$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa File: cd3025ff-3653-4276-a530-1fa2eed87e53.roa (raw, json) Hash identifier: L+wbeSOYb3re9YQ5WMexSGTsI/1KhcOHBQ5EfxFkQiM= Subject key identifier: 79:A7:3C:01:64:1C:00:32:AE:51:BA:8D:CB:CE:E7:B8:FA:A4:33:38 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 500A741F3E57FFEA88F253BDDE048A659A73DFEF Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa Signing time: Wed 25 Jun 2025 00:20:04 +0000 ROA not before: Wed 25 Jun 2025 00:20:04 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:0a:74:1f:3e:57:ff:ea:88:f2:53:bd:de:04:8a:65:9a:73:df:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jun 25 00:20:04 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=2d55b6503f222fbceb6fb6ab1515de0be8f2e11b1c636baf7681d9102edabcc7, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:51:97:3a:e6:05:c9:ee:a9:df:30:0d:65:26: 26:b9:28:21:c4:e4:ad:e1:5c:4a:28:b0:2c:eb:a5: e2:9e:7b:8d:c7:66:ca:39:df:f9:e2:e5:d8:df:e8: fe:ca:44:ad:63:81:9b:35:e0:e6:f2:de:3e:c0:93: d2:65:c2:4b:79:dd:3c:37:a3:35:77:16:bd:53:b8: 33:08:e6:56:d9:da:67:1a:36:2f:68:ff:9f:2b:ad: 20:02:60:41:b6:16:0d:1b:1b:0d:8d:7c:5a:ad:6d: 5b:f6:71:1d:8f:07:50:98:d1:fa:cd:cb:ef:81:81: 85:31:9e:84:8a:aa:34:d1:ad:b7:a7:bc:e1:e4:90: 6d:89:55:04:f0:1c:95:6a:6d:a2:50:da:df:a6:6c: fc:d7:d0:bd:f2:86:79:12:49:17:84:e3:43:f3:1f: 33:52:b3:03:62:00:9b:d9:7a:15:8d:07:06:1a:4c: b7:e5:0a:56:b6:6d:ce:ab:37:73:f1:fd:89:14:28: db:db:b0:f2:80:23:e6:2a:09:ef:67:07:88:71:e8: e6:7d:ac:80:82:ce:9c:20:05:e2:ea:be:38:21:4f: 76:e7:eb:41:28:f7:7b:c2:ee:f8:3c:54:ba:85:d9: 33:e7:16:bb:85:c4:6f:2b:35:3f:ce:ce:ff:6e:b8: bb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A7:3C:01:64:1C:00:32:AE:51:BA:8D:CB:CE:E7:B8:FA:A4:33:38 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/cd3025ff-3653-4276-a530-1fa2eed87e53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/44 Signature Algorithm: sha256WithRSAEncryption 25:7b:d2:7c:3c:4d:84:bb:8c:b0:30:93:cf:33:ce:13:5d:58: 3f:39:9c:d5:c2:6f:26:35:d5:2b:13:7c:4c:77:10:cc:eb:e0: 9f:2e:27:8b:97:b6:c6:6f:8f:83:7c:d6:05:27:99:7b:aa:5a: 85:3b:26:d2:1a:1c:1d:51:ce:a4:3a:de:b9:de:fb:1f:c9:3d: 02:dc:26:1c:1c:b8:73:cd:2a:7d:97:20:9c:b9:13:0e:6f:61: 55:8f:4f:69:2b:8a:e2:bc:b7:ef:08:43:ab:39:e0:b5:d1:6f: 88:ba:61:c4:35:29:de:b5:6e:53:cc:15:58:e3:e6:e7:37:9f: 71:e8:28:55:9d:3b:4d:e4:9f:b8:bf:6a:eb:ca:2f:8a:0a:ce: bf:85:7b:d4:1f:e9:cc:90:80:68:d5:87:14:9c:5e:0c:80:a0: 3d:55:1c:a8:7e:e5:c7:af:b5:cc:33:07:15:fa:2c:07:bd:58: cb:a4:d8:f9:5f:b5:7a:05:e1:d7:2b:c7:7e:bc:0d:b3:c3:dd: 94:44:32:09:10:05:9f:3b:cf:a2:fd:32:87:b9:e7:e2:1a:ee: 28:d8:43:d8:91:d9:d0:e9:ba:b4:b4:2f:a4:25:1a:05:bd:fa: 38:5f:ce:35:0f:4b:5a:b5:72:a3:03:ec:df:b5:8c:bd:a5:8e: c4:b5:e7:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUAp0Hz5X/+qI8lO93gSKZZpz3+8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNjI1MDAyMDA0WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDU1YjY1MDNmMjIyZmJjZWI2ZmI2YWIxNTE1ZGUwYmU4 ZjJlMTFiMWM2MzZiYWY3NjgxZDkxMDJlZGFiY2M3MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtUZc65gXJ7qnfMA1lJia5KCHE5K3hXEoosCzrpeKee43H Zso53/ni5djf6P7KRK1jgZs14Oby3j7Ak9Jlwkt53Tw3ozV3Fr1TuDMI5lbZ2mca Ni9o/58rrSACYEG2Fg0bGw2NfFqtbVv2cR2PB1CY0frNy++BgYUxnoSKqjTRrben vOHkkG2JVQTwHJVqbaJQ2t+mbPzX0L3yhnkSSReE40PzHzNSswNiAJvZehWNBwYa TLflCla2bc6rN3Px/YkUKNvbsPKAI+YqCe9nB4hx6OZ9rICCzpwgBeLqvjghT3bn 60Eo93vC7vg8VLqF2TPnFruFxG8rNT/Ozv9uuLs3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeac8AWQcADKuUbqNy87nuPqkMzgwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2NkMzAyNWZmLTM2NTMtNDI3Ni1hNTMwLTFmYTJlZWQ4N2U1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBACV70nw8TYS7jLAwk88zzhNd WD85nNXCbyY11SsTfEx3EMzr4J8uJ4uXtsZvj4N81gUnmXuqWoU7JtIaHB1RzqQ6 3rne+x/JPQLcJhwcuHPNKn2XIJy5Ew5vYVWPT2kriuK8t+8IQ6s54LXRb4i6YcQ1 Kd61blPMFVjj5uc3n3HoKFWdO03kn7i/auvKL4oKzr+Fe9Qf6cyQgGjVhxScXgyA oD1VHKh+5cevtcwzBxX6LAe9WMuk2PlftXoF4dcrx368DbPD3ZREMgkQBZ87z6L9 Moe55+Ia7ijYQ9iR2dDpurS0L6QlGgW9+jhfzjUPS1q1cqMD7N+1jL2ljsS1500= -----END CERTIFICATE-----Generated at Sun Jun 29 03:00:08 2025 by rpki-client