$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa File: 9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa (raw, json) Hash identifier: 6AM/+No/knwmMDwPsJOmpI5lC4u7bxifY0Itoz7mh2c= Subject key identifier: 6A:87:D6:1A:C7:5B:62:D1:9F:73:DA:A0:36:64:3A:73:5B:9C:0B:9E Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 40554CD468139ED3886895601DADC3F991D64441 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa Signing time: Fri 13 Jun 2025 17:40:10 +0000 ROA not before: Fri 13 Jun 2025 17:40:10 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:55:4c:d4:68:13:9e:d3:88:68:95:60:1d:ad:c3:f9:91:d6:44:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jun 13 17:40:10 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=3e88a89eb6cfd22bc4a5129bae399062c938253f251c7a31024ca1b54d71ea41, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d7:4b:3f:71:18:68:e5:e2:df:17:b4:76:cb: 39:32:4d:27:81:4d:eb:a1:97:9d:37:77:95:41:b0: 96:b4:f2:13:97:ae:10:8a:da:ad:ca:20:68:89:9c: 68:69:a4:27:bc:b7:88:8a:8e:f4:06:00:e5:1f:43: 06:db:3d:ae:62:6d:34:5c:ae:69:40:a6:f9:47:c9: fb:d0:27:6a:77:38:ab:44:6a:a0:f0:0f:af:4e:41: 2e:66:c4:ac:93:b7:b2:2e:6a:5c:28:99:5c:4a:73: 84:bc:96:41:68:cc:25:9e:a5:d7:ee:00:04:4e:ec: 58:76:e8:16:7a:d8:c7:68:de:a4:a7:c0:b0:3e:ba: 26:18:2d:05:fe:7b:ce:9c:d1:ea:bd:22:86:f5:2b: 39:a3:cd:e4:e3:73:f4:96:b0:a3:c2:f6:fc:ad:ca: 04:96:49:1a:ec:44:2b:83:5a:64:43:2b:15:7d:b3: 8c:73:f0:7d:66:2c:9b:e9:59:5f:c9:cc:87:34:22: 77:ca:bf:37:ec:8d:bc:6c:83:cb:69:d2:c2:02:5d: df:39:af:60:43:b2:44:48:6f:75:6b:31:e9:93:6b: aa:0f:e3:4d:45:45:6d:9c:d1:a0:bb:d8:a6:6c:8d: 22:0f:19:fc:6a:af:b5:20:97:6b:dc:d0:6c:e1:89: c7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:87:D6:1A:C7:5B:62:D1:9F:73:DA:A0:36:64:3A:73:5B:9C:0B:9E X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/9dca3890-bee0-4cd0-8fd8-0dee70b0ba33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.128.0/17 Signature Algorithm: sha256WithRSAEncryption 90:8d:47:02:69:25:d0:90:4b:18:65:a1:52:16:da:5b:78:c1: be:b9:a2:20:37:9a:af:fc:75:b9:26:31:43:3e:48:38:86:2a: 0e:f5:66:a2:6e:7a:78:58:ac:0a:3d:11:a6:7f:eb:98:a1:37: d2:8f:b9:b7:fd:df:ce:64:ab:d2:69:62:49:c9:0f:93:62:6d: f5:c9:ba:f8:dc:7d:3c:ee:11:fe:3d:6c:07:2b:a4:bf:dd:34: 2e:b3:b4:9f:9a:2c:96:f6:d8:63:62:8b:87:f7:31:8c:24:fc: 41:ba:c6:c3:34:57:26:1f:fa:3a:56:c8:58:26:37:73:36:cf: 8a:ac:76:58:8b:d9:81:c0:85:01:22:90:52:ec:be:28:a8:50: 28:b8:49:45:a9:a3:02:88:f0:2f:55:0e:d1:94:63:d2:08:94: d2:c9:19:03:f9:cf:33:7e:10:46:d3:11:95:35:3f:e9:22:89: 2e:33:a2:69:66:ed:92:31:5d:34:5d:b8:ce:a0:c1:c9:54:2d: bf:a1:03:04:59:4c:f3:89:ee:3d:c1:d9:7f:ef:d4:67:a4:29: 12:7b:f1:0d:86:6c:53:d3:48:d1:40:43:0d:46:00:8c:bf:9e: 3c:e7:15:73:4f:ef:43:d8:35:84:31:32:15:68:63:e8:53:5e: 5d:6b:5e:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQFVM1GgTntOIaJVgHa3D+ZHWREEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNjEzMTc0MDEwWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTg4YTg5ZWI2Y2ZkMjJiYzRhNTEyOWJhZTM5OTA2MmM5 MzgyNTNmMjUxYzdhMzEwMjRjYTFiNTRkNzFlYTQxMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC910s/cRho5eLfF7R2yzkyTSeBTeuhl503d5VBsJa08hOX rhCK2q3KIGiJnGhppCe8t4iKjvQGAOUfQwbbPa5ibTRcrmlApvlHyfvQJ2p3OKtE aqDwD69OQS5mxKyTt7IualwomVxKc4S8lkFozCWepdfuAARO7Fh26BZ62Mdo3qSn wLA+uiYYLQX+e86c0eq9Iob1KzmjzeTjc/SWsKPC9vytygSWSRrsRCuDWmRDKxV9 s4xz8H1mLJvpWV/JzIc0InfKvzfsjbxsg8tp0sICXd85r2BDskRIb3VrMemTa6oP 401FRW2c0aC72KZsjSIPGfxqr7Ugl2vc0GzhicfFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaofWGsdbYtGfc9qgNmQ6c1ucC54wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzlkY2EzODkwLWJlZTAtNGNkMC04ZmQ4LTBkZWU3MGIwYmEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAe4qYAwDQYJKoZIhvcNAQELBQADggEBAJCNRwJpJdCQSxhloVIW2lt4wb65 oiA3mq/8dbkmMUM+SDiGKg71ZqJuenhYrAo9EaZ/65ihN9KPubf9385kq9JpYknJ D5NibfXJuvjcfTzuEf49bAcrpL/dNC6ztJ+aLJb22GNii4f3MYwk/EG6xsM0VyYf +jpWyFgmN3M2z4qsdliL2YHAhQEikFLsviioUCi4SUWpowKI8C9VDtGUY9IIlNLJ GQP5zzN+EEbTEZU1P+kiiS4zomlm7ZIxXTRduM6gwclULb+hAwRZTPOJ7j3B2X/v 1GekKRJ78Q2GbFPTSNFAQw1GAIy/njznFXNP70PYNYQxMhVoY+hTXl1rXmA= -----END CERTIFICATE-----Generated at Sat Jun 14 05:56:56 2025 by rpki-client