$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa File: 2f44b632-2720-4ef0-917c-4b1813ed903f.roa (raw, json) Hash identifier: a4YqNso2VnzVgcj7PzAL7fIqcLTGtZN0xTfK/CVwTjw= Subject key identifier: E6:BF:AD:A5:FE:D6:F9:02:00:A2:F3:A8:73:41:B2:2C:39:67:E3:AA Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 38C0A90D9395E5E2D42402845BB26DE2DA72F2D2 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa Signing time: Fri 25 Apr 2025 15:20:31 +0000 ROA not before: Fri 25 Apr 2025 15:20:31 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c0:a9:0d:93:95:e5:e2:d4:24:02:84:5b:b2:6d:e2:da:72:f2:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Apr 25 15:20:31 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=21f20e89ec37c36d9e829ccbf0e7bcb16ed1a4e0bb08ad15b41fda165c459d34, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:57:c3:26:fe:c4:70:09:0f:0d:c7:22:60:4e: 87:30:a1:c2:09:cc:52:1c:ff:b3:53:0e:09:52:c4: 00:3f:0b:61:6b:7c:94:5d:b9:d1:6b:a0:a5:ff:1c: 62:10:1e:a3:d7:79:14:55:93:2e:f2:f0:1f:18:d9: 63:16:bd:fb:ee:ca:27:83:94:0b:05:68:dc:82:7e: 14:ca:a4:f9:97:d2:b9:f8:65:cc:56:1e:1b:3e:3d: d7:7f:db:fe:fb:d3:3b:ad:1e:7d:05:08:2f:e1:37: 16:19:b1:8c:7d:6b:c5:75:ff:0d:54:eb:8e:64:e2: 7d:6a:62:b8:83:b8:88:1d:a9:d2:20:ff:5b:e9:1d: ad:98:3b:23:fd:aa:80:62:95:f8:0a:80:6a:c6:7b: d7:28:cb:bc:2b:e0:de:e7:4f:1b:4a:a2:a1:82:9f: ee:26:de:c7:ff:7a:c6:1f:a7:b8:0a:58:76:9c:60: ef:e6:db:9b:bf:3e:0a:50:4f:fc:59:4f:72:9a:b4: 8b:27:7c:66:0d:e9:b1:9f:27:cc:ea:81:e5:8b:b5: d5:73:34:2b:a9:b2:7e:83:82:fc:79:5b:82:52:ee: 4f:3e:74:80:9d:77:ba:7a:f8:2b:c1:05:44:84:d7: 34:ad:8b:5a:f5:35:5a:20:0d:6d:52:ec:05:b5:b7: f0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BF:AD:A5:FE:D6:F9:02:00:A2:F3:A8:73:41:B2:2C:39:67:E3:AA X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/2f44b632-2720-4ef0-917c-4b1813ed903f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.64.0/18 Signature Algorithm: sha256WithRSAEncryption 50:b0:19:24:51:a2:28:11:26:20:7a:31:15:b2:01:01:f2:06: 96:40:07:a5:ab:d7:11:84:41:f9:c9:4d:ef:d9:1f:00:19:c3: 37:a9:a3:2c:34:c3:0c:ab:cb:45:c3:62:14:a8:4b:63:35:63: 70:c9:48:db:b1:52:34:7e:16:ae:21:ca:50:12:b1:bc:33:5d: 87:fe:3b:62:0b:fc:ca:d5:9b:73:43:5d:42:d7:52:88:16:d3: b2:36:09:ec:b8:19:54:ca:54:8f:fa:e1:06:5e:f4:e7:f6:9a: db:22:c0:44:ae:38:00:dd:ff:62:8c:ec:53:01:0f:b6:f6:95: 9f:db:f2:f2:b2:74:43:a0:8b:c0:2b:24:41:ad:f7:67:73:de: 7e:bd:21:74:73:e7:02:a1:42:16:8b:c5:7f:a5:bc:0f:5a:46: b6:fa:fc:f2:08:41:25:a0:b0:18:63:8e:a6:e1:2d:de:10:89: ba:27:e2:df:34:e2:78:87:62:9c:79:15:84:41:25:4b:7d:42: 3c:69:74:f5:6f:6b:e4:15:eb:b9:6c:88:bd:1f:b3:65:df:a9: 62:2d:34:73:b3:f8:e5:25:c2:2b:5b:54:5f:68:1b:82:97:71: cd:52:19:de:98:66:a2:37:da:99:07:9e:60:f8:37:d6:80:8d: 94:32:26:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOMCpDZOV5eLUJAKEW7Jt4tpy8tIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNDI1MTUyMDMxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWYyMGU4OWVjMzdjMzZkOWU4MjljY2JmMGU3YmNiMTZl ZDFhNGUwYmIwOGFkMTViNDFmZGExNjVjNDU5ZDM0MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqV8Mm/sRwCQ8NxyJgTocwocIJzFIc/7NTDglSxAA/C2Fr fJRdudFroKX/HGIQHqPXeRRVky7y8B8Y2WMWvfvuyieDlAsFaNyCfhTKpPmX0rn4 ZcxWHhs+Pdd/2/770zutHn0FCC/hNxYZsYx9a8V1/w1U645k4n1qYriDuIgdqdIg /1vpHa2YOyP9qoBilfgKgGrGe9coy7wr4N7nTxtKoqGCn+4m3sf/esYfp7gKWHac YO/m25u/PgpQT/xZT3KatIsnfGYN6bGfJ8zqgeWLtdVzNCupsn6Dgvx5W4JS7k8+ dICdd7p6+CvBBUSE1zSti1r1NVogDW1S7AW1t/CJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5r+tpf7W+QIAovOoc0GyLDln46owHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzJmNDRiNjMyLTI3MjAtNGVmMC05MTdjLTRiMTgxM2VkOTAzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZgf0AwDQYJKoZIhvcNAQELBQADggEBAFCwGSRRoigRJiB6MRWyAQHyBpZA B6Wr1xGEQfnJTe/ZHwAZwzepoyw0wwyry0XDYhSoS2M1Y3DJSNuxUjR+Fq4hylAS sbwzXYf+O2IL/MrVm3NDXULXUogW07I2Cey4GVTKVI/64QZe9Of2mtsiwESuOADd /2KM7FMBD7b2lZ/b8vKydEOgi8ArJEGt92dz3n69IXRz5wKhQhaLxX+lvA9aRrb6 /PIIQSWgsBhjjqbhLd4Qibon4t804niHYpx5FYRBJUt9QjxpdPVva+QV67lsiL0f s2XfqWItNHOz+OUlwitbVF9oG4KXcc1SGd6YZqI32pkHnmD4N9aAjZQyJtk= -----END CERTIFICATE-----Generated at Tue May 6 07:44:55 2025 by rpki-client