$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa File: ef9566d5-9096-4d00-ac93-f3df448013d9.roa (raw, json) Hash identifier: Cr7/IeWMfPfhU5KR6UAIoTU1pfoeWDCa6rVmuLgfiI4= Subject key identifier: 0E:B6:E6:1D:8D:E4:AC:6A:94:9E:40:78:A3:91:A9:58:E0:55:0F:8B Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 6E8C0231EDD50DA0EA72FEE918A2EB04D7803340 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa Signing time: Mon 16 Jun 2025 16:00:00 +0000 ROA not before: Mon 16 Jun 2025 16:00:00 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:8c:02:31:ed:d5:0d:a0:ea:72:fe:e9:18:a2:eb:04:d7:80:33:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jun 16 16:00:00 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=6df1b8be43d9ec4689c119040b46916fdca0b7351f9ac5d875dad9e8b49ffd50, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:dc:b0:96:29:73:b2:39:4d:b6:e3:a9:f5:13: 8d:3b:83:23:f4:c2:e0:25:dc:03:84:d9:06:84:30: f9:4b:67:48:ba:18:29:84:f1:8f:1e:ed:57:70:51: ad:c6:98:fb:c4:c9:b8:37:67:6f:c2:14:98:e9:d0: cc:2a:3c:09:af:00:53:bc:3b:77:bf:97:f7:91:d2: 47:02:a9:8d:cd:65:be:8e:d3:bc:c4:4a:fb:61:8a: 9c:86:5f:92:e2:cd:c7:72:96:38:7c:68:9b:f7:bc: cf:bc:5f:d1:58:9b:ad:98:8f:da:0a:cf:f2:1d:8e: 71:cf:61:bd:46:c1:33:84:89:86:40:7b:cd:07:72: cf:e6:d7:65:01:dc:ea:68:50:27:48:87:bc:ee:c6: bb:b5:2c:69:34:eb:b4:b3:30:df:80:10:0d:be:d5: a7:05:e0:24:76:fc:1a:1e:b0:8b:fa:b4:bd:b0:11: cf:36:70:59:23:95:04:ab:99:d3:a9:fe:80:14:d9: 28:79:aa:a8:a3:d8:c1:e6:25:5a:11:d0:a4:b2:e1: 18:3f:f1:82:9d:99:2c:19:2e:c3:41:1c:8f:50:a2: 26:3f:af:6d:c2:28:e4:8d:d5:cf:ab:56:b7:89:2c: 8b:dc:dd:b6:8c:f8:65:1e:13:41:76:ba:01:8a:3e: d9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B6:E6:1D:8D:E4:AC:6A:94:9E:40:78:A3:91:A9:58:E0:55:0F:8B X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3002::/48 Signature Algorithm: sha256WithRSAEncryption 99:db:8a:11:2f:be:65:81:27:60:3f:7a:71:d2:2e:7b:3c:96: 5d:2a:88:e5:ca:c8:48:b9:1d:e5:38:6c:7e:e1:5e:ea:a2:af: 28:d9:e6:a2:3b:12:67:af:a6:11:ce:77:00:da:f0:2c:ab:7f: da:ed:62:ec:be:35:bb:51:e2:a8:05:a5:30:6f:88:ee:77:88: e5:a1:ff:5d:bb:e9:94:cd:c0:bf:9d:86:ef:f7:29:ff:22:c3: 2a:48:fd:65:f6:7a:04:4d:30:8a:07:3c:8c:17:83:ae:3b:2c: 2c:4d:01:13:32:92:17:16:0f:e4:9d:39:11:1b:0d:cf:ad:4f: 61:38:15:38:7c:78:6c:07:21:3b:9a:bf:79:7a:3e:b9:e8:b9: 05:0e:de:31:ec:3d:f7:03:df:50:3a:a8:28:fd:05:a6:c2:5c: 55:ea:bc:41:3e:32:f8:7f:0f:31:81:ea:b4:ef:22:25:73:cf: 8a:68:ee:45:7d:1c:e7:f9:04:be:73:a6:7a:41:11:cd:9c:8f: f4:5c:8b:5b:4a:92:34:11:c2:07:cc:5f:0d:89:81:8d:48:07: 5f:a2:c4:a9:ea:f4:16:a5:60:04:b0:79:69:f1:3d:77:f8:8e: 27:41:ea:c8:3b:07:d9:b8:45:1c:37:ae:33:34:13:e2:92:46: ee:d8:44:de -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbowCMe3VDaDqcv7pGKLrBNeAM0AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNjE2MTYwMDAwWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGYxYjhiZTQzZDllYzQ2ODljMTE5MDQwYjQ2OTE2ZmRj YTBiNzM1MWY5YWM1ZDg3NWRhZDllOGI0OWZmZDUwMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb3LCWKXOyOU2246n1E407gyP0wuAl3AOE2QaEMPlLZ0i6 GCmE8Y8e7VdwUa3GmPvEybg3Z2/CFJjp0MwqPAmvAFO8O3e/l/eR0kcCqY3NZb6O 07zESvthipyGX5Lizcdyljh8aJv3vM+8X9FYm62Yj9oKz/IdjnHPYb1GwTOEiYZA e80Hcs/m12UB3OpoUCdIh7zuxru1LGk067SzMN+AEA2+1acF4CR2/BoesIv6tL2w Ec82cFkjlQSrmdOp/oAU2Sh5qqij2MHmJVoR0KSy4Rg/8YKdmSwZLsNBHI9QoiY/ r23CKOSN1c+rVreJLIvc3baM+GUeE0F2ugGKPtl1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDrbmHY3krGqUnkB4o5GpWOBVD4swHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2VmOTU2NmQ1LTkwOTYtNGQwMC1hYzkzLWYzZGY0NDgwMTNkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAIwDQYJKoZIhvcNAQELBQADggEBAJnbihEvvmWBJ2A/enHSLns8 ll0qiOXKyEi5HeU4bH7hXuqiryjZ5qI7EmevphHOdwDa8Cyrf9rtYuy+NbtR4qgF pTBviO53iOWh/1276ZTNwL+dhu/3Kf8iwypI/WX2egRNMIoHPIwXg647LCxNARMy khcWD+SdOREbDc+tT2E4FTh8eGwHITuav3l6PrnouQUO3jHsPfcD31A6qCj9BabC XFXqvEE+Mvh/DzGB6rTvIiVzz4po7kV9HOf5BL5zpnpBEc2cj/Rci1tKkjQRwgfM Xw2JgY1IB1+ixKnq9BalYASweWnxPXf4jidB6sg7B9m4RRw3rjM0E+KSRu7YRN4= -----END CERTIFICATE-----Generated at Sun Jun 29 04:01:12 2025 by rpki-client