$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa File: 0364b90a-9207-49b7-a1a6-82182889c57c.roa (raw, json) Hash identifier: WTnnI3N2G/eNZqE7HBw4iwotkWtf/JDYXFFahRQncDs= Subject key identifier: 92:FF:F6:26:7E:42:D3:CA:91:91:91:44:BB:8D:C4:59:A8:0E:DB:8A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 73841BE60986FFA4DA2A25912E647E2DA3927D97 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa Signing time: Thu 18 Sep 2025 23:07:00 +0000 ROA not before: Thu 18 Sep 2025 23:07:00 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:84:1b:e6:09:86:ff:a4:da:2a:25:91:2e:64:7e:2d:a3:92:7d:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Sep 18 23:07:00 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=acb8f99e16f0f1de2586aa2c8b4ff4c7c62f3e5085dd1ade2ed57dc52d819522, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:09:4c:b3:df:28:b8:4a:e6:97:b6:2a:ed:c0: 46:77:73:ad:ed:b8:c9:b7:6c:10:62:80:91:26:88: ce:49:6b:b3:22:78:a2:2d:8c:76:4a:56:99:9c:44: 8f:e9:c8:3d:17:97:10:c8:fd:24:53:b4:dd:01:e5: f1:4b:c5:c2:69:32:b1:03:03:eb:50:1e:84:11:6a: 7c:12:e0:37:fe:82:b2:91:f6:ff:f8:8b:95:3f:1f: d2:3f:cb:c7:78:7a:64:a1:01:de:c1:9c:b8:4a:7b: 8f:b0:91:e3:bb:02:bc:26:7a:57:c8:9c:35:49:13: e0:b0:a2:66:88:50:f6:28:9f:4c:36:ec:c0:ed:c3: af:5a:65:8f:c5:4a:1a:77:07:72:1b:4e:2e:df:5c: 3d:8f:62:29:49:ac:55:65:57:e3:a6:7f:43:bd:d3: f0:dd:ee:92:9e:69:d8:69:7d:77:72:16:43:28:53: 7c:b4:fc:41:a8:47:e5:16:1b:05:e2:5a:f1:2b:00: 63:73:a6:91:8c:65:e5:4d:e6:3c:a2:ba:14:aa:1c: 5e:d0:4e:9e:2b:14:16:5a:68:1c:a2:95:46:00:eb: 21:bd:c3:0e:30:1f:e4:6c:4b:c9:bd:9c:f6:22:cf: 03:b4:65:20:f7:40:75:cc:f0:c6:aa:8f:cc:8d:20: b1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:FF:F6:26:7E:42:D3:CA:91:91:91:44:BB:8D:C4:59:A8:0E:DB:8A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.52.0/24 Signature Algorithm: sha256WithRSAEncryption 70:2e:fc:f2:cf:14:16:f6:5d:40:73:27:bd:8c:5a:2c:7e:79: db:6a:6f:1c:cf:39:0f:80:cc:98:c0:7e:78:cb:38:c7:72:6f: 71:7d:d5:92:35:6f:e3:93:18:c8:fb:1e:ee:e9:64:76:d8:b4: 52:59:b1:ad:1b:64:ff:38:7a:b0:ea:fe:19:01:ab:89:da:36: 62:50:0e:be:0c:d9:e1:c2:f1:f4:ec:56:32:d8:a1:3a:b8:b2: 45:07:c9:ae:b1:1f:51:d7:0f:f5:39:91:8a:b5:00:75:0f:f0: c0:72:a0:2b:21:67:81:e2:84:72:25:63:fa:98:cf:00:b1:e2: 5a:2f:68:fe:0c:c9:2d:bc:84:f0:f0:4a:05:dd:9b:63:f5:98: 2b:83:d6:4a:37:53:1d:66:18:ce:e5:42:eb:39:cc:9b:cb:32: 3d:f5:9d:2d:b6:a9:2d:4d:ac:db:4d:d8:9e:c0:c6:4c:bf:1c: 32:dd:0e:66:de:3e:ae:ea:2c:3e:de:d0:5c:2b:0e:88:38:87: 2d:dd:8d:a4:0e:5d:85:8d:5b:e2:00:5c:46:76:68:de:2d:df: 9f:28:40:79:d8:0f:1d:8f:a0:7f:76:b4:5a:14:c2:fe:9a:57: a5:c6:47:00:d9:49:17:a5:5e:b5:f0:f7:49:c3:5c:8a:b4:6f: 0f:d2:2d:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc4Qb5gmG/6TaKiWRLmR+LaOSfZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwOTE4MjMwNzAwWhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2I4Zjk5ZTE2ZjBmMWRlMjU4NmFhMmM4YjRmZjRjN2M2 MmYzZTUwODVkZDFhZGUyZWQ1N2RjNTJkODE5NTIyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4CUyz3yi4SuaXtirtwEZ3c63tuMm3bBBigJEmiM5Ja7Mi eKItjHZKVpmcRI/pyD0XlxDI/SRTtN0B5fFLxcJpMrEDA+tQHoQRanwS4Df+grKR 9v/4i5U/H9I/y8d4emShAd7BnLhKe4+wkeO7ArwmelfInDVJE+CwomaIUPYon0w2 7MDtw69aZY/FShp3B3IbTi7fXD2PYilJrFVlV+Omf0O90/Dd7pKeadhpfXdyFkMo U3y0/EGoR+UWGwXiWvErAGNzppGMZeVN5jyiuhSqHF7QTp4rFBZaaByilUYA6yG9 ww4wH+RsS8m9nPYizwO0ZSD3QHXM8Maqj8yNILGlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkv/2Jn5C08qRkZFEu43EWagO24owHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzAzNjRiOTBhLTkyMDctNDliNy1hMWE2LTgyMTgyODg5YzU3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDQwDQYJKoZIhvcNAQELBQADggEBAHAu/PLPFBb2XUBzJ72MWix+edtq bxzPOQ+AzJjAfnjLOMdyb3F91ZI1b+OTGMj7Hu7pZHbYtFJZsa0bZP84erDq/hkB q4naNmJQDr4M2eHC8fTsVjLYoTq4skUHya6xH1HXD/U5kYq1AHUP8MByoCshZ4Hi hHIlY/qYzwCx4lovaP4MyS28hPDwSgXdm2P1mCuD1ko3Ux1mGM7lQus5zJvLMj31 nS22qS1NrNtN2J7Axky/HDLdDmbePq7qLD7e0FwrDog4hy3djaQOXYWNW+IAXEZ2 aN4t358oQHnYDx2PoH92tFoUwv6aV6XGRwDZSRelXrXw90nDXIq0bw/SLaU= -----END CERTIFICATE-----Generated at Fri Sep 19 03:17:38 2025 by rpki-client