$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/79232961-c24e-4e24-a09f-bc78fb7c0bcc.roa File: 79232961-c24e-4e24-a09f-bc78fb7c0bcc.roa (raw, json) Hash identifier: LYABLta2G7GcxwRB/aB4scW5+PHBHS/NTJNHh20dVSU= Subject key identifier: 1B:E2:D7:1C:5B:A3:C1:45:B0:F1:01:99:82:6D:F9:B6:2F:74:53:11 Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 351CCD62F3AC995982E08911CE4B7F1C36F7C909 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/79232961-c24e-4e24-a09f-bc78fb7c0bcc.roa Signing time: Mon 21 Jul 2025 16:00:15 +0000 ROA not before: Mon 21 Jul 2025 16:00:15 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:1c:cd:62:f3:ac:99:59:82:e0:89:11:ce:4b:7f:1c:36:f7:c9:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Jul 21 16:00:15 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=22eddc8046d492ee28ec68143a89b193212b2a5d6e54daeac903a8728d28798a, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4f:ef:be:f4:c9:d7:75:60:8e:8c:b6:b4:d5: 21:0f:81:2b:fe:2a:d5:01:dc:01:dd:44:5a:6e:c7: 98:ba:ea:21:99:f6:47:46:c9:0f:dc:9e:3c:d6:c1: 39:c2:da:91:9f:9f:2b:66:3b:9b:75:3c:17:8e:90: 16:78:81:8b:79:17:2d:b7:25:c5:48:5b:74:a3:6a: 4a:66:1f:64:c2:23:84:e2:6f:f1:30:53:15:69:1d: f8:18:75:71:68:46:5f:cf:00:4c:b4:bc:83:52:2c: da:5f:ac:83:71:2f:d0:d0:b9:b6:c5:a3:95:8b:03: cc:d2:a2:20:15:de:cf:79:01:5e:ca:c7:18:58:3f: cc:1d:03:ff:51:2b:5b:8e:72:97:cd:50:45:02:b2: fd:30:b2:07:7e:31:8f:7c:55:53:e4:37:16:52:07: 55:73:00:59:a5:25:b3:f7:45:25:0c:22:a4:3c:a9: 6e:03:e4:0e:b9:ff:f9:f0:fb:0e:8f:fd:71:cc:8d: 03:a7:11:01:8d:39:79:37:d2:dd:01:7b:2f:3e:92: 92:95:4c:c1:a9:34:32:91:90:27:dc:50:6e:af:14: 94:ed:07:c2:f1:f6:51:dc:a2:65:52:1a:05:25:86: a8:e1:b7:2e:d2:a6:bc:e4:b5:5e:8e:84:71:29:5b: 60:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E2:D7:1C:5B:A3:C1:45:B0:F1:01:99:82:6D:F9:B6:2F:74:53:11 X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/79232961-c24e-4e24-a09f-bc78fb7c0bcc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3001::/48 Signature Algorithm: sha256WithRSAEncryption 8c:8b:6a:ca:35:5e:e1:62:6d:c8:e9:8d:42:90:bc:92:17:d1: 6c:da:12:2f:d5:cf:7f:70:16:40:dc:a8:be:70:43:5b:16:38: 60:71:15:13:04:60:1e:56:8d:99:45:b1:34:ba:92:e1:b4:70: 59:68:77:f6:b0:ac:f1:0f:0c:4a:c3:33:23:f1:50:6a:46:b7: 22:8b:ac:7e:76:73:20:d1:7e:fb:92:18:86:94:82:36:ef:84: cf:ad:de:00:ea:07:79:6f:33:5e:5e:2b:a4:e4:40:c7:82:7b: 6f:b0:1b:e4:18:6b:8c:fb:52:a8:1b:de:bc:df:ec:5d:58:f6: 75:09:54:94:39:4d:1a:1f:30:09:f9:e5:d1:fc:37:06:06:65: 0b:ad:bc:36:d5:7e:9f:9a:19:4a:1d:21:07:b7:22:a3:54:e0: 62:9d:00:b3:ea:98:3c:5b:72:b8:ff:d2:0d:b3:54:bf:88:f8: 31:9c:cf:b3:96:54:99:18:3a:9c:55:69:df:6f:95:df:9e:58: 1a:93:a2:51:f2:47:b8:ca:1a:d6:d0:25:6a:53:f3:d6:71:fb: 7d:d0:b0:4c:cd:e0:c8:72:b6:a2:46:9a:9c:be:7b:b0:40:06: e1:39:14:01:57:5e:48:57:cb:0d:4b:b7:2a:d0:b6:39:42:e6: 98:dd:02:7b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNRzNYvOsmVmC4IkRzkt/HDb3yQkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwNzIxMTYwMDE1WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmVkZGM4MDQ2ZDQ5MmVlMjhlYzY4MTQzYTg5YjE5MzIx MmIyYTVkNmU1NGRhZWFjOTAzYTg3MjhkMjg3OThhMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaT+++9MnXdWCOjLa01SEPgSv+KtUB3AHdRFpux5i66iGZ 9kdGyQ/cnjzWwTnC2pGfnytmO5t1PBeOkBZ4gYt5Fy23JcVIW3SjakpmH2TCI4Ti b/EwUxVpHfgYdXFoRl/PAEy0vINSLNpfrINxL9DQubbFo5WLA8zSoiAV3s95AV7K xxhYP8wdA/9RK1uOcpfNUEUCsv0wsgd+MY98VVPkNxZSB1VzAFmlJbP3RSUMIqQ8 qW4D5A65//nw+w6P/XHMjQOnEQGNOXk30t0Bey8+kpKVTMGpNDKRkCfcUG6vFJTt B8Lx9lHcomVSGgUlhqjhty7SprzktV6OhHEpW2AZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUG+LXHFujwUWw8QGZgm35ti90UxEwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzc5MjMyOTYxLWMyNGUtNGUyNC1hMDlmLWJjNzhmYjdjMGJjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAEwDQYJKoZIhvcNAQELBQADggEBAIyLaso1XuFibcjpjUKQvJIX 0WzaEi/Vz39wFkDcqL5wQ1sWOGBxFRMEYB5WjZlFsTS6kuG0cFlod/awrPEPDErD MyPxUGpGtyKLrH52cyDRfvuSGIaUgjbvhM+t3gDqB3lvM15eK6TkQMeCe2+wG+QY a4z7Uqgb3rzf7F1Y9nUJVJQ5TRofMAn55dH8NwYGZQutvDbVfp+aGUodIQe3IqNU 4GKdALPqmDxbcrj/0g2zVL+I+DGcz7OWVJkYOpxVad9vld+eWBqTolHyR7jKGtbQ JWpT89Zx+33QsEzN4MhytqJGmpy+e7BABuE5FAFXXkhXyw1LtyrQtjlC5pjdAns= -----END CERTIFICATE-----Generated at Mon Jul 21 23:16:40 2025 by rpki-client