$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa File: 9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa (raw, json) Hash identifier: crWIcrv5h2ENO0IJitVKCuWBcVgAxkOFgATmKpyQYS4= Subject key identifier: 00:CF:D6:CC:50:3D:01:69:AA:11:7C:3C:B3:03:EF:B8:1A:34:C5:9C Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 14ACDD19E5B3C29FF29BB5BC5E3DF0711AB57B70 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa Signing time: Tue 22 Apr 2025 17:40:10 +0000 ROA not before: Tue 22 Apr 2025 17:40:10 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:ac:dd:19:e5:b3:c2:9f:f2:9b:b5:bc:5e:3d:f0:71:1a:b5:7b:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 22 17:40:10 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=c34934b9b9966e83be1f01868d58872f0921157c2e94700f615c0918954c9781, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5e:50:dd:df:98:c2:50:c3:50:6d:6e:1a:a1: a5:39:48:96:d5:cc:94:17:4f:74:f9:b5:04:d2:72: a6:cc:e6:13:ec:d6:9f:cd:90:89:17:b6:b0:d7:64: 4d:82:03:7b:04:1a:7e:71:84:23:f6:9d:d5:0e:2e: 44:fb:b6:3c:e1:97:47:89:26:b5:7a:6f:0a:7d:e0: d6:89:48:23:b7:75:47:a1:86:79:92:17:8d:7b:ef: 6d:9e:84:45:14:1d:4c:47:b0:de:70:74:b2:a2:98: 36:9a:01:d1:96:8f:5c:2e:77:7e:74:8e:4a:3c:d0: 8d:90:d0:bd:a4:1f:9c:67:8e:63:86:bd:e0:20:3f: a8:94:8b:d1:e4:ee:bd:20:19:34:77:56:d9:52:0c: 3d:62:3a:51:8d:c5:c7:4c:24:a6:97:ae:ad:bd:e8: c2:d6:75:ab:a6:4b:66:bc:6e:0c:62:f1:dd:de:d0: 7f:ef:3e:d6:17:cf:11:09:f9:5b:26:79:a5:84:1e: a6:3b:07:16:f7:d1:e8:d7:f2:11:64:93:26:41:80: 23:00:f5:22:dd:f5:a0:5a:e7:e5:e3:ff:e4:7c:bb: 95:06:7b:5e:29:9f:a2:28:67:6c:e3:d1:c7:81:79: 06:03:b3:5b:fd:e5:4c:fa:2a:9b:1d:e5:e3:98:6b: 21:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CF:D6:CC:50:3D:01:69:AA:11:7C:3C:B3:03:EF:B8:1A:34:C5:9C X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.128.0/17 Signature Algorithm: sha256WithRSAEncryption 05:bd:0d:e3:c0:92:aa:8b:a2:bd:7e:c1:4d:e9:a8:58:21:b6: 85:11:06:74:de:e2:98:2b:35:a8:e6:7d:fe:5e:0b:de:6e:f1: cd:54:f0:f9:87:fa:3f:dd:ea:f9:4b:d8:3c:45:ec:40:82:52: 05:68:d2:81:ec:76:22:97:02:bf:86:78:29:0d:e9:fb:29:b0: c0:6f:c4:94:b2:98:25:a0:d6:aa:b0:40:59:6b:a3:86:e3:53: f4:26:25:ae:7b:b9:74:5d:c8:6f:4a:ab:a6:b5:79:91:d9:15: 07:25:dd:df:fe:fe:c3:4a:1a:c1:38:1b:16:46:28:23:51:4f: e8:59:72:f8:14:bc:7b:e0:23:d4:b4:c2:a2:bc:9e:7c:bb:38: fe:5e:05:45:66:7d:cf:f3:b4:a5:70:93:9a:97:82:d4:46:79: c1:e4:83:2f:6e:73:e9:29:94:dd:15:4e:10:70:61:2e:1a:be: f6:28:c3:b3:03:a2:55:4b:c1:48:85:56:a7:66:d7:88:ac:91: 99:cd:1f:ef:f4:c3:f4:c4:f5:00:c1:0e:47:70:98:ca:ee:81: 24:8f:b0:e0:92:93:49:6f:dc:e0:df:b4:51:b1:e9:93:43:b9: a8:20:99:c0:70:39:8b:1f:c7:50:e2:70:d8:9e:f7:dc:fb:15: 29:9a:0e:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFKzdGeWzwp/ym7W8Xj3wcRq1e3AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNDIyMTc0MDEwWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzQ5MzRiOWI5OTY2ZTgzYmUxZjAxODY4ZDU4ODcyZjA5 MjExNTdjMmU5NDcwMGY2MTVjMDkxODk1NGM5NzgxMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHXlDd35jCUMNQbW4aoaU5SJbVzJQXT3T5tQTScqbM5hPs 1p/NkIkXtrDXZE2CA3sEGn5xhCP2ndUOLkT7tjzhl0eJJrV6bwp94NaJSCO3dUeh hnmSF417722ehEUUHUxHsN5wdLKimDaaAdGWj1wud350jko80I2Q0L2kH5xnjmOG veAgP6iUi9Hk7r0gGTR3VtlSDD1iOlGNxcdMJKaXrq296MLWdaumS2a8bgxi8d3e 0H/vPtYXzxEJ+VsmeaWEHqY7Bxb30ejX8hFkkyZBgCMA9SLd9aBa5+Xj/+R8u5UG e14pn6IoZ2zj0ceBeQYDs1v95Uz6Kpsd5eOYayGVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAM/WzFA9AWmqEXw8swPvuBo0xZwwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzlkY2EzODkwLWJlZTAtNGNkMC04ZmQ4LTBkZWU3MGIwYmEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAe4qYAwDQYJKoZIhvcNAQELBQADggEBAAW9DePAkqqLor1+wU3pqFghtoUR BnTe4pgrNajmff5eC95u8c1U8PmH+j/d6vlL2DxF7ECCUgVo0oHsdiKXAr+GeCkN 6fspsMBvxJSymCWg1qqwQFlro4bjU/QmJa57uXRdyG9Kq6a1eZHZFQcl3d/+/sNK GsE4GxZGKCNRT+hZcvgUvHvgI9S0wqK8nny7OP5eBUVmfc/ztKVwk5qXgtRGecHk gy9uc+kplN0VThBwYS4avvYow7MDolVLwUiFVqdm14iskZnNH+/0w/TE9QDBDkdw mMrugSSPsOCSk0lv3ODftFGx6ZNDuaggmcBwOYsfx1DicNie99z7FSmaDjA= -----END CERTIFICATE-----Generated at Sat Apr 26 12:50:14 2025 by rpki-client