$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa File: 3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa (raw, json) Hash identifier: O24cgE827O7bH09A7losHHA8i3lkWxeE+gGza5wViT0= Subject key identifier: AD:73:47:2A:3F:14:03:7A:C0:CC:7F:08:21:63:63:96:77:C2:64:8B Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 2B976EB9624FDC8A47D89D5ED36EB8C86B9245D0 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa Signing time: Fri 25 Apr 2025 15:10:28 +0000 ROA not before: Fri 25 Apr 2025 15:10:28 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:97:6e:b9:62:4f:dc:8a:47:d8:9d:5e:d3:6e:b8:c8:6b:92:45:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Apr 25 15:10:28 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=dacd5a8920806c90456b074220e2b3678e7c8b92b3ab9e0237b39b323c8b8c3b, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5c:8e:5d:bc:84:07:48:c8:e7:f4:f1:f5:94: 29:b6:54:f0:9b:8c:b1:c8:e1:46:07:94:72:65:6f: a4:fc:c3:32:34:85:17:62:be:d5:53:a1:c6:a6:9d: 66:74:af:27:27:b6:d1:62:61:28:2d:25:7f:b3:23: 09:44:42:02:d9:58:22:bd:87:a6:01:20:7d:bc:6e: 15:38:80:f2:08:18:40:15:8f:13:1c:6b:bb:7f:c1: 44:09:03:ca:47:0c:41:f2:92:9a:82:db:02:f9:93: 3f:2c:c9:ce:0c:98:80:14:a7:13:7e:40:1c:b8:67: ce:7f:e0:e8:1d:5b:19:e0:fe:cb:7e:41:f0:5f:fe: 9b:cd:c7:91:04:db:03:c3:5c:f9:a7:ec:09:24:d4: 31:43:b9:bf:92:2d:a1:29:8b:cf:9e:e3:a8:86:08: 4d:ff:ff:6d:3d:b9:5b:20:8b:a5:fc:b5:8b:e9:92: 77:8b:fc:b0:b1:a9:c5:5e:38:a8:08:99:1c:42:93: 24:02:85:05:5c:82:6b:14:1e:12:ae:ad:e4:0a:78: d5:ed:b3:46:f9:92:46:2c:23:ef:d6:4f:dd:dd:88: 41:e8:7c:4f:86:ff:2f:d2:bc:9a:ec:53:a0:78:97: bb:fd:1d:3a:5f:e2:31:3f:6a:01:70:33:63:fa:82: 9b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:73:47:2A:3F:14:03:7A:C0:CC:7F:08:21:63:63:96:77:C2:64:8B X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.32.0/19 Signature Algorithm: sha256WithRSAEncryption 6e:ee:6f:3d:2d:8f:9e:a7:dc:67:3b:a4:c8:b1:f9:38:c7:0f: a9:d6:6c:d0:4c:6a:51:6b:2d:50:66:65:b8:01:1f:76:20:48: c9:1d:70:08:5f:01:9b:52:56:05:7e:1a:8e:31:cc:3e:c6:fb: 56:b5:91:32:0c:85:d0:57:ff:f6:1e:68:51:11:05:46:94:be: 15:55:f9:da:7b:dd:c8:83:39:c6:32:b1:fe:cb:98:81:46:a7: 18:5b:28:25:a3:cc:8e:36:86:9d:1d:13:53:88:ea:87:27:1c: 0f:cc:7d:20:f9:d2:e3:96:d2:43:1b:39:33:c7:11:17:aa:47: fe:f6:a2:87:43:c9:57:cf:b7:5c:f9:23:fe:89:5b:6a:50:25: 63:ba:2d:46:bd:6f:bd:0e:6f:c3:a0:8d:2a:e3:c0:cb:ae:69: e5:37:e4:c8:2e:0c:f2:0d:ba:1a:02:ab:7b:17:5d:e1:38:1b: 16:6a:1c:ae:01:2c:2f:58:56:7e:50:5f:74:f5:3c:1c:fd:fa: 40:2e:76:34:4e:f3:17:b1:aa:4b:92:9b:e7:37:1e:27:a9:49: a1:fe:c5:ee:75:3d:e7:15:1c:d3:7f:ae:02:f1:93:4f:ee:45: a9:f8:87:75:bf:a5:b9:0d:86:42:e8:33:45:41:b1:d2:37:fa: 9d:03:e7:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK5duuWJP3IpH2J1e0264yGuSRdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNDI1MTUxMDI4WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWNkNWE4OTIwODA2YzkwNDU2YjA3NDIyMGUyYjM2Nzhl N2M4YjkyYjNhYjllMDIzN2IzOWIzMjNjOGI4YzNiMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVXI5dvIQHSMjn9PH1lCm2VPCbjLHI4UYHlHJlb6T8wzI0 hRdivtVTocamnWZ0rycnttFiYSgtJX+zIwlEQgLZWCK9h6YBIH28bhU4gPIIGEAV jxMca7t/wUQJA8pHDEHykpqC2wL5kz8syc4MmIAUpxN+QBy4Z85/4OgdWxng/st+ QfBf/pvNx5EE2wPDXPmn7Akk1DFDub+SLaEpi8+e46iGCE3//209uVsgi6X8tYvp kneL/LCxqcVeOKgImRxCkyQChQVcgmsUHhKureQKeNXts0b5kkYsI+/WT93diEHo fE+G/y/SvJrsU6B4l7v9HTpf4jE/agFwM2P6gpuNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrXNHKj8UA3rAzH8IIWNjlnfCZIswHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzNmZDYxMTdiLTVmNmItNDNmZS1iZjBhLWI2NmY4ZDM1ZTQ1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVgfyAwDQYJKoZIhvcNAQELBQADggEBAG7ubz0tj56n3Gc7pMix+TjHD6nW bNBMalFrLVBmZbgBH3YgSMkdcAhfAZtSVgV+Go4xzD7G+1a1kTIMhdBX//YeaFER BUaUvhVV+dp73ciDOcYysf7LmIFGpxhbKCWjzI42hp0dE1OI6ocnHA/MfSD50uOW 0kMbOTPHEReqR/72oodDyVfPt1z5I/6JW2pQJWO6LUa9b70Ob8OgjSrjwMuuaeU3 5MguDPINuhoCq3sXXeE4GxZqHK4BLC9YVn5QX3T1PBz9+kAudjRO8xexqkuSm+c3 HiepSaH+xe51PecVHNN/rgLxk0/uRan4h3W/pbkNhkLoM0VBsdI3+p0D5zA= -----END CERTIFICATE-----Generated at Sat Apr 26 15:15:39 2025 by rpki-client