$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa File: 9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa (raw, json) Hash identifier: uUayv43Kv2vdC323VVjWhfWSJh7mRqGCErLNSS4KX40= Subject key identifier: DF:D2:55:FD:6C:54:94:1E:1A:84:B2:76:35:7B:4C:F0:B2:14:3D:31 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 640C352DA99CEF9BC12015000B24769CF1A9FE31 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa Signing time: Mon 04 Aug 2025 17:40:17 +0000 ROA not before: Mon 04 Aug 2025 17:40:17 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:0c:35:2d:a9:9c:ef:9b:c1:20:15:00:0b:24:76:9c:f1:a9:fe:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Aug 4 17:40:17 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=31c363ecbec94899f52164a0c13ba993d6649276749017f3ce9f7cd9a87a4a9c, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b9:0d:73:a3:27:b8:00:77:f7:87:90:ab:82: 24:b1:b7:bf:0a:13:ef:af:64:ff:d9:44:f1:68:b3: 2b:2e:ed:b9:27:d5:fd:4b:17:62:40:02:25:fa:3b: a6:51:aa:5a:ba:fd:33:4a:86:31:59:64:ff:a7:4a: 20:2c:48:bc:a9:a4:07:89:ac:4c:d5:09:dc:e8:19: e1:b6:49:dc:fb:0e:dd:d5:4e:46:00:f6:52:13:01: 6a:ce:53:47:83:70:d8:b7:d6:6b:da:50:1f:d7:ec: 94:f3:90:3a:20:29:be:38:2f:ac:2a:f6:d7:2d:bb: bb:fb:36:cb:a1:93:62:5a:a1:5f:2e:b5:2f:de:2f: 30:2c:90:c8:91:55:b0:1d:63:f2:13:6d:83:c3:d5: 73:a3:3b:6c:17:65:ab:53:b6:2f:31:ba:5c:85:b4: 19:86:f5:92:9a:be:19:7b:05:76:2b:e0:fe:fd:d3: 26:1a:64:2e:50:85:13:82:eb:ec:bc:76:fd:fe:f5: 9c:e0:19:e2:9f:76:fd:96:5e:74:08:4a:ed:a5:28: 18:de:96:03:e1:ee:f2:ce:39:6d:44:7d:42:c4:6b: 4d:86:3f:c4:89:71:b4:4e:e5:e7:52:ef:21:62:c9: 55:fb:3a:55:9a:ae:20:d9:4a:1e:32:e0:5e:4d:94: 5e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D2:55:FD:6C:54:94:1E:1A:84:B2:76:35:7B:4C:F0:B2:14:3D:31 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.128.0/17 Signature Algorithm: sha256WithRSAEncryption 58:15:c8:f3:84:5c:02:9d:68:5b:4a:a8:02:5a:49:ab:e0:2d: ab:20:8d:b0:83:0a:fb:f6:c5:6a:f1:c5:c5:54:6a:eb:50:70: 99:a5:2c:d9:74:fa:ab:4a:5b:f9:cc:e8:7d:6a:8a:79:b8:0d: 07:b1:06:c2:07:bd:65:57:7c:8e:32:fc:47:b5:55:aa:ae:77: 59:25:4a:e4:46:73:2b:63:ce:2a:7d:e6:dc:cf:e8:0f:7d:c1: bb:15:e3:cc:2d:57:b0:0c:71:c4:be:ee:15:26:e4:a1:4c:62: 09:6d:82:71:ea:96:f6:05:a8:6b:ed:db:7a:b3:cb:5c:36:59: 8d:5a:a2:e2:64:68:f8:87:81:7e:70:b2:a2:a0:2a:54:3e:e8: 9b:ac:c3:60:3d:49:e4:4f:ae:87:ce:83:7c:e5:4d:e9:14:6f: b9:05:f4:4f:6e:22:1b:9d:55:64:46:6a:60:6e:9a:90:13:e8: 5f:e4:0f:92:07:5e:11:82:71:63:54:b6:38:ef:68:da:50:64: aa:51:c3:c4:16:82:cd:b4:5f:a8:98:4d:53:52:ce:6a:08:25: 3f:d7:0f:cf:d0:47:e7:d7:59:0d:ba:9e:ac:57:fd:16:5f:27: 21:d5:7f:b1:43:da:ba:f5:6f:49:8e:d6:18:a9:a7:56:f5:7e: fe:ed:4e:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZAw1Lamc75vBIBUACyR2nPGp/jEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwODA0MTc0MDE3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWMzNjNlY2JlYzk0ODk5ZjUyMTY0YTBjMTNiYTk5M2Q2 NjQ5Mjc2NzQ5MDE3ZjNjZTlmN2NkOWE4N2E0YTljMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6uQ1zoye4AHf3h5CrgiSxt78KE++vZP/ZRPFosysu7bkn 1f1LF2JAAiX6O6ZRqlq6/TNKhjFZZP+nSiAsSLyppAeJrEzVCdzoGeG2Sdz7Dt3V TkYA9lITAWrOU0eDcNi31mvaUB/X7JTzkDogKb44L6wq9tctu7v7Nsuhk2JaoV8u tS/eLzAskMiRVbAdY/ITbYPD1XOjO2wXZatTti8xulyFtBmG9ZKavhl7BXYr4P79 0yYaZC5QhROC6+y8dv3+9ZzgGeKfdv2WXnQISu2lKBjelgPh7vLOOW1EfULEa02G P8SJcbRO5edS7yFiyVX7OlWariDZSh4y4F5NlF7ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU39JV/WxUlB4ahLJ2NXtM8LIUPTEwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzlkY2EzODkwLWJlZTAtNGNkMC04ZmQ4LTBkZWU3MGIwYmEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAe4qYAwDQYJKoZIhvcNAQELBQADggEBAFgVyPOEXAKdaFtKqAJaSavgLasg jbCDCvv2xWrxxcVUautQcJmlLNl0+qtKW/nM6H1qinm4DQexBsIHvWVXfI4y/Ee1 Vaqud1klSuRGcytjzip95tzP6A99wbsV48wtV7AMccS+7hUm5KFMYgltgnHqlvYF qGvt23qzy1w2WY1aouJkaPiHgX5wsqKgKlQ+6Jusw2A9SeRProfOg3zlTekUb7kF 9E9uIhudVWRGamBumpAT6F/kD5IHXhGCcWNUtjjvaNpQZKpRw8QWgs20X6iYTVNS zmoIJT/XD8/QR+fXWQ26nqxX/RZfJyHVf7FD2rr1b0mO1hipp1b1fv7tTl0= -----END CERTIFICATE-----Generated at Mon Aug 4 21:42:26 2025 by rpki-client