$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa File: e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa (raw, json) Hash identifier: diRAaWxEW4JtZXFB6BT4TKT78oliJZmxziII7HDV188= Subject key identifier: 5A:9A:00:0F:38:05:97:BB:94:6E:6A:14:50:38:54:9E:93:8A:BB:E0 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 05296B822F2ED6736DE61004025A51A592CAD578 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa Signing time: Mon 19 May 2025 18:50:03 +0000 ROA not before: Mon 19 May 2025 18:50:03 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:29:6b:82:2f:2e:d6:73:6d:e6:10:04:02:5a:51:a5:92:ca:d5:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: May 19 18:50:03 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=30170300ac56a2766c0a3077947dbc6762f023bf07aeda8497322eabd9b3dedb, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:99:48:c6:97:af:5c:02:de:88:60:ac:ff:8b: 35:26:aa:a4:55:14:b2:79:48:76:7d:52:75:f5:84: 4e:7b:c1:cc:35:53:e6:fa:21:5c:a8:9a:b4:89:0c: c0:22:1f:a1:8c:d3:ca:37:16:38:56:e1:35:39:4f: ab:fa:39:db:81:9f:9d:ac:25:3e:16:7f:3d:08:23: 21:8b:a7:95:90:2c:12:29:cc:15:a1:cb:23:4c:a2: 5d:ef:c3:c8:65:18:da:00:9e:5c:e7:ce:e4:cc:7c: 40:f4:2b:21:18:2d:4e:ed:92:31:72:92:d8:91:bd: 62:72:b2:a3:50:6e:40:f2:7c:c3:30:79:5e:16:a2: 64:f8:58:31:7c:92:de:a0:b9:de:74:41:3e:dc:e2: 3b:82:8c:57:a9:ad:f1:fa:8d:79:61:15:95:46:31: 29:1e:16:e2:b8:ab:92:7e:15:18:84:0b:43:62:c2: 78:f0:1c:e8:ac:27:27:c4:c8:08:3e:9b:d6:a9:bd: d2:43:a2:6c:38:6e:1d:4c:f9:b3:6c:1f:8b:c9:b9: 74:f6:96:18:95:71:19:97:d1:fa:95:39:5d:6d:4a: 4d:ce:18:23:b1:fb:06:db:a2:89:4c:56:65:15:51: 67:83:d7:7d:ec:63:7c:9c:04:2e:ac:68:07:27:7b: 54:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:9A:00:0F:38:05:97:BB:94:6E:6A:14:50:38:54:9E:93:8A:BB:E0 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.176.0/21 Signature Algorithm: sha256WithRSAEncryption 31:2c:e9:a8:f4:da:a0:61:82:1c:99:47:73:6c:82:c9:a1:5d: a9:ff:07:1c:9c:49:33:00:04:a0:d2:19:8d:36:83:61:a6:29: 4f:10:0e:73:c4:2e:c7:98:bb:77:a3:01:13:b6:69:11:ae:57: e7:49:9e:b7:82:87:77:98:d7:42:b2:39:bc:c8:45:70:94:f0: 43:4b:a4:ac:69:5c:6d:33:24:1b:a0:b6:ff:ad:62:e4:91:d8: b8:3d:41:18:54:80:5c:b6:b4:95:88:e8:7a:61:97:97:53:39: 3b:5c:81:59:3e:23:16:68:31:6d:ce:36:00:11:f6:a3:ce:c4: 21:d9:16:2c:10:7b:f7:62:ed:d5:3c:70:a4:fe:7f:cd:0c:6d: 67:1e:60:c8:b0:ea:e0:c3:84:ed:56:a3:dd:92:5b:e8:57:35: 5e:e2:cb:b0:38:47:f5:7b:35:2a:e1:2f:ea:97:20:ce:38:b4: 74:fc:73:dd:fc:8a:86:e3:0e:41:e8:65:e7:f2:3b:e7:bf:3d: 46:28:cc:c1:7b:1c:7d:c0:60:b3:89:dc:2f:06:1e:78:5c:fd: 3d:1f:78:8b:e6:61:a7:16:92:51:04:03:cb:39:40:e4:40:99: a0:5e:0f:d8:08:6d:7b:c2:b4:1f:38:f8:4c:04:83:ec:c5:d5: a7:c5:49:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBSlrgi8u1nNt5hAEAlpRpZLK1XgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNTE5MTg1MDAzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDE3MDMwMGFjNTZhMjc2NmMwYTMwNzc5NDdkYmM2NzYy ZjAyM2JmMDdhZWRhODQ5NzMyMmVhYmQ5YjNkZWRiMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkmUjGl69cAt6IYKz/izUmqqRVFLJ5SHZ9UnX1hE57wcw1 U+b6IVyomrSJDMAiH6GM08o3FjhW4TU5T6v6OduBn52sJT4Wfz0IIyGLp5WQLBIp zBWhyyNMol3vw8hlGNoAnlznzuTMfED0KyEYLU7tkjFyktiRvWJysqNQbkDyfMMw eV4WomT4WDF8kt6gud50QT7c4juCjFeprfH6jXlhFZVGMSkeFuK4q5J+FRiEC0Ni wnjwHOisJyfEyAg+m9apvdJDomw4bh1M+bNsH4vJuXT2lhiVcRmX0fqVOV1tSk3O GCOx+wbboolMVmUVUWeD133sY3ycBC6saAcne1QfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWpoADzgFl7uUbmoUUDhUnpOKu+AwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2UzYzg0NmIxLWZiMDAtNGNiNy04MjNkLTNhNThiZWRkNjY1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4qbAwDQYJKoZIhvcNAQELBQADggEBADEs6aj02qBhghyZR3NsgsmhXan/ BxycSTMABKDSGY02g2GmKU8QDnPELseYu3ejARO2aRGuV+dJnreCh3eY10KyObzI RXCU8ENLpKxpXG0zJBugtv+tYuSR2Lg9QRhUgFy2tJWI6Hphl5dTOTtcgVk+IxZo MW3ONgAR9qPOxCHZFiwQe/di7dU8cKT+f80MbWceYMiw6uDDhO1Wo92SW+hXNV7i y7A4R/V7NSrhL+qXIM44tHT8c938iobjDkHoZefyO+e/PUYozMF7HH3AYLOJ3C8G Hnhc/T0feIvmYacWklEEA8s5QORAmaBeD9gIbXvCtB84+EwEg+zF1afFSUc= -----END CERTIFICATE-----Generated at Mon Jun 2 16:29:17 2025 by rpki-client