$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa File: 0364b90a-9207-49b7-a1a6-82182889c57c.roa (raw, json) Hash identifier: 780RDc6UlTW+hep4ZL/Na1FQgG1rTd0vZuYr1sukzW4= Subject key identifier: E1:33:83:86:4E:26:21:03:CC:F5:BF:79:F5:25:93:2C:59:DD:BF:84 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0B5C81D3BCE90CE346A78AF6A86EBCC413037D9B Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa Signing time: Sat 08 Nov 2025 00:10:04 +0000 ROA not before: Sat 08 Nov 2025 00:10:04 +0000 ROA not after: Sat 13 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:5c:81:d3:bc:e9:0c:e3:46:a7:8a:f6:a8:6e:bc:c4:13:03:7d:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 8 00:10:04 2025 GMT Not After : Dec 13 23:59:59 2025 GMT Subject: serialNumber=e6cd1460e2819318ecb7085286f4414d04785006666a33caec2db6c72b73b932, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9a:e7:da:a1:f5:1b:44:f2:78:37:55:98:32: 06:6e:92:f3:5b:48:06:d2:63:23:40:2d:67:b1:8f: c1:9b:6e:b4:5a:c4:ed:b5:d9:31:57:e4:74:bb:7e: cc:90:dc:f4:ef:52:45:d8:e6:f9:bb:ae:65:9b:85: 06:95:08:ab:c3:6a:cf:f1:a6:a7:5e:d5:c9:2b:4e: 3a:3b:25:1c:3d:9e:6a:01:81:2b:d6:df:cb:57:19: ce:e9:fd:f3:53:0e:f2:51:ca:88:f3:7d:f5:dd:f3: b1:e0:a8:e0:c7:4d:b6:7f:e8:82:ab:ec:08:ac:fd: 8a:98:f0:9d:3a:12:68:fd:73:bb:03:db:c5:56:42: da:65:63:0e:69:65:a6:b3:c8:3e:0a:96:9a:ec:7a: 44:f0:bd:bc:7c:63:a5:ed:84:a3:d0:08:7b:d6:52: 5a:ae:97:1f:a6:62:5d:a6:01:2b:48:29:cd:10:ee: a4:56:b1:b6:71:d8:e9:93:02:07:b8:9b:d8:c9:34: 98:6b:ff:d7:df:d7:59:9c:c6:24:bf:a5:27:6b:32: 05:ff:40:6f:d7:60:a5:69:99:91:b6:ed:31:2d:cd: 17:3d:ee:1f:c8:12:08:c8:7c:d0:7f:0c:9a:04:0b: 44:c6:d9:ab:bf:41:23:e8:3e:df:0d:d5:cc:6d:23: 53:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:33:83:86:4E:26:21:03:CC:F5:BF:79:F5:25:93:2C:59:DD:BF:84 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.52.0/24 Signature Algorithm: sha256WithRSAEncryption 51:40:04:a1:dd:c9:3c:05:57:4c:fc:8d:8f:96:da:b3:5f:10: 41:1c:f4:65:66:6a:a5:fb:72:1e:85:36:71:e8:81:13:5f:9d: ba:cc:71:ab:f4:f3:ca:b0:60:bd:32:0d:15:d7:fc:97:8d:3c: 34:c2:6a:41:13:db:0d:ab:d5:49:fa:c4:b5:8d:81:05:0d:9f: d8:50:c8:38:f5:9f:33:01:9b:65:e1:bf:95:38:f1:65:46:a3: 37:f2:4e:fa:0a:3f:38:aa:59:a0:65:09:89:46:35:da:ab:69: 3d:98:0d:2b:51:33:d9:5e:12:57:c0:72:97:35:b3:f5:77:63: 78:1c:09:11:9d:f5:29:0e:ac:62:d4:90:61:21:3c:4c:3b:92: 65:bd:68:37:9f:c4:a1:66:30:0c:41:db:e2:1e:f8:f4:68:d3: 4c:60:09:d1:25:aa:c8:15:05:be:7a:26:53:f2:b3:7d:f2:14: d3:df:a7:c9:4b:38:a0:af:29:52:49:83:b9:c1:d4:51:7b:77: 2d:7b:e8:bb:69:23:0c:62:3c:dc:54:f9:fa:86:4b:3f:b4:ff: ef:c3:47:16:bf:bd:6e:44:92:c0:cd:90:3c:c4:e9:44:a2:15: f8:86:3b:80:b5:26:0a:d8:20:c3:fb:2d:f4:2d:33:25:23:18: 16:ba:31:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC1yB07zpDONGp4r2qG68xBMDfZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTA4MDAxMDA0WhcNMjUxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmNkMTQ2MGUyODE5MzE4ZWNiNzA4NTI4NmY0NDE0ZDA0 Nzg1MDA2NjY2YTMzY2FlYzJkYjZjNzJiNzNiOTMyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCymufaofUbRPJ4N1WYMgZukvNbSAbSYyNALWexj8GbbrRa xO212TFX5HS7fsyQ3PTvUkXY5vm7rmWbhQaVCKvDas/xpqde1ckrTjo7JRw9nmoB gSvW38tXGc7p/fNTDvJRyojzffXd87HgqODHTbZ/6IKr7Ais/YqY8J06Emj9c7sD 28VWQtplYw5pZaazyD4KlprsekTwvbx8Y6XthKPQCHvWUlqulx+mYl2mAStIKc0Q 7qRWsbZx2OmTAge4m9jJNJhr/9ff11mcxiS/pSdrMgX/QG/XYKVpmZG27TEtzRc9 7h/IEgjIfNB/DJoEC0TG2au/QSPoPt8N1cxtI1OrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4TODhk4mIQPM9b959SWTLFndv4QwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzAzNjRiOTBhLTkyMDctNDliNy1hMWE2LTgyMTgyODg5YzU3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDQwDQYJKoZIhvcNAQELBQADggEBAFFABKHdyTwFV0z8jY+W2rNfEEEc 9GVmaqX7ch6FNnHogRNfnbrMcav088qwYL0yDRXX/JeNPDTCakET2w2r1Un6xLWN gQUNn9hQyDj1nzMBm2Xhv5U48WVGozfyTvoKPziqWaBlCYlGNdqraT2YDStRM9le ElfAcpc1s/V3Y3gcCRGd9SkOrGLUkGEhPEw7kmW9aDefxKFmMAxB2+Ie+PRo00xg CdElqsgVBb56JlPys33yFNPfp8lLOKCvKVJJg7nB1FF7dy176LtpIwxiPNxU+fqG Sz+0/+/DRxa/vW5EksDNkDzE6USiFfiGO4C1JgrYIMP7LfQtMyUjGBa6Mcs= -----END CERTIFICATE-----Generated at Tue Nov 18 08:23:48 2025 by rpki-client