$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/27e99577-d3d4-4681-953c-071c09e6aecd.roa File: 27e99577-d3d4-4681-953c-071c09e6aecd.roa (raw, json) Hash identifier: N/YEw6dTglF/UKzHIhCxxMYqMxTiiQNSGB4V1XAUxXg= Subject key identifier: F5:DC:4B:38:A1:59:A6:A5:51:89:CD:2F:D0:4F:47:39:C0:BD:7F:E1 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 73A025750BC8FF3D992E22ED4EC389E11640BA8B Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/27e99577-d3d4-4681-953c-071c09e6aecd.roa Signing time: Tue 22 Apr 2025 17:40:14 +0000 ROA not before: Tue 22 Apr 2025 17:40:14 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:a0:25:75:0b:c8:ff:3d:99:2e:22:ed:4e:c3:89:e1:16:40:ba:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 22 17:40:14 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=4f24433ca9bdfb1f135223a936c40c953213597f91eece2b62c6ece34e21be9e, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:26:b6:0a:a0:cd:7e:a6:f1:4c:b9:54:23:d1: 4c:af:34:52:1c:68:c9:8f:42:6b:5c:c0:c7:ce:fc: cd:54:a5:0c:10:7a:b1:15:02:80:cd:e1:bb:97:64: f1:12:3a:57:cb:9f:d1:34:d8:aa:e1:79:45:6c:09: 87:58:cd:26:04:70:89:55:23:e7:7e:f7:68:93:51: 88:00:fc:33:e5:da:73:9b:9f:21:ce:9c:aa:a6:52: 57:d9:5f:69:db:80:ff:ff:db:23:26:23:4f:48:87: 7a:5d:c5:05:76:0c:30:b3:95:90:b0:8c:d3:2f:45: 32:2e:ec:02:66:96:0b:0c:49:71:f7:57:db:c8:7c: 59:41:65:ed:b5:33:55:3f:3e:18:c4:3b:af:d4:2e: a9:14:60:2c:4f:8d:cc:ff:09:ad:d1:9e:b3:ae:70: b9:56:da:30:eb:a8:39:1a:6d:8e:6f:a0:d6:fd:c3: 41:00:7e:20:04:47:60:5d:02:b5:09:0d:10:a3:3d: db:04:56:8b:8b:53:46:bb:6d:17:36:3d:fd:c9:ab: 37:ce:25:52:d0:a4:0d:70:c1:bf:ae:92:c6:e3:aa: 74:10:69:2e:4e:c0:8a:d4:a2:4a:ef:b8:ce:96:d2: 35:61:21:57:a2:d5:7c:ec:47:8c:cf:cd:66:ae:fe: e3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DC:4B:38:A1:59:A6:A5:51:89:CD:2F:D0:4F:47:39:C0:BD:7F:E1 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/27e99577-d3d4-4681-953c-071c09e6aecd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.128.0/19 Signature Algorithm: sha256WithRSAEncryption 1c:b0:4b:35:1d:5c:28:54:dd:43:06:e5:22:18:d1:a6:d8:91: c5:aa:27:2b:47:94:5e:60:01:12:f7:31:33:8e:99:64:07:5a: 2a:a7:5e:2e:8f:a6:5c:ee:d1:19:1b:05:c6:f2:b4:40:3d:34: 5b:7f:8e:dd:e8:cd:b2:32:02:17:4b:cb:c6:07:49:3a:c0:1c: ee:47:0f:a0:45:61:9b:83:bd:b1:35:97:e0:6d:c7:d2:63:44: 0c:74:ec:e6:f7:23:a2:4f:38:3e:e1:c2:19:91:8c:0c:71:eb: 82:dd:27:c9:21:f8:6c:a8:2a:fc:a1:2f:d5:75:3c:80:22:8b: dd:fd:39:e7:51:24:72:81:5d:50:3a:3b:d4:08:f0:c5:02:de: af:62:5a:55:a7:ce:fa:aa:29:56:f0:69:c2:23:ba:15:d6:84: 2f:54:36:03:32:24:ee:c9:48:2d:25:42:2b:a2:ca:51:6b:38: 92:29:9d:ba:4c:74:28:bc:f5:e3:c3:18:05:03:4b:17:e1:26: e9:f6:fd:65:34:d6:3f:6a:52:47:76:49:1e:f0:e6:12:56:bf: 3d:2b:3f:88:ee:97:ef:ae:cc:6a:82:88:c0:4d:49:c0:25:5f: d3:da:a4:42:08:7b:de:27:64:27:04:62:6b:79:34:83:07:8e: 5c:8e:f9:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc6AldQvI/z2ZLiLtTsOJ4RZAuoswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNDIyMTc0MDE0WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjI0NDMzY2E5YmRmYjFmMTM1MjIzYTkzNmM0MGM5NTMy MTM1OTdmOTFlZWNlMmI2MmM2ZWNlMzRlMjFiZTllMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqJrYKoM1+pvFMuVQj0UyvNFIcaMmPQmtcwMfO/M1UpQwQ erEVAoDN4buXZPESOlfLn9E02KrheUVsCYdYzSYEcIlVI+d+92iTUYgA/DPl2nOb nyHOnKqmUlfZX2nbgP//2yMmI09Ih3pdxQV2DDCzlZCwjNMvRTIu7AJmlgsMSXH3 V9vIfFlBZe21M1U/PhjEO6/ULqkUYCxPjcz/Ca3RnrOucLlW2jDrqDkabY5voNb9 w0EAfiAER2BdArUJDRCjPdsEVouLU0a7bRc2Pf3JqzfOJVLQpA1wwb+uksbjqnQQ aS5OwIrUokrvuM6W0jVhIVei1XzsR4zPzWau/uNvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9dxLOKFZpqVRic0v0E9HOcC9f+EwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzI3ZTk5NTc3LWQzZDQtNDY4MS05NTNjLTA3MWMwOWU2YWVjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAW4qYAwDQYJKoZIhvcNAQELBQADggEBABywSzUdXChU3UMG5SIY0abYkcWq JytHlF5gARL3MTOOmWQHWiqnXi6Pplzu0RkbBcbytEA9NFt/jt3ozbIyAhdLy8YH STrAHO5HD6BFYZuDvbE1l+Btx9JjRAx07Ob3I6JPOD7hwhmRjAxx64LdJ8kh+Gyo KvyhL9V1PIAii939OedRJHKBXVA6O9QI8MUC3q9iWlWnzvqqKVbwacIjuhXWhC9U NgMyJO7JSC0lQiuiylFrOJIpnbpMdCi89ePDGAUDSxfhJun2/WU01j9qUkd2SR7w 5hJWvz0rP4jul++uzGqCiMBNScAlX9PapEIIe94nZCcEYmt5NIMHjlyO+c8= -----END CERTIFICATE-----Generated at Sat Apr 26 12:47:13 2025 by rpki-client