$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa File: ef9566d5-9096-4d00-ac93-f3df448013d9.roa (raw, json) Hash identifier: i88BjuNO0Fz3bY1H8HtooVO6QdvNEXwVMpbF45d8tIQ= Subject key identifier: 61:98:B8:26:43:CA:AA:5F:C8:DE:09:CC:4C:1D:E0:D3:15:91:56:D1 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 0933EFB5BA2F1EE1F63576E54721E6BC4A080965 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa Signing time: Fri 11 Jul 2025 15:10:02 +0000 ROA not before: Fri 11 Jul 2025 15:10:02 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:33:ef:b5:ba:2f:1e:e1:f6:35:76:e5:47:21:e6:bc:4a:08:09:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jul 11 15:10:02 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=fde104a008ab288eef46cd8cd2d4fc9dc862866764405839e985fb00b2d0122b, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7f:e7:fd:1a:76:5c:b9:86:73:83:46:ad:d8: 0d:12:9d:92:56:b7:fe:0b:b1:56:81:8e:43:28:76: ff:58:d8:98:7f:c5:9c:0c:77:e4:20:38:49:fd:05: 35:4d:b4:56:35:b7:8b:bf:76:9c:eb:5d:35:6b:7a: da:24:10:33:d4:31:38:aa:11:d7:30:5c:c2:4c:18: d2:ce:89:07:1b:92:21:60:a0:8d:c4:ec:f7:9b:5e: e4:bb:38:5f:01:fb:94:4a:f7:b0:85:b9:75:97:9f: d7:fe:17:f1:6b:e6:8b:3a:70:d0:9b:71:28:cc:df: 3e:1b:13:6c:de:74:49:d6:3c:e3:3d:f9:f7:07:2b: 83:16:04:4b:a9:88:98:b3:0e:e4:35:92:b9:35:d2: cd:b6:73:1c:7c:5e:f0:bc:6c:f9:19:80:d8:d4:98: 7c:90:fe:c7:d2:b3:19:90:84:9c:6d:d2:ae:4e:52: a9:3f:5d:e8:5e:35:80:06:ee:37:01:89:cf:83:51: 02:5c:bb:88:10:d8:2c:9b:4d:7e:6d:06:7e:a8:26: 82:44:85:63:71:54:e1:e7:5e:ed:4f:8b:ad:cb:ee: 5d:e8:e2:c7:ff:cd:eb:17:b6:fb:19:dd:b7:50:05: 60:41:c0:a9:47:76:71:d1:93:aa:0a:15:7c:8f:91: de:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:98:B8:26:43:CA:AA:5F:C8:DE:09:CC:4C:1D:E0:D3:15:91:56:D1 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3002::/48 Signature Algorithm: sha256WithRSAEncryption 19:9c:bb:bc:06:cd:c2:17:92:23:97:86:a9:d3:5e:ab:6d:ed: b5:24:cc:d2:ce:69:ba:24:12:59:80:57:d9:e1:6e:1c:86:fd: 05:4f:b8:96:49:2d:e9:2d:dd:6c:e6:7d:da:b5:44:93:77:0c: 8a:a3:39:76:39:90:dc:29:8d:2b:c4:e2:19:4f:32:27:41:fa: 4a:e8:c1:b2:68:02:07:c3:8d:e3:3c:04:6b:0d:8b:1e:05:21: eb:1b:a5:d1:2d:6c:6b:a1:90:d2:44:65:82:e8:a8:ec:15:44: 1c:21:67:5a:d9:ef:2d:9f:1f:7f:c8:fb:b6:8b:5f:7d:d3:dc: 96:06:23:b5:5a:77:f3:5a:87:b5:cc:7c:f9:81:35:b0:24:95: 0b:34:ac:d3:23:8b:7f:50:24:6c:09:07:fe:0a:e8:45:6a:45: 20:50:ae:a0:f3:78:ee:58:47:1d:36:6a:1a:0d:93:28:a8:3e: a8:ad:81:47:22:dc:28:f5:c8:bd:d5:76:f4:c0:3f:fc:4e:b2: da:ae:54:59:f6:66:ec:3d:15:82:1c:f4:aa:8a:a9:6f:f7:b9: bb:05:f3:8d:0a:b5:19:11:9a:c4:f9:4a:d9:74:ba:7d:4c:e2: 0c:38:d9:6f:ba:10:7a:42:34:14:7e:9e:c9:5a:da:02:d9:f3: 11:11:1d:ba -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCTPvtbovHuH2NXblRyHmvEoICWUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNzExMTUxMDAyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZGUxMDRhMDA4YWIyODhlZWY0NmNkOGNkMmQ0ZmM5ZGM4 NjI4NjY3NjQ0MDU4MzllOTg1ZmIwMGIyZDAxMjJiMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsf+f9GnZcuYZzg0at2A0SnZJWt/4LsVaBjkModv9Y2Jh/ xZwMd+QgOEn9BTVNtFY1t4u/dpzrXTVretokEDPUMTiqEdcwXMJMGNLOiQcbkiFg oI3E7PebXuS7OF8B+5RK97CFuXWXn9f+F/Fr5os6cNCbcSjM3z4bE2zedEnWPOM9 +fcHK4MWBEupiJizDuQ1krk10s22cxx8XvC8bPkZgNjUmHyQ/sfSsxmQhJxt0q5O Uqk/XeheNYAG7jcBic+DUQJcu4gQ2CybTX5tBn6oJoJEhWNxVOHnXu1Pi63L7l3o 4sf/zesXtvsZ3bdQBWBBwKlHdnHRk6oKFXyPkd7pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYZi4JkPKql/I3gnMTB3g0xWRVtEwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2VmOTU2NmQ1LTkwOTYtNGQwMC1hYzkzLWYzZGY0NDgwMTNkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAIwDQYJKoZIhvcNAQELBQADggEBABmcu7wGzcIXkiOXhqnTXqtt 7bUkzNLOabokElmAV9nhbhyG/QVPuJZJLekt3Wzmfdq1RJN3DIqjOXY5kNwpjSvE 4hlPMidB+krowbJoAgfDjeM8BGsNix4FIesbpdEtbGuhkNJEZYLoqOwVRBwhZ1rZ 7y2fH3/I+7aLX33T3JYGI7Vad/Nah7XMfPmBNbAklQs0rNMji39QJGwJB/4K6EVq RSBQrqDzeO5YRx02ahoNkyioPqitgUci3Cj1yL3VdvTAP/xOstquVFn2Zuw9FYIc 9KqKqW/3ubsF840KtRkRmsT5Stl0un1M4gw42W+6EHpCNBR+nsla2gLZ8xERHbo= -----END CERTIFICATE-----Generated at Mon Jul 21 23:21:26 2025 by rpki-client