$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa File: 9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa (raw, json) Hash identifier: LaBRqgVGebbIBxK32zH4Lryf7rzmEnCzxJElVkEQQNU= Subject key identifier: A0:2A:C6:18:19:AF:A6:19:79:0A:43:F8:D6:52:61:F6:88:49:3D:5E Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 594DDCDB565FCAB438F0185F0310B6C1468FBDE3 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa Signing time: Fri 25 Apr 2025 15:10:26 +0000 ROA not before: Fri 25 Apr 2025 15:10:26 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:4d:dc:db:56:5f:ca:b4:38:f0:18:5f:03:10:b6:c1:46:8f:bd:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Apr 25 15:10:26 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=c6b5dab3c6d26119525ecb9e51766b73c79d8e441ee0a877a97b6879f6cf2e15, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:39:d7:d6:53:c6:6b:cb:51:f9:44:05:c0:fc: 0f:9a:63:06:76:02:31:da:f4:6e:a8:1a:ae:47:0c: e4:36:9b:8b:a1:1f:1b:38:8e:1c:63:82:22:fc:fa: b4:a0:78:f4:32:c9:e5:74:1e:54:e0:14:51:a2:01: 65:f5:8b:58:f9:14:16:f6:b8:e3:5f:cc:ce:2e:ab: 89:96:d7:92:74:4b:e3:6d:d5:8c:a5:26:a6:c2:b4: 7d:d2:3f:58:83:8c:69:eb:e2:d0:01:c4:4e:ff:92: 2e:d6:c2:7b:8d:6f:af:ea:bd:0f:1a:90:88:2a:89: cc:1a:45:ed:fd:6a:75:21:5d:c0:a7:76:70:91:d2: 8e:18:80:8f:a2:29:c8:6b:2f:05:00:a7:1d:d8:e4: 6e:cb:3d:8f:d9:4d:b2:23:8c:d8:7f:9a:87:ac:78: f9:c1:1b:9b:c6:73:8e:5d:cb:ca:a4:b7:0e:de:8d: 33:6e:de:38:d0:5e:45:62:bc:94:eb:06:bc:3a:69: e3:b8:8f:bd:d2:e9:65:8f:27:5c:73:b7:41:fa:ca: 13:e9:93:77:32:67:6c:85:b2:18:21:7d:58:3b:4c: 6d:7a:70:c1:c6:c9:44:7a:7b:ca:95:a5:06:fa:6c: d6:a5:dd:9c:2d:6f:c8:91:92:14:b7:a8:97:98:e1: 9d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:2A:C6:18:19:AF:A6:19:79:0A:43:F8:D6:52:61:F6:88:49:3D:5E X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9a6ace54-f231-4e25-8a36-c461d49dfa6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:ed:65:f7:a3:4d:4a:b4:5b:30:c3:4f:98:dd:ef:cf:0a:49: 91:2c:99:8b:c1:29:18:9b:ed:c8:82:34:1b:7c:49:bf:95:ff: ba:31:a3:5d:45:67:84:d6:de:6e:29:be:0e:e9:f2:93:24:c6: 13:1e:a1:90:47:48:33:58:7d:57:74:0c:3a:14:86:75:fe:99: 6d:df:b1:5a:e7:1f:32:20:5a:13:2e:9d:c0:22:46:c6:17:a3: 73:d6:c5:a9:ce:4e:52:38:4d:8b:85:4a:49:76:f7:d2:2e:c6: 10:08:af:d9:de:d2:4e:de:39:6e:86:0b:ca:b2:86:6f:20:f4: f8:06:d5:3c:e6:24:04:50:e2:3e:49:63:42:61:da:56:65:7e: e0:24:86:1a:ad:0c:27:da:cf:ec:22:5e:94:4b:4d:b2:b6:67: 52:a8:c3:4f:37:1b:fd:ce:62:3d:37:15:d6:dd:1b:50:7c:bd: 03:c2:7e:e2:05:7f:19:fb:e4:8d:8a:78:cb:ef:56:98:8e:0e: f4:cf:2c:c5:19:c6:04:9a:35:4d:06:42:2b:08:4e:e4:6b:ed: b5:69:2e:3a:5a:4c:bd:29:81:7a:54:4d:08:18:94:c9:96:71: 2a:ef:2c:db:25:10:f9:b2:23:60:48:3d:5d:42:c7:24:5d:c4: 01:a5:4a:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWU3c21ZfyrQ48BhfAxC2wUaPveMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNDI1MTUxMDI2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmI1ZGFiM2M2ZDI2MTE5NTI1ZWNiOWU1MTc2NmI3M2M3 OWQ4ZTQ0MWVlMGE4NzdhOTdiNjg3OWY2Y2YyZTE1MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtOdfWU8Zry1H5RAXA/A+aYwZ2AjHa9G6oGq5HDOQ2m4uh Hxs4jhxjgiL8+rSgePQyyeV0HlTgFFGiAWX1i1j5FBb2uONfzM4uq4mW15J0S+Nt 1YylJqbCtH3SP1iDjGnr4tABxE7/ki7WwnuNb6/qvQ8akIgqicwaRe39anUhXcCn dnCR0o4YgI+iKchrLwUApx3Y5G7LPY/ZTbIjjNh/moesePnBG5vGc45dy8qktw7e jTNu3jjQXkVivJTrBrw6aeO4j73S6WWPJ1xzt0H6yhPpk3cyZ2yFshghfVg7TG16 cMHGyUR6e8qVpQb6bNal3Zwtb8iRkhS3qJeY4Z2rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoCrGGBmvphl5CkP41lJh9ohJPV4wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzlhNmFjZTU0LWYyMzEtNGUyNS04YTM2LWM0NjFkNDlkZmE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgfwQwDQYJKoZIhvcNAQELBQADggEBAHvtZfejTUq0WzDDT5jd788KSZEs mYvBKRib7ciCNBt8Sb+V/7oxo11FZ4TW3m4pvg7p8pMkxhMeoZBHSDNYfVd0DDoU hnX+mW3fsVrnHzIgWhMuncAiRsYXo3PWxanOTlI4TYuFSkl299IuxhAIr9ne0k7e OW6GC8qyhm8g9PgG1TzmJARQ4j5JY0Jh2lZlfuAkhhqtDCfaz+wiXpRLTbK2Z1Ko w083G/3OYj03FdbdG1B8vQPCfuIFfxn75I2KeMvvVpiODvTPLMUZxgSaNU0GQisI TuRr7bVpLjpaTL0pgXpUTQgYlMmWcSrvLNslEPmyI2BIPV1CxyRdxAGlSpM= -----END CERTIFICATE-----Generated at Sat Apr 26 15:18:01 2025 by rpki-client