsbvjz5yNVuQ367wDE= -----END CERTIFICATE-----Generated at Wed Feb 5 15:50:23 2025 by rpki-client