$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json) Hash identifier: 2sfU92bmdYcsV9Bqy4R2joC+shyvErR0NFUc460A1OU= Subject key identifier: F1:8D:0C:0A:EA:7C:0E:22:3E:6A:39:9A:07:3D:0C:FF:79:6D:58:87 Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Certificate serial: 66B1D1275C81DB50B512DDE7B02115610F67552C Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa Signing time: Mon 18 Aug 2025 15:00:02 +0000 ROA not before: Mon 18 Aug 2025 15:00:02 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 54113 IP address blocks: 2606:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b1:d1:27:5c:81:db:50:b5:12:dd:e7:b0:21:15:61:0f:67:55:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Validity Not Before: Aug 18 15:00:02 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=614b8ab980f697f301eff43b8f2d221bdd88dab07a7909114d42aec129c4186c, CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7b:da:bf:a1:0b:a0:b7:a5:b5:18:29:dc:2f: 58:73:e6:fc:9c:f6:d0:34:3e:85:df:9f:91:8d:bc: 0b:9a:59:7c:98:24:43:36:5f:ef:dd:f1:26:9b:76: 27:05:dc:26:d3:64:92:d7:64:fb:20:99:0c:ca:52: 08:b0:05:bf:3b:7f:14:74:76:21:da:93:9d:c1:c4: f5:7f:c0:0e:05:85:79:74:a8:09:17:dd:c9:09:0a: 3a:7f:61:a3:fa:1d:85:74:e8:1e:4d:ab:3a:8c:60: eb:5d:29:50:ad:ff:86:1c:bd:c2:61:5f:c9:96:eb: 0f:80:29:a5:53:07:4c:db:11:d4:c5:1a:34:07:99: 07:49:4a:64:62:b7:e9:d9:a5:3a:07:e8:a5:b9:85: da:41:5e:d4:fc:43:c0:59:7f:0d:41:7d:82:bd:17: b6:a4:47:2a:10:f6:5a:22:9e:71:2d:20:8e:b0:bd: bc:dd:6a:49:36:f9:6d:f8:c8:77:31:7b:dd:fd:72: 6f:03:cf:91:6a:07:ac:95:d0:60:e8:10:80:a3:b0: 63:00:90:1d:e2:01:bb:78:03:49:10:b9:68:50:fc: f5:c5:93:0c:f5:b0:1c:b8:c9:f7:aa:0b:3e:0d:14: a8:6b:17:c4:d2:15:b3:70:27:3f:73:6e:0b:25:ac: f8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:8D:0C:0A:EA:7C:0E:22:3E:6A:39:9A:07:3D:0C:FF:79:6D:58:87 X509v3 Authority Key Identifier: keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 48:d8:d5:93:f2:9f:3d:08:9e:af:1c:41:1c:53:49:d4:29:5c: ba:77:7d:37:d1:f3:35:07:7b:6d:35:f6:d6:78:32:5b:cc:a5: 8f:6b:bb:73:12:e9:e7:66:a4:f0:ba:26:65:ac:0c:0f:14:81: a1:a4:d8:ae:88:c8:4e:b3:f5:cf:42:73:f9:86:df:40:3e:a1: 50:7c:89:dc:17:83:2b:ec:fe:8d:4f:e5:2d:b9:71:59:66:09: 07:36:2b:86:a8:e3:d9:20:aa:c1:1a:6c:1f:7a:66:04:2f:29: e5:9a:45:c3:fc:91:b0:49:06:eb:43:cb:f9:66:61:b4:c2:ae: 