$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/eac518ed-0e11-4fe5-9a9e-53a05de60f7e.roa File: eac518ed-0e11-4fe5-9a9e-53a05de60f7e.roa (raw, json) Hash identifier: +I7XwmRA5SbABQrVU08YF30fP9jzP6z4k+AsBniwsWw= Subject key identifier: 6B:22:DA:30:9C:87:3B:C5:D3:42:EF:86:23:FA:5F:55:12:72:29:AF Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 4902A43B7A7E7EB573BC929A7AF4E8FF9691E3FB Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/eac518ed-0e11-4fe5-9a9e-53a05de60f7e.roa Signing time: Fri 25 Apr 2025 15:10:14 +0000 ROA not before: Fri 25 Apr 2025 15:10:14 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:02:a4:3b:7a:7e:7e:b5:73:bc:92:9a:7a:f4:e8:ff:96:91:e3:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Apr 25 15:10:14 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=6840f9418d783c6e40b4a656906cabbd43933ff32ae0fe2772110d6258b4fc84, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:2b:6a:c7:dd:1c:33:0e:41:2c:50:ce:6e: 87:db:a3:50:08:47:87:98:ae:be:3f:9b:6d:6b:2d: c8:c6:5c:44:b8:ce:de:2b:69:8f:5e:27:6b:2c:eb: 91:00:bf:fa:21:71:e3:07:64:a0:93:b4:7e:85:53: 92:64:1b:74:33:8d:93:7c:c9:75:f7:f1:5c:ac:e2: 7a:ca:39:49:60:eb:6a:b8:b1:f3:b9:d1:d9:4b:d9: d1:d5:86:39:76:c4:4f:b6:35:bd:a5:e7:41:9e:9a: 91:98:16:76:20:5d:20:96:ba:f3:1f:55:be:6d:55: 25:9e:a4:af:08:cb:4b:26:ae:1d:02:0c:ab:47:d8: 2a:c3:35:24:76:84:87:e6:34:37:44:92:d3:4d:23: 1e:7e:78:f4:65:03:c3:c3:b1:15:9f:5c:95:31:8e: 2f:67:9f:84:3d:92:e2:41:b3:e1:fd:d5:07:8d:d2: d5:2e:1c:87:a5:cd:03:eb:ef:ee:4c:8e:e1:26:20: de:ac:5c:6e:6e:ec:ed:e9:0c:99:23:b9:87:03:72: ca:8d:be:18:73:b9:f9:6d:5f:0d:22:09:be:2f:6d: d4:f1:16:c3:7e:4d:2d:66:bf:68:4d:78:0e:15:57: 14:b4:55:12:4e:71:f3:75:66:ed:39:5a:68:9d:90: e1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:22:DA:30:9C:87:3B:C5:D3:42:EF:86:23:FA:5F:55:12:72:29:AF X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/eac518ed-0e11-4fe5-9a9e-53a05de60f7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/21 Signature Algorithm: sha256WithRSAEncryption 5e:b0:dc:59:b5:09:2c:8b:65:96:11:27:db:67:2d:00:13:29: 78:d6:5a:10:0a:51:e3:aa:96:15:2d:73:3d:14:be:ab:f7:c5: 36:62:43:da:5c:0a:f9:96:4a:ea:a6:3b:db:b4:48:6d:79:2d: 2c:41:a7:e8:54:88:3c:e6:ba:60:59:3f:50:f1:0f:ca:25:31: f0:42:6f:f4:82:6e:c0:0d:6b:ef:2b:b1:ed:e7:46:45:35:9d: aa:84:bc:80:1f:ff:d3:d7:b3:39:fe:ea:f2:59:3c:2d:a8:1a: 8a:ab:d2:ea:2e:b4:b5:43:dd:10:b6:99:52:eb:91:67:e3:0b: 48:0e:b4:09:5e:83:2e:99:e3:9e:2d:b0:61:2d:71:06:56:71: 97:4e:2f:07:7f:7f:55:c5:6d:35:3f:d3:3d:32:b9:b6:d1:f2: fc:08:3f:34:26:9a:3e:9f:1b:a7:74:b7:b9:42:74:5a:a7:30: ae:bd:27:17:d7:36:ca:d2:57:05:10:b3:7c:34:4d:80:7f:1d: 27:4d:89:3f:22:56:5b:af:08:dd:90:30:6b:37:05:c1:b7:30: 8f:bb:ec:9d:95:61:64:59:04:75:f6:ec:f2:fb:c3:09:26:a4: b1:06:c9:19:93:ff:e2:97:68:d9:1d:28:39:c8:7b:82:c3:39: 0e:db:2f:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSQKkO3p+frVzvJKaevTo/5aR4/swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNDI1MTUxMDE0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODQwZjk0MThkNzgzYzZlNDBiNGE2NTY5MDZjYWJiZDQz OTMzZmYzMmFlMGZlMjc3MjExMGQ2MjU4YjRmYzg0MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxeCtqx90cMw5BLFDObofbo1AIR4eYrr4/m21rLcjGXES4 zt4raY9eJ2ss65EAv/ohceMHZKCTtH6FU5JkG3QzjZN8yXX38Vys4nrKOUlg62q4 sfO50dlL2dHVhjl2xE+2Nb2l50GempGYFnYgXSCWuvMfVb5tVSWepK8Iy0smrh0C DKtH2CrDNSR2hIfmNDdEktNNIx5+ePRlA8PDsRWfXJUxji9nn4Q9kuJBs+H91QeN 0tUuHIelzQPr7+5MjuEmIN6sXG5u7O3pDJkjuYcDcsqNvhhzufltXw0iCb4vbdTx FsN+TS1mv2hNeA4VVxS0VRJOcfN1Zu05WmidkOGLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUayLaMJyHO8XTQu+GI/pfVRJyKa8wHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2VhYzUxOGVkLTBlMTEtNGZlNS05YTllLTUzYTA1ZGU2MGY3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwAwDQYJKoZIhvcNAQELBQADggEBAF6w3Fm1CSyLZZYRJ9tnLQATKXjW WhAKUeOqlhUtcz0Uvqv3xTZiQ9pcCvmWSuqmO9u0SG15LSxBp+hUiDzmumBZP1Dx D8olMfBCb/SCbsANa+8rse3nRkU1naqEvIAf/9PXszn+6vJZPC2oGoqr0uoutLVD 3RC2mVLrkWfjC0gOtAlegy6Z454tsGEtcQZWcZdOLwd/f1XFbTU/0z0yubbR8vwI PzQmmj6fG6d0t7lCdFqnMK69JxfXNsrSVwUQs3w0TYB/HSdNiT8iVluvCN2QMGs3 BcG3MI+77J2VYWRZBHX27PL7wwkmpLEGyRmT/+KXaNkdKDnIe4LDOQ7bL00= -----END CERTIFICATE-----Generated at Sat Apr 26 15:15:31 2025 by rpki-client