$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/27e99577-d3d4-4681-953c-071c09e6aecd.roa File: 27e99577-d3d4-4681-953c-071c09e6aecd.roa (raw, json) Hash identifier: trVx8d07cEBje9K/CSiSGFJWpnnVatwtCc8d6f312oE= Subject key identifier: 5D:0F:23:28:13:33:2F:B2:D6:06:10:10:F2:5E:39:C0:36:5C:C4:ED Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 757B978806FBBEDCE2D1B0F0B877F83F4C027DC5 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/27e99577-d3d4-4681-953c-071c09e6aecd.roa Signing time: Fri 13 Jun 2025 17:40:13 +0000 ROA not before: Fri 13 Jun 2025 17:40:13 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:7b:97:88:06:fb:be:dc:e2:d1:b0:f0:b8:77:f8:3f:4c:02:7d:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jun 13 17:40:13 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=4d46317fdb79ab4394d7555be00b2587a794b34a40b3dec6d543b6264ff8e6cf, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:20:e7:10:a7:b7:a6:04:b8:3b:3a:5a:fa:e7: f1:10:fb:d8:a4:7c:76:1c:c6:e9:41:24:c4:6d:ae: a3:bb:64:a8:10:47:52:a2:04:d1:94:3d:d9:bf:62: 46:aa:da:ca:ae:a7:28:1e:44:73:db:0d:67:f4:6b: df:34:22:3b:ae:f2:53:71:62:92:7d:58:d7:2a:0c: 0e:cb:00:da:8f:b5:03:a4:e9:4d:96:1f:41:a4:b7: d2:7f:76:a4:a7:c2:84:80:95:f0:f1:13:e8:ac:6e: 3d:10:99:ee:28:ac:7a:f0:ca:00:5a:34:70:14:f0: f6:91:f4:56:47:6d:0a:dd:94:89:b0:1c:a8:da:db: 8d:ad:68:04:72:10:e5:e4:b0:74:df:c5:bf:11:52: 6b:4d:2c:ef:15:05:ef:8c:0d:82:1f:f5:fd:b4:a9: 6e:e8:64:0c:a3:cd:7b:d4:a5:74:0e:90:40:a8:df: 31:6b:c0:fd:6d:63:cf:5f:fc:d4:81:aa:ed:1a:12: 23:13:db:b1:d3:56:f6:9d:e4:02:3a:81:ea:a8:8c: 50:7c:cf:86:1e:f1:6c:aa:e6:9d:8f:d1:72:01:b2: ce:5e:51:84:13:70:41:0c:02:a3:4a:c1:2b:60:98: 48:44:15:87:e4:16:9e:c1:5d:52:b4:ad:04:4a:af: 29:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0F:23:28:13:33:2F:B2:D6:06:10:10:F2:5E:39:C0:36:5C:C4:ED X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/27e99577-d3d4-4681-953c-071c09e6aecd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.128.0/19 Signature Algorithm: sha256WithRSAEncryption 73:ae:a2:8d:e8:92:cb:13:13:f3:8a:76:76:0c:10:76:9b:ff: d8:2d:bd:84:be:8a:7c:c0:72:d7:ec:7a:50:a5:63:51:c2:7f: e3:14:1b:60:36:cd:8e:c0:58:7d:cf:3b:a3:d5:de:84:74:87: a5:19:9f:3a:23:52:f5:65:08:bb:66:7d:c4:4e:32:5b:66:ab: 9c:54:16:d9:80:63:56:b4:91:ed:8d:84:61:16:c4:2d:92:dc: 45:32:4f:da:d2:44:aa:bb:ca:65:6b:03:3a:43:19:c1:49:59: 31:36:5f:88:fc:5c:eb:dc:ab:31:b1:94:ce:cb:96:97:56:39: 27:b6:94:bd:a1:89:ac:48:73:ae:78:16:12:2d:be:58:17:1f: 2b:b4:c2:9c:4b:67:61:c8:9b:04:71:d0:62:67:53:54:e4:63: 31:e6:05:96:3e:fe:a9:fc:a3:a7:be:58:db:53:39:9d:dc:26: 08:66:b5:c1:fd:36:8c:66:86:ae:8f:eb:4f:28:08:f0:76:0e: 8e:05:a0:35:b8:cf:43:96:c3:5e:2b:d6:e9:a8:4a:61:77:1d: bf:67:14:9c:f7:60:9a:cc:4e:31:44:72:89:12:a0:96:63:09: c7:4e:1b:81:b7:c8:d8:33:72:e0:55:b0:22:aa:7a:fd:aa:95: c6:c2:6a:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdXuXiAb7vtzi0bDwuHf4P0wCfcUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNjEzMTc0MDEzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDQ2MzE3ZmRiNzlhYjQzOTRkNzU1NWJlMDBiMjU4N2E3 OTRiMzRhNDBiM2RlYzZkNTQzYjYyNjRmZjhlNmNmMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbIOcQp7emBLg7Olr65/EQ+9ikfHYcxulBJMRtrqO7ZKgQ R1KiBNGUPdm/Ykaq2squpygeRHPbDWf0a980Ijuu8lNxYpJ9WNcqDA7LANqPtQOk 6U2WH0Gkt9J/dqSnwoSAlfDxE+isbj0Qme4orHrwygBaNHAU8PaR9FZHbQrdlImw HKja242taARyEOXksHTfxb8RUmtNLO8VBe+MDYIf9f20qW7oZAyjzXvUpXQOkECo 3zFrwP1tY89f/NSBqu0aEiMT27HTVvad5AI6geqojFB8z4Ye8Wyq5p2P0XIBss5e UYQTcEEMAqNKwStgmEhEFYfkFp7BXVK0rQRKrylNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXQ8jKBMzL7LWBhAQ8l45wDZcxO0wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzI3ZTk5NTc3LWQzZDQtNDY4MS05NTNjLTA3MWMwOWU2YWVjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAW4qYAwDQYJKoZIhvcNAQELBQADggEBAHOuoo3okssTE/OKdnYMEHab/9gt vYS+inzActfselClY1HCf+MUG2A2zY7AWH3PO6PV3oR0h6UZnzojUvVlCLtmfcRO Mltmq5xUFtmAY1a0ke2NhGEWxC2S3EUyT9rSRKq7ymVrAzpDGcFJWTE2X4j8XOvc qzGxlM7LlpdWOSe2lL2hiaxIc654FhItvlgXHyu0wpxLZ2HImwRx0GJnU1TkYzHm BZY+/qn8o6e+WNtTOZ3cJghmtcH9Noxmhq6P608oCPB2Do4FoDW4z0OWw14r1umo SmF3Hb9nFJz3YJrMTjFEcokSoJZjCcdOG4G3yNgzcuBVsCKqev2qlcbCanI= -----END CERTIFICATE-----Generated at Sat Jun 14 05:44:27 2025 by rpki-client