0e:58:18:4c:9e:74:97:7c:0b:15:10:78:5b:bf:5b:7a:a9:82: 6c:3c:f1:a8:fc:9e:cb:ab:83:e2:5d:50:f9:3d:af:07:02:da: 19:44:a9:25:e2:ff:35:96:48:a7:18:97:ef:91:89:ab:b4:d3: ef:ce:aa:f3:f6:c7:82:ab:60:42:85:08:86:02:5d:48:6b:97: e0:b1:a6:c1:d9:89:24:b1:9e:e5:38:82:d4:5c:6f:db:20:81: e6:2f:30:98:61:d3:0c:6d:46:de:96:13:fd:4e:95:e9:5c:3d: 2a:02:25:43:0e:26:50:a4:a7:83:20:e0:0e:e8:8d:27:dd:67: bc:f0:25:0d -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUZrHRJ1yB21C1Et3nsCEVYQ9nVSwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjMwNTMwMzQwODgxMTU2YzJlMTRhZmVmOWQ2MTk2MjI3 ZTJjNjAzNWEwOWVmMGQyNTcwHhcNMjUwODE4MTUwMDAyWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTRiOGFiOTgwZjY5N2YzMDFlZmY0M2I4ZjJkMjIxYmRk ODhkYWIwN2E3OTA5MTE0ZDQyYWVjMTI5YzQxODZjMS0wKwYDVQQDEyQyYzI0MjFi OS0wY2U1LTQ4YzUtYWMyMy05MWE1NTY1ZjdhZmMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7e9q/oQugt6W1GCncL1hz5vyc9tA0PoXfn5GNvAuaWXyY JEM2X+/d8SabdicF3CbTZJLXZPsgmQzKUgiwBb87fxR0diHak53BxPV/wA4FhXl0 qAkX3ckJCjp/YaP6HYV06B5NqzqMYOtdKVCt/4YcvcJhX8mW6w+AKaVTB0zbEdTF GjQHmQdJSmRit+nZpToH6KW5hdpBXtT8Q8BZfw1BfYK9F7akRyoQ9loinnEtII6w vbzdakk2+W34yHcxe939cm8Dz5FqB6yV0GDoEICjsGMAkB3iAbt4A0kQuWhQ/PXF kwz1sBy4yfeqCz4NFKhrF8TSFbNwJz9zbgslrPipAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU8Y0MCup8DiI+ajmaBz0M/3ltWIcwHwYDVR0jBBgwFoAUU+6gKbpu763K tNB3mJ3V7UdVtnAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8zMTQ1ZWJmZi1k Yzg0LTQ1YTktYjc2OS1lZmJhYWY1Nzc5ZTMvYjMwNTMwMzQwODgxMTU2YzJlMTRh ZmVmOWQ2MTk2MjI3ZTJjNjAzNWEwOWVmMGQyNTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNzFlNTIzNmYtYzZmMS00OTI4LWExYjktOGRl ZjA5YzA2MDg1L2FiZDgyNjU3LTg3M2MtNDI0Ny05NzZhLWZhNjI3ZThiZDU0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzcxZTUyMzZmLWM2ZjEtNDkyOC1hMWI5 LThkZWYwOWMwNjA4NS9nUlZzTGhTdjc1MWhsaUotTEdBMW9KN3cwbGMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBizAMA0GCSqGSIb3DQEBCwUAA4IBAQBI2NWT8p89CJ6vHEEcU0nUKVy6 d3030fM1B3ttNfbWeDJbzKWPa7tzEunnZqTwuiZlrAwPFIGhpNiuiMhOs/XPQnP5 ht9APqFQfIncF4Mr7P6NT+UtuXFZZgkHNiuGqOPZIKrBGmwfemYELynlmkXD/JGw SQbrQ8v5ZmG0wq4OWBhMnnSXfAsVEHhbv1t6qYJsPPGo/J7Lq4PiXVD5Pa8HAtoZ RKkl4v81lkinGJfvkYmrtNPvzqrz9seCq2BChQiGAl1Ia5fgsabB2YkksZ7lOILU XG/bIIHmLzCYYdMMbUbelhP9TpXpXD0qAiVDDiZQpKeDIOAO6I0n3We88CUN -----END CERTIFICATE-----Generated at Sun Aug 24 06:43:40 2025 by rpki-client