$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa File: 0ec55b55-70d8-4c9a-a949-98332400c54c.roa (raw, json) Hash identifier: oXH90+7hXHOcT3gspkUd37mSyplOkT3uiVOl3ahD4PM= Subject key identifier: B7:66:C6:0D:D7:B3:B3:2F:A3:FE:8A:35:9F:07:89:AB:26:89:9C:2D Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 299186EBF313BE31F85D3A53F2AD4F388E517418 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa Signing time: Mon 01 Sep 2025 15:50:43 +0000 ROA not before: Mon 01 Sep 2025 15:50:43 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:91:86:eb:f3:13:be:31:f8:5d:3a:53:f2:ad:4f:38:8e:51:74:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Sep 1 15:50:43 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=24fb82d53cf21018f1dec2dfcb8ef2a6031aa1ed0e1e6d8e78e6ed497535469e, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:95:f5:d8:f0:e3:a2:7c:db:c1:14:23:58:a5: d6:92:24:59:dc:39:54:17:93:b8:a7:f0:62:e8:b6: b6:7b:31:ff:e8:22:1b:bc:ee:6e:66:44:f3:c8:a9: 75:cf:2e:6c:71:92:90:3e:6d:00:11:3a:03:90:12: 40:cc:bf:22:12:eb:8a:ad:ca:a1:75:fb:80:07:a6: ca:f9:59:e2:1f:6d:df:4a:28:79:20:c2:d6:73:19: f9:ca:50:45:ad:6e:c8:61:d1:47:cd:17:38:75:0d: 64:16:d7:5d:56:99:ad:53:da:0d:c5:f7:cb:8a:05: c8:ee:df:8b:8e:06:bb:da:dd:22:db:ff:b6:5e:bd: e1:de:1d:eb:0d:30:50:51:3f:27:54:28:b0:37:9a: 3b:5c:e7:92:48:aa:2a:42:5c:50:50:2e:94:78:2e: 26:ec:e1:ff:96:35:d2:80:64:00:ab:19:8e:90:7a: a1:ca:e1:d0:ef:36:24:71:db:1b:0d:61:70:9f:f4: eb:af:43:d5:6c:55:03:bc:5b:a9:b9:93:04:85:cc: f9:af:48:74:67:71:45:e5:80:20:73:7b:00:4f:77: 7b:d6:a1:49:93:7a:66:fa:0c:a4:5a:03:6c:6b:07: 29:95:69:69:34:03:fc:a8:5a:d4:71:2a:68:b0:d7: d6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:66:C6:0D:D7:B3:B3:2F:A3:FE:8A:35:9F:07:89:AB:26:89:9C:2D X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/48 Signature Algorithm: sha256WithRSAEncryption 51:04:b7:30:ae:de:d3:69:de:fb:09:25:2e:40:70:3f:34:06: 17:2b:c3:e7:4e:31:22:e0:73:49:77:3c:49:29:4f:4a:e8:50: dc:96:fb:11:8d:b3:33:e1:3d:2e:9b:c1:56:ba:ae:be:23:cd: 6c:1c:e1:24:6f:c4:3a:84:6d:24:a0:93:79:fb:a8:85:ec:ce: 89:74:b6:fc:99:1a:54:93:2b:06:d6:98:87:aa:c4:90:ad:a5: be:54:72:30:b4:87:e7:bc:54:e1:fd:2b:1f:a2:36:6b:5e:eb: 2f:8c:8a:65:21:f3:d7:0e:b2:c1:c8:b5:67:d2:ed:59:d4:b3: b7:e3:50:e3:14:fc:da:64:c6:60:3c:4e:82:a3:2f:e6:94:ee: 0c:33:44:be:50:c4:73:40:59:97:1d:d5:6a:fd:a4:21:d6:a0: 77:76:5d:fa:e7:c9:05:6f:10:50:e0:e0:84:33:ed:85:ed:aa: e7:78:5e:e9:84:6a:b3:cf:2a:a2:9d:0e:78:9c:15:e9:27:5f: f9:05:fa:34:fc:f7:65:6e:3e:7c:7f:f4:89:f5:f8:9f:2c:25: 65:a8:b2:98:b8:41:32:9d:3f:d7:4b:75:02:4a:6e:cf:68:99: 84:28:4d:ad:8f:cb:5d:77:47:da:25:bd:63:9e:2c:52:4a:cc: 55:29:36:70 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKZGG6/MTvjH4XTpT8q1POI5RdBgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwOTAxMTU1MDQzWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGZiODJkNTNjZjIxMDE4ZjFkZWMyZGZjYjhlZjJhNjAz MWFhMWVkMGUxZTZkOGU3OGU2ZWQ0OTc1MzU0NjllMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJlfXY8OOifNvBFCNYpdaSJFncOVQXk7in8GLotrZ7Mf/o Ihu87m5mRPPIqXXPLmxxkpA+bQAROgOQEkDMvyIS64qtyqF1+4AHpsr5WeIfbd9K KHkgwtZzGfnKUEWtbshh0UfNFzh1DWQW111Wma1T2g3F98uKBcju34uOBrva3SLb /7ZeveHeHesNMFBRPydUKLA3mjtc55JIqipCXFBQLpR4Libs4f+WNdKAZACrGY6Q eqHK4dDvNiRx2xsNYXCf9OuvQ9VsVQO8W6m5kwSFzPmvSHRncUXlgCBzewBPd3vW oUmTemb6DKRaA2xrBymVaWk0A/yoWtRxKmiw19a/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUt2bGDdezsy+j/oo1nweJqyaJnC0wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzBlYzU1YjU1LTcwZDgtNGM5YS1hOTQ5LTk4MzMyNDAwYzU0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBAFEEtzCu3tNp3vsJJS5AcD80 Bhcrw+dOMSLgc0l3PEkpT0roUNyW+xGNszPhPS6bwVa6rr4jzWwc4SRvxDqEbSSg k3n7qIXszol0tvyZGlSTKwbWmIeqxJCtpb5UcjC0h+e8VOH9Kx+iNmte6y+MimUh 89cOssHItWfS7VnUs7fjUOMU/NpkxmA8ToKjL+aU7gwzRL5QxHNAWZcd1Wr9pCHW oHd2XfrnyQVvEFDg4IQz7YXtqud4XumEarPPKqKdDnicFeknX/kF+jT892VuPnx/ 9In1+J8sJWWospi4QTKdP9dLdQJKbs9omYQoTa2Py113R9olvWOeLFJKzFUpNnA= -----END CERTIFICATE-----Generated at Tue Sep 16 11:29:42 2025 by rpki-client