$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/f9f78f45-3ed8-4086-ae0c-fe080ad19cb3.roa File: f9f78f45-3ed8-4086-ae0c-fe080ad19cb3.roa (raw, json) Hash identifier: 3t+yCFW8/89xxx20TBpEpo6boZdTXEEnxQF0HNc6SRc= Subject key identifier: AD:25:3B:14:F4:65:9E:12:BB:D5:08:7D:2F:EB:7C:E4:60:4F:B2:79 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 5E731E1A16E89F6423AE039F63F28465E92793D0 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/f9f78f45-3ed8-4086-ae0c-fe080ad19cb3.roa Signing time: Fri 13 Jun 2025 17:40:09 +0000 ROA not before: Fri 13 Jun 2025 17:40:09 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:73:1e:1a:16:e8:9f:64:23:ae:03:9f:63:f2:84:65:e9:27:93:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jun 13 17:40:09 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=63f10701158cc796fb2407a6642a6e394358a4be9410fbfdfcf5719344fd7e77, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:af:93:68:ea:d7:4a:4d:b0:81:39:2a:1d: 85:ce:e2:be:f4:4a:92:f2:d6:5b:cd:cb:c9:7c:6a: 65:73:17:fe:17:fb:32:72:c7:c3:e4:88:b3:07:4c: c0:e8:30:9c:0c:ee:df:52:b5:08:05:85:9d:9e:d0: 80:5e:58:0d:6a:20:8b:a3:ea:c6:48:c1:b0:e8:4f: 72:92:ec:c7:4b:8d:49:3c:74:79:00:2c:52:99:72: 52:1b:d2:6d:c8:cf:47:05:e7:5d:00:0a:5c:bd:a5: 65:c6:52:28:a0:41:08:9a:49:df:8b:86:77:82:8f: 55:f9:49:af:63:7f:f7:38:f0:14:c3:0b:73:8c:8a: 52:85:3e:6e:3c:7f:66:69:64:40:ad:5d:cf:e3:f2: 13:0f:4a:97:d0:8c:1c:2a:ac:7b:a8:22:a2:61:1b: f0:cf:93:08:6d:63:c1:c1:34:a8:3b:81:2a:dd:63: bc:ff:e9:ee:ab:be:93:8a:3b:56:4d:9f:07:27:1e: 5c:8d:87:d6:1a:63:09:fe:54:65:ad:2e:f7:91:3e: e7:60:6d:fe:76:f1:18:05:3b:2b:f9:0c:a3:80:1e: 08:05:8d:f5:85:f8:3a:33:67:c6:17:78:ba:c7:20: bd:64:44:44:b1:2c:93:d4:be:23:79:68:b6:47:ca: 80:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:25:3B:14:F4:65:9E:12:BB:D5:08:7D:2F:EB:7C:E4:60:4F:B2:79 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/f9f78f45-3ed8-4086-ae0c-fe080ad19cb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.184.0/21 Signature Algorithm: sha256WithRSAEncryption 45:18:40:c9:5b:8e:cd:b3:63:44:e9:59:c1:86:ad:a4:50:ee: 73:0f:f6:99:1c:d8:b6:a4:8b:ee:5d:b9:dc:d7:f4:c5:b0:b9: 97:b2:c9:57:5f:f4:3f:dd:6d:4b:52:a0:d9:70:4b:c4:44:5f: c3:9f:e6:d4:29:2c:f4:2c:1c:ef:04:7d:da:79:8c:a3:0f:52: 28:49:93:d2:04:1d:09:48:24:fc:a1:fd:56:98:27:f6:8a:b5: 20:81:2a:c6:9d:40:76:e6:57:1f:7c:02:6e:51:2f:93:da:07: 19:e8:20:c4:e4:1d:2b:60:2b:96:8d:c4:ac:74:ba:9e:fd:a2: 69:c6:09:47:d8:2f:72:b1:b6:3b:24:b8:f1:e9:9c:c8:0e:83: 56:88:33:90:a8:86:4d:1a:b2:71:73:82:06:f5:e9:79:ea:dd: 43:b1:d0:e1:ab:cb:eb:56:b5:9c:76:0f:7f:13:65:c2:ac:af: ee:e6:1e:70:7d:e4:b7:fb:74:7a:47:eb:59:7e:f5:8f:5d:b2: 8f:41:2e:a9:c1:55:b4:0d:f6:ba:f9:8d:8e:36:55:c8:4b:55: a7:0b:f9:ea:2b:4b:39:74:0f:42:d5:24:6f:be:ad:2c:8a:dc: ce:ac:ca:19:3f:ae:15:5c:b3:c4:f9:33:ee:93:5a:6d:2c:af: 36:0e:91:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXnMeGhbon2QjrgOfY/KEZeknk9AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNjEzMTc0MDA5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2YxMDcwMTE1OGNjNzk2ZmIyNDA3YTY2NDJhNmUzOTQz NThhNGJlOTQxMGZiZmRmY2Y1NzE5MzQ0ZmQ3ZTc3MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCw6+TaOrXSk2wgTkqHYXO4r70SpLy1lvNy8l8amVzF/4X +zJyx8PkiLMHTMDoMJwM7t9StQgFhZ2e0IBeWA1qIIuj6sZIwbDoT3KS7MdLjUk8 dHkALFKZclIb0m3Iz0cF510ACly9pWXGUiigQQiaSd+LhneCj1X5Sa9jf/c48BTD C3OMilKFPm48f2ZpZECtXc/j8hMPSpfQjBwqrHuoIqJhG/DPkwhtY8HBNKg7gSrd Y7z/6e6rvpOKO1ZNnwcnHlyNh9YaYwn+VGWtLveRPudgbf528RgFOyv5DKOAHggF jfWF+DozZ8YXeLrHIL1kRESxLJPUviN5aLZHyoBhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrSU7FPRlnhK71Qh9L+t85GBPsnkwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2Y5Zjc4ZjQ1LTNlZDgtNDA4Ni1hZTBjLWZlMDgwYWQxOWNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4qbgwDQYJKoZIhvcNAQELBQADggEBAEUYQMlbjs2zY0TpWcGGraRQ7nMP 9pkc2Laki+5dudzX9MWwuZeyyVdf9D/dbUtSoNlwS8REX8Of5tQpLPQsHO8Efdp5 jKMPUihJk9IEHQlIJPyh/VaYJ/aKtSCBKsadQHbmVx98Am5RL5PaBxnoIMTkHStg K5aNxKx0up79omnGCUfYL3KxtjskuPHpnMgOg1aIM5Cohk0asnFzggb16Xnq3UOx 0OGry+tWtZx2D38TZcKsr+7mHnB95Lf7dHpH61l+9Y9dso9BLqnBVbQN9rr5jY42 VchLVacL+eorSzl0D0LVJG++rSyK3M6syhk/rhVcs8T5M+6TWm0srzYOkeM= -----END CERTIFICATE-----Generated at Sat Jun 14 05:44:31 2025 by rpki-client