$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json) Hash identifier: eSfPyA5zmQrZOG8JXmnMgq0T/OLok+qL5pyDz9MSaaU= Subject key identifier: A5:AA:DA:6C:0E:85:0A:A4:0A:0E:71:57:51:81:9F:96:C6:76:11:00 Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Certificate serial: 1D13702F73D1B8C749008DB4C57629FD7FAC35C8 Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa Signing time: Wed 23 Jul 2025 00:00:04 +0000 ROA not before: Wed 23 Jul 2025 00:00:04 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 54113 IP address blocks: 2606:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/3145ebff-dc84-45a9-b769-efbaaf5779e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:13:70:2f:73:d1:b8:c7:49:00:8d:b4:c5:76:29:fd:7f:ac:35:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257 Validity Not Before: Jul 23 00:00:04 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=2411eb09d92d1df62eb47ccf455cb794160be341a3ae179498c72b235a54ce39, CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:58:14:85:0d:86:e3:55:36:89:ae:35:62:8d: 33:1e:d2:25:92:5d:d3:e9:c2:f3:a1:03:cf:4f:3f: 25:1b:c2:3c:d8:2b:70:c7:77:17:43:a2:75:e2:2f: c3:32:9f:a4:9a:60:79:4c:57:81:b4:e7:28:a2:7b: 39:be:5a:0d:81:3f:cb:cd:86:fb:17:ae:0f:db:f7: 22:c1:66:9b:65:8c:68:9e:c6:0d:4c:23:3e:0e:e3: 70:58:c1:48:8e:41:69:76:92:70:12:1e:69:82:42: 1e:9f:60:f6:e7:db:61:09:64:2a:f2:3d:c0:26:7b: 49:ef:29:1a:74:8b:11:92:c3:d2:47:76:5f:4a:f5: 61:61:30:e9:de:39:90:28:d7:16:3a:b4:a0:2e:62: f8:87:54:0a:8d:bc:44:65:3c:24:f6:50:ff:c3:8c: dd:1b:95:2c:df:a0:e2:61:24:b1:03:d5:6d:75:51: 67:5b:70:78:03:cf:23:fd:e7:bd:23:aa:cd:4d:21: cd:44:e4:91:a2:d1:dc:d1:a5:6e:5b:d9:ef:18:d1: c5:93:36:70:3d:84:8c:f3:65:c0:d2:52:cb:e2:d2: a2:2d:b9:27:81:f9:a7:b1:a3:35:cd:cd:0e:9b:13: 17:25:f5:4d:12:dd:2b:83:2a:31:40:dd:10:f0:10: a9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AA:DA:6C:0E:85:0A:A4:0A:0E:71:57:51:81:9F:96:C6:76:11:00 X509v3 Authority Key Identifier: keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 4b:cc:d3:d1:e6:63:60:c3:0e:71:1b:46:d9:c3:df:4b:bc:99: d7:ca:e1:3e:4f:21:eb:0b:b7:1c:57:76:7a:e9:3b:b1:81:ea: da:ba:a6:a8:62:df:a9:d3:61:57:16:da:3e:8a:2e:1e:2d:a4: 8e:ff:10:2d:79:2e:b9:3f:3f:fe:e7:80:d4:bc:d7:90:94:20: 34:1f:ea:18:c2:73:77:90:70:f4:f6:e6:de:20:72:15:0f:66: 99:c2:b4:00:73:a9:2c:30:19:b0:f0:4e:76:e6:3c:62:10:3d: b4:74:6f:68:ce:89:48:53:30:bb:ca:49:6f:c3:4d:46:c6:d7: d6:c8:18:01:ed:28:b1:3c:79:75:25:8e:9d:39:5f:9e:01:15: 60:e3:6b:11:85:97:ac:36:e6:96:09:25:5f:8d:77:eb:f3:ef: c3:e5:bb:64:d3:85:8d:39:5b:8d:6a:18:70:40:40:c4:f4:74: b9:16:f3:50:cb:81:54:0a:ec:74:99:99:6a:c0:e7:de:71:e1: 6a:fa:91:e4:65:00:5c:1c:c5:27:3d:7b:13:2c:8a:62:ec:c7: 76:6b:cb:cb:2b:ce:0b:d0:82:df:6c:8c:5c:1e:8d:54:04:a5: 16:4a:8c:37:8d:4f:1a:e2:d6:9f:db:c9:13:2d:a2:92:c0:06: c4:89:82:cf -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUHRNwL3PRuMdJAI20xXYp/X+sNcgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjMwNTMwMzQwODgxMTU2YzJlMTRhZmVmOWQ2MTk2MjI3 ZTJjNjAzNWEwOWVmMGQyNTcwHhcNMjUwNzIzMDAwMDA0WhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDExZWIwOWQ5MmQxZGY2MmViNDdjY2Y0NTVjYjc5NDE2 MGJlMzQxYTNhZTE3OTQ5OGM3MmIyMzVhNTRjZTM5MS0wKwYDVQQDEyQyYzI0MjFi OS0wY2U1LTQ4YzUtYWMyMy05MWE1NTY1ZjdhZmMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrWBSFDYbjVTaJrjVijTMe0iWSXdPpwvOhA89PPyUbwjzY K3DHdxdDonXiL8Myn6SaYHlMV4G05yiiezm+Wg2BP8vNhvsXrg/b9yLBZptljGie xg1MIz4O43BYwUiOQWl2knASHmmCQh6fYPbn22EJZCryPcAme0nvKRp0ixGSw9JH dl9K9WFhMOneOZAo1xY6tKAuYviHVAqNvERlPCT2UP/DjN0blSzfoOJhJLED1W11 UWdbcHgDzyP9570jqs1NIc1E5JGi0dzRpW5b2e8Y0cWTNnA9hIzzZcDSUsvi0qIt uSeB+aexozXNzQ6bExcl9U0S3SuDKjFA3RDwEKm5AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUparabA6FCqQKDnFXUYGflsZ2EQAwHwYDVR0jBBgwFoAUU+6gKbpu763K tNB3mJ3V7UdVtnAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8zMTQ1ZWJmZi1k Yzg0LTQ1YTktYjc2OS1lZmJhYWY1Nzc5ZTMvYjMwNTMwMzQwODgxMTU2YzJlMTRh ZmVmOWQ2MTk2MjI3ZTJjNjAzNWEwOWVmMGQyNTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNzFlNTIzNmYtYzZmMS00OTI4LWExYjktOGRl ZjA5YzA2MDg1L2FiZDgyNjU3LTg3M2MtNDI0Ny05NzZhLWZhNjI3ZThiZDU0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzcxZTUyMzZmLWM2ZjEtNDkyOC1hMWI5 LThkZWYwOWMwNjA4NS9nUlZzTGhTdjc1MWhsaUotTEdBMW9KN3cwbGMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBizAMA0GCSqGSIb3DQEBCwUAA4IBAQBLzNPR5mNgww5xG0bZw99LvJnX yuE+TyHrC7ccV3Z66TuxgerauqaoYt+p02FXFto+ii4eLaSO/xAteS65Pz/+54DU vNeQlCA0H+oYwnN3kHD09ubeIHIVD2aZwrQAc6ksMBmw8E525jxiED20dG9ozolI UzC7yklvw01GxtfWyBgB7SixPHl1JY6dOV+eARVg42sRhZesNuaWCSVfjXfr8+/D 5btk04WNOVuNahhwQEDE9HS5FvNQy4FUCux0mZlqwOfeceFq+pHkZQBcHMUnPXsT LIpi7Md2a8vLK84L0ILfbIxcHo1UBKUWSow3jU8a4taf28kTLaKSwAbEiYLP -----END CERTIFICATE-----Generated at Wed Aug 6 09:30:25 2025 by rpki-client