$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa File: e7874585-f99e-4906-afcf-7069fe104b33.roa (raw, json) Hash identifier: frYVJmXOkpz/qIeAhlyfgNdPQz2YIcp2ED9kyyJbM6I= Subject key identifier: 7F:7F:5D:66:64:A2:31:E4:C1:D9:D4:28:73:CF:FE:B7:59:6E:C5:0D Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 381FEC79269DCF918607186D655BD7F31B92D94E Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa Signing time: Sat 31 May 2025 00:20:04 +0000 ROA not before: Sat 31 May 2025 00:20:04 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:300f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:1f:ec:79:26:9d:cf:91:86:07:18:6d:65:5b:d7:f3:1b:92:d9:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: May 31 00:20:04 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=3418be97a2a275a8e3432a318429e5a473d8081f86e6372a605d94dc6a1bfbc5, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7d:fb:5b:3a:2f:2a:74:89:88:e1:cd:56:4e: a9:bb:9e:34:d0:66:dd:35:dc:29:a2:1c:db:a1:27: 01:9d:4e:bd:d8:20:7c:e6:b5:d9:3d:e6:96:d0:86: 4b:e0:84:99:3d:dc:1a:66:2d:0c:ee:7a:41:bc:07: a9:90:03:51:33:ab:b0:70:32:78:3d:35:53:a8:c3: c7:79:40:88:68:51:67:20:ae:1b:e5:d6:b3:6c:b2: 0f:55:71:fc:a1:94:c7:f3:d7:c4:0a:b1:f1:0e:f3: b1:13:2f:d2:14:c7:0a:c0:1e:f9:e1:9b:f5:4a:40: 9d:40:79:9f:b6:21:4e:6e:88:bd:57:4c:51:97:88: 12:b9:89:65:60:9d:b8:6f:b2:9b:1f:63:50:ed:cf: ae:de:d7:88:3c:4a:62:f8:45:2e:5f:c4:f4:a3:49: 80:d3:5d:13:e8:50:dc:c8:df:b2:6e:26:de:30:77: 99:6b:b2:a8:a8:82:13:8a:4f:cf:c6:e1:03:22:26: bf:47:12:72:77:12:c8:4e:08:66:84:c5:ec:d4:67: aa:94:0e:b6:ac:87:f7:2b:b7:52:0f:4d:2c:48:d3: 15:c9:00:61:01:e3:dc:8e:e7:01:6c:ed:a1:b4:d4: 6c:7a:ba:be:ef:63:84:b6:eb:c0:4e:68:86:76:8c: 13:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7F:5D:66:64:A2:31:E4:C1:D9:D4:28:73:CF:FE:B7:59:6E:C5:0D X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e7874585-f99e-4906-afcf-7069fe104b33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:300f::/48 Signature Algorithm: sha256WithRSAEncryption 99:fd:ff:b2:5a:c1:58:9d:6d:10:32:44:b4:ee:dc:d4:19:4c: ab:07:04:da:b4:0c:0d:d7:81:1f:48:7f:dc:87:f8:c2:73:3b: 5a:42:4a:62:12:e9:fe:48:d7:ae:c3:46:f0:8b:aa:5b:6d:13: e9:a7:f0:e0:c2:e2:78:fe:f2:c9:85:4a:f4:28:aa:76:7a:fd: 16:ef:2f:09:2d:12:5e:d7:61:c4:09:95:85:f9:be:39:c9:bb: 84:d1:ab:7a:c2:d3:ae:ac:a5:a2:66:f9:0d:e7:a0:2d:95:b6: 73:1f:ac:e7:6b:c5:bb:68:ab:ca:90:87:87:93:0a:9f:bc:e2: 0e:fb:1d:6b:1b:2c:5c:f5:de:1e:27:86:f6:95:19:e6:19:bd: 06:b6:09:77:e2:4a:6f:a3:c2:6e:52:80:9e:73:a7:86:b2:3d: 53:a4:2f:de:75:5e:d4:61:ca:21:6e:21:77:62:43:68:09:2f: 20:68:fd:a8:76:8e:08:86:e3:ff:86:68:5b:ce:5e:ea:9d:9c: 74:3a:da:90:b9:40:20:02:f7:34:d6:75:32:c3:db:d1:ef:61: 7b:d4:7d:71:5d:62:dd:0f:c2:e9:63:a9:91:8d:c1:81:f4:c2: 2e:94:62:b2:9c:54:f3:a6:37:ac:e9:23:fe:4b:e0:f1:8a:29: c3:4f:b2:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOB/seSadz5GGBxhtZVvX8xuS2U4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNTMxMDAyMDA0WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDE4YmU5N2EyYTI3NWE4ZTM0MzJhMzE4NDI5ZTVhNDcz ZDgwODFmODZlNjM3MmE2MDVkOTRkYzZhMWJmYmM1MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChfftbOi8qdImI4c1WTqm7njTQZt013CmiHNuhJwGdTr3Y IHzmtdk95pbQhkvghJk93BpmLQzuekG8B6mQA1Ezq7BwMng9NVOow8d5QIhoUWcg rhvl1rNssg9VcfyhlMfz18QKsfEO87ETL9IUxwrAHvnhm/VKQJ1AeZ+2IU5uiL1X TFGXiBK5iWVgnbhvspsfY1Dtz67e14g8SmL4RS5fxPSjSYDTXRPoUNzI37JuJt4w d5lrsqioghOKT8/G4QMiJr9HEnJ3EshOCGaExezUZ6qUDrash/crt1IPTSxI0xXJ AGEB49yO5wFs7aG01Gx6ur7vY4S268BOaIZ2jBPNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf39dZmSiMeTB2dQoc8/+t1luxQ0wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2U3ODc0NTg1LWY5OWUtNDkwNi1hZmNmLTcwNjlmZTEwNGIzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMA8wDQYJKoZIhvcNAQELBQADggEBAJn9/7JawVidbRAyRLTu3NQZ TKsHBNq0DA3XgR9If9yH+MJzO1pCSmIS6f5I167DRvCLqlttE+mn8ODC4nj+8smF SvQoqnZ6/RbvLwktEl7XYcQJlYX5vjnJu4TRq3rC066spaJm+Q3noC2VtnMfrOdr xbtoq8qQh4eTCp+84g77HWsbLFz13h4nhvaVGeYZvQa2CXfiSm+jwm5SgJ5zp4ay PVOkL951XtRhyiFuIXdiQ2gJLyBo/ah2jgiG4/+GaFvOXuqdnHQ62pC5QCAC9zTW dTLD29HvYXvUfXFdYt0PwuljqZGNwYH0wi6UYrKcVPOmN6zpI/5L4PGKKcNPsuU= -----END CERTIFICATE-----Generated at Sat Jun 14 05:42:29 2025 by rpki-client