$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa File: ef9566d5-9096-4d00-ac93-f3df448013d9.roa (raw, json) Hash identifier: huLklxuWTAWO+/xn2apf/otS1EgOpN799usouA5PUkQ= Subject key identifier: BE:CF:C4:3E:EE:99:F4:6B:5E:3D:5E:4F:C0:B4:FD:B3:21:19:2B:F2 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 3A6DFEAC95D743B72C9D0D1BE5235E65B422E387 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa Signing time: Fri 26 Sep 2025 00:50:19 +0000 ROA not before: Fri 26 Sep 2025 00:50:19 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:6d:fe:ac:95:d7:43:b7:2c:9d:0d:1b:e5:23:5e:65:b4:22:e3:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Sep 26 00:50:19 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=fca8539ee95e58e16fecf54bd2da9f80e7067d99bb2b6782c81c605c961c019d, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:09:71:f9:e1:7a:7d:62:68:e5:2f:82:97:d0: 41:8e:cc:30:5a:ad:58:2a:fa:8d:b5:0c:47:9f:63: 69:6e:a0:9d:f5:d9:36:de:57:ce:1a:c1:bc:21:52: 25:6f:f2:c0:a3:1e:05:5c:26:0b:09:e5:aa:86:e4: df:ae:3d:79:c9:de:04:da:cc:10:bb:44:8a:44:1e: 88:30:0e:57:16:2f:46:c2:16:24:13:78:b4:1e:24: 16:08:ce:89:fa:c5:05:a5:83:1a:6a:41:7f:43:e2: 6f:ec:12:0d:6f:9d:6d:48:74:63:ee:81:3e:0d:e0: b7:ae:75:a7:cb:19:01:26:a2:bf:36:a5:08:ed:b3: da:1a:8f:c4:9a:64:a6:fa:92:be:cd:22:e1:85:67: 5c:b5:11:5b:c1:40:39:0a:32:be:62:1c:35:4a:28: 5c:43:60:29:11:85:12:56:4b:56:eb:0a:51:1b:b6: a0:d2:87:26:eb:46:38:ef:d2:93:09:29:de:3e:a0: 35:50:c5:ce:6c:ea:7d:0c:8b:66:d1:d6:5b:49:5b: 75:29:1f:b4:5d:bc:9f:cb:ff:71:14:35:dc:8c:19: d7:ae:07:ca:e8:c3:2a:aa:37:3b:3b:48:d1:62:90: 20:1b:5b:4d:dc:e6:91:4d:55:a9:72:2f:a6:c6:37: 1d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:CF:C4:3E:EE:99:F4:6B:5E:3D:5E:4F:C0:B4:FD:B3:21:19:2B:F2 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/ef9566d5-9096-4d00-ac93-f3df448013d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3002::/48 Signature Algorithm: sha256WithRSAEncryption 8d:44:b4:a6:8a:a5:16:e9:ed:5f:41:b9:12:63:9c:4e:44:46: 33:00:41:df:50:2b:fa:92:19:ee:56:71:50:08:36:f1:09:5c: f5:48:f9:9b:58:28:6b:7f:57:a7:ce:7a:39:b4:ab:be:3e:b0: 84:fe:df:fc:8f:0b:f8:00:0b:54:4f:8c:7e:2d:2b:c7:fb:70: 3b:d2:66:d2:3d:4f:bc:72:8b:33:d4:89:64:3b:05:f5:cd:11: f7:1e:38:96:e9:b5:c8:cd:51:17:df:94:13:82:67:1c:d1:9d: 50:aa:7d:c5:cd:fc:ae:5c:df:b0:e5:09:1e:99:4a:bc:79:36: d8:b1:cc:06:95:7a:a7:95:f9:67:91:ba:78:1e:97:3e:b1:5c: 35:c4:77:06:02:a2:01:10:30:02:40:96:96:0c:98:96:77:2f: 02:51:cd:27:1b:8a:05:7b:54:fb:db:fd:36:95:96:eb:a0:fd: 92:9f:a7:ef:f6:95:7e:b1:bd:ee:03:e5:0a:ed:72:dc:b9:f8: 05:34:eb:6b:07:d8:37:4a:2c:32:b6:52:c8:92:43:2d:19:09: d6:68:34:d4:f2:97:3b:7d:11:ec:22:27:6f:30:5d:8e:c0:36: 72:b6:7d:c2:1f:65:39:f7:d1:f7:bb:38:9b:c7:83:58:da:a6: f9:17:5a:1d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOm3+rJXXQ7csnQ0b5SNeZbQi44cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwOTI2MDA1MDE5WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2E4NTM5ZWU5NWU1OGUxNmZlY2Y1NGJkMmRhOWY4MGU3 MDY3ZDk5YmIyYjY3ODJjODFjNjA1Yzk2MWMwMTlkMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7CXH54Xp9YmjlL4KX0EGOzDBarVgq+o21DEefY2luoJ31 2TbeV84awbwhUiVv8sCjHgVcJgsJ5aqG5N+uPXnJ3gTazBC7RIpEHogwDlcWL0bC FiQTeLQeJBYIzon6xQWlgxpqQX9D4m/sEg1vnW1IdGPugT4N4LeudafLGQEmor82 pQjts9oaj8SaZKb6kr7NIuGFZ1y1EVvBQDkKMr5iHDVKKFxDYCkRhRJWS1brClEb tqDShybrRjjv0pMJKd4+oDVQxc5s6n0Mi2bR1ltJW3UpH7RdvJ/L/3EUNdyMGdeu B8rowyqqNzs7SNFikCAbW03c5pFNValyL6bGNx3xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvs/EPu6Z9GtePV5PwLT9syEZK/IwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2VmOTU2NmQ1LTkwOTYtNGQwMC1hYzkzLWYzZGY0NDgwMTNkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAIwDQYJKoZIhvcNAQELBQADggEBAI1EtKaKpRbp7V9BuRJjnE5E RjMAQd9QK/qSGe5WcVAINvEJXPVI+ZtYKGt/V6fOejm0q74+sIT+3/yPC/gAC1RP jH4tK8f7cDvSZtI9T7xyizPUiWQ7BfXNEfceOJbptcjNURfflBOCZxzRnVCqfcXN /K5c37DlCR6ZSrx5NtixzAaVeqeV+WeRungelz6xXDXEdwYCogEQMAJAlpYMmJZ3 LwJRzScbigV7VPvb/TaVluug/ZKfp+/2lX6xve4D5Qrtcty5+AU062sH2DdKLDK2 UsiSQy0ZCdZoNNTylzt9EewiJ28wXY7ANnK2fcIfZTn30fe7OJvHg1japvkXWh0= -----END CERTIFICATE-----Generated at Mon Oct 20 18:02:37 2025 by rpki-client