$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa File: 77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa (raw, json) Hash identifier: kUlv6wxrMOsGL5yFIMvCVNR7bL2HiKDf38vwg8T9Mew= Subject key identifier: 1A:81:EE:92:32:F5:6B:A0:A1:F0:AD:3E:E7:81:97:D1:1B:A9:0B:26 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 3AFC22C6D8C9A5FCD3E07BFA7CAA9F603CB4379B Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa Signing time: Fri 13 Jun 2025 17:40:13 +0000 ROA not before: Fri 13 Jun 2025 17:40:13 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fc:22:c6:d8:c9:a5:fc:d3:e0:7b:fa:7c:aa:9f:60:3c:b4:37:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jun 13 17:40:13 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=29e60e5820e1af2832917940b031f67211fbcbf8ec7fcb62981f87891e0d8455, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ff:30:86:4e:77:33:b9:b1:ad:d6:1f:d6:05: 3e:4a:9c:f9:2e:d7:3e:78:74:e4:c6:e2:5c:34:2b: 49:a9:38:c5:e9:a8:72:4a:0e:d4:1f:c3:81:7c:98: 45:37:97:44:5d:a1:a3:2e:0e:93:dc:7b:e1:27:4b: 0e:41:b0:e2:6b:7c:8c:b0:00:33:ba:2a:6f:0b:23: e6:64:f7:d3:b7:73:7b:47:b8:95:36:41:46:1e:97: 20:a3:27:04:8d:1c:d3:b7:21:de:89:00:05:4c:53: 8e:35:5b:fa:a9:80:1c:db:4c:3e:df:4b:c8:ea:d2: 5a:21:06:56:c0:83:4e:b7:1f:05:98:be:a3:1c:58: a4:70:2c:b3:8a:61:01:87:39:10:21:1c:43:d8:81: 22:62:aa:80:42:e5:1e:c0:bc:b3:4e:b9:f8:93:85: 7b:40:91:85:37:04:92:b7:6f:e6:42:81:03:be:3f: 66:9d:28:88:76:05:c0:30:15:2a:cd:ac:79:ef:cb: 25:ec:c3:21:13:89:fc:21:a8:c6:32:e8:3c:4b:72: a7:9f:d2:7f:12:82:c2:0f:0a:23:9b:31:b7:83:1d: 0d:42:52:13:ca:6a:1a:0e:85:26:89:b7:a8:b8:43: 40:26:3a:07:88:4b:51:2a:7f:71:5a:42:ca:b2:6c: 6e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:81:EE:92:32:F5:6B:A0:A1:F0:AD:3E:E7:81:97:D1:1B:A9:0B:26 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.160.0/20 Signature Algorithm: sha256WithRSAEncryption 65:77:f6:0d:90:a4:f1:fb:97:91:d9:0b:5c:47:5e:ea:91:e8: 43:78:c5:0c:9a:9f:a1:41:39:a6:f7:5a:c5:e3:64:55:f6:58: 09:8b:87:06:45:df:cf:fe:22:a6:20:c7:e9:24:e5:95:ab:f0: 1e:05:82:70:9d:22:bb:9a:a8:5f:61:ae:e3:c0:ae:9c:33:85: 17:a1:52:4f:c6:80:3e:50:4b:20:21:de:1e:6c:35:a6:78:19: 94:fd:5d:b8:eb:ef:8f:38:a6:02:c0:02:86:ff:8d:e2:a1:99: 2c:78:82:c0:ca:d8:a9:a4:70:c1:8a:b9:ec:21:05:3a:60:21: af:d8:3f:c2:84:3a:3d:07:86:49:4f:6d:2a:bf:53:d2:b3:8e: 64:11:b8:07:a7:f1:14:47:30:9a:31:e4:25:02:15:49:52:6c: 07:21:6a:f0:aa:15:1f:79:a9:fc:c7:d1:5f:a4:24:aa:de:c5: 27:8d:d3:d2:ce:34:49:a4:a4:65:e7:09:43:83:93:4b:72:83: b3:6e:de:5a:99:15:33:6e:4f:2c:38:7a:6b:f2:72:aa:49:bd: 5c:29:d1:6c:43:fb:d9:45:2c:a6:98:d0:ad:e3:76:cf:fd:8d: 6f:0a:f2:01:50:10:82:5d:0b:25:a5:61:7d:ea:8b:d5:25:99: 27:5b:b2:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOvwixtjJpfzT4Hv6fKqfYDy0N5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNjEzMTc0MDEzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWU2MGU1ODIwZTFhZjI4MzI5MTc5NDBiMDMxZjY3MjEx ZmJjYmY4ZWM3ZmNiNjI5ODFmODc4OTFlMGQ4NDU1MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDg/zCGTnczubGt1h/WBT5KnPku1z54dOTG4lw0K0mpOMXp qHJKDtQfw4F8mEU3l0RdoaMuDpPce+EnSw5BsOJrfIywADO6Km8LI+Zk99O3c3tH uJU2QUYelyCjJwSNHNO3Id6JAAVMU441W/qpgBzbTD7fS8jq0lohBlbAg063HwWY vqMcWKRwLLOKYQGHORAhHEPYgSJiqoBC5R7AvLNOufiThXtAkYU3BJK3b+ZCgQO+ P2adKIh2BcAwFSrNrHnvyyXswyETifwhqMYy6DxLcqef0n8SgsIPCiObMbeDHQ1C UhPKahoOhSaJt6i4Q0AmOgeIS1Eqf3FaQsqybG6LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGoHukjL1a6Ch8K0+54GX0RupCyYwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzc3NTg5YjFiLWZmOWEtNDJiMi1iZWM3LWExNjUzZjA4Y2I0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4qaAwDQYJKoZIhvcNAQELBQADggEBAGV39g2QpPH7l5HZC1xHXuqR6EN4 xQyan6FBOab3WsXjZFX2WAmLhwZF38/+IqYgx+kk5ZWr8B4FgnCdIruaqF9hruPA rpwzhRehUk/GgD5QSyAh3h5sNaZ4GZT9Xbjr7484pgLAAob/jeKhmSx4gsDK2Kmk cMGKuewhBTpgIa/YP8KEOj0HhklPbSq/U9KzjmQRuAen8RRHMJox5CUCFUlSbAch avCqFR95qfzH0V+kJKrexSeN09LONEmkpGXnCUODk0tyg7Nu3lqZFTNuTyw4emvy cqpJvVwp0WxD+9lFLKaY0K3jds/9jW8K8gFQEIJdCyWlYX3qi9UlmSdbsu0= -----END CERTIFICATE-----Generated at Sat Jun 14 05:43:15 2025 by rpki-client