$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/f9f78f45-3ed8-4086-ae0c-fe080ad19cb3.roa File: f9f78f45-3ed8-4086-ae0c-fe080ad19cb3.roa (raw, json) Hash identifier: 5PoxkO6HN8MruhfiqdaDPSbuwekGWEVWh0sKXJ+hHbE= Subject key identifier: 3D:DC:44:EA:F3:12:46:E7:FB:9C:0B:BB:38:B8:1A:E4:15:3E:38:66 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 7D5445FEFAE26950F8C747053D758B9787044CA5 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/f9f78f45-3ed8-4086-ae0c-fe080ad19cb3.roa Signing time: Tue 22 Apr 2025 17:40:09 +0000 ROA not before: Tue 22 Apr 2025 17:40:09 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:54:45:fe:fa:e2:69:50:f8:c7:47:05:3d:75:8b:97:87:04:4c:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Apr 22 17:40:09 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=3fc1ffe665062e3116222c1ce915b265173c68254c6d37f1d9c00f7b9971832f, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c0:d4:5c:f1:dc:fe:39:7e:4d:78:a9:c4:4a: 35:0f:22:88:72:a5:10:ec:47:ac:bc:59:e8:2d:c7: f2:19:38:02:2b:50:89:12:99:db:73:e9:48:19:46: df:74:3f:09:a2:14:cc:3a:a2:1c:df:21:d8:c6:b7: 53:ef:1c:ce:0b:87:a1:de:7d:07:6e:e5:ec:95:c3: 68:89:8c:f8:e7:31:56:f6:cf:c5:9d:65:71:1b:06: 0d:a3:de:90:dd:45:62:c1:0c:ab:e4:c3:7b:32:1a: 09:8c:88:9e:78:62:2d:9a:89:c1:ec:e5:33:7f:ee: b9:8c:a9:51:36:06:7e:11:f6:af:84:04:59:af:6c: 60:45:7d:0a:87:b8:82:90:27:e1:46:41:e7:38:8a: e2:dc:ef:11:5f:81:54:4b:84:22:33:6d:ee:27:2b: 52:62:3d:e9:94:dd:de:12:ed:08:a9:0c:98:d8:d7: 5e:3d:67:ff:a0:67:4e:ab:c3:83:e3:a5:c2:a9:8c: 5d:a1:d7:c7:29:66:68:19:dd:ca:a2:49:9c:42:6b: 30:06:da:7a:6f:79:8a:da:7a:4c:f9:49:34:13:7c: 78:db:38:c4:fb:dd:66:c0:05:24:fa:b7:a8:b9:c4: 2d:c2:2a:86:2e:05:38:f5:37:f1:7d:76:78:fa:00: 22:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:DC:44:EA:F3:12:46:E7:FB:9C:0B:BB:38:B8:1A:E4:15:3E:38:66 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/f9f78f45-3ed8-4086-ae0c-fe080ad19cb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.184.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:55:f4:66:4e:fc:6c:66:c0:a0:56:e8:3f:83:6f:a3:4d:b6: ba:4f:8a:d8:3d:a3:73:26:53:66:5d:59:ca:c1:37:b5:ea:bc: 73:19:d3:30:73:f5:72:18:45:26:ea:14:f6:69:0a:cb:d5:d5: c8:d3:46:05:3b:5e:e4:39:6d:b4:d0:21:ae:36:43:53:7c:93: 86:36:3d:ab:d1:56:c5:a2:8b:64:88:39:7d:ec:e6:86:d1:66: 2d:25:a2:aa:47:6b:40:f7:4d:f1:1f:9c:13:b3:86:c4:73:28: db:93:b4:7e:0e:b5:71:34:2e:db:83:5f:30:0f:75:03:fb:a5: fa:3f:9e:9f:a8:27:91:02:cd:74:53:2d:59:17:89:48:55:6d: 69:1f:b1:13:4e:2e:89:1c:e2:de:f4:79:76:09:17:73:9e:2b: 97:68:64:d5:c3:a2:fb:e0:b5:ca:09:24:8b:a4:9b:5b:58:b5: d9:a7:c9:d4:97:2d:a6:e5:23:46:91:6e:5f:a6:e7:7e:f3:8e: e3:bd:2f:68:6f:e1:86:a0:b6:38:86:35:5b:8b:f7:60:2b:1e: 66:40:a2:08:7a:54:a4:cf:44:0a:4f:03:49:09:cb:38:68:0b: a6:ed:ba:b8:42:68:08:35:56:a5:de:a5:82:69:90:d2:9d:00: 6d:50:bc:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfVRF/vriaVD4x0cFPXWLl4cETKUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNDIyMTc0MDA5WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmMxZmZlNjY1MDYyZTMxMTYyMjJjMWNlOTE1YjI2NTE3 M2M2ODI1NGM2ZDM3ZjFkOWMwMGY3Yjk5NzE4MzJmMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQwNRc8dz+OX5NeKnESjUPIohypRDsR6y8Wegtx/IZOAIr UIkSmdtz6UgZRt90PwmiFMw6ohzfIdjGt1PvHM4Lh6HefQdu5eyVw2iJjPjnMVb2 z8WdZXEbBg2j3pDdRWLBDKvkw3syGgmMiJ54Yi2aicHs5TN/7rmMqVE2Bn4R9q+E BFmvbGBFfQqHuIKQJ+FGQec4iuLc7xFfgVRLhCIzbe4nK1JiPemU3d4S7QipDJjY 1149Z/+gZ06rw4PjpcKpjF2h18cpZmgZ3cqiSZxCazAG2npveYraekz5STQTfHjb OMT73WbABST6t6i5xC3CKoYuBTj1N/F9dnj6ACJ/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPdxE6vMSRuf7nAu7OLga5BU+OGYwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2Y5Zjc4ZjQ1LTNlZDgtNDA4Ni1hZTBjLWZlMDgwYWQxOWNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4qbgwDQYJKoZIhvcNAQELBQADggEBADxV9GZO/GxmwKBW6D+Db6NNtrpP itg9o3MmU2ZdWcrBN7XqvHMZ0zBz9XIYRSbqFPZpCsvV1cjTRgU7XuQ5bbTQIa42 Q1N8k4Y2PavRVsWii2SIOX3s5obRZi0loqpHa0D3TfEfnBOzhsRzKNuTtH4OtXE0 LtuDXzAPdQP7pfo/np+oJ5ECzXRTLVkXiUhVbWkfsRNOLokc4t70eXYJF3OeK5do ZNXDovvgtcoJJIukm1tYtdmnydSXLablI0aRbl+m537zjuO9L2hv4YagtjiGNVuL 92ArHmZAogh6VKTPRApPA0kJyzhoC6bturhCaAg1VqXepYJpkNKdAG1QvLk= -----END CERTIFICATE-----Generated at Sat Apr 26 12:47:18 2025 by rpki-client