$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json) Hash identifier: 75/AG5WUmZdmYxECJjRPza8BHEZQbcHidLga9Nk7Oxc= Subject key identifier: BD:31:79:82:9F:DD:F2:4B:C3:BE:87:E1:AC:AC:86:35:12:02:CB:FE Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Certificate serial: 587E21B9C4F8C91CD701A91D2AC1707DBD39E6D6 Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa Signing time: Tue 03 Jun 2025 00:00:04 +0000 ROA not before: Tue 03 Jun 2025 00:00:04 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 54113 IP address blocks: 2606:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:7e:21:b9:c4:f8:c9:1c:d7:01:a9:1d:2a:c1:70:7d:bd:39:e6:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Validity Not Before: Jun 3 00:00:04 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=dae93d1c89154c42cad6349244af7ce6e9091675afecaf5efee4472a4926aec3, CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:94:7b:5b:cb:a9:c2:dc:c3:fb:3c:c2:e2:c0: 29:e1:03:55:e0:10:10:a7:08:83:3d:0d:76:ea:2c: cb:b8:89:45:85:2e:94:1c:91:66:f8:6a:cb:f6:d2: 5b:ce:0d:16:21:7d:10:bd:2a:22:88:19:21:ea:93: 84:aa:67:df:6c:78:4d:85:27:13:90:6c:61:22:ec: 6a:96:0c:ab:de:43:d3:72:f7:c7:52:3d:0e:3c:94: 10:af:9a:c2:fe:62:20:7e:1c:c2:b9:a7:c4:f0:3f: ee:ae:e4:d7:5c:f4:ad:5d:7c:4f:da:0e:62:31:b2: e9:7c:8a:a0:2e:a2:c7:f4:a6:93:69:e5:e0:e9:84: c1:fc:4f:6b:23:21:78:b8:83:b4:13:01:73:4c:c1: 70:5d:e8:97:a0:8f:fe:49:7a:a7:97:1b:2d:80:0c: 31:43:7b:2c:9a:53:95:ec:a5:a2:54:ff:9f:10:5b: 81:e2:68:93:89:c3:2e:15:d0:65:95:e8:06:fa:4b: 37:6b:e2:82:3e:8c:a5:21:cc:8e:29:78:39:ff:37: d2:8e:53:ae:2c:e7:4f:f4:84:b5:21:b4:e8:3e:2a: ab:1a:cb:5d:5b:45:0e:37:3d:c7:c6:e8:37:cb:07: 0c:ec:47:e3:3d:28:ac:4f:2b:c7:72:6b:0f:0f:5c: 9d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:31:79:82:9F:DD:F2:4B:C3:BE:87:E1:AC:AC:86:35:12:02:CB:FE X509v3 Authority Key Identifier: keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption bb:83:83:36:95:59:8e:2f:d8:b9:75:ce:44:fa:a3:c8:20:00: 8a:4f:29:9f:df:db:a9:7c:5e:6c:e3:77:f0:6c:8f:aa:10:73: 0c:29:2b:e4:5e:91:2b:d5:c5:41:ae:63:85:18:58:28:b4:e5: 11:7c:09:1b:12:8b:14:5b:b4:e8:57:da:8e:7e:d5:5a:a0:95: 0f:ef:12:60:ab:48:b8:2e:da:b5:5f:8e:92:dc:48:7b:31:78: c6:fa:db:36:f2:26:23:d3:99:10:7a:3e:97:22:df:3b:0c:17: d0:d0:15:bf:d2:24:44:6b:ab:53:21:4c:b9:0c:94:e9:ab:f7: 