$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa File: 77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa (raw, json) Hash identifier: OyUXTNxr2Irz58d6cxzCmUSFwYJcEXAuxq5l6y/QCBw= Subject key identifier: 97:AF:7C:B8:A3:2A:93:9D:F0:E4:4A:9F:1E:A9:44:BE:AA:40:D9:33 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 5520FFB30E58D9D523037EBDD181F8F6058F022B Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa Signing time: Tue 22 Apr 2025 17:40:12 +0000 ROA not before: Tue 22 Apr 2025 17:40:12 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:20:ff:b3:0e:58:d9:d5:23:03:7e:bd:d1:81:f8:f6:05:8f:02:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 22 17:40:12 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=3c2e4dea135bd994d7eea8b5a32f4c17453d30c39bd7025f8d02bac0536b94f7, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c3:37:f7:10:b4:99:34:2b:5a:79:64:82:ab: cf:4c:55:8b:3a:f8:a2:2f:76:a3:00:8d:86:a8:f5: 6b:e9:d4:4f:12:c0:44:dd:e1:c4:64:d5:62:81:1c: c0:ee:7d:b7:01:e8:e1:e3:dc:b3:a6:c5:df:00:00: 17:ed:a3:b6:d3:32:8f:a7:9b:80:b9:73:ac:1a:96: 04:60:66:03:63:31:12:25:8b:28:4d:12:c1:70:96: fc:fa:25:b6:42:44:94:55:30:4c:b6:a3:cd:1f:b5: 00:19:5c:d2:dc:f3:8a:01:56:d7:b5:f0:1e:21:be: 85:b6:b2:11:b6:dd:5a:89:51:21:1f:05:05:e2:5a: 3a:49:a4:ec:97:7e:77:6d:9a:c6:86:da:23:bd:fa: 8f:2b:bb:1d:3e:ab:8b:9f:42:01:06:94:db:7a:28: d3:b5:d0:b1:39:a3:3a:9b:a0:11:1c:94:6f:c9:af: 47:31:7d:7c:a6:1c:93:a5:cb:2f:13:41:91:4b:7b: 97:4c:b1:7d:a5:a4:11:89:a1:96:a3:57:4f:d3:37: d7:34:cf:f3:8b:54:65:16:bc:71:d2:bd:f0:e4:5e: 6b:e0:4b:5b:ce:02:15:c7:50:dc:d6:1e:26:54:14: f6:7f:47:e5:b6:a5:d5:ae:95:8a:5d:22:d3:3e:f5: 72:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:AF:7C:B8:A3:2A:93:9D:F0:E4:4A:9F:1E:A9:44:BE:AA:40:D9:33 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.160.0/20 Signature Algorithm: sha256WithRSAEncryption 17:a4:52:7a:0b:e1:b6:9b:05:26:e9:3e:41:6e:f3:c8:8d:8e: cc:3d:97:1a:42:a7:12:12:ce:ba:db:75:e6:77:a9:08:7f:3f: a6:6c:b0:ef:88:3d:6c:d0:00:84:26:04:89:ab:9a:39:2e:83: 49:df:03:3f:8a:15:b7:0d:26:eb:bf:ad:35:a7:96:97:e7:1d: 46:3a:b3:c0:95:5c:a8:94:30:dc:5f:97:f5:a9:b9:87:00:b4: 7d:2c:ba:08:1b:09:7f:c3:cd:d1:53:a6:95:52:da:7c:22:6e: 27:0b:ee:a0:28:9d:37:3d:6f:d2:c5:25:2c:e9:e0:96:95:02: ef:92:7a:8d:0c:c7:58:a5:cb:24:9e:ef:bd:23:d9:99:d9:be: c6:21:14:80:84:c4:b3:5b:f2:37:29:d7:6c:9d:2a:3a:87:76: 49:dd:c2:a2:9b:80:9a:fa:b7:3d:1c:27:2a:b4:75:21:ce:ae: ca:e2:59:79:a1:68:98:c6:84:77:03:a8:4d:97:15:4f:5c:12: 44:6b:e5:f1:bb:62:6b:45:95:ee:2c:5e:3d:4d:7d:0b:9d:74: fa:24:ab:00:26:95:66:2c:a6:75:9c:9f:c5:5a:d8:6c:4c:c3: 05:b3:68:8e:fe:82:4a:2d:b8:5f:9f:7b:53:6b:70:87:38:08: 63:4d:8e:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVSD/sw5Y2dUjA3690YH49gWPAiswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNDIyMTc0MDEyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzJlNGRlYTEzNWJkOTk0ZDdlZWE4YjVhMzJmNGMxNzQ1 M2QzMGMzOWJkNzAyNWY4ZDAyYmFjMDUzNmI5NGY3MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJwzf3ELSZNCtaeWSCq89MVYs6+KIvdqMAjYao9Wvp1E8S wETd4cRk1WKBHMDufbcB6OHj3LOmxd8AABfto7bTMo+nm4C5c6walgRgZgNjMRIl iyhNEsFwlvz6JbZCRJRVMEy2o80ftQAZXNLc84oBVte18B4hvoW2shG23VqJUSEf BQXiWjpJpOyXfndtmsaG2iO9+o8rux0+q4ufQgEGlNt6KNO10LE5ozqboBEclG/J r0cxfXymHJOlyy8TQZFLe5dMsX2lpBGJoZajV0/TN9c0z/OLVGUWvHHSvfDkXmvg S1vOAhXHUNzWHiZUFPZ/R+W2pdWulYpdItM+9XIPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUl698uKMqk53w5EqfHqlEvqpA2TMwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzc3NTg5YjFiLWZmOWEtNDJiMi1iZWM3LWExNjUzZjA4Y2I0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4qaAwDQYJKoZIhvcNAQELBQADggEBABekUnoL4babBSbpPkFu88iNjsw9 lxpCpxISzrrbdeZ3qQh/P6ZssO+IPWzQAIQmBImrmjkug0nfAz+KFbcNJuu/rTWn lpfnHUY6s8CVXKiUMNxfl/WpuYcAtH0suggbCX/DzdFTppVS2nwibicL7qAonTc9 b9LFJSzp4JaVAu+Seo0Mx1ilyySe770j2ZnZvsYhFICExLNb8jcp12ydKjqHdknd wqKbgJr6tz0cJyq0dSHOrsriWXmhaJjGhHcDqE2XFU9cEkRr5fG7YmtFle4sXj1N fQuddPokqwAmlWYspnWcn8Va2GxMwwWzaI7+gkotuF+fe1NrcIc4CGNNjvI= -----END CERTIFICATE-----Generated at Sat Apr 26 15:49:14 2025 by rpki-client