$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/371b6f54-4966-4a4c-b3bf-ab0c601bffc6.roa File: 371b6f54-4966-4a4c-b3bf-ab0c601bffc6.roa (raw, json) Hash identifier: XsQ6SxhLfdQqUlek/7FCeHX097ow0LTX3peOAhNaMik= Subject key identifier: 85:16:BA:91:FB:39:DC:B2:9E:FE:5F:DA:71:E2:D7:B2:19:99:2C:11 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 77750ED6ED3D3C84D6D6D31FC7C4A59C244A0AD4 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/371b6f54-4966-4a4c-b3bf-ab0c601bffc6.roa Signing time: Sun 19 Oct 2025 04:00:09 +0000 ROA not before: Sun 19 Oct 2025 04:00:09 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:75:0e:d6:ed:3d:3c:84:d6:d6:d3:1f:c7:c4:a5:9c:24:4a:0a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 19 04:00:09 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=41279d204bf847b43204fd6a74c9fa53edc85dd0aebfd2e1def415146e901f08, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cd:62:b6:a7:b1:e5:f1:42:f9:e8:6e:f6:c7: b2:55:3e:df:9a:bc:53:22:76:c2:d8:29:81:fe:52: d7:3c:cf:d3:6b:38:00:d0:07:85:cd:17:dd:9e:0d: 60:c2:4a:2b:a8:f2:18:ca:22:33:a3:2b:f2:9f:95: 74:5d:48:52:21:2d:27:5f:46:f5:7a:1a:88:87:b8: 75:b3:62:4e:21:88:4e:a9:38:53:d1:67:2c:03:95: 31:e7:41:44:b9:a0:ee:3d:85:6a:0f:41:21:49:e2: 4b:f6:7f:64:ab:71:0c:28:21:dc:12:d5:8e:5e:ef: d3:7c:e7:09:a9:60:b8:3f:41:67:41:d9:ee:33:a9: 72:01:e6:e3:0d:31:ea:4e:79:24:6b:f3:ca:65:42: 57:7f:95:7f:0c:90:e6:1a:72:fc:59:7c:f9:e8:43: 41:8d:28:97:5e:ff:51:6b:76:d8:ae:f6:64:3c:3d: 2a:60:b8:9d:87:0c:39:4b:2e:fb:f3:35:0e:5a:0a: e3:a5:2a:94:ff:2d:88:ef:d2:f9:5a:03:33:78:e0: 19:7b:36:bd:79:e0:29:ae:de:c9:21:f8:08:86:f2: 33:4e:ef:64:4c:f0:73:c6:f3:df:ad:25:69:bc:a3: 31:d5:30:2c:87:78:f5:22:c7:8c:48:14:19:88:72: d2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:16:BA:91:FB:39:DC:B2:9E:FE:5F:DA:71:E2:D7:B2:19:99:2C:11 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/371b6f54-4966-4a4c-b3bf-ab0c601bffc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.35.0/24 Signature Algorithm: sha256WithRSAEncryption 54:83:44:6d:8d:27:35:bc:ff:a6:8c:a1:40:7f:04:9d:a4:30: ae:2c:d6:b7:3c:6e:dc:3b:57:42:7e:c6:d6:cf:62:32:3b:55: 70:8e:1d:b3:14:18:0b:ec:78:a8:54:12:a6:6e:cf:03:f3:ae: 77:e8:13:60:27:d3:84:e6:ec:a2:15:a4:9a:86:d9:78:2f:cc: d5:b9:96:4d:dc:36:aa:7e:23:c5:3a:09:65:f2:52:66:07:2a: 55:0b:92:1c:b3:38:bb:05:89:ad:9e:07:99:d9:3c:75:9b:09: 4f:2a:26:92:b1:d0:1f:e0:76:37:de:95:79:22:5b:4d:f1:5b: 1f:49:45:21:d6:c3:b8:78:46:35:2e:a3:bc:33:13:f9:b6:e5: 73:f6:b4:da:59:7a:78:57:94:72:0a:8a:18:97:43:0a:7e:ca: e0:00:81:e0:e2:90:56:aa:18:14:f4:14:d9:d6:92:bf:fe:e9: f6:3d:48:a6:88:29:17:30:a9:e6:a6:3c:76:e7:b3:39:5e:a5: 7b:26:2e:3b:7d:00:2e:4e:35:b0:73:8e:91:21:35:87:8e:f4: 95:75:fc:e8:c7:4c:ee:0c:2e:2c:49:40:29:9a:aa:ee:b0:ce: e2:58:ba:e3:ba:ff:1f:1b:4d:9d:5c:ac:ba:de:dd:d4:7e:d0: ef:db:0d:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd3UO1u09PITW1tMfx8SlnCRKCtQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE5MDQwMDA5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTI3OWQyMDRiZjg0N2I0MzIwNGZkNmE3NGM5ZmE1M2Vk Yzg1ZGQwYWViZmQyZTFkZWY0MTUxNDZlOTAxZjA4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJzWK2p7Hl8UL56G72x7JVPt+avFMidsLYKYH+Utc8z9Nr OADQB4XNF92eDWDCSiuo8hjKIjOjK/KflXRdSFIhLSdfRvV6GoiHuHWzYk4hiE6p OFPRZywDlTHnQUS5oO49hWoPQSFJ4kv2f2SrcQwoIdwS1Y5e79N85wmpYLg/QWdB 2e4zqXIB5uMNMepOeSRr88plQld/lX8MkOYacvxZfPnoQ0GNKJde/1Frdtiu9mQ8 PSpguJ2HDDlLLvvzNQ5aCuOlKpT/LYjv0vlaAzN44Bl7Nr154Cmu3skh+AiG8jNO 72RM8HPG89+tJWm8ozHVMCyHePUix4xIFBmIctJdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhRa6kfs53LKe/l/aceLXshmZLBEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzM3MWI2ZjU0LTQ5NjYtNGE0Yy1iM2JmLWFiMGM2MDFiZmZjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCMwDQYJKoZIhvcNAQELBQADggEBAFSDRG2NJzW8/6aMoUB/BJ2kMK4s 1rc8btw7V0J+xtbPYjI7VXCOHbMUGAvseKhUEqZuzwPzrnfoE2An04Tm7KIVpJqG 2XgvzNW5lk3cNqp+I8U6CWXyUmYHKlULkhyzOLsFia2eB5nZPHWbCU8qJpKx0B/g djfelXkiW03xWx9JRSHWw7h4RjUuo7wzE/m25XP2tNpZenhXlHIKihiXQwp+yuAA geDikFaqGBT0FNnWkr/+6fY9SKaIKRcwqeamPHbnszlepXsmLjt9AC5ONbBzjpEh NYeO9JV1/OjHTO4MLixJQCmaqu6wzuJYuuO6/x8bTZ1crLre3dR+0O/bDao= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:56 2025 by rpki-client