65:a5:c2:b0:f9:56:72:25:37:a5:52:fe:6f:74:a5:57:13:66: b3:9f:b6:82:91:3b:37:a7:40:f0:e2:5a:6b:64:1f:ea:f4:8e: 17:94:28:b8:c3:df:0b:51:1e:e8:7f:ff:e1:61:85:51:8d:c6: 9f:57:12:1f:02:c1:ff:36:a3:54:22:55:40:87:48:10:35:cc: 39:a1:7b:4d:26:3e:96:dc:c8:a9:76:9d:ac:a1:00:1e:05:14: 0e:50:9e:02:0d:a4:b2:bb:65:13:2c:c5:6e:f3:29:a5:d1:bd: c8:1f:29:cc:7a:20:91:60:34:ba:c3:04:c6:4d:6b:59:da:de: 49:07:ba:ad -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUWH4hucT4yRzXAakdKsFwfb055tYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjMwNTMwMzQwODgxMTU2YzJlMTRhZmVmOWQ2MTk2MjI3 ZTJjNjAzNWEwOWVmMGQyNTcwHhcNMjUwNjAzMDAwMDA0WhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWU5M2QxYzg5MTU0YzQyY2FkNjM0OTI0NGFmN2NlNmU5 MDkxNjc1YWZlY2FmNWVmZWU0NDcyYTQ5MjZhZWMzMS0wKwYDVQQDEyQyYzI0MjFi OS0wY2U1LTQ4YzUtYWMyMy05MWE1NTY1ZjdhZmMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDClHtby6nC3MP7PMLiwCnhA1XgEBCnCIM9DXbqLMu4iUWF LpQckWb4asv20lvODRYhfRC9KiKIGSHqk4SqZ99seE2FJxOQbGEi7GqWDKveQ9Ny 98dSPQ48lBCvmsL+YiB+HMK5p8TwP+6u5Ndc9K1dfE/aDmIxsul8iqAuosf0ppNp 5eDphMH8T2sjIXi4g7QTAXNMwXBd6Jegj/5JeqeXGy2ADDFDeyyaU5XspaJU/58Q W4HiaJOJwy4V0GWV6Ab6Szdr4oI+jKUhzI4peDn/N9KOU64s50/0hLUhtOg+Kqsa y11bRQ43PcfG6DfLBwzsR+M9KKxPK8dyaw8PXJ1HAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUvTF5gp/d8kvDvofhrKyGNRICy/4wHwYDVR0jBBgwFoAUU+6gKbpu763K tNB3mJ3V7UdVtnAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8zMTQ1ZWJmZi1k Yzg0LTQ1YTktYjc2OS1lZmJhYWY1Nzc5ZTMvYjMwNTMwMzQwODgxMTU2YzJlMTRh ZmVmOWQ2MTk2MjI3ZTJjNjAzNWEwOWVmMGQyNTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNzFlNTIzNmYtYzZmMS00OTI4LWExYjktOGRl ZjA5YzA2MDg1L2FiZDgyNjU3LTg3M2MtNDI0Ny05NzZhLWZhNjI3ZThiZDU0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzcxZTUyMzZmLWM2ZjEtNDkyOC1hMWI5 LThkZWYwOWMwNjA4NS9nUlZzTGhTdjc1MWhsaUotTEdBMW9KN3cwbGMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBizAMA0GCSqGSIb3DQEBCwUAA4IBAQC7g4M2lVmOL9i5dc5E+qPIIACK Tymf39upfF5s43fwbI+qEHMMKSvkXpEr1cVBrmOFGFgotOURfAkbEosUW7ToV9qO ftVaoJUP7xJgq0i4Ltq1X46S3Eh7MXjG+ts28iYj05kQej6XIt87DBfQ0BW/0iRE a6tTIUy5DJTpq/dlpcKw+VZyJTelUv5vdKVXE2azn7aCkTs3p0Dw4lprZB/q9I4X lCi4w98LUR7of//hYYVRjcafVxIfAsH/NqNUIlVAh0gQNcw5oXtNJj6W3Mipdp2s oQAeBRQOUJ4CDaSyu2UTLMVu8yml0b3IHynMeiCRYDS6wwTGTWtZ2t5JB7qt -----END CERTIFICATE-----Generated at Sat Jun 7 17:26:53 2025 by rpki-client