$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa File: 3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa (raw, json) Hash identifier: O7IYi7hnBrQtwp0kfiXN9h78iT8QbAKiW3kyUoZSVVI= Subject key identifier: 26:8F:1E:38:51:B9:89:31:19:E6:10:A5:70:16:5F:27:23:85:02:89 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0761A73416301F63FFD32DF1602894B7876887FD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa Signing time: Fri 10 Oct 2025 17:05:13 +0000 ROA not before: Fri 10 Oct 2025 17:05:13 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:61:a7:34:16:30:1f:63:ff:d3:2d:f1:60:28:94:b7:87:68:87:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:13 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=4f8048de112260ae727604c394b3a9ab72d0411abd4f4312a7331808335081b9, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0d:32:9f:67:85:9a:39:e2:1d:a3:d3:f3:f6: 01:f9:cb:9b:d9:17:10:16:23:74:74:20:c1:b9:9e: 39:9b:78:2a:42:2d:18:00:47:58:75:ec:d4:98:d5: 3a:e2:d5:b1:4c:37:db:79:6d:58:38:e6:58:b3:a8: 99:31:33:a9:87:77:6d:75:fd:24:45:7c:80:21:9a: 7b:e2:e5:a3:c8:eb:fc:53:95:29:0e:fa:46:ae:27: 1d:da:33:fe:a1:25:3b:bf:e2:dc:7d:a2:c8:3d:4f: eb:47:e8:47:10:39:d2:2e:c3:c2:ee:42:cf:fc:a4: 4f:21:79:6d:5b:6e:82:9c:fe:42:8f:82:da:a3:20: 5a:fd:14:47:ad:5c:2b:6c:71:7d:ab:25:a2:1a:74: c2:fc:96:18:53:b3:de:ae:a5:a7:47:0a:50:ce:b8: 59:2f:1d:c5:0a:30:73:64:e0:7f:f0:35:f4:48:cd: 86:48:1d:c7:6e:f1:54:fd:6e:3b:ba:b7:29:e5:97: 2e:59:95:90:5d:90:1c:b4:9f:24:28:3a:bb:da:ba: c6:90:4d:68:ca:35:cb:fd:c7:dc:03:8a:cf:d5:30: 9e:5f:5b:e4:a6:b7:e2:be:7d:80:76:47:60:cf:3e: cb:ed:48:6e:ae:da:a2:86:79:36:d9:ab:d5:5e:e0: b3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8F:1E:38:51:B9:89:31:19:E6:10:A5:70:16:5F:27:23:85:02:89 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.245.0/24 Signature Algorithm: sha256WithRSAEncryption 75:04:38:73:b0:63:9e:54:f6:16:fb:99:6d:96:8f:02:09:21: d0:03:fc:9e:bb:09:21:e4:30:1e:40:d1:94:fb:44:1c:8d:de: 5e:34:09:5a:f7:c5:5b:c7:02:aa:3c:c9:0a:98:74:3a:2c:07: c3:ae:8b:84:20:35:8e:44:f6:74:93:15:4c:a7:61:dc:27:d8: a2:24:a0:44:e7:24:dd:e1:cc:2a:8f:9f:ce:4f:6f:9a:6c:20: cc:9c:7a:c9:c3:cd:6a:86:16:02:bb:f1:3e:e9:9f:dc:75:39: e8:47:78:50:f2:25:7e:97:3f:f3:04:f1:82:b3:98:71:ae:14: 08:4d:38:a4:c2:40:b9:35:35:62:51:10:51:46:c8:6e:84:e1: 81:f7:b6:ef:24:7f:6b:89:d2:07:47:a9:18:ee:6e:49:da:88: b3:01:0a:94:06:37:df:fa:7c:33:ea:93:bc:af:8e:dd:3d:b9: e0:29:cd:67:56:10:87:fb:24:58:46:2f:a3:71:20:08:e3:90: e4:79:96:d0:27:d8:ee:2c:8e:e3:b5:6a:af:9e:0b:d2:db:c5: 91:c3:91:5e:9e:4d:1a:d4:29:ec:be:54:0e:b0:ea:04:60:b8: dc:d1:22:37:67:87:12:83:e4:3c:51:b7:cb:aa:88:9e:cd:63: 1d:d1:33:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB2GnNBYwH2P/0y3xYCiUt4doh/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTEzWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjgwNDhkZTExMjI2MGFlNzI3NjA0YzM5NGIzYTlhYjcy ZDA0MTFhYmQ0ZjQzMTJhNzMzMTgwODMzNTA4MWI5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzDTKfZ4WaOeIdo9Pz9gH5y5vZFxAWI3R0IMG5njmbeCpC LRgAR1h17NSY1Tri1bFMN9t5bVg45lizqJkxM6mHd211/SRFfIAhmnvi5aPI6/xT lSkO+kauJx3aM/6hJTu/4tx9osg9T+tH6EcQOdIuw8LuQs/8pE8heW1bboKc/kKP gtqjIFr9FEetXCtscX2rJaIadML8lhhTs96upadHClDOuFkvHcUKMHNk4H/wNfRI zYZIHcdu8VT9bju6tynlly5ZlZBdkBy0nyQoOrvausaQTWjKNcv9x9wDis/VMJ5f W+Smt+K+fYB2R2DPPsvtSG6u2qKGeTbZq9Ve4LNZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJo8eOFG5iTEZ5hClcBZfJyOFAokwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNiOGJmMjMxLTJiMGUtNDZmOC04ZGIwLWEwYWYxNTAzZDc4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPUwDQYJKoZIhvcNAQELBQADggEBAHUEOHOwY55U9hb7mW2WjwIJIdAD /J67CSHkMB5A0ZT7RByