$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/c13ef5fa-467a-4ccd-b4f6-ae4cf71ee957.roa File: c13ef5fa-467a-4ccd-b4f6-ae4cf71ee957.roa (raw, json) Hash identifier: DVPplCwZJ3+KfeX/nCj+cEZ4spZ295BvTQ+zytT7xKI= Subject key identifier: F5:E7:22:A8:6A:6C:C6:B5:78:09:B5:A1:51:24:37:2F:F1:92:93:A3 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 36FF9ECF1D97A8C9A067163A4642CA92D852FEC5 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/c13ef5fa-467a-4ccd-b4f6-ae4cf71ee957.roa Signing time: Tue 22 Apr 2025 17:40:15 +0000 ROA not before: Tue 22 Apr 2025 17:40:15 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ff:9e:cf:1d:97:a8:c9:a0:67:16:3a:46:42:ca:92:d8:52:fe:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 22 17:40:15 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=77b74d1614bd0ae39477e7c5c9c64c949d7724675d55dbf3f0ca6b8a9b04a9cf, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b0:5a:99:46:a4:4c:a6:b5:c1:d7:ee:82:d4: b3:37:f8:b7:57:33:ad:8e:3c:04:e3:59:e6:e7:f4: 85:a8:34:68:60:b0:b1:32:82:8c:cb:3e:1c:20:0e: 45:26:fa:ed:b5:89:86:89:79:25:b5:4b:a8:07:34: 71:84:9c:b0:c1:2d:44:7a:cf:58:60:b8:22:f8:a7: ab:58:3d:58:43:6d:57:89:af:27:87:0c:00:2c:ec: 39:af:67:46:2c:93:b8:c6:46:4f:7c:23:93:fc:c4: d0:4c:b5:5d:6e:8c:6d:d6:86:72:06:d0:4b:59:32: 6e:78:1d:b8:ce:2c:49:26:30:d6:a1:b3:9c:b7:81: 07:9a:b6:98:42:0d:30:93:2e:43:d2:50:a3:f8:62: f5:10:e1:d1:5a:a9:a4:b3:7e:91:cb:a3:b2:df:ea: a0:c3:f1:d7:56:5c:19:2f:65:5e:ac:68:f4:c4:ae: 06:a3:4f:53:6f:3d:64:1a:ee:10:c8:14:5d:1d:e0: 88:23:26:ee:dd:ab:01:b6:cf:8f:5a:35:38:2e:cc: eb:27:ee:ae:ed:6d:e3:da:f4:69:27:3a:ab:c6:1b: 7a:60:fc:62:f4:77:78:4d:31:52:65:f6:59:e5:0c: 53:b5:6a:4c:e0:b5:5f:de:87:3d:27:58:38:8b:bb: 10:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E7:22:A8:6A:6C:C6:B5:78:09:B5:A1:51:24:37:2F:F1:92:93:A3 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/c13ef5fa-467a-4ccd-b4f6-ae4cf71ee957.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.192.0/18 Signature Algorithm: sha256WithRSAEncryption 37:db:ca:17:f8:f1:c6:88:2f:94:a1:b0:ed:8d:de:fa:d0:b8: bb:50:83:1b:73:59:e8:a0:1f:39:2e:e1:88:84:93:e2:d4:7d: 12:a3:8a:3b:1c:30:a6:be:46:35:f3:45:bd:a9:bd:f3:05:6a: 5d:df:00:68:28:49:08:1e:3d:f2:3e:7c:58:ad:b6:5e:dc:68: 3a:61:a7:33:47:dd:7a:63:f2:99:24:91:8d:fd:01:01:10:1b: 3e:e2:d3:28:a1:8a:d2:e4:2c:5e:51:75:4d:00:32:b5:32:f4: 7b:11:22:e7:e3:61:1e:86:1a:b1:77:f7:3e:d0:9b:78:98:10: 69:32:df:dc:66:8f:1a:42:24:b3:72:72:76:94:e4:10:15:da: d3:6c:52:02:c7:62:be:df:c6:75:4f:35:af:16:c2:27:4f:95: ea:f5:80:8c:d4:9f:fe:c5:c3:99:5f:19:c1:52:86:6d:ad:b9: a1:6b:f3:f0:0b:07:09:33:3e:dd:b0:9c:18:ac:bd:a4:cb:22: c9:70:46:d7:a7:03:b1:c4:76:e0:92:dd:da:bd:19:35:b0:1d: 3d:09:c1:16:0d:23:ad:36:72:1c:4b:9c:20:35:35:88:1a:90: 56:79:e7:e4:ad:46:7e:37:23:ec:f5:8c:c2:67:f1:71:5c:c2: 54:4c:9a:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNv+ezx2XqMmgZxY6RkLKkthS/sUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNDIyMTc0MDE1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2I3NGQxNjE0YmQwYWUzOTQ3N2U3YzVjOWM2NGM5NDlk NzcyNDY3NWQ1NWRiZjNmMGNhNmI4YTliMDRhOWNmMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+sFqZRqRMprXB1+6C1LM3+LdXM62OPATjWebn9IWoNGhg sLEygozLPhwgDkUm+u21iYaJeSW1S6gHNHGEnLDBLUR6z1hguCL4p6tYPVhDbVeJ ryeHDAAs7DmvZ0Ysk7jGRk98I5P8xNBMtV1ujG3WhnIG0EtZMm54HbjOLEkmMNah s5y3gQeatphCDTCTLkPSUKP4YvUQ4dFaqaSzfpHLo7Lf6qDD8ddWXBkvZV6saPTE rgajT1NvPWQa7hDIFF0d4IgjJu7dqwG2z49aNTguzOsn7q7tbePa9GknOqvGG3pg /GL0d3hNMVJl9lnlDFO1akzgtV/ehz0nWDiLuxBdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9eciqGpsxrV4CbWhUSQ3L/GSk6MwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2MxM2VmNWZhLTQ2N2EtNGNjZC1iNGY2LWFlNGNmNzFlZTk1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4qcAwDQYJKoZIhvcNAQELBQADggEBADfbyhf48caIL5ShsO2N3vrQuLtQ gxtzWeigHzku4YiEk+LUfRKjijscMKa+RjXzRb2pvfMFal3fAGgoSQgePfI+fFit tl7caDphpzNH3Xpj8pkkkY39AQEQGz7i0yihitLkLF5RdU0AMrUy9HsRIufjYR6G GrF39z7Qm3iYEGky39xmjxpCJLNycnaU5BAV2tNsUgLHYr7fxnVPNa8WwidPler1 gIzUn/7Fw5lfGcFShm2tuaFr8/ALBwkzPt2wnBisvaTLIslwRtenA7HEduCS3dq9 GTWwHT0JwRYNI602chxLnCA1NYgakFZ55+StRn43I+z1jMJn8XFcwlRMmug= -----END CERTIFICATE-----Generated at Sat Apr 26 15:49:19 2025 by rpki-client