$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa File: 93da312c-9a87-4802-ae6d-e784f74c131d.roa (raw, json) Hash identifier: pWth/AuFHHUQhsyADbvnW6qR8nE/fWhCMjWDSLxlPC8= Subject key identifier: 73:DD:87:F2:96:8D:C9:6F:D5:AD:3F:C7:1B:7F:E9:6B:D9:1D:33:AF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0DFA3C98BAE56AC2FB27D68043DC3F403527E6CC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa Signing time: Sat 15 Nov 2025 05:00:06 +0000 ROA not before: Sat 15 Nov 2025 05:00:06 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:fa:3c:98:ba:e5:6a:c2:fb:27:d6:80:43:dc:3f:40:35:27:e6:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 15 05:00:06 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=40faec652a36cbc2a16bb8f4ef2df4cc074ed9e94ef21c7d91900df7b890b77c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:8e:28:ec:f9:8c:1f:40:39:ca:6a:23:5d: 7e:41:c6:35:f6:a5:37:f2:f9:68:bb:25:10:44:cb: f6:a1:58:8d:99:e7:8d:44:70:2f:01:f0:c6:14:c7: 2c:c1:ea:c5:8f:29:25:f1:f0:65:e1:cb:3b:29:31: 29:2f:68:61:1e:e0:60:64:d2:67:44:1a:54:70:1e: 36:59:8b:e9:48:a4:94:3a:9f:97:90:58:94:e2:7d: 02:f5:57:64:62:c2:57:58:68:54:ae:f8:ad:0f:be: cf:05:c1:87:38:61:bd:36:21:80:8d:fa:76:bc:8e: 43:c0:41:7e:37:60:20:2c:ca:44:cb:72:fd:38:e3: 09:eb:05:6d:f2:0e:9a:55:be:cd:24:70:f8:1b:98: 08:14:b7:5e:f2:71:31:c1:73:e2:4a:66:b8:7f:2c: c3:f4:39:2f:52:48:81:ba:8b:eb:17:53:4e:47:d8: 66:df:74:90:ab:6d:72:a4:c1:13:5c:37:1c:a8:77: bc:52:79:69:9d:99:a7:dc:3d:80:b7:4a:39:75:bc: 63:e1:1e:92:03:df:fc:a5:da:ca:a6:ea:01:f3:0a: 1e:50:0f:2c:87:80:e8:e2:a1:af:6e:18:f4:58:d8: d2:f4:e4:7d:b3:c1:99:81:a3:f7:e4:c9:6f:39:1a: d8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:DD:87:F2:96:8D:C9:6F:D5:AD:3F:C7:1B:7F:E9:6B:D9:1D:33:AF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:4a:43:8e:26:d9:ff:ee:d8:ac:6d:26:07:09:b7:d1:30:2e: 29:23:01:e5:f4:00:53:c3:fd:73:aa:6f:b7:4d:12:56:9d:a2: 13:05:a5:a5:68:c2:65:bb:43:5c:dc:3b:9f:b6:89:bf:4c:3d: cc:a3:4d:b5:83:c7:ec:ef:f1:d7:23:b8:4f:90:a3:e9:e7:98: 19:63:a1:ca:a7:d9:53:f9:92:dc:b4:84:fe:1b:cd:22:7c:0f: 39:18:7f:09:4c:60:a4:aa:25:a2:cb:64:62:df:ac:a3:ef:40: 78:fb:0c:b3:d9:f4:91:c4:0a:5d:4c:9e:96:19:ba:f0:38:d9: bd:bd:25:03:fb:e1:c3:86:ca:66:60:d5:9f:2e:cd:7f:33:2d: 71:47:1d:88:aa:30:2b:92:bd:36:32:76:8d:83:92:80:5e:c4: 6e:2f:7b:57:6e:0e:8d:c8:92:26:3c:46:2a:aa:cf:da:8c:97: 99:39:e9:3a:fe:7b:a8:91:78:0c:08:35:60:8b:08:94:29:83: ac:b7:f9:d1:94:72:48:8a:5a:4f:13:1c:b6:3a:9d:1b:3c:7f: 40:89:f7:4c:8d:19:50:f6:9a:40:a3:4e:a3:bf:6d:81:90:02: 54:92:e0:1e:c3:4a:f1:eb:71:10:79:21:30:75:cf:7d:5a:f6: 30:c0:90:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDfo8mLrlasL7J9aAQ9w/QDUn5swwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTE1MDUwMDA2WhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGZhZWM2NTJhMzZjYmMyYTE2YmI4ZjRlZjJkZjRjYzA3 NGVkOWU5NGVmMjFjN2Q5MTkwMGRmN2I4OTBiNzdjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCryI4o7PmMH0A5ymojXX5BxjX2pTfy+Wi7JRBEy/ahWI2Z 541EcC8B8MYUxyzB6sWPKSXx8GXhyzspMSkvaGEe4GBk0mdEGlRwHjZZi+lIpJQ6 n5eQWJTifQL1V2RiwldYaFSu+K0Pvs8FwYc4Yb02IYCN+na8jkPAQX43YCAsykTL cv044wnrBW3yDppVvs0kcPgbmAgUt17ycTHBc+JKZrh/LMP0OS9SSIG6i+sXU05H 2GbfdJCrbXKkwRNcNxyod7xSeWmdmafcPYC3Sjl1vGPhHpID3/yl2sqm6gHzCh5Q DyyHgOjioa9uGPRY2NL05H2zwZmBo/fkyW85GtiFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc92H8paNyW/VrT/HG3/pa9kdM68wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzkzZGEzMTJjLTlhODctNDgwMi1hZTZkLWU3ODRmNzRjMTMxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAE5KQ44m2f/u2KxtJgcJt9EwLikj AeX0AFPD/XOqb7dNEladohMFpaVowmW7Q1zcO5+2ib9MPcyjTbWDx+zv8dcjuE+Q o+nnmBljocqn2VP5kty0hP4bzSJ8DzkYfwlMYKSqJaLLZGLfrKPvQHj7DLPZ9JHE Cl1MnpYZuvA42b29JQP74cOGymZg1Z8uzX8zLXFHHYiqMCuSvTYydo2DkoBexG4v e1duDo3IkiY8Riqqz9qMl5k56Tr+e6iReAwINWCLCJQpg6y3+dGUckiKWk8THLY6 nRs8f0CJ90yNGVD2mkCjTqO/bYGQAlSS4B7DSvHrcRB5ITB1z31a9jDAkEY= -----END CERTIFICATE-----Generated at Tue Nov 18 05:47:51 2025 by rpki-client