$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/31375d26-e2f2-4b0b-8d94-424d3ef5e55a.roa File: 31375d26-e2f2-4b0b-8d94-424d3ef5e55a.roa (raw, json) Hash identifier: MHblJ2eM/5Kb3z5L9jTC5lPTbUWnJBGOYzB/hkIdpoo= Subject key identifier: E9:59:0F:05:F1:67:46:4D:85:7F:5C:E1:B3:A2:C1:B8:E5:51:FE:AE Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4A59AC8ABCFF181924D191254291F90116838CAA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/31375d26-e2f2-4b0b-8d94-424d3ef5e55a.roa Signing time: Fri 10 Oct 2025 17:05:41 +0000 ROA not before: Fri 10 Oct 2025 17:05:41 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.97.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:59:ac:8a:bc:ff:18:19:24:d1:91:25:42:91:f9:01:16:83:8c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:41 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=ab5d4d70ea84a3a244ae1a2ffa58748548a8df5fbdbb875dce847808cdc76d81, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b3:d6:8c:35:e2:6f:4c:ed:ad:12:cc:73:f9: e0:1b:c2:9e:3d:a0:d1:e1:46:56:10:b5:81:0d:cb: b9:8c:d0:b9:04:d9:c4:98:01:55:4b:98:e3:a3:e7: f5:d7:3a:a7:ca:1b:29:92:7b:4a:ec:b2:88:d4:35: 72:14:1c:42:23:d0:5b:bd:f2:fc:c1:94:91:a8:48: 48:8d:2c:c5:da:b0:07:e1:cd:97:37:56:67:86:88: 33:ea:7c:98:64:3b:24:f9:28:2e:67:95:ef:0d:98: 3d:9e:37:f9:c0:61:0e:bc:df:06:db:cd:ca:72:c2: 20:cc:01:27:bf:d0:9e:c1:0b:50:3b:3d:d1:85:22: 6d:4a:01:fb:d6:ae:59:c7:78:db:5a:26:3a:54:7f: a8:b2:1f:b9:9f:1a:db:99:e7:2c:00:9e:56:d1:6f: c1:0b:b4:b6:e9:b5:bc:79:95:0a:fb:ac:82:4f:04: 13:b7:f9:f9:24:61:d1:8d:24:c5:6a:8d:88:4f:2e: d4:d0:1c:09:d5:cd:9c:cb:15:b9:f3:61:d2:1f:24: 8b:2a:e7:53:16:e4:45:17:15:42:65:3a:c4:fe:cc: 28:a4:e0:fc:d1:40:4c:d0:b6:3c:cf:5b:c8:fa:69: 71:6e:55:bb:4f:f8:a1:c2:cc:1d:4b:70:b1:ba:22: 0b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:59:0F:05:F1:67:46:4D:85:7F:5C:E1:B3:A2:C1:B8:E5:51:FE:AE X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/31375d26-e2f2-4b0b-8d94-424d3ef5e55a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.97.0.0/20 Signature Algorithm: sha256WithRSAEncryption 75:05:4f:b5:35:3f:65:fb:28:a6:50:23:3f:6a:2c:bd:85:8b: 2b:25:2f:35:9c:6f:42:98:d3:d9:10:0c:c1:d2:0a:6f:9e:b0: f4:fb:0f:98:05:e7:81:35:6e:c0:8e:24:62:bf:e2:87:d4:f6: 74:05:7a:b2:ef:70:a3:43:d0:c2:e2:d6:a7:81:54:53:e8:1f: 0f:b1:b7:cc:cc:0d:96:31:1d:02:e2:5a:39:9d:10:ae:2d:da: ca:bd:72:e7:59:85:3a:28:fd:ff:e8:a2:54:77:51:bf:e9:6d: c5:fc:8c:4a:23:81:d2:0f:b8:1b:dc:75:99:3a:55:e4:eb:45: 6a:c1:e7:cf:29:1a:6c:f1:11:fc:8b:92:1d:49:42:03:f2:ef: ee:50:77:96:83:72:33:a4:ea:ab:ed:ad:6b:8c:95:b9:24:4e: 2f:c1:d1:14:e8:26:ef:6e:24:a8:c4:e6:a9:fa:1e:29:51:02: ef:27:56:03:89:63:75:6f:10:4d:58:13:4b:65:5d:59:59:de: 13:dd:9a:72:6d:73:64:12:87:30:5a:fc:59:70:bb:92:bf:33: 64:23:2d:7f:2f:bb:8a:ab:cc:a2:07:07:65:fb:4f:3d:80:16: e9:6c:ec:c1:7c:9c:8f:2c:38:9d:1d:82:7f:94:d6:ba:bd:19: 4d:11:0b:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSlmsirz/GBkk0ZElQpH5ARaDjKowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTQxWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjVkNGQ3MGVhODRhM2EyNDRhZTFhMmZmYTU4NzQ4NTQ4 YThkZjVmYmRiYjg3NWRjZTg0NzgwOGNkYzc2ZDgxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcs9aMNeJvTO2tEsxz+eAbwp49oNHhRlYQtYENy7mM0LkE 2cSYAVVLmOOj5/XXOqfKGymSe0rssojUNXIUHEIj0Fu98vzBlJGoSEiNLMXasAfh zZc3VmeGiDPqfJhkOyT5KC5nle8NmD2eN/nAYQ683wbbzcpywiDMASe/0J7BC1A7 PdGFIm1KAfvWrlnHeNtaJjpUf6iyH7mfGtuZ5ywAnlbRb8ELtLbptbx5lQr7rIJP BBO3+fkkYdGNJMVqjYhPLtTQHAnVzZzLFbnzYdIfJIsq51MW5EUXFUJlOsT+zCik 4PzRQEzQtjzPW8j6aXFuVbtP+KHCzB1LcLG6IgvlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6VkPBfFnRk2Ff1zhs6LBuOVR/q4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzMxMzc1ZDI2LWUyZjItNGIwYi04ZDk0LTQyNGQzZWY1ZTU1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYQAwDQYJKoZIhvcNAQELBQADggEBAHUFT7U1P2X7KKZQIz9qLL2Fiysl LzWcb0KY09kQDMHSCm+esPT7D5gF54E1bsCOJGK/4ofU9nQFerLvcKND0MLi1qeB VFPoHw+xt8zMDZYxHQLiWjmdEK4t2sq9cudZhToo/f/oolR3Ub/pbcX8jEojgdIP uBvcdZk6VeTrRWrB588pGmzxEfyLkh1JQgPy7+5Qd5aDcjOk6qvtrWuMlbkkTi/B 0RToJu9uJKjE5qn6HilRAu8nVgOJY3VvEE1YE0tlXVlZ3hPdmnJtc2QShzBa/Flw u5K/M2QjLX8vu4qrzKIHB2X7Tz2AFuls7MF8nI8sOJ0dgn+U1rq9GU0RC2s= -----END CERTIFICATE-----Generated at Mon Oct 20 13:44:05 2025 by rpki-client