$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/56bfd5b7-3418-4344-a865-789d203e14b2.roa File: 56bfd5b7-3418-4344-a865-789d203e14b2.roa (raw, json) Hash identifier: 7hN/T+9moaIkc687O9Vnmf8zeuQBNt/7XS9IYGNsdtk= Subject key identifier: 48:CB:2B:BD:1D:3D:F9:43:E2:AE:13:CE:0F:BE:EB:5B:14:A5:7B:B9 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0AAE152D8D3CE39CF2BDCDFE553D0CCED419C11F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/56bfd5b7-3418-4344-a865-789d203e14b2.roa Signing time: Sat 08 Nov 2025 00:10:09 +0000 ROA not before: Sat 08 Nov 2025 00:10:09 +0000 ROA not after: Sat 13 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ae:15:2d:8d:3c:e3:9c:f2:bd:cd:fe:55:3d:0c:ce:d4:19:c1:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 8 00:10:09 2025 GMT Not After : Dec 13 23:59:59 2025 GMT Subject: serialNumber=21da41dee8acc481305f8392a80f2555f3fb2c499d5677916c7c67466296e87b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1d:ea:3d:80:08:11:9e:4f:22:fb:9d:00:49: 7e:82:15:6f:e8:6b:b2:c6:47:3f:7b:d7:e4:b4:20: 9c:2e:76:ad:f5:07:92:d0:42:95:45:77:fe:0a:a8: 31:7f:de:59:52:d2:67:24:24:c1:25:13:e9:c8:e0: ba:a8:0e:c1:cf:be:32:5a:eb:3a:9d:23:1f:2e:d0: f0:d1:13:87:7d:b1:88:25:dd:c2:1d:66:31:cd:cf: 5d:3e:5d:bc:93:27:49:36:27:ee:91:f3:67:e0:c5: bb:e0:68:a0:e4:1a:aa:90:38:05:c9:32:ba:b9:65: 53:12:30:3b:72:64:2c:49:c3:cb:0f:d3:f0:f3:a0: b2:2f:11:54:4e:d3:9e:17:5c:32:65:a7:3b:8d:84: 88:e5:79:64:05:c1:7c:dc:38:bf:00:61:07:d1:80: f6:63:28:f2:38:b6:21:2b:3e:8f:47:14:72:17:65: 10:47:9b:b4:35:c5:4e:3a:6f:a2:a2:e6:1f:f4:9f: cc:a9:82:13:73:fb:54:fa:e3:ea:a9:cf:9d:d8:f3: ce:73:eb:e3:82:10:1b:71:34:21:b7:38:04:e7:02: c1:91:78:83:75:55:cf:e9:86:44:c3:14:0d:13:d4: d5:a1:49:dc:fd:a3:a2:a8:83:d2:23:63:68:65:f6: 60:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CB:2B:BD:1D:3D:F9:43:E2:AE:13:CE:0F:BE:EB:5B:14:A5:7B:B9 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/56bfd5b7-3418-4344-a865-789d203e14b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/24 Signature Algorithm: sha256WithRSAEncryption 79:26:f7:04:f2:ff:0d:07:b1:a1:76:1d:bb:23:da:ee:c7:42: 7b:ae:44:59:c5:6c:89:f9:9e:de:d3:0a:26:6a:5b:78:b7:7f: e9:d9:99:a3:eb:3c:1a:43:ee:54:53:cc:25:e1:9b:a9:e7:3c: 45:e7:e6:78:d0:30:ee:82:22:26:f7:bf:ef:7c:07:bd:29:62: e5:31:39:21:dc:ef:7f:b8:de:86:1c:f3:e2:38:2a:d9:b4:c0: 3a:82:dd:c5:e5:f8:ec:d0:ae:4e:87:88:7c:83:17:f2:09:17: 44:67:36:b6:a0:fe:ae:fc:2f:92:a3:07:bd:01:1f:a5:d2:d8: ea:80:0a:72:38:99:2e:a3:e9:82:fd:c8:91:4a:ff:13:70:15: ae:ab:4e:fb:3a:59:01:4d:a7:b7:1d:d8:61:c8:ec:01:dc:8b: 00:80:2e:ca:90:1b:96:b5:76:9b:6e:70:40:3e:12:75:04:a9: 9b:fd:61:d5:d7:ed:fc:d0:ea:99:76:27:91:76:24:f9:64:db: ce:0b:a4:5e:70:99:5a:9d:dc:d5:68:0e:05:19:35:44:18:2b: 64:8c:d1:88:02:15:e5:68:b2:03:4a:6d:5f:90:22:8f:32:28: cb:f7:95:24:99:4d:fe:fe:c1:60:47:9f:58:24:0d:02:57:ba: 58:b2:1e:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCq4VLY0845zyvc3+VT0MztQZwR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTA4MDAxMDA5WhcNMjUxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWRhNDFkZWU4YWNjNDgxMzA1ZjgzOTJhODBmMjU1NWYz ZmIyYzQ5OWQ1Njc3OTE2YzdjNjc0NjYyOTZlODdiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeHeo9gAgRnk8i+50ASX6CFW/oa7LGRz971+S0IJwudq31 B5LQQpVFd/4KqDF/3llS0mckJMElE+nI4LqoDsHPvjJa6zqdIx8u0PDRE4d9sYgl 3cIdZjHNz10+XbyTJ0k2J+6R82fgxbvgaKDkGqqQOAXJMrq5ZVMSMDtyZCxJw8sP 0/DzoLIvEVRO054XXDJlpzuNhIjleWQFwXzcOL8AYQfRgPZjKPI4tiErPo9HFHIX ZRBHm7Q1xU46b6Ki5h/0n8ypghNz+1T64+qpz53Y885z6+OCEBtxNCG3OATnAsGR eIN1Vc/phkTDFA0T1NWhSdz9o6Kog9IjY2hl9mDrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSMsrvR09+UPirhPOD77rWxSle7kwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzU2YmZkNWI3LTM0MTgtNDM0NC1hODY1LTc4OWQyMDNlMTRiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDAwDQYJKoZIhvcNAQELBQADggEBAHkm9wTy/w0HsaF2Hbsj2u7HQnuu RFnFbIn5nt7TCiZqW3i3f+nZmaPrPBpD7lRTzCXhm6nnPEXn5njQMO6CIib3v+98 B70pYuUxOSHc73+43oYc8+I4Ktm0wDqC3cXl+OzQrk6HiHyDF/IJF0RnNrag/q78 L5KjB70BH6XS2OqACnI4mS6j6YL9yJFK/xNwFa6rTvs6WQFNp7cd2GHI7AHciwCA LsqQG5a1dptucEA+EnUEqZv9YdXX7fzQ6pl2J5F2JPlk284LpF5wmVqd3NVoDgUZ NUQYK2SM0YgCFeVosgNKbV+QIo8yKMv3lSSZTf7+wWBHn1gkDQJXuliyHqY= -----END CERTIFICATE-----Generated at Tue Nov 18 05:47:52 2025 by rpki-client