$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa File: 5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa (raw, json) Hash identifier: noXG2lwMCsa86HV39D1e2UhJWXQl91zfjGxLaYC6CfQ= Subject key identifier: 56:2F:E0:3C:BB:39:39:90:F0:1E:81:88:4F:E8:2E:71:45:6B:05:66 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1D64B6969C86D63096E77FEA8EDD6954057A2272 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa Signing time: Mon 15 Sep 2025 17:51:17 +0000 ROA not before: Mon 15 Sep 2025 17:51:17 +0000 ROA not after: Mon 20 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:64:b6:96:9c:86:d6:30:96:e7:7f:ea:8e:dd:69:54:05:7a:22:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Sep 15 17:51:17 2025 GMT Not After : Oct 20 23:59:59 2025 GMT Subject: serialNumber=277fc3ff148629b8f284b371d93858a482e1c090f00d1e511ffcd31e2dbc9b8f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:db:5c:e8:b0:85:ca:56:6a:7a:b1:f3:c6: 29:28:d7:ca:9d:05:f1:54:d4:a6:58:58:3e:ed:82: 85:2d:dc:c0:5b:bb:de:dc:e7:1b:03:f2:eb:65:44: e1:e2:78:c5:86:3c:e3:f8:d2:5d:12:6a:62:2e:a1: 90:a6:a2:ae:74:50:2f:6b:14:d9:8e:14:ad:ab:1f: c4:a4:42:9f:39:54:1f:05:dc:e1:db:6b:ec:59:7f: 35:c1:75:5b:a5:ce:6c:4b:55:7a:57:24:80:a6:b9: ae:37:b1:ba:c0:3f:73:81:4c:ec:fc:10:c7:4a:a6: ae:83:15:9b:75:07:c4:95:e9:72:f8:47:15:59:03: c0:ca:10:51:02:ea:28:26:34:4d:51:0c:56:4c:a1: 94:4c:8c:74:df:cb:bc:06:d4:64:ad:e2:dd:48:e9: ab:9c:86:12:c4:ed:db:19:aa:6f:aa:c3:66:cd:f5: 8e:16:cf:79:3d:a9:e2:54:1a:6d:6e:3a:6e:fd:51: 92:90:f2:a8:4f:c5:8c:41:89:3c:7f:c3:69:97:f6: 69:3e:e7:bd:68:79:d3:ca:71:eb:38:29:fe:92:b4: bb:bd:53:62:74:9f:5b:57:99:7e:6b:41:4c:1e:59: ed:5f:55:23:ea:bc:ca:ff:29:ed:15:88:f5:0b:99: 41:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2F:E0:3C:BB:39:39:90:F0:1E:81:88:4F:E8:2E:71:45:6B:05:66 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.144.0/20 Signature Algorithm: sha256WithRSAEncryption 80:b1:44:4b:c5:dc:d3:f7:8e:5b:58:5e:20:48:dc:5f:c7:4d: 4b:2b:07:6f:91:75:56:7f:44:69:67:cd:6c:e7:a1:26:ff:64: 99:ab:50:ec:75:2b:7b:24:1b:2d:0d:96:06:40:bd:77:76:ab: ec:63:30:cf:68:bd:12:71:4e:a8:54:df:7f:0d:61:2a:44:04: 7b:13:2b:da:d0:e3:aa:69:12:8c:97:9d:4c:6d:f6:6e:52:25: 68:e0:0c:eb:98:14:75:c4:4c:37:07:91:bd:28:7c:ec:60:0c: 57:fd:48:90:9a:60:13:27:bd:0d:32:c7:c3:2a:6a:0c:58:ca: 8c:af:84:75:84:bc:af:ea:07:2a:12:f8:8e:59:3e:e8:f0:f6: f1:55:47:c2:f2:4d:54:a7:04:c2:72:7d:08:b5:66:d7:20:a9: fb:ce:11:c1:67:e7:6a:b0:8c:18:25:7f:55:94:b0:37:2c:80: 2d:95:4d:a9:29:8d:81:7d:ee:24:b9:6c:f7:85:8b:d8:64:26: 19:a8:5d:83:57:4c:0a:97:ac:76:3c:47:f2:b3:3a:df:a5:25: 1c:f8:69:61:48:b2:a9:27:d1:81:fd:af:b5:1a:4f:c2:bf:a6: 1c:89:e7:f6:3e:c2:91:2a:9a:5d:bb:8e:d8:93:03:37:70:05: 30:0b:07:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHWS2lpyG1jCW53/qjt1pVAV6InIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwOTE1MTc1MTE3WhcNMjUxMDIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzdmYzNmZjE0ODYyOWI4ZjI4NGIzNzFkOTM4NThhNDgy ZTFjMDkwZjAwZDFlNTExZmZjZDMxZTJkYmM5YjhmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2U9tc6LCFylZqerHzxiko18qdBfFU1KZYWD7tgoUt3MBb u97c5xsD8utlROHieMWGPOP40l0SamIuoZCmoq50UC9rFNmOFK2rH8SkQp85VB8F 3OHba+xZfzXBdVulzmxLVXpXJICmua43sbrAP3OBTOz8EMdKpq6DFZt1B8SV6XL4 RxVZA8DKEFEC6igmNE1RDFZMoZRMjHTfy7wG1GSt4t1I6auchhLE7dsZqm+qw2bN 9Y4Wz3k9qeJUGm1uOm79UZKQ8qhPxYxBiTx/w2mX9mk+571oedPKces4Kf6StLu9 U2J0n1tXmX5rQUweWe1fVSPqvMr/Ke0ViPULmUGBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVi/gPLs5OZDwHoGIT+gucUVrBWYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzU3NzcxNDZkLWI5MGYtNGU3Zi04ODE2LWQ5MWM4ZThkNDdiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYJAwDQYJKoZIhvcNAQELBQADggEBAICxREvF3NP3jltYXiBI3F/HTUsr B2+RdVZ/RGlnzWznoSb/ZJmrUOx1K3skGy0NlgZAvXd2q+xjMM9ovRJxTqhU338N YSpEBHsTK9rQ46ppEoyXnUxt9m5SJWjgDOuYFHXETDcHkb0ofOxgDFf9SJCaYBMn vQ0yx8MqagxYyoyvhHWEvK/qByoS+I5ZPujw9vFVR8LyTVSnBMJyfQi1ZtcgqfvO EcFn52qwjBglf1WUsDcsgC2VTakpjYF97iS5bPeFi9hkJhmoXYNXTAqXrHY8R/Kz Ot+lJRz4aWFIsqkn0YH9r7UaT8K/phyJ5/Y+wpEqml27jtiTAzdwBTALB+I= -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:17 2025 by rpki-client