$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa File: 2296581f-9248-4567-94d7-ea3a158d3c55.roa (raw, json) Hash identifier: eWZgNQXHVy2Sk3+QOgP0biBuXGMmwOfe4FullaJCbGU= Subject key identifier: 9F:29:3A:B1:22:D4:7E:88:B5:90:A5:1C:46:99:E0:F7:5C:73:98:C0 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 452F61807EA1CCA0397F588837CF68F2453C7F90 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa Signing time: Fri 10 Oct 2025 17:04:54 +0000 ROA not before: Fri 10 Oct 2025 17:04:54 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:2f:61:80:7e:a1:cc:a0:39:7f:58:88:37:cf:68:f2:45:3c:7f:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:04:54 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=13f65e065e8c926f36a7f19d1f8ba52a322c990301c2f0d4323960ce5ef747c2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:be:75:cc:5d:9b:9c:ca:5a:83:85:51:d3:4d: 97:78:e4:7b:e2:ba:ee:27:e4:73:94:cc:9d:25:f9: 29:5c:b5:4b:46:3e:cc:a9:91:a1:75:f9:cc:0a:b3: 36:18:d3:e3:ab:b5:40:d0:af:09:e9:8c:bd:60:e7: 17:df:10:77:63:86:ea:e9:38:59:ab:62:33:d3:1c: 9b:82:d3:cd:48:02:a7:4b:ac:a1:6b:5b:64:26:f5: 43:9d:22:f5:df:8c:0d:e9:5c:fa:43:2e:0f:96:59: b8:31:71:44:1e:e5:0b:b8:5c:dd:cd:c9:cb:33:9a: ee:64:a4:a5:ed:ce:cb:8c:ed:9c:16:2c:8f:d7:2f: 8c:e1:e5:ac:23:58:8c:03:bb:7f:70:c7:5c:05:2f: d1:d1:d1:77:bf:20:87:63:e0:c4:9d:b2:fd:7e:7b: 81:59:77:50:0e:ce:63:e6:fc:21:61:f2:19:2c:53: c4:5b:09:99:f2:17:9e:13:e8:82:69:87:1d:f2:58: 15:08:04:1a:2d:92:1c:79:b7:8c:e2:fb:4f:7d:cc: 5d:15:96:08:91:47:3d:e1:5c:26:da:3e:cf:df:6e: df:09:33:31:31:63:fc:aa:80:01:3d:21:03:7d:ff: be:ae:97:4b:55:0d:9f:1a:1c:82:48:dc:75:77:ad: a4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:29:3A:B1:22:D4:7E:88:B5:90:A5:1C:46:99:E0:F7:5C:73:98:C0 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.252.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:2e:18:7a:c3:83:54:f7:1b:46:d5:04:d0:73:25:3a:06:b1: 19:ff:a4:11:3c:04:42:8d:c0:87:b4:87:45:a0:38:e1:5f:5f: 62:67:7f:dd:cf:ca:31:a4:74:f8:78:e4:06:cc:45:51:e1:b4: 6d:81:7b:47:2c:7e:b8:37:a6:d6:86:52:30:41:ee:69:59:2c: 9b:a7:08:4c:4c:7d:fb:2c:25:0b:f8:11:8e:71:f5:fa:5e:b2: c9:5d:88:d4:2c:3d:fe:ed:01:33:5d:6e:55:d0:e9:d6:89:0d: d1:a0:e7:5a:49:cf:a8:22:12:8a:62:55:39:25:a8:d9:ea:c4: c4:c0:2b:e8:7a:0e:29:84:fc:1e:0b:63:ed:ff:15:37:df:df: 01:42:48:c1:a0:fa:46:7b:e1:a9:f8:da:dd:ac:4d:b3:9c:37: 16:a0:23:1f:22:63:35:6b:31:c8:04:09:b6:0f:20:7a:e6:2d: 79:3d:b7:f2:e5:83:76:7e:0c:57:69:4a:b0:f5:0b:72:4b:01: 45:8b:50:40:0a:28:a8:4e:30:10:18:c5:3c:23:fe:d3:c0:b5: 99:49:4e:60:7c:77:7c:3f:99:1f:a4:70:8e:f6:ba:05:df:5c: 59:f2:5f:72:e4:c7:f8:9c:e7:81:4d:25:32:eb:25:c8:d7:11: 25:ca:cd:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURS9hgH6hzKA5f1iIN89o8kU8f5AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNDU0WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2Y2NWUwNjVlOGM5MjZmMzZhN2YxOWQxZjhiYTUyYTMy MmM5OTAzMDFjMmYwZDQzMjM5NjBjZTVlZjc0N2MyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1vnXMXZucylqDhVHTTZd45Hviuu4n5HOUzJ0l+SlctUtG PsypkaF1+cwKszYY0+OrtUDQrwnpjL1g5xffEHdjhurpOFmrYjPTHJuC081IAqdL rKFrW2Qm9UOdIvXfjA3pXPpDLg+WWbgxcUQe5Qu4XN3Nycszmu5kpKXtzsuM7ZwW LI/XL4zh5awjWIwDu39wx1wFL9HR0Xe/IIdj4MSdsv1+e4FZd1AOzmPm/CFh8hks U8RbCZnyF54T6IJphx3yWBUIBBotkhx5t4zi+099zF0VlgiRRz3hXCbaPs/fbt8J MzExY/yqgAE9IQN9/76ul0tVDZ8aHIJI3HV3raRVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnyk6sSLUfoi1kKUcRpng91xzmMAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyOTY1ODFmLTkyNDgtNDU2Ny05NGQ3LWVhM2ExNThkM2M1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPwwDQYJKoZIhvcNAQELBQADggEBAG0uGHrDg1T3G0bVBNBzJToGsRn/ pBE8BEKNwIe0h0WgOOFfX2Jnf93PyjGkdPh45AbMRVHhtG2Be0csfrg3ptaGUjBB 7mlZLJunCExMffssJQv4EY5x9fpessldiNQsPf7tATNdblXQ6daJDdGg51pJz6gi EopiVTklqNnqxMTAK+h6DimE/B4LY+3/FTff3wFCSMGg+kZ74an42t2sTbOcNxag Ix8iYzVrMcgECbYPIHrmLXk9t/Llg3Z+DFdpSrD1C3JLAUWLUEAKKKhOMBAYxTwj /tPAtZlJTmB8d3w/mR+kcI72ugXfXFnyX3Lkx/ic54FNJTLrJcjXESXKzao= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:55 2025 by rpki-client