$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa File: cd3025ff-3653-4276-a530-1fa2eed87e53.roa (raw, json) Hash identifier: igPDQbjUKaAmLsabQK5Pix7MgVVzsDe+mMGESyqT5ho= Subject key identifier: 40:A0:02:AF:F9:65:EE:19:3A:8D:1F:4C:C0:B5:22:E5:32:C5:2E:28 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 38D7ED438ACFCDC633FDB1D42433B6E89FD7F040 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa Signing time: Fri 15 Aug 2025 00:50:16 +0000 ROA not before: Fri 15 Aug 2025 00:50:16 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d7:ed:43:8a:cf:cd:c6:33:fd:b1:d4:24:33:b6:e8:9f:d7:f0:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Aug 15 00:50:16 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=c1d535ba034acca6ec40f531e18fab833a419a789849309474462c05abc920b9, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0c:d5:b4:d2:e2:aa:56:c3:0b:35:9c:cf:2c: bd:cd:6b:63:04:8e:86:97:0b:93:09:ad:05:93:a1: 16:ee:6f:92:c1:0c:b4:e2:5c:d7:01:38:82:7d:7b: 1d:6a:24:88:8a:44:e3:1e:b3:85:69:92:9d:d6:f1: 86:2a:79:4a:13:56:f8:7c:db:12:b1:13:73:96:1f: c5:ef:b5:45:bf:17:62:d4:6f:70:00:a4:1c:9d:ea: 85:da:a5:5f:1a:3b:31:59:b3:4e:08:88:c0:e5:82: 9d:a0:87:9c:33:81:89:af:4e:9b:61:7d:9e:5a:73: b4:eb:d2:eb:02:47:43:4b:3e:66:36:39:db:5d:86: 34:19:97:ec:49:85:45:e0:5e:c3:b9:6f:07:b8:2d: 2e:2b:8c:4c:5c:1c:6d:35:30:b6:06:33:62:86:48: 48:18:7b:1c:fc:e6:d8:8d:c1:4a:21:18:41:08:81: f3:36:49:a0:48:2c:67:9b:07:4e:46:ac:84:fd:54: 5d:30:1c:34:f5:52:7c:34:64:37:71:52:29:18:17: 9a:9f:7f:b2:45:f5:4f:ab:c5:08:1e:4d:87:e8:53: d6:76:bd:5c:36:9e:30:c4:63:67:b0:58:bd:1f:a7: 0f:ff:47:7b:81:e6:98:e4:b0:64:e2:8b:96:f2:28: f4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A0:02:AF:F9:65:EE:19:3A:8D:1F:4C:C0:B5:22:E5:32:C5:2E:28 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/44 Signature Algorithm: sha256WithRSAEncryption 36:aa:74:95:12:98:fb:6c:1a:8f:f1:6e:83:13:da:86:64:02: fb:02:da:7b:ef:59:45:e6:61:77:13:e0:ce:24:25:67:d3:1f: b4:a4:f8:58:fc:f1:be:f2:37:a0:38:52:06:61:cb:e5:4a:a6: 2c:d1:e9:a8:76:18:63:72:cd:de:2f:bd:55:a5:87:28:47:c3: 35:a7:32:d9:c4:5c:f7:9c:f2:95:7b:d3:3a:ba:d0:ba:ae:04: 21:62:71:87:87:d3:b3:35:f4:46:d3:5d:b7:d7:7d:51:84:a6: 74:5d:20:21:85:d1:b3:ca:f9:ab:dc:a5:93:3c:29:2d:0d:32: e1:61:5b:9e:70:46:da:04:d1:27:af:91:0f:69:f5:c3:54:80: 2a:38:a1:33:a5:2b:51:53:fb:79:7e:fd:fa:e6:34:95:0d:9d: df:e0:b6:67:75:3c:a6:1c:f0:d8:6e:77:df:39:75:5e:7a:ed: bc:94:46:49:10:67:32:ca:a6:3c:2a:7f:b4:5f:7b:06:d1:5c: 19:6d:46:c1:d5:52:35:4b:4b:26:38:1f:57:d3:14:4e:19:38: a7:fe:d1:55:06:aa:dc:8d:2b:7b:cf:d9:96:16:9e:4b:4a:cd: cd:67:31:9d:4e:5b:55:f1:16:c2:17:dc:44:7a:c3:c7:40:b1: f0:17:4b:53 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUONftQ4rPzcYz/bHUJDO26J/X8EAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwODE1MDA1MDE2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWQ1MzViYTAzNGFjY2E2ZWM0MGY1MzFlMThmYWI4MzNh NDE5YTc4OTg0OTMwOTQ3NDQ2MmMwNWFiYzkyMGI5MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0DNW00uKqVsMLNZzPLL3Na2MEjoaXC5MJrQWToRbub5LB DLTiXNcBOIJ9ex1qJIiKROMes4Vpkp3W8YYqeUoTVvh82xKxE3OWH8XvtUW/F2LU b3AApByd6oXapV8aOzFZs04IiMDlgp2gh5wzgYmvTpthfZ5ac7Tr0usCR0NLPmY2 OdtdhjQZl+xJhUXgXsO5bwe4LS4rjExcHG01MLYGM2KGSEgYexz85tiNwUohGEEI gfM2SaBILGebB05GrIT9VF0wHDT1Unw0ZDdxUikYF5qff7JF9U+rxQgeTYfoU9Z2 vVw2njDEY2ewWL0fpw//R3uB5pjksGTii5byKPSJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQKACr/ll7hk6jR9MwLUi5TLFLigwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2NkMzAyNWZmLTM2NTMtNDI3Ni1hNTMwLTFmYTJlZWQ4N2U1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBADaqdJUSmPtsGo/xboMT2oZk AvsC2nvvWUXmYXcT4M4kJWfTH7Sk+Fj88b7yN6A4UgZhy+VKpizR6ah2GGNyzd4v vVWlhyhHwzWnMtnEXPec8pV70zq60LquBCFicYeH07M19EbTXbfXfVGEpnRdICGF 0bPK+avcpZM8KS0NMuFhW55wRtoE0SevkQ9p9cNUgCo4oTOlK1FT+3l+/frmNJUN nd/gtmd1PKYc8Nhud985dV567byURkkQZzLKpjwqf7RfewbRXBltRsHVUjVLSyY4 H1fTFE4ZOKf+0VUGqtyNK3vP2ZYWnktKzc1nMZ1OW1XxFsIX3ER6w8dAsfAXS1M= -----END CERTIFICATE-----Generated at Sat Aug 23 06:45:18 2025 by rpki-client