$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa File: e7874585-f99e-4906-afcf-7069fe104b33.roa (raw, json) Hash identifier: 7ssFY6uuzc368mJbVdyK/0r6KbooXR9ChX75X6yHBhw= Subject key identifier: F0:FF:5C:AB:C5:D2:B5:81:06:93:00:13:2A:10:48:C2:6F:A7:D8:09 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 5758F43F18340CD329B09F9C5B91DDA8789E6782 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa Signing time: Mon 21 Jul 2025 16:00:13 +0000 ROA not before: Mon 21 Jul 2025 16:00:13 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:300f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:58:f4:3f:18:34:0c:d3:29:b0:9f:9c:5b:91:dd:a8:78:9e:67:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jul 21 16:00:13 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=dcc9530bee1856a46a6c474fcf24cdeb638d3c69334a4f047207778622ad956f, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1a:95:b9:a3:32:ef:d8:70:27:97:60:05:e6: f7:eb:a4:2c:18:8a:15:99:c3:e6:bc:10:21:9c:66: 89:e2:ae:75:5a:7b:95:9d:74:82:72:95:f0:92:9b: fa:69:c8:d4:dd:39:b3:88:80:f0:53:b6:2a:ac:2a: ba:69:39:02:1c:90:0c:cd:2f:14:12:e2:16:16:54: 42:79:34:19:f6:f0:62:8b:97:37:02:41:63:d9:be: 75:2e:a8:cd:d5:23:09:0c:ee:4a:8a:ef:44:b8:82: af:6f:a4:43:4c:c0:6a:55:03:17:b7:cc:8c:69:05: 67:97:50:10:9c:58:0b:57:32:82:24:61:5b:3d:b4: 61:ab:be:51:42:08:7a:a6:6a:f8:c7:7c:bb:90:75: 44:35:49:b0:fa:99:c5:b5:bd:e2:01:e0:81:1f:8f: 12:6e:15:b8:80:f2:a7:1c:39:46:a0:5c:ac:62:ee: 47:7f:48:d9:d2:b6:15:82:de:76:c6:15:80:42:81: 46:35:e7:76:23:9c:84:7a:a8:c4:54:e6:75:ea:8d: 19:f4:c5:82:47:f7:67:22:77:df:2f:77:a8:26:ce: 70:73:4d:e5:9c:fd:3c:a7:ad:58:5b:44:fe:0d:4f: 5e:3b:59:92:f6:e3:89:d4:33:d7:6c:58:dd:a0:1c: 73:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FF:5C:AB:C5:D2:B5:81:06:93:00:13:2A:10:48:C2:6F:A7:D8:09 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:300f::/48 Signature Algorithm: sha256WithRSAEncryption 81:b2:2c:57:37:15:e4:0e:6c:e5:09:19:59:2a:df:7e:4b:46: 6f:9b:1e:bf:f3:2c:05:47:dc:95:67:03:81:87:93:e8:67:f0: 5d:53:87:a2:c7:4c:7f:a5:5a:47:f8:0a:f5:c8:05:36:d9:99: cb:0e:c9:f4:8c:b3:14:0a:02:5e:71:eb:dd:f0:db:4e:eb:14: 9d:67:3e:28:7b:64:fc:d1:9d:06:9b:38:89:50:7c:1e:a8:33: bd:c3:f4:cd:c5:da:80:c6:55:28:0f:8c:12:13:69:94:d3:0c: e4:3e:d4:0d:a3:71:67:99:ef:19:94:a7:7e:b2:d1:64:97:5a: 41:93:17:b2:bf:1d:2d:e0:08:b1:80:dc:45:ee:fc:a9:19:31: 02:cb:26:b7:ed:e4:05:ed:e4:27:e2:c1:a8:30:13:8c:8b:df: 7c:52:41:d8:9b:61:f1:04:c7:35:69:ab:e6:91:d3:12:e8:1a: b5:2d:4f:fa:ec:d1:57:7f:91:d0:f2:ca:40:7f:a7:be:3e:a7: 42:a8:79:ad:cd:6c:04:16:b3:83:7f:d9:59:a7:1f:3f:4d:74: 94:16:b6:6a:2f:df:ed:b6:06:69:0d:d1:40:cd:af:df:49:18: d4:c3:c7:8f:15:23:1e:94:d7:76:c4:60:cb:a0:15:f0:eb:92: bc:43:4e:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV1j0Pxg0DNMpsJ+cW5HdqHieZ4IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNzIxMTYwMDEzWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2M5NTMwYmVlMTg1NmE0NmE2YzQ3NGZjZjI0Y2RlYjYz OGQzYzY5MzM0YTRmMDQ3MjA3Nzc4NjIyYWQ5NTZmMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoGpW5ozLv2HAnl2AF5vfrpCwYihWZw+a8ECGcZonirnVa e5WddIJylfCSm/ppyNTdObOIgPBTtiqsKrppOQIckAzNLxQS4hYWVEJ5NBn28GKL lzcCQWPZvnUuqM3VIwkM7kqK70S4gq9vpENMwGpVAxe3zIxpBWeXUBCcWAtXMoIk YVs9tGGrvlFCCHqmavjHfLuQdUQ1SbD6mcW1veIB4IEfjxJuFbiA8qccOUagXKxi 7kd/SNnSthWC3nbGFYBCgUY153YjnIR6qMRU5nXqjRn0xYJH92cid98vd6gmznBz TeWc/TynrVhbRP4NT147WZL244nUM9dsWN2gHHOFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8P9cq8XStYEGkwATKhBIwm+n2AkwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2U3ODc0NTg1LWY5OWUtNDkwNi1hZmNmLTcwNjlmZTEwNGIzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMA8wDQYJKoZIhvcNAQELBQADggEBAIGyLFc3FeQObOUJGVkq335L Rm+bHr/zLAVH3JVnA4GHk+hn8F1Th6LHTH+lWkf4CvXIBTbZmcsOyfSMsxQKAl5x 693w207rFJ1nPih7ZPzRnQabOIlQfB6oM73D9M3F2oDGVSgPjBITaZTTDOQ+1A2j cWeZ7xmUp36y0WSXWkGTF7K/HS3gCLGA3EXu/KkZMQLLJrft5AXt5CfiwagwE4yL 33xSQdibYfEExzVpq+aR0xLoGrUtT/rs0Vd/kdDyykB/p74+p0Koea3NbAQWs4N/ 2VmnHz9NdJQWtmov3+22BmkN0UDNr99JGNTDx48VIx6U13bEYMugFfDrkrxDTng= -----END CERTIFICATE-----Generated at Mon Aug 4 21:31:11 2025 by rpki-client