$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json) Hash identifier: hnOyqgsO/fIgpWciu3r1AtwDIyM74PTZ2kFabymoHVE= Subject key identifier: F6:5D:ED:5B:AE:80:F6:E7:AD:B5:CC:BC:5B:D8:CC:11:51:58:8F:40 Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Certificate serial: 0E85B6C24DF184BC6D2F186EEBC3A1B28F8F4B92 Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa Signing time: Sat 28 Jun 2025 00:00:06 +0000 ROA not before: Sat 28 Jun 2025 00:00:06 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 54113 IP address blocks: 2606:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:85:b6:c2:4d:f1:84:bc:6d:2f:18:6e:eb:c3:a1:b2:8f:8f:4b:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Validity Not Before: Jun 28 00:00:06 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=7a96c4a5edbd6ea3855870bb58abd13e4b36657db0902193a03a6be162e31220, CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4e:e3:d9:33:59:16:5c:56:d8:5d:87:42:73: 20:53:cb:ff:80:80:5e:a1:3d:2f:da:ce:b4:5e:2a: 26:46:ab:8c:81:d9:6c:1c:dc:10:03:9f:b8:d7:f1: 1e:34:9f:00:aa:b9:33:cc:9c:03:84:bb:da:af:19: 66:1c:8d:72:11:57:ec:b0:95:4a:61:fa:5a:e8:19: 0e:31:88:12:2d:8a:2e:4f:96:43:58:36:8e:e2:46: bb:b6:49:dc:43:a8:3f:00:59:a1:f2:bb:bc:7f:4f: 41:14:97:2c:cb:22:25:c4:72:e2:b0:03:b8:1c:bb: e2:8b:c7:73:0b:74:4e:6a:55:3c:82:9c:62:97:1e: 48:3d:3f:36:1c:19:11:20:40:2c:87:4b:78:87:5a: 31:56:91:8f:0e:8b:84:d1:ec:c5:42:01:a5:20:1a: 61:ac:e7:d3:40:3e:58:42:ae:bb:06:8d:af:fb:13: d7:24:58:4a:f8:4d:be:e2:fb:11:62:ba:2c:83:b2: b5:da:67:be:f0:8c:72:44:01:b1:89:e1:1d:f7:29: fd:cf:47:24:61:ac:72:d8:04:e3:dd:8b:b3:1a:f7: 07:af:9c:04:81:0c:51:4b:7e:8c:2f:55:ce:e9:58: ce:9e:f9:ad:77:a4:e6:e0:11:8a:6e:fc:75:34:52: 54:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:5D:ED:5B:AE:80:F6:E7:AD:B5:CC:BC:5B:D8:CC:11:51:58:8F:40 X509v3 Authority Key Identifier: keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 6a:ac:ce:f1:70:0c:15:d5:d8:46:19:2c:7f:06:46:59:11:9a: d4:1f:64:69:37:57:af:17:a0:9a:ae:f3:e1:3c:11:3b:4b:ad: cd:8e:b3:13:d3:d9:4e:9f:33:08:46:3e:b3:4e:c1:f8:fd:1e: 4f:5c:71:ab:17:55:70:64:ca:d2:e0:b9:92:f8:48:7d:11:e6: 08:41:93:7d:8a:3e:d7:11:9b:6c:a6:78:6a:3b:71:2e:45:eb: 09:dd:79:02:64:f3:ba:46:2d:08:e3:62:ef:80:2b:3a:28:cf: f0:3a:5c:ce:df:1e:19:ab:5e:95:25:ca:a4:0e:f7:b4:d6:44: 99:8c:a3:2a:d4:19:23:ec:3d:1b:37:46:09:86:5a:2e:73:6e: d9:b0:29:4f:49:2f:10:23:bc:1c:23:5e:e2:23:0e:45:65:be: 3c:b0:a5:3b:5d:78:ad:d1:fb:c8:a9:38:8a:ff:cb:d4:74:98: e3:1c:48:be:e2:77:d6:3a:c0:c5:d0:ba:a5:b7:cb:fb:98:e5: a3:f8:1f:be:32:b9:35:14:25:ce:e0:c0:a6:99:96:3c:58:b0: bb:b4:93:45:c1:49:ba:f3:5d:8d:92:a5:0b:35:32:3d:2a:65: c1:e0:6d:3e:75:21:f4:48:68:2f:01:1c:fb:44:ae:d7:c5:44: c2:e4:ba:8d -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUDoW2wk3xhLxtLxhu68Ohso+PS5IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjMwNTMwMzQwODgxMTU2YzJlMTRhZmVmOWQ2MTk2MjI3 ZTJjNjAzNWEwOWVmMGQyNTcwHhcNMjUwNjI4MDAwMDA2WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTk2YzRhNWVkYmQ2ZWEzODU1ODcwYmI1OGFiZDEzZTRi MzY2NTdkYjA5MDIxOTNhMDNhNmJlMTYyZTMxMjIwMS0wKwYDVQQDEyQyYzI0MjFi OS0wY2U1LTQ4YzUtYWMyMy05MWE1NTY1ZjdhZmMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChTuPZM1kWXFbYXYdCcyBTy/+AgF6hPS/azrReKiZGq4yB 2Wwc3BADn7jX8R40nwCquTPMnAOEu9qvGWYcjXIRV+ywlUph+lroGQ4xiBItii5P lkNYNo7iRru2SdxDqD8AWaHyu7x/T0EUlyzLIiXEcuKwA7gcu+KLx3MLdE5qVTyC nGKXHkg9PzYcGREgQCyHS3iHWjFWkY8Oi4TR7MVCAaUgGmGs59NAPlhCrrsGja/7 E9ckWEr4Tb7i+xFiuiyDsrXaZ77wjHJEAbGJ4R33Kf3PRyRhrHLYBOPdi7Ma9wev nASBDFFLfowvVc7pWM6e+a13pObgEYpu/HU0UlSRAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU9l3tW66A9uettcy8W9jMEVFYj0AwHwYDVR0jBBgwFoAUU+6gKbpu763K tNB3mJ3V7UdVtnAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8zMTQ1ZWJmZi1k Yzg0LTQ1YTktYjc2OS1lZmJhYWY1Nzc5ZTMvYjMwNTMwMzQwODgxMTU2YzJlMTRh ZmVmOWQ2MTk2MjI3ZTJjNjAzNWEwOWVmMGQyNTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNzFlNTIzNmYtYzZmMS00OTI4LWExYjktOGRl ZjA5YzA2MDg1L2FiZDgyNjU3LTg3M2MtNDI0Ny05NzZhLWZhNjI3ZThiZDU0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzcxZTUyMzZmLWM2ZjEtNDkyOC1hMWI5 LThkZWYwOWMwNjA4NS9nUlZzTGhTdjc1MWhsaUotTEdBMW9KN3cwbGMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBizAMA0GCSqGSIb3DQEBCwUAA4IBAQBqrM7xcAwV1dhGGSx/BkZZEZrU H2RpN1evF6CarvPhPBE7S63NjrMT09lOnzMIRj6zTsH4/R5PXHGrF1VwZMrS4LmS +Eh9EeYIQZN9ij7XEZtspnhqO3EuResJ3XkCZPO6Ri0I42LvgCs6KM/wOlzO3x4Z q16VJcqkDve01kSZjKMq1Bkj7D0bN0YJhlouc27ZsClPSS8QI7wcI17iIw5FZb48 sKU7XXit0fvIqTiK/8vUdJjjHEi+4nfWOsDF0Lqlt8v7mOWj+B++Mrk1FCXO4MCm mZY8WLC7tJNFwUm6812NkqULNTI9KmXB4G0+dSH0SGgvARz7RK7XxUTC5LqN -----END CERTIFICATE-----Generated at Mon Jun 30 09:37:37 2025 by rpki-client