$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa File: 85ecd0ef-6924-4522-bd48-1e263001901c.roa (raw, json) Hash identifier: pbfC9zX18fbBjKLv66xSCQ6kIyviCatqAcXQPb/swNk= Subject key identifier: 30:08:D0:69:D2:60:49:46:9C:CC:F3:07:AD:3D:E3:5A:A5:FC:0B:5A Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 731DDC164A2ABE8E0ECBBC749592DC331C89F55C Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa Signing time: Fri 25 Apr 2025 15:10:20 +0000 ROA not before: Fri 25 Apr 2025 15:10:20 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:1d:dc:16:4a:2a:be:8e:0e:cb:bc:74:95:92:dc:33:1c:89:f5:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Apr 25 15:10:20 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=83a052fb7ada43ac5646a8c6418da65398768b9ad35e6519caf1b4658fdb9a4b, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:06:7c:28:06:2e:cb:f9:bb:ef:32:d3:06:74: c9:e7:0d:b8:6e:1f:f5:a4:53:a1:06:14:75:2b:4f: 3e:d7:72:f8:dd:91:ec:49:82:17:0b:60:ab:77:f7: f7:b4:62:ea:dc:9b:4b:28:09:a6:3e:1d:51:bf:41: 2a:08:8c:0b:fd:f4:db:6c:c4:b6:83:c6:3c:c0:3e: fa:30:d3:7d:9e:1c:cb:9d:83:a7:ce:83:2c:83:62: 44:36:a4:93:cb:38:55:72:67:5b:a8:38:15:fe:88: b6:45:21:4e:47:dd:da:5b:eb:62:6c:19:39:07:41: 13:62:7b:13:cf:d3:47:bc:56:bb:7e:b6:14:28:91: b4:d8:0d:5d:41:a0:8c:40:5b:4f:3e:26:82:31:de: 78:35:1b:c5:cb:1d:2d:cd:1b:8d:de:6c:cf:27:6a: d7:50:32:6b:de:34:93:be:c4:a9:fb:ea:d2:8d:7d: 1a:4a:f5:b6:0b:55:43:60:ce:fe:1a:24:9b:07:66: 2a:f4:bf:57:28:cd:91:55:70:19:38:0e:f2:57:7c: 7a:0f:31:4a:4b:70:2c:e9:23:18:72:50:d7:ac:e8: 11:c5:4b:36:b0:e8:bc:5e:bc:8d:b5:a4:70:4f:5b: 59:b3:7e:4e:9b:f6:6a:85:ca:99:be:73:ca:fb:b7: fd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:08:D0:69:D2:60:49:46:9C:CC:F3:07:AD:3D:E3:5A:A5:FC:0B:5A X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/85ecd0ef-6924-4522-bd48-1e263001901c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.1.0/24 Signature Algorithm: sha256WithRSAEncryption 88:02:9c:4d:74:61:05:c1:14:49:4b:32:2e:e2:d7:a7:2b:12: b4:c5:35:e4:99:64:a9:4e:12:4a:22:09:55:a5:f3:82:ef:de: a3:88:a5:ef:65:9e:9d:e6:4a:00:86:17:9f:91:ed:4a:3c:cf: 80:c9:36:84:42:b5:c8:d7:52:2e:6d:79:6e:e7:aa:ea:60:64: 98:59:6b:99:1f:8e:dc:ed:b9:4d:d1:a6:e8:a4:1b:6c:ef:63: 76:14:2a:31:66:7a:47:03:07:25:46:84:a8:da:e3:5d:01:12: 1f:c7:e8:90:11:6f:86:09:35:c1:62:e0:b3:3d:f5:10:aa:97: 2b:18:1c:98:54:71:c3:92:5b:05:d9:73:49:87:86:32:86:d3: e0:27:63:6e:51:78:6a:be:cc:02:1b:d5:d1:3e:27:17:69:38: d5:b4:00:30:20:b2:ab:31:19:3a:8b:38:93:55:6f:1b:ca:1a: 91:ca:cd:f3:f9:60:cb:8f:3c:0d:97:ab:45:d0:2b:4c:be:fc: e6:5e:60:d7:41:71:4f:64:57:a1:aa:c9:a6:1d:59:af:cf:cc: 2f:f3:7a:4b:f5:34:03:f7:7e:a1:f9:19:d7:d9:7d:86:20:0a: e1:89:65:8b:c6:50:09:57:ac:51:64:22:e5:ea:b7:e0:1a:80: 9f:f2:ce:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcx3cFkoqvo4Oy7x0lZLcMxyJ9VwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNDI1MTUxMDIwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2EwNTJmYjdhZGE0M2FjNTY0NmE4YzY0MThkYTY1Mzk4 NzY4YjlhZDM1ZTY1MTljYWYxYjQ2NThmZGI5YTRiMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7BnwoBi7L+bvvMtMGdMnnDbhuH/WkU6EGFHUrTz7Xcvjd kexJghcLYKt39/e0Yurcm0soCaY+HVG/QSoIjAv99NtsxLaDxjzAPvow032eHMud g6fOgyyDYkQ2pJPLOFVyZ1uoOBX+iLZFIU5H3dpb62JsGTkHQRNiexPP00e8Vrt+ thQokbTYDV1BoIxAW08+JoIx3ng1G8XLHS3NG43ebM8natdQMmveNJO+xKn76tKN fRpK9bYLVUNgzv4aJJsHZir0v1cozZFVcBk4DvJXfHoPMUpLcCzpIxhyUNes6BHF Szaw6LxevI21pHBPW1mzfk6b9mqFypm+c8r7t/3HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMAjQadJgSUaczPMHrT3jWqX8C1owHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1Lzg1ZWNkMGVmLTY5MjQtNDUyMi1iZDQ4LTFlMjYzMDAxOTAxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABgfwEwDQYJKoZIhvcNAQELBQADggEBAIgCnE10YQXBFElLMi7i16crErTF NeSZZKlOEkoiCVWl84Lv3qOIpe9lnp3mSgCGF5+R7Uo8z4DJNoRCtcjXUi5teW7n qupgZJhZa5kfjtztuU3RpuikG2zvY3YUKjFmekcDByVGhKja410BEh/H6JARb4YJ NcFi4LM99RCqlysYHJhUccOSWwXZc0mHhjKG0+AnY25ReGq+zAIb1dE+JxdpONW0 ADAgsqsxGTqLOJNVbxvKGpHKzfP5YMuPPA2Xq0XQK0y+/OZeYNdBcU9kV6GqyaYd Wa/PzC/zekv1NAP3fqH5GdfZfYYgCuGJZYvGUAlXrFFkIuXqt+AagJ/yzmE= -----END CERTIFICATE-----Generated at Sat Apr 26 15:17:59 2025 by rpki-client