$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa File: ef9566d5-9096-4d00-ac93-f3df448013d9.roa (raw, json) Hash identifier: x0pTZIOoUQHF8YkRxKawkXNc/9y2DPrAkIN6NXCHkYc= Subject key identifier: C8:51:6D:8E:23:CC:24:8F:A8:BB:59:CC:E2:17:79:35:F7:83:64:DF Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 391571E1F0B846F47D7F805048F4C27E10762376 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa Signing time: Tue 20 May 2025 15:30:17 +0000 ROA not before: Tue 20 May 2025 15:30:17 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:15:71:e1:f0:b8:46:f4:7d:7f:80:50:48:f4:c2:7e:10:76:23:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: May 20 15:30:17 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=f88074c38795bd14925a3ef0e86dd20147c480339c169a75eef27f614897d17a, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d4:16:98:7e:65:65:1a:b3:b4:b4:c9:aa:39: 8e:1e:51:4a:c2:a2:88:73:95:70:5f:03:ab:3e:96: 0b:68:0e:ba:f2:39:56:d7:2a:4f:1e:6b:7f:be:65: ea:9e:53:9d:7b:e7:f1:87:bc:0a:e1:e1:cb:0c:4c: 1a:ec:d8:0e:cb:9a:ab:e0:31:52:77:d4:fb:14:51: 4c:35:f7:fb:c7:79:64:80:ef:bd:76:cb:7e:0b:04: 6a:bf:71:17:6a:8f:9a:a0:77:6f:c7:41:89:9e:1f: 67:14:1a:45:e5:eb:a9:ae:19:6c:95:d1:85:47:12: 3e:68:1b:0c:47:7b:9c:77:c0:6e:48:e2:e4:bf:a0: bc:b8:3c:3b:48:f0:d3:7a:1c:d8:35:1a:5f:b7:5d: 8d:ce:e7:f6:94:61:a7:2c:ed:cc:34:7e:73:f8:d9: 88:eb:83:26:db:22:2a:a3:b8:8e:ab:ef:45:ca:44: 88:c5:5b:f7:4f:c0:8c:41:bf:5a:b7:21:1c:2c:77: 91:11:29:5c:4c:4c:b1:cc:26:f8:76:9b:33:57:4e: 2d:f9:dd:22:64:8e:bc:a5:e3:61:df:cd:2b:0b:4f: e8:8c:65:3f:33:bd:9f:44:c5:52:5a:0f:66:d0:92: 6f:9a:0d:90:40:dc:03:56:66:96:50:8d:09:87:9f: ad:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:51:6D:8E:23:CC:24:8F:A8:BB:59:CC:E2:17:79:35:F7:83:64:DF X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3002::/48 Signature Algorithm: sha256WithRSAEncryption 39:4e:e4:12:08:60:e6:1b:8e:ac:16:58:74:5b:d5:dd:76:87: d9:c9:5a:da:14:38:4c:54:4d:16:2a:29:14:62:f2:4e:ba:2c: 6e:ab:03:72:8a:77:ee:4b:02:67:a4:6b:03:29:86:a3:fd:c9: 46:52:91:f3:82:2e:32:e5:df:64:c9:73:a9:14:2d:c0:a6:e8: 06:9a:67:98:99:23:a9:73:4f:7f:77:d6:e1:fc:a1:7d:9b:1a: b7:0b:f5:c7:fa:c8:a1:e6:c9:78:8c:1a:89:c3:e4:b8:f1:31: ca:f1:07:b2:d8:25:6b:33:01:7f:28:0a:f8:37:12:6a:31:89: ad:60:cb:0e:40:c5:a5:9b:c6:ef:b2:4d:16:e2:7f:7f:2c:a3: ad:f7:df:af:88:88:0b:fb:75:06:0d:91:dc:e3:cc:bc:7c:28: 71:80:97:4e:75:88:a4:6e:cb:a1:7f:98:b8:dd:ca:52:57:49: 83:49:66:68:1e:44:ec:0b:88:8f:e4:fc:a2:a5:89:db:7d:80: cf:ca:cf:2a:3b:52:2b:d8:06:24:e8:23:8a:93:47:f4:69:28: e9:e5:af:f7:80:88:d8:2f:12:4b:14:24:a5:0c:26:a1:a5:7c: 9c:e1:2c:f1:42:5b:bf:db:0b:c0:b2:c9:e3:f5:c1:24:ff:a0: d5:eb:2a:24 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUORVx4fC4RvR9f4BQSPTCfhB2I3YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNTIwMTUzMDE3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODgwNzRjMzg3OTViZDE0OTI1YTNlZjBlODZkZDIwMTQ3 YzQ4MDMzOWMxNjlhNzVlZWYyN2Y2MTQ4OTdkMTdhMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq1BaYfmVlGrO0tMmqOY4eUUrCoohzlXBfA6s+lgtoDrry OVbXKk8ea3++ZeqeU5175/GHvArh4csMTBrs2A7LmqvgMVJ31PsUUUw19/vHeWSA 7712y34LBGq/cRdqj5qgd2/HQYmeH2cUGkXl66muGWyV0YVHEj5oGwxHe5x3wG5I 4uS/oLy4PDtI8NN6HNg1Gl+3XY3O5/aUYacs7cw0fnP42YjrgybbIiqjuI6r70XK RIjFW/dPwIxBv1q3IRwsd5ERKVxMTLHMJvh2mzNXTi353SJkjryl42HfzSsLT+iM ZT8zvZ9ExVJaD2bQkm+aDZBA3ANWZpZQjQmHn60XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyFFtjiPMJI+ou1nM4hd5NfeDZN8wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2VmOTU2NmQ1LTkwOTYtNGQwMC1hYzkzLWYzZGY0NDgwMTNkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAIwDQYJKoZIhvcNAQELBQADggEBADlO5BIIYOYbjqwWWHRb1d12 h9nJWtoUOExUTRYqKRRi8k66LG6rA3KKd+5LAmekawMphqP9yUZSkfOCLjLl32TJ c6kULcCm6AaaZ5iZI6lzT3931uH8oX2bGrcL9cf6yKHmyXiMGonD5LjxMcrxB7LY JWszAX8oCvg3Emoxia1gyw5AxaWbxu+yTRbif38so63336+IiAv7dQYNkdzjzLx8 KHGAl051iKRuy6F/mLjdylJXSYNJZmgeROwLiI/k/KKlidt9gM/Kzyo7UivYBiTo I4qTR/RpKOnlr/eAiNgvEksUJKUMJqGlfJzhLPFCW7/bC8CyyeP1wST/oNXrKiQ= -----END CERTIFICATE-----Generated at Wed Jun 4 10:33:07 2025 by rpki-client