$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa File: 1fecfeb1-6716-4dba-8f93-41774a220829.roa (raw, json) Hash identifier: HUMrCTowWjVjljYVfA+DkN/QgClqfcjWFj9a3dGS/4U= Subject key identifier: D7:01:64:B7:EB:20:41:75:1A:DA:EC:B7:1D:AD:A2:C9:98:E3:EC:47 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 22842F3D6B722CD9703D34C093E0B25EFFBB5CD9 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa Signing time: Fri 25 Apr 2025 15:10:13 +0000 ROA not before: Fri 25 Apr 2025 15:10:13 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:84:2f:3d:6b:72:2c:d9:70:3d:34:c0:93:e0:b2:5e:ff:bb:5c:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Apr 25 15:10:13 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=5a27cbd10d29beb51e05d648d7f94722990f5c2ea9e212a057d7be41e47065b8, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c8:7c:6a:8d:7c:4c:9a:d1:7b:70:fc:91:9b: 13:7a:85:80:70:61:cb:d0:d2:7a:4a:22:05:aa:32: 34:91:f6:ab:cd:8e:39:dd:a7:29:1b:80:aa:cc:62: f9:e1:02:03:5a:57:c3:85:63:50:5d:36:8c:a2:a7: ec:40:62:65:85:91:63:08:15:c8:3b:16:a6:24:d2: da:1a:6b:80:9f:0b:78:e4:a2:f4:dd:05:cd:89:8d: 44:e1:65:83:2d:c9:3c:44:08:39:80:40:e2:ae:9b: d4:3d:c7:8c:8e:ca:ab:10:d9:6b:27:a5:db:b4:a1: 1a:13:1b:18:ce:96:cd:98:18:3e:e1:f3:3c:9a:c1: 1a:43:16:98:68:e7:ea:02:08:37:1e:23:c1:4a:c2: e4:5b:f3:28:90:d3:56:3c:39:28:68:d6:cc:df:c9: c4:05:bc:b6:37:47:c6:66:c2:35:68:54:ad:21:69: bb:89:53:64:a8:0e:e7:a7:d4:d0:ce:9c:9c:a4:f0: 85:de:5f:de:5a:3a:c5:b6:12:f0:e6:6a:d3:08:f2: c1:83:79:e2:e0:6c:0a:04:96:2c:fe:09:1a:17:99: 3c:21:d0:54:38:71:e0:e1:98:b8:13:cd:d5:32:6c: 62:dd:99:f8:87:44:b9:ba:c1:56:24:83:f3:1d:87: 8f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:01:64:B7:EB:20:41:75:1A:DA:EC:B7:1D:AD:A2:C9:98:E3:EC:47 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/21 Signature Algorithm: sha256WithRSAEncryption 52:ce:30:a1:30:4d:15:bb:26:e4:3f:db:7d:4c:e8:a4:a4:64: ac:e3:8f:56:7b:28:83:2e:ed:2c:90:f6:74:fb:58:cc:22:b9: 70:f6:b8:d1:3b:00:99:1a:df:3b:63:41:09:83:a0:a2:6d:b9: ba:d5:85:7f:76:4d:3b:4d:d1:d4:ba:a0:8f:80:93:03:0a:f7: 07:1c:b7:d0:6f:a2:44:3b:cc:4a:76:6e:bd:3f:8e:f1:ed:fd: d1:93:51:79:71:35:f6:fa:d3:23:b9:4e:89:16:51:6d:4f:4a: e6:38:f7:91:e7:58:20:fb:7d:32:56:f0:aa:41:96:03:c5:bb: 1c:cf:db:75:8f:90:f1:23:7d:9d:58:07:65:8c:36:96:5b:cd: 5f:6f:c3:d1:5f:83:f0:15:fc:7b:d9:61:65:f7:b0:0a:41:1f: 9b:69:14:81:b2:da:18:cf:be:e9:c7:b0:3a:8a:84:5a:77:0a: c5:6c:af:1f:28:35:0c:9a:9c:e2:34:21:e1:ca:aa:52:65:54: 56:d2:7a:e6:90:46:75:10:f4:6f:8f:a0:ba:66:35:8b:db:50: dc:b7:83:51:77:82:33:9f:4c:bb:9a:53:1b:5c:04:80:da:e8: 95:cc:50:93:55:b7:be:14:0d:75:49:6f:4c:8f:c7:1d:64:47: 22:2c:5c:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIoQvPWtyLNlwPTTAk+CyXv+7XNkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNDI1MTUxMDEzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTI3Y2JkMTBkMjliZWI1MWUwNWQ2NDhkN2Y5NDcyMjk5 MGY1YzJlYTllMjEyYTA1N2Q3YmU0MWU0NzA2NWI4MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZyHxqjXxMmtF7cPyRmxN6hYBwYcvQ0npKIgWqMjSR9qvN jjndpykbgKrMYvnhAgNaV8OFY1BdNoyip+xAYmWFkWMIFcg7FqYk0toaa4CfC3jk ovTdBc2JjUThZYMtyTxECDmAQOKum9Q9x4yOyqsQ2Wsnpdu0oRoTGxjOls2YGD7h 8zyawRpDFpho5+oCCDceI8FKwuRb8yiQ01Y8OSho1szfycQFvLY3R8ZmwjVoVK0h abuJU2SoDuen1NDOnJyk8IXeX95aOsW2EvDmatMI8sGDeeLgbAoEliz+CRoXmTwh 0FQ4ceDhmLgTzdUybGLdmfiHRLm6wVYkg/Mdh4/XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1wFkt+sgQXUa2uy3Ha2iyZjj7EcwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzFmZWNmZWIxLTY3MTYtNGRiYS04ZjkzLTQxNzc0YTIyMDgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwAwDQYJKoZIhvcNAQELBQADggEBAFLOMKEwTRW7JuQ/231M6KSkZKzj j1Z7KIMu7SyQ9nT7WMwiuXD2uNE7AJka3ztjQQmDoKJtubrVhX92TTtN0dS6oI+A kwMK9wcct9BvokQ7zEp2br0/jvHt/dGTUXlxNfb60yO5TokWUW1PSuY495HnWCD7 fTJW8KpBlgPFuxzP23WPkPEjfZ1YB2WMNpZbzV9vw9Ffg/AV/HvZYWX3sApBH5tp FIGy2hjPvunHsDqKhFp3CsVsrx8oNQyanOI0IeHKqlJlVFbSeuaQRnUQ9G+PoLpm NYvbUNy3g1F3gjOfTLuaUxtcBIDa6JXMUJNVt74UDXVJb0yPxx1kRyIsXGM= -----END CERTIFICATE-----Generated at Sat Apr 26 16:07:20 2025 by rpki-client