$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa File: c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa (raw, json) Hash identifier: H7raCcRNlKNEbT5Jt5Rarg2ynQChKz1aifgswjw0iD0= Subject key identifier: 61:56:86:1D:03:03:CF:74:AE:E5:CE:EE:18:EC:5E:CC:8E:2C:C3:40 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5FF0E775A0CEBBEE0B1A999C58C3BDBEA0353A4D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa Signing time: Mon 06 Oct 2025 17:20:08 +0000 ROA not before: Mon 06 Oct 2025 17:20:08 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:f0:e7:75:a0:ce:bb:ee:0b:1a:99:9c:58:c3:bd:be:a0:35:3a:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 6 17:20:08 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=1697f9582cfe761892d6f53cf009a9315242792f22daf57c3e828115e722b1ca, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:19:26:cc:55:97:1a:4b:29:21:53:8c:b8:db: 18:2b:27:51:11:81:f3:6b:ae:7c:32:6c:f3:52:af: ad:4f:32:cb:7b:86:b7:3b:89:73:66:44:0a:95:74: 2f:da:af:cc:ec:ef:6d:8d:4e:c9:d4:92:63:c8:c9: d3:19:35:ca:6b:57:96:b0:45:69:c5:1e:be:bb:37: e0:6b:b5:74:87:57:7e:4d:e1:9e:a6:5c:69:18:08: 97:8c:bd:1b:0e:f2:85:81:dd:32:c4:f7:a3:6e:16: 6c:70:69:2d:66:85:5b:13:b0:44:22:26:28:4c:f4: 6c:00:00:d0:f9:70:51:41:34:9a:f0:34:e5:08:48: d1:ab:04:77:22:03:f1:0d:c3:ad:ca:05:e1:e0:e1: 72:6d:e2:aa:3b:c4:f0:df:48:40:e8:8b:ef:23:d6: 80:94:7a:1f:8d:ac:2d:b3:6a:57:95:48:14:cf:f0: 0c:03:cc:13:05:b9:0f:22:6f:4a:68:97:f2:02:69: 5d:52:bd:29:e2:07:1a:36:17:74:4b:d8:3d:bf:45: dd:a8:4a:97:cc:9d:8a:2d:f0:b4:c4:f6:16:af:97: 39:1c:9e:17:9b:2e:62:79:f1:3b:ed:85:35:73:ee: fc:75:24:62:1d:6e:32:f7:f9:8b:7e:33:0a:81:d0: c6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:56:86:1D:03:03:CF:74:AE:E5:CE:EE:18:EC:5E:CC:8E:2C:C3:40 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.5.0/24 Signature Algorithm: sha256WithRSAEncryption 03:ac:15:9e:02:0f:26:46:99:37:cb:30:be:da:60:45:3c:e5: 78:e0:ee:29:07:f8:e5:42:e2:28:03:25:0e:bd:e8:dd:18:70: 96:28:d3:4d:8f:42:e7:ac:27:1b:bc:5a:09:25:f5:23:03:54: f7:73:80:2a:3a:0b:41:7f:84:09:c2:b0:da:59:0d:ec:91:7b: 7e:42:6c:8c:4c:0f:f9:eb:a4:89:01:06:cb:db:95:a7:d1:e3: f8:be:d2:e9:ed:f0:59:31:5e:c6:e8:0a:71:79:c8:44:79:55: 13:ae:41:1a:19:01:6c:10:aa:e8:a2:70:78:f2:f9:2c:4d:66: 73:6d:d7:73:81:68:4d:a4:8a:99:13:6a:33:15:ab:c1:9b:14: 88:bb:2c:31:f4:9f:fd:1a:f5:d5:1e:86:95:cd:5e:77:90:cf: 4a:bb:ca:33:42:4d:fd:ed:85:7b:c9:9f:d1:49:9c:bf:dc:18: 34:19:c2:33:b6:3c:60:94:28:a1:50:f2:99:63:2c:c3:31:c5: 66:54:bb:8e:f5:ca:c0:25:57:a4:53:bd:47:34:02:9d:58:e9: 3f:4e:98:da:6a:e8:e5:79:bb:2a:76:16:35:8f:aa:ce:06:78: 5a:d8:fb:6f:7d:6d:6e:aa:62:7c:0e:bd:ef:10:a9:b6:54:59: af:e2:f5:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX/DndaDOu+4LGpmcWMO9vqA1Ok0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDA2MTcyMDA4WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjk3Zjk1ODJjZmU3NjE4OTJkNmY1M2NmMDA5YTkzMTUy NDI3OTJmMjJkYWY1N2MzZTgyODExNWU3MjJiMWNhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaGSbMVZcaSykhU4y42xgrJ1ERgfNrrnwybPNSr61PMst7 hrc7iXNmRAqVdC/ar8zs722NTsnUkmPIydMZNcprV5awRWnFHr67N+BrtXSHV35N 4Z6mXGkYCJeMvRsO8oWB3TLE96NuFmxwaS1mhVsTsEQiJihM9GwAAND5cFFBNJrw NOUISNGrBHciA/ENw63KBeHg4XJt4qo7xPDfSEDoi+8j1oCUeh+NrC2zaleVSBTP 8AwDzBMFuQ8ib0pol/ICaV1SvSniBxo2F3RL2D2/Rd2oSpfMnYot8LTE9havlzkc nhebLmJ58TvthTVz7vx1JGIdbjL3+Yt+MwqB0Mb3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYVaGHQMDz3Su5c7uGOxezI4sw0AwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyMGNlZjAxLWQ2YzQtNDQ0Mi04ZmNjLTc2YmMyNGE3YWZhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAUwDQYJKoZIhvcNAQELBQADggEBAAOsFZ4CDyZGmTfLML7aYEU85Xjg 7ikH+OVC4igDJQ696N0YcJYo002PQuesJxu8Wgkl9SMDVPdzgCo6C0F/hAnCsNpZ DeyRe35CbIxMD/nrpIkBBsvblafR4/i+0unt8FkxXsboCnF5yER5VROuQRoZAWwQ quiicHjy+SxNZnNt13OBaE2kipkTajMVq8GbFIi7LDH0n/0a9dUehpXNXneQz0q7 yjNCTf3thXvJn9FJnL/cGDQZwjO2PGCUKKFQ8pljLMMxxWZUu471ysAlV6RTvUc0 Ap1Y6T9OmNpq6OV5uyp2FjWPqs4GeFrY+299bW6qYnwOve8QqbZUWa/i9fw= -----END CERTIFICATE-----Generated at Wed Oct 8 21:17:15 2025 by rpki-client