$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa File: 77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa (raw, json) Hash identifier: Y2RGQ8WCf+Uttp2pyOe/v0mj6mDHl6R+OZH6K1WEkwc= Subject key identifier: 01:5A:58:00:80:10:51:18:32:34:BD:27:50:C9:D8:C6:0F:23:92:4F Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 2DCB1F4F2132D711B83869FA29A2CAC4F8379936 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa Signing time: Tue 08 Jul 2025 17:40:16 +0000 ROA not before: Tue 08 Jul 2025 17:40:16 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:cb:1f:4f:21:32:d7:11:b8:38:69:fa:29:a2:ca:c4:f8:37:99:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jul 8 17:40:16 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=f73487aa817ea5f46d88764250356527a7d61af6670c5da1cacb00fb7a90c21e, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c4:e4:36:35:ef:d6:b4:82:60:1a:a1:a6:b1: 02:1e:f0:57:a3:86:dd:1d:09:67:57:b1:40:88:c2: 38:c8:d1:03:2b:66:01:11:92:26:c0:4a:7c:a1:2c: 7b:b8:1c:a9:97:35:c0:02:72:69:fa:cb:d0:b2:76: 6d:ca:e1:60:81:7c:de:74:57:ef:73:e9:3f:06:35: 99:b9:7c:1a:5e:56:17:9c:05:a3:e6:18:c4:ee:ea: 51:e8:27:53:e8:98:7f:cb:aa:2c:cd:6f:70:18:26: 65:22:e7:b0:fa:eb:4f:e0:ab:50:62:2f:3e:5f:3a: d9:0d:87:d3:6a:27:43:ed:21:d6:ee:88:7f:59:76: dc:83:83:1b:d6:c2:71:43:79:6b:e1:f0:59:56:ac: be:ac:37:77:20:3d:f4:d2:5f:9e:38:97:1c:2c:86: 0e:f0:45:d9:39:9f:fe:86:34:46:ff:34:41:6d:c8: 27:f5:89:d5:71:06:19:e8:a0:e3:94:c8:ec:ba:0c: 62:f8:cf:d9:86:9e:fb:a6:9d:0e:70:d0:5d:16:34: 81:29:5f:a0:b4:d8:43:f8:44:7f:b9:77:5e:8e:85: 2a:aa:c2:7f:31:81:6b:d9:08:3c:8f:30:38:37:58: 87:2f:7f:d9:cc:a0:46:05:da:61:51:04:07:27:08: c9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5A:58:00:80:10:51:18:32:34:BD:27:50:C9:D8:C6:0F:23:92:4F X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.160.0/20 Signature Algorithm: sha256WithRSAEncryption 31:a6:d0:27:35:67:89:c1:14:07:a2:3c:b0:23:8f:13:50:3d: 38:89:2c:9c:7a:06:73:7c:a9:de:a5:4e:19:cc:19:d0:2f:5a: 5e:79:0c:8a:0a:4f:70:1e:e4:6c:69:4e:1d:8d:db:65:39:e7: 9b:f5:74:4e:63:96:21:83:a7:d5:70:ec:30:de:47:6d:a3:89: 11:cd:77:c9:25:fc:16:45:fa:73:3b:84:88:8f:54:3e:b5:06: 8f:5d:fa:43:8d:fb:05:b9:0e:02:01:73:52:9d:94:2b:0c:d7: 03:6c:c9:d6:5b:04:05:34:62:d4:cf:1a:53:94:05:71:bd:a6: 16:d6:24:79:82:68:bc:30:fe:ac:e9:eb:73:04:c2:91:49:94: 64:0a:fb:a8:1c:06:b1:5b:d7:ef:eb:ca:62:f8:38:56:42:30: 3c:33:5f:ca:d4:0d:a2:5a:35:be:2a:5e:6d:ef:b5:41:b0:86: 02:f7:b4:20:4a:e5:ab:8a:2f:ac:7e:67:cf:e7:eb:10:3f:5b: 29:43:c1:73:d1:a8:14:04:d8:3f:80:c4:2a:40:36:66:31:b7: 94:eb:64:51:46:c0:91:fc:95:ec:67:8b:26:40:2a:d8:88:1c: 0b:31:9f:ec:c5:b0:36:54:b2:82:5b:60:47:fc:bb:08:34:cc: ff:2a:47:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULcsfTyEy1xG4OGn6KaLKxPg3mTYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNzA4MTc0MDE2WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzM0ODdhYTgxN2VhNWY0NmQ4ODc2NDI1MDM1NjUyN2E3 ZDYxYWY2NjcwYzVkYTFjYWNiMDBmYjdhOTBjMjFlMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDExOQ2Ne/WtIJgGqGmsQIe8Fejht0dCWdXsUCIwjjI0QMr ZgERkibASnyhLHu4HKmXNcACcmn6y9Cydm3K4WCBfN50V+9z6T8GNZm5fBpeVhec BaPmGMTu6lHoJ1PomH/LqizNb3AYJmUi57D660/gq1BiLz5fOtkNh9NqJ0PtIdbu iH9ZdtyDgxvWwnFDeWvh8FlWrL6sN3cgPfTSX544lxwshg7wRdk5n/6GNEb/NEFt yCf1idVxBhnooOOUyOy6DGL4z9mGnvumnQ5w0F0WNIEpX6C02EP4RH+5d16OhSqq wn8xgWvZCDyPMDg3WIcvf9nMoEYF2mFRBAcnCMmnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAVpYAIAQURgyNL0nUMnYxg8jkk8wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzc3NTg5YjFiLWZmOWEtNDJiMi1iZWM3LWExNjUzZjA4Y2I0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4qaAwDQYJKoZIhvcNAQELBQADggEBADGm0Cc1Z4nBFAeiPLAjjxNQPTiJ LJx6BnN8qd6lThnMGdAvWl55DIoKT3Ae5GxpTh2N22U555v1dE5jliGDp9Vw7DDe R22jiRHNd8kl/BZF+nM7hIiPVD61Bo9d+kON+wW5DgIBc1KdlCsM1wNsydZbBAU0 YtTPGlOUBXG9phbWJHmCaLww/qzp63MEwpFJlGQK+6gcBrFb1+/rymL4OFZCMDwz X8rUDaJaNb4qXm3vtUGwhgL3tCBK5auKL6x+Z8/n6xA/WylDwXPRqBQE2D+AxCpA NmYxt5TrZFFGwJH8lexniyZAKtiIHAsxn+zFsDZUsoJbYEf8uwg0zP8qR28= -----END CERTIFICATE-----Generated at Mon Jul 21 23:16:32 2025 by rpki-client