$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa File: e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa (raw, json) Hash identifier: 7qhw+ACRPI8qvg8uGVrLLtM4HgXSL/nQL35sgwUL/Uo= Subject key identifier: 54:9F:46:01:EE:54:D7:AE:78:A1:4F:69:EE:06:B4:44:AF:35:15:02 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 525E5050B31940E8578B8A36A3592BDCBB3DE1BD Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa Signing time: Tue 22 Apr 2025 17:40:11 +0000 ROA not before: Tue 22 Apr 2025 17:40:11 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:5e:50:50:b3:19:40:e8:57:8b:8a:36:a3:59:2b:dc:bb:3d:e1:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 22 17:40:11 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=eb68cc6ca96bd7218152c3bc0d5661c78f241a109eea8feed9f7a75eae745052, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8d:a5:40:f3:d2:88:16:8c:7b:ae:c1:8f:00: e1:c2:a6:c4:2c:ca:3e:f6:7d:b7:61:bc:23:6e:37: 1a:53:32:87:e2:92:f0:9d:af:68:3b:8d:1c:7e:ed: bb:74:2e:41:50:d5:ae:37:35:5b:66:d5:2e:f4:b8: 18:f3:16:e2:a4:86:a2:65:4a:cd:3f:ed:ac:ce:e3: 29:27:47:ac:8c:21:d2:12:1f:97:c3:7e:da:2c:1e: 91:ed:0f:59:8d:81:6b:2f:d1:b8:02:58:72:b8:41: 23:36:a5:cc:42:c8:a3:2c:a9:82:54:ec:7b:51:07: c0:3c:42:34:5a:1d:f4:7f:4c:fc:e0:6c:5f:8b:1b: 56:e1:fc:fb:8b:01:4e:ea:13:f7:93:3e:26:e2:11: a4:04:ba:a3:75:4e:2e:08:0a:cb:50:7a:39:ed:84: d5:46:8d:c7:a6:18:b4:26:80:38:d1:e1:98:71:58: f0:3d:ca:3c:d0:da:7d:51:61:29:39:b0:48:76:8c: 13:3c:0f:f9:63:d2:bb:82:75:aa:a7:ef:0d:86:ec: ca:23:a1:1c:7c:44:d2:42:b9:7e:fa:e8:ed:e6:99: b4:3a:f1:45:fe:8c:ca:60:cd:99:ca:d3:0a:74:d8: d5:39:8f:d3:b6:8e:c4:82:7c:ef:97:3d:2f:96:b8: 26:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:9F:46:01:EE:54:D7:AE:78:A1:4F:69:EE:06:B4:44:AF:35:15:02 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.176.0/21 Signature Algorithm: sha256WithRSAEncryption 69:8a:0b:50:6b:c7:4c:27:30:c0:e0:e3:0b:09:10:4c:60:84: 2c:56:db:0c:9b:84:73:af:5d:4b:ea:51:18:93:d2:ed:83:b3: 4c:a8:6c:2b:3c:c0:ff:e5:49:2d:30:75:ba:63:90:1a:81:1d: 4c:12:7b:f8:16:74:5e:e8:78:a7:5b:c7:92:b1:00:1a:ee:ab: 08:d1:dd:aa:f8:bb:21:24:f8:bf:5a:f3:75:b2:36:0b:87:cf: 78:a0:06:a7:a5:24:8e:af:c2:b2:aa:3b:cd:fa:39:8f:ac:b8: 1d:66:23:d7:95:1b:0a:b4:26:22:7d:15:7a:ca:b8:d9:4a:9d: 2a:f8:7a:1c:a2:5a:81:47:64:6e:b3:3d:ed:39:c5:59:36:6c: cc:73:68:f1:18:2c:b4:cb:8b:77:df:9b:65:5c:20:d8:74:8e: 37:35:a0:18:c9:52:7b:5d:f9:7f:43:e9:46:db:61:78:b5:21: aa:fb:31:59:de:da:20:3b:74:df:b3:c4:99:72:69:1d:46:8d: d2:9e:71:b4:da:0e:3f:82:80:98:05:4b:34:60:8a:6e:89:5d: 70:7d:22:3c:b6:7f:1b:bb:5d:93:4a:90:6a:bb:c8:cb:ee:70: 22:a5:c3:d3:df:aa:37:d4:b1:21:24:1d:8c:b6:5d:3e:7d:d5: 64:72:e8:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUl5QULMZQOhXi4o2o1kr3Ls94b0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNDIyMTc0MDExWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjY4Y2M2Y2E5NmJkNzIxODE1MmMzYmMwZDU2NjFjNzhm MjQxYTEwOWVlYThmZWVkOWY3YTc1ZWFlNzQ1MDUyMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6jaVA89KIFox7rsGPAOHCpsQsyj72fbdhvCNuNxpTMofi kvCdr2g7jRx+7bt0LkFQ1a43NVtm1S70uBjzFuKkhqJlSs0/7azO4yknR6yMIdIS H5fDftosHpHtD1mNgWsv0bgCWHK4QSM2pcxCyKMsqYJU7HtRB8A8QjRaHfR/TPzg bF+LG1bh/PuLAU7qE/eTPibiEaQEuqN1Ti4ICstQejnthNVGjcemGLQmgDjR4Zhx WPA9yjzQ2n1RYSk5sEh2jBM8D/lj0ruCdaqn7w2G7MojoRx8RNJCuX766O3mmbQ6 8UX+jMpgzZnK0wp02NU5j9O2jsSCfO+XPS+WuCbHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVJ9GAe5U1654oU9p7ga0RK81FQIwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2UzYzg0NmIxLWZiMDAtNGNiNy04MjNkLTNhNThiZWRkNjY1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4qbAwDQYJKoZIhvcNAQELBQADggEBAGmKC1Brx0wnMMDg4wsJEExghCxW 2wybhHOvXUvqURiT0u2Ds0yobCs8wP/lSS0wdbpjkBqBHUwSe/gWdF7oeKdbx5Kx ABruqwjR3ar4uyEk+L9a83WyNguHz3igBqelJI6vwrKqO836OY+suB1mI9eVGwq0 JiJ9FXrKuNlKnSr4ehyiWoFHZG6zPe05xVk2bMxzaPEYLLTLi3ffm2VcINh0jjc1 oBjJUntd+X9D6UbbYXi1Iar7MVne2iA7dN+zxJlyaR1GjdKecbTaDj+CgJgFSzRg im6JXXB9Ijy2fxu7XZNKkGq7yMvucCKlw9PfqjfUsSEkHYy2XT591WRy6IQ= -----END CERTIFICATE-----Generated at Sat Apr 26 18:28:08 2025 by rpki-client