$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa File: ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa (raw, json) Hash identifier: AtFU0+xhZ7RbQXOMDoolZ06upFdgWWQSKNANBxs3WQw= Subject key identifier: 6F:EB:4D:ED:B6:D3:49:2A:27:5F:9E:12:62:98:8A:65:F5:21:49:88 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 5E4F17FC1534189663C2D64ABFBA20F087F32D38 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa Signing time: Fri 25 Apr 2025 15:20:30 +0000 ROA not before: Fri 25 Apr 2025 15:20:30 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:4f:17:fc:15:34:18:96:63:c2:d6:4a:bf:ba:20:f0:87:f3:2d:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Apr 25 15:20:30 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=b49459a7b26dcb7143a29ca66b2da95bc992d8cdd90c41a774090cb53028d842, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c0:f6:10:c2:0d:e2:37:8f:f7:72:e4:56:f9: f9:b4:db:11:c8:11:56:54:7f:ca:a8:65:cb:f5:3c: 20:a7:49:a9:25:28:54:6f:3b:70:fe:19:c3:a7:72: 4d:7e:6d:bd:bf:bc:c8:b2:96:4c:c4:b0:a8:eb:7f: 0c:2d:26:6f:07:1d:9e:90:c0:6f:bb:c8:78:3d:fe: 73:e7:f2:19:c0:52:27:4e:64:8b:64:54:43:58:d2: da:36:c3:4b:52:1f:16:fe:c6:69:73:b2:af:11:42: 65:91:f7:2c:3d:ea:77:76:e8:b2:c7:79:69:f0:82: 28:a9:10:3f:4b:b1:03:98:3a:20:c5:6d:b8:c1:9c: 6e:e2:fb:7c:fa:c7:67:d3:51:13:b2:ab:5b:09:46: 60:a9:a9:4c:3f:a5:6f:7b:14:92:e7:a6:45:2d:f1: 16:33:e9:eb:19:ed:2d:a4:57:ae:7d:95:37:07:40: 22:be:ea:6d:e8:d0:0c:e5:06:fd:fa:66:3a:b7:07: b5:eb:3a:5e:ab:1c:a6:a9:c6:4c:6a:53:a5:74:0d: 15:ad:60:ab:14:f1:fe:88:9e:73:77:9f:48:f5:c9: 29:c3:4b:ac:db:a8:b2:41:c5:94:c5:33:e9:6a:bd: 44:87:0e:a6:1c:f3:e1:76:9a:3c:16:61:18:29:7f: 8d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:EB:4D:ED:B6:D3:49:2A:27:5F:9E:12:62:98:8A:65:F5:21:49:88 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/ccaa88c7-054b-4ce1-92e8-62dd941718e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.64.0/18 Signature Algorithm: sha256WithRSAEncryption 5b:3a:6e:53:a4:a5:25:dd:68:0c:6b:5f:23:b4:28:9a:75:97: 0d:43:f5:9f:40:91:25:25:34:bb:d0:d6:df:d4:92:18:20:b4: e5:d4:fd:29:40:7f:c9:f6:41:09:d7:b4:0a:6f:c7:da:ea:55: b9:54:ad:a9:c4:d9:06:53:a5:2d:52:d5:6d:47:e0:10:60:08: 25:86:3e:6d:6a:bf:57:a4:99:2e:8a:16:d8:7c:00:8f:f6:4d: cd:30:ef:ba:2b:99:bb:1e:89:cc:d1:91:db:0c:8a:85:19:1f: c2:a7:65:ab:19:b7:86:15:9a:ac:4a:7e:0b:8f:e8:26:a0:9e: 7d:61:49:4a:eb:5e:7d:9d:39:a1:a5:cc:38:7c:3f:cf:0c:5d: cc:38:8a:8d:31:2f:93:df:a1:f4:1a:8a:5b:57:44:e6:5b:ed: fb:1a:48:e4:6d:e2:70:8f:a2:ec:07:bd:b8:46:c7:a7:4e:83: 7f:e0:f5:6e:7b:cb:f4:42:82:af:5c:76:b9:1d:b9:06:03:1a: 16:9e:66:17:bc:8a:a9:af:92:5b:f9:9b:d4:ea:d5:0a:31:ab: 03:94:3b:db:da:aa:33:5c:ec:9a:1a:c7:36:f6:47:ed:54:42: 15:08:c0:f5:fb:37:6f:e0:4e:68:6f:74:55:35:35:90:c8:37: d1:e3:25:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXk8X/BU0GJZjwtZKv7og8IfzLTgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNDI1MTUyMDMwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDk0NTlhN2IyNmRjYjcxNDNhMjljYTY2YjJkYTk1YmM5 OTJkOGNkZDkwYzQxYTc3NDA5MGNiNTMwMjhkODQyMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrwPYQwg3iN4/3cuRW+fm02xHIEVZUf8qoZcv1PCCnSakl KFRvO3D+GcOnck1+bb2/vMiylkzEsKjrfwwtJm8HHZ6QwG+7yHg9/nPn8hnAUidO ZItkVENY0to2w0tSHxb+xmlzsq8RQmWR9yw96nd26LLHeWnwgiipED9LsQOYOiDF bbjBnG7i+3z6x2fTUROyq1sJRmCpqUw/pW97FJLnpkUt8RYz6esZ7S2kV659lTcH QCK+6m3o0AzlBv36Zjq3B7XrOl6rHKapxkxqU6V0DRWtYKsU8f6InnN3n0j1ySnD S6zbqLJBxZTFM+lqvUSHDqYc8+F2mjwWYRgpf43jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb+tN7bbTSSonX54SYpiKZfUhSYgwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2NjYWE4OGM3LTA1NGItNGNlMS05MmU4LTYyZGQ5NDE3MThlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZgf0AwDQYJKoZIhvcNAQELBQADggEBAFs6blOkpSXdaAxrXyO0KJp1lw1D 9Z9AkSUlNLvQ1t/UkhggtOXU/SlAf8n2QQnXtApvx9rqVblUranE2QZTpS1S1W1H 4BBgCCWGPm1qv1ekmS6KFth8AI/2Tc0w77ormbseiczRkdsMioUZH8KnZasZt4YV mqxKfguP6Cagnn1hSUrrXn2dOaGlzDh8P88MXcw4io0xL5PfofQailtXROZb7fsa SORt4nCPouwHvbhGx6dOg3/g9W57y/RCgq9cdrkduQYDGhaeZhe8iqmvklv5m9Tq 1QoxqwOUO9vaqjNc7Joaxzb2R+1UQhUIwPX7N2/gTmhvdFU1NZDIN9HjJaU= -----END CERTIFICATE-----Generated at Sat Apr 26 19:53:20 2025 by rpki-client