$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5f5245f4-4d87-41a1-ab55-898a8997c2d8.roa File: 5f5245f4-4d87-41a1-ab55-898a8997c2d8.roa (raw, json) Hash identifier: JrDgQJWAjXYKMHxfQ4s0okCRVpQNsOc1txYQvGvZhcY= Subject key identifier: 6E:21:DE:26:8E:35:30:5D:A3:CE:1E:52:B8:95:AA:D6:45:D3:0F:E6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2B5A7E12F9F9F93B935DDEAB9BD13B616DB95DC0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5f5245f4-4d87-41a1-ab55-898a8997c2d8.roa Signing time: Thu 18 Sep 2025 23:06:57 +0000 ROA not before: Thu 18 Sep 2025 23:06:57 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:5a:7e:12:f9:f9:f9:3b:93:5d:de:ab:9b:d1:3b:61:6d:b9:5d:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Sep 18 23:06:57 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=4fa91a7ad582d180449013c046cbdb963c8b2ccc147e9591a520fc8abf094bf1, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:95:bf:ed:1f:8f:43:98:9a:72:30:83:d1:11: 29:ae:91:03:8b:8d:84:48:a2:3d:25:b1:52:4e:53: b3:fc:bd:02:27:aa:c3:85:76:ba:6c:3c:a3:44:ee: e1:4e:59:78:7c:30:0b:d0:37:c5:63:bd:a4:bc:24: 98:84:1d:3d:9d:1d:20:79:60:8a:51:50:b6:be:de: 5b:16:1a:bc:0a:6d:e8:52:d4:0b:e5:a7:37:bd:e5: bb:ae:7d:67:4c:e6:1c:4f:16:cc:5a:d6:2e:3e:cf: 3f:c0:75:0a:ce:1a:9f:83:8d:0c:ab:59:5f:6f:f4: 16:52:4a:ee:04:f1:16:7f:85:20:58:f6:29:e3:6f: 8f:d8:04:e1:51:aa:74:0f:70:d9:3a:2c:f9:7c:8c: cd:b2:48:da:0a:82:39:de:aa:aa:42:43:c6:50:d0: 50:fa:dd:47:f9:f5:ab:e9:3b:45:ae:b2:91:38:ca: 7c:76:bc:cf:60:ba:ca:d3:82:e5:9b:6b:a7:a5:47: 59:1b:15:59:11:d0:b0:05:f2:75:72:ab:be:d9:e2: 9d:8f:3d:21:2b:90:52:76:64:44:27:c9:ca:4d:15: 54:5b:71:f1:a1:7a:14:06:43:f5:6e:a6:0b:a7:72: ed:8d:3e:1c:e2:9b:cf:36:99:32:4b:ef:64:f4:03: b0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:21:DE:26:8E:35:30:5D:A3:CE:1E:52:B8:95:AA:D6:45:D3:0F:E6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5f5245f4-4d87-41a1-ab55-898a8997c2d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.49.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:7b:95:9e:cb:e2:0a:62:44:b1:86:8c:cb:c4:1f:1b:10:8e: 40:0e:67:8a:04:ab:b6:ef:4a:9a:ac:36:18:5c:3d:f2:bb:77: c2:f3:9e:37:2b:af:a4:87:00:89:99:d0:a4:e9:0b:96:0a:6c: d7:56:6e:9c:ad:d3:6c:2f:d4:c7:35:ab:3b:d6:51:b7:31:96: 77:af:a2:36:55:75:32:4c:fb:d0:9d:19:cc:29:27:d2:4b:08: 3f:94:83:1d:20:b1:c0:55:76:38:c1:ea:e2:b3:20:7c:50:4f: 70:36:9e:b8:00:a5:8e:f9:37:e2:c3:60:a5:14:e5:39:c8:8b: 41:ce:83:e5:85:f9:e1:5e:fa:0a:26:78:b9:13:bb:c8:6d:18: 56:4c:46:95:0d:a4:cf:a1:6c:26:6a:bb:70:d3:58:e8:1b:b8: f8:24:25:b0:85:5a:6f:ae:0c:7b:7f:0e:fb:46:88:2f:cd:ca: a0:2f:f4:35:50:ae:d4:87:df:61:bb:c5:02:e1:ea:35:86:c3: ee:09:16:5f:0e:da:f2:da:d9:0c:65:2b:84:66:1f:cf:d1:5d: 88:5f:b3:52:f0:f6:fd:8c:21:4b:39:c5:70:a7:c1:3a:8f:e0: cd:25:68:50:15:71:1a:b8:b4:51:af:4a:3b:bf:ef:e8:ad:f7: e2:ad:a4:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK1p+Evn5+TuTXd6rm9E7YW25XcAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwOTE4MjMwNjU3WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZmE5MWE3YWQ1ODJkMTgwNDQ5MDEzYzA0NmNiZGI5NjNj OGIyY2NjMTQ3ZTk1OTFhNTIwZmM4YWJmMDk0YmYxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDlb/tH49DmJpyMIPRESmukQOLjYRIoj0lsVJOU7P8vQIn qsOFdrpsPKNE7uFOWXh8MAvQN8VjvaS8JJiEHT2dHSB5YIpRULa+3lsWGrwKbehS 1Avlpze95buufWdM5hxPFsxa1i4+zz/AdQrOGp+DjQyrWV9v9BZSSu4E8RZ/hSBY 9injb4/YBOFRqnQPcNk6LPl8jM2ySNoKgjneqqpCQ8ZQ0FD63Uf59avpO0WuspE4 ynx2vM9gusrTguWba6elR1kbFVkR0LAF8nVyq77Z4p2PPSErkFJ2ZEQnycpNFVRb cfGhehQGQ/Vupguncu2NPhzim882mTJL72T0A7CVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbiHeJo41MF2jzh5SuJWq1kXTD+YwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVmNTI0NWY0LTRkODctNDFhMS1hYjU1LTg5OGE4OTk3YzJkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDEwDQYJKoZIhvcNAQELBQADggEBAF17lZ7L4gpiRLGGjMvEHxsQjkAO Z4oEq7bvSpqsNhhcPfK7d8Lznjcrr6SHAImZ0KTpC5YKbNdWbpyt02wv1Mc1qzvW UbcxlnevojZVdTJM+9CdGcwpJ9JLCD+Ugx0gscBVdjjB6uKzIHxQT3A2nrgApY75 N+LDYKUU5TnIi0HOg+WF+eFe+gomeLkTu8htGFZMRpUNpM+hbCZqu3DTWOgbuPgk JbCFWm+uDHt/DvtGiC/NyqAv9DVQrtSH32G7xQLh6jWGw+4JFl8O2vLa2QxlK4Rm H8/RXYhfs1Lw9v2MIUs5xXCnwTqP4M0laFAVcRq4tFGvSju/7+it9+KtpIg= -----END CERTIFICATE-----Generated at Fri Sep 19 03:19:35 2025 by rpki-client