$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa File: cd3025ff-3653-4276-a530-1fa2eed87e53.roa (raw, json) Hash identifier: JeU6nFUrz3zzKtLnteZbdo0g098iJwaOKwhUWb+AvCQ= Subject key identifier: DC:9A:D7:7C:8B:A0:5B:FF:6E:7D:85:70:FA:31:15:E1:63:40:44:71 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 66F38272EF615DA5DAEA6B0C150124AD0734187F Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa Signing time: Tue 09 Sep 2025 15:00:15 +0000 ROA not before: Tue 09 Sep 2025 15:00:15 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:f3:82:72:ef:61:5d:a5:da:ea:6b:0c:15:01:24:ad:07:34:18:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Sep 9 15:00:15 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=f00278941014ef84eabf0bd4a69abab58c18f784866b78a34a8f2fb4fa169b92, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:39:79:3d:fb:93:25:d1:ae:57:68:41:2c:6d: bb:e3:ef:6e:cf:44:bc:ab:13:b2:02:e9:94:77:5d: 28:84:c7:ea:40:9e:c8:7c:90:55:bb:1f:b5:06:b6: 32:e9:5a:de:a9:15:4d:92:01:dd:a0:0f:13:b8:9a: fd:6b:ca:0d:e4:06:0a:cd:d6:25:74:67:6d:79:5b: df:5f:c2:6e:22:bc:6c:02:41:db:17:bb:c7:19:1f: bc:51:70:1a:84:d9:89:ac:65:26:4b:7f:2b:91:93: 35:be:68:56:0f:ec:9d:78:08:87:24:d3:1b:fb:67: 32:8b:af:1b:2a:be:df:66:71:32:29:15:2f:24:ca: bc:5b:a2:1d:34:2d:bf:7e:48:fe:9d:12:54:3f:b8: e1:c3:b3:b9:09:f6:ee:8c:60:92:a5:70:96:c5:5d: 65:76:bf:b9:5f:a5:d7:a1:eb:88:82:30:62:66:65: 0a:c7:bc:1c:f6:1a:c0:a1:ff:f2:fa:7c:32:14:58: a2:e1:64:8d:d5:8f:da:51:67:58:0e:ca:af:56:4e: 61:5b:fc:d5:a7:fa:f7:32:cf:ac:95:a8:e5:be:ce: dd:2a:e1:ae:c2:e5:9b:8f:a1:49:24:eb:f8:1f:c7: 03:fb:7c:0e:46:87:2a:90:a6:33:b8:cd:8c:b8:f5: 46:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:9A:D7:7C:8B:A0:5B:FF:6E:7D:85:70:FA:31:15:E1:63:40:44:71 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/44 Signature Algorithm: sha256WithRSAEncryption 25:e0:a3:15:a7:02:74:79:62:e9:3c:14:be:0e:b6:dd:7f:d1: ea:13:c1:73:0b:b7:4c:30:1d:96:0f:4d:5b:98:b9:19:aa:15: 7f:2b:5c:c9:69:fa:1e:3b:11:9f:82:86:d6:c0:17:6a:3e:0f: a2:1c:0b:f3:84:ba:56:0a:ed:84:ca:ab:81:57:d2:af:e5:5e: 27:63:55:94:a3:ba:52:e4:22:b5:c1:0c:3a:cf:1e:70:50:18: c8:29:ba:50:a6:11:b9:85:7e:2c:31:a0:3c:f7:36:99:7e:ea: 9b:37:52:1c:ba:92:3c:ec:d3:d0:78:83:e1:51:7d:ab:1a:4e: a2:5b:e7:1a:c5:b8:71:e1:51:2f:88:5a:35:02:17:69:4d:c5: 7d:e2:93:ba:19:87:95:66:f8:45:00:81:e0:1f:67:ad:d1:08: 7d:47:58:27:da:50:63:0f:37:a0:fc:dd:6b:3c:da:43:6b:3b: ef:82:c6:59:b0:04:11:28:f2:37:94:e7:7c:4a:4b:fb:08:38: e8:59:ae:75:a9:e8:7c:8a:65:4e:f6:a1:cd:f6:21:aa:85:8d: 6f:21:73:94:f1:3a:8e:e5:c4:74:8d:5d:f3:97:99:c0:af:63: 50:93:73:1d:9f:2a:c0:a5:76:57:39:3f:d5:dd:02:39:6e:79: 7d:68:1c:95 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZvOCcu9hXaXa6msMFQEkrQc0GH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwOTA5MTUwMDE1WhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDAyNzg5NDEwMTRlZjg0ZWFiZjBiZDRhNjlhYmFiNThj MThmNzg0ODY2Yjc4YTM0YThmMmZiNGZhMTY5YjkyMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIOXk9+5Ml0a5XaEEsbbvj727PRLyrE7IC6ZR3XSiEx+pA nsh8kFW7H7UGtjLpWt6pFU2SAd2gDxO4mv1ryg3kBgrN1iV0Z215W99fwm4ivGwC QdsXu8cZH7xRcBqE2YmsZSZLfyuRkzW+aFYP7J14CIck0xv7ZzKLrxsqvt9mcTIp FS8kyrxboh00Lb9+SP6dElQ/uOHDs7kJ9u6MYJKlcJbFXWV2v7lfpdeh64iCMGJm ZQrHvBz2GsCh//L6fDIUWKLhZI3Vj9pRZ1gOyq9WTmFb/NWn+vcyz6yVqOW+zt0q 4a7C5ZuPoUkk6/gfxwP7fA5GhyqQpjO4zYy49UbxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3JrXfIugW/9ufYVw+jEV4WNARHEwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2NkMzAyNWZmLTM2NTMtNDI3Ni1hNTMwLTFmYTJlZWQ4N2U1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBACXgoxWnAnR5Yuk8FL4Ott1/ 0eoTwXMLt0wwHZYPTVuYuRmqFX8rXMlp+h47EZ+ChtbAF2o+D6IcC/OEulYK7YTK q4FX0q/lXidjVZSjulLkIrXBDDrPHnBQGMgpulCmEbmFfiwxoDz3Npl+6ps3Uhy6 kjzs09B4g+FRfasaTqJb5xrFuHHhUS+IWjUCF2lNxX3ik7oZh5Vm+EUAgeAfZ63R CH1HWCfaUGMPN6D83Ws82kNrO++CxlmwBBEo8jeU53xKS/sIOOhZrnWp6HyKZU72 oc32IaqFjW8hc5TxOo7lxHSNXfOXmcCvY1CTcx2fKsCldlc5P9XdAjlueX1oHJU= -----END CERTIFICATE-----Generated at Tue Sep 16 11:29:40 2025 by rpki-client