$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/56bfd5b7-3418-4344-a865-789d203e14b2.roa File: 56bfd5b7-3418-4344-a865-789d203e14b2.roa (raw, json) Hash identifier: 3CQWvWdFAUoIZJKmoo2Y2wZWGomjCv7Y+TOMNNThUqU= Subject key identifier: 04:8D:E1:E9:33:A3:91:83:94:58:02:DC:4A:8E:A0:C4:63:97:CA:08 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7BED43D3B6F15EED1379123450C3B115F0D38238 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/56bfd5b7-3418-4344-a865-789d203e14b2.roa Signing time: Thu 18 Sep 2025 22:06:52 +0000 ROA not before: Thu 18 Sep 2025 22:06:52 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ed:43:d3:b6:f1:5e:ed:13:79:12:34:50:c3:b1:15:f0:d3:82:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Sep 18 22:06:52 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=796df3c87baa9d6e61a9fecc62156239da2993ac907a3239a64bc88398f9ff99, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:e8:6e:d2:8d:9f:f3:2c:43:44:db:02:d6:ec: ed:76:56:9c:ba:6c:30:7c:0d:a4:90:63:8e:b5:dd: eb:cc:0c:31:df:22:b0:fc:19:12:82:81:e6:d4:83: 6a:73:9c:eb:bb:5f:bd:84:d6:af:54:cf:8c:7e:d9: c8:62:05:00:75:3e:18:ea:03:06:bf:b4:51:75:64: 21:20:66:ac:96:e1:d6:f5:b7:66:42:f9:36:3e:01: 50:7d:bb:04:1a:b8:a4:3b:28:d8:1b:42:22:5a:9d: e2:71:86:53:3d:0e:79:ab:f9:d6:2c:92:a9:ff:a1: 96:33:4c:fc:79:ef:7e:37:06:2b:c4:78:26:be:b9: 27:8a:70:53:80:86:64:a1:4e:50:43:17:f8:5a:48: 0e:59:24:e2:ed:5d:9a:fe:d8:73:03:e4:d7:76:7f: 21:81:c9:d6:70:06:5d:8d:42:aa:d4:da:de:8c:57: 64:15:4e:43:a7:9c:89:a0:6d:03:cd:6b:f7:11:19: 81:25:e1:fc:de:5e:22:6b:d6:01:0e:9b:4a:53:36: bd:7f:27:c5:cb:e5:d6:78:18:e2:90:3f:b7:ac:6e: ed:b0:0e:3e:6e:24:d2:6a:48:f5:f5:00:f6:87:16: 62:42:5c:af:d8:0c:6b:bb:d0:a2:52:13:c1:84:00: 2b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8D:E1:E9:33:A3:91:83:94:58:02:DC:4A:8E:A0:C4:63:97:CA:08 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/56bfd5b7-3418-4344-a865-789d203e14b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/24 Signature Algorithm: sha256WithRSAEncryption 11:52:dd:a5:30:d8:e2:e7:03:ca:90:be:04:0f:a4:f1:86:37: 7a:fc:ed:99:f8:2f:dc:d6:fa:2c:2b:18:19:c9:ec:3c:1a:14: 40:95:5e:53:b4:00:4d:f7:da:47:8d:9f:47:f5:f8:81:18:6d: 0c:ba:aa:bd:16:85:7e:0d:d3:18:c8:c2:67:70:59:59:43:05: 19:57:29:a5:aa:27:c5:c4:98:1b:3e:78:5e:f8:2f:78:7c:be: e1:b9:4f:9e:02:ba:de:7e:30:0c:87:55:3d:72:75:b0:5c:1f: 30:82:8f:f5:28:90:0c:7b:14:27:2e:5e:cd:e2:15:9b:e4:db: f8:ca:6e:9f:3d:83:80:ac:d0:aa:7d:e6:79:46:d9:f2:d2:fe: b0:a0:94:a8:c4:6b:0b:67:18:0b:91:16:2b:3b:ba:58:ad:fd: 55:4e:93:59:11:14:36:a1:73:f5:8f:51:24:ce:a6:e4:9f:6c: 68:e5:1b:df:f3:d5:71:70:6b:72:b2:0f:08:55:09:ef:69:49: 76:b4:52:3b:07:64:51:e1:87:6a:1a:a8:0b:0d:6e:23:b6:54: 81:d8:c5:8c:fc:56:b5:40:16:8e:e2:f7:0e:31:f7:03:11:db: 30:37:76:d4:61:9d:b5:ed:25:f3:7c:23:31:e9:c1:39:b5:a7: e5:d7:17:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe+1D07bxXu0TeRI0UMOxFfDTgjgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwOTE4MjIwNjUyWhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTZkZjNjODdiYWE5ZDZlNjFhOWZlY2M2MjE1NjIzOWRh Mjk5M2FjOTA3YTMyMzlhNjRiYzg4Mzk4ZjlmZjk5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDz6G7SjZ/zLENE2wLW7O12Vpy6bDB8DaSQY4613evMDDHf IrD8GRKCgebUg2pznOu7X72E1q9Uz4x+2chiBQB1PhjqAwa/tFF1ZCEgZqyW4db1 t2ZC+TY+AVB9uwQauKQ7KNgbQiJaneJxhlM9Dnmr+dYskqn/oZYzTPx57343BivE eCa+uSeKcFOAhmShTlBDF/haSA5ZJOLtXZr+2HMD5Nd2fyGBydZwBl2NQqrU2t6M V2QVTkOnnImgbQPNa/cRGYEl4fzeXiJr1gEOm0pTNr1/J8XL5dZ4GOKQP7esbu2w Dj5uJNJqSPX1APaHFmJCXK/YDGu70KJSE8GEACurAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBI3h6TOjkYOUWALcSo6gxGOXyggwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzU2YmZkNWI3LTM0MTgtNDM0NC1hODY1LTc4OWQyMDNlMTRiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDAwDQYJKoZIhvcNAQELBQADggEBABFS3aUw2OLnA8qQvgQPpPGGN3r8 7Zn4L9zW+iwrGBnJ7DwaFECVXlO0AE332keNn0f1+IEYbQy6qr0WhX4N0xjIwmdw WVlDBRlXKaWqJ8XEmBs+eF74L3h8vuG5T54Cut5+MAyHVT1ydbBcHzCCj/UokAx7 FCcuXs3iFZvk2/jKbp89g4Cs0Kp95nlG2fLS/rCglKjEawtnGAuRFis7ulit/VVO k1kRFDahc/WPUSTOpuSfbGjlG9/z1XFwa3KyDwhVCe9pSXa0UjsHZFHhh2oaqAsN biO2VIHYxYz8VrVAFo7i9w4x9wMR2zA3dtRhnbXtJfN8IzHpwTm1p+XXF7M= -----END CERTIFICATE-----Generated at Fri Sep 19 03:19:59 2025 by rpki-client