$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa File: ef9566d5-9096-4d00-ac93-f3df448013d9.roa (raw, json) Hash identifier: K+XGqcBspxcichcyYqK15hNvJ45JmQnjMQ+0ddd9ok0= Subject key identifier: C2:B1:2C:29:75:5B:88:6A:8D:18:AA:EA:5B:D7:C9:89:91:A1:7F:B0 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 6098F6F9DE0628361BC55DB082881F610D261706 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa Signing time: Mon 01 Sep 2025 15:50:41 +0000 ROA not before: Mon 01 Sep 2025 15:50:41 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:98:f6:f9:de:06:28:36:1b:c5:5d:b0:82:88:1f:61:0d:26:17:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Sep 1 15:50:41 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=57c623a7c31bd6c349f80fdfc4252ab72edf50c7e887945e88e9cc8ec77a0f65, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:65:58:82:40:e7:59:db:4f:c5:b2:39:5d:a3: e3:b0:a4:1f:03:a4:09:f2:b8:57:75:f9:74:d5:b2: 66:28:07:05:61:96:10:d1:12:48:51:da:b6:26:0b: 5a:56:a8:16:8a:62:50:52:a8:2c:83:cb:62:7e:3b: 78:96:a3:ff:a6:40:1a:16:82:42:41:fb:20:c6:b1: fa:85:ed:df:b2:59:7f:73:7e:15:42:6f:7a:09:12: 05:f0:ea:da:4f:8c:16:d7:26:a2:76:6b:41:2a:6b: 55:31:7e:8c:03:97:a9:b1:c7:a0:74:a8:46:34:f1: 84:db:fe:f5:9a:e7:66:23:2c:70:89:39:66:4b:7d: b1:34:36:bc:6f:4c:6b:3c:44:eb:77:10:f9:2f:ea: da:6f:04:89:ee:b7:6b:a7:31:52:03:d2:96:63:1a: 44:24:62:61:96:e9:aa:0f:12:42:07:8a:f3:fd:98: 46:f7:45:82:be:38:3d:03:e7:50:62:82:42:5f:33: 8e:75:3a:34:1b:cc:4f:1d:ae:b8:e6:5f:94:8a:db: 80:27:c2:6d:9f:5f:5b:29:e0:f1:42:ae:f0:7b:8c: 0c:d6:c2:16:ba:f2:6f:ad:98:01:92:e7:70:18:03: 43:97:3d:15:37:17:c6:a1:bb:b3:54:e7:e7:3d:a8: 2c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B1:2C:29:75:5B:88:6A:8D:18:AA:EA:5B:D7:C9:89:91:A1:7F:B0 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3002::/48 Signature Algorithm: sha256WithRSAEncryption 8f:44:46:88:2e:2a:89:7a:76:ae:7f:25:2f:dd:89:a4:9e:57: aa:a6:eb:30:22:4f:28:7d:38:e4:d9:9f:77:3a:f8:25:67:f3: 7f:1c:f8:3c:e3:22:74:89:4c:19:40:97:27:a9:86:33:63:4c: a0:e7:43:47:56:57:7a:72:d7:63:ab:1b:70:fc:d9:46:dc:e8: cd:c4:1d:1d:65:28:a0:cf:07:55:f5:2f:b4:38:40:70:15:6a: da:48:8f:ac:33:17:35:26:71:ba:91:6b:68:c2:35:33:a7:81: 89:4b:d5:0e:72:2a:bd:ce:e0:d8:20:1a:50:cf:db:11:56:cb: 98:d9:13:89:e0:34:c9:76:52:d0:fb:31:a1:5f:76:94:a2:84: c1:84:aa:e0:b7:0d:5f:47:35:9d:de:37:88:e8:32:1c:ce:e0: 1a:0f:4b:53:64:e5:ef:42:f5:63:ae:7f:6b:90:72:43:27:c6: 91:5e:96:d7:28:a3:ed:50:9a:6b:40:96:54:75:77:b2:58:1e: 88:6b:0c:a2:11:69:22:f7:83:2f:3a:02:3d:7b:eb:76:43:f3: 99:e7:3a:d8:66:68:2f:27:19:f9:89:8b:0f:62:22:da:77:67: 3f:b7:65:7a:81:f1:d7:75:82:de:3a:0a:6e:89:d2:1c:81:d0: d0:44:22:c9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYJj2+d4GKDYbxV2wgogfYQ0mFwYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwOTAxMTU1MDQxWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2M2MjNhN2MzMWJkNmMzNDlmODBmZGZjNDI1MmFiNzJl ZGY1MGM3ZTg4Nzk0NWU4OGU5Y2M4ZWM3N2EwZjY1MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcZViCQOdZ20/Fsjldo+OwpB8DpAnyuFd1+XTVsmYoBwVh lhDREkhR2rYmC1pWqBaKYlBSqCyDy2J+O3iWo/+mQBoWgkJB+yDGsfqF7d+yWX9z fhVCb3oJEgXw6tpPjBbXJqJ2a0Eqa1UxfowDl6mxx6B0qEY08YTb/vWa52YjLHCJ OWZLfbE0NrxvTGs8ROt3EPkv6tpvBInut2unMVID0pZjGkQkYmGW6aoPEkIHivP9 mEb3RYK+OD0D51BigkJfM451OjQbzE8drrjmX5SK24Anwm2fX1sp4PFCrvB7jAzW wha68m+tmAGS53AYA0OXPRU3F8ahu7NU5+c9qCwhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwrEsKXVbiGqNGKrqW9fJiZGhf7AwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2VmOTU2NmQ1LTkwOTYtNGQwMC1hYzkzLWYzZGY0NDgwMTNkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAIwDQYJKoZIhvcNAQELBQADggEBAI9ERoguKol6dq5/JS/diaSe V6qm6zAiTyh9OOTZn3c6+CVn838c+DzjInSJTBlAlyephjNjTKDnQ0dWV3py12Or G3D82Ubc6M3EHR1lKKDPB1X1L7Q4QHAVatpIj6wzFzUmcbqRa2jCNTOngYlL1Q5y Kr3O4NggGlDP2xFWy5jZE4ngNMl2UtD7MaFfdpSihMGEquC3DV9HNZ3eN4joMhzO 4BoPS1Nk5e9C9WOuf2uQckMnxpFeltcoo+1QmmtAllR1d7JYHohrDKIRaSL3gy86 Aj1763ZD85nnOthmaC8nGfmJiw9iItp3Zz+3ZXqB8dd1gt46Cm6J0hyB0NBEIsk= -----END CERTIFICATE-----Generated at Tue Sep 16 11:30:50 2025 by rpki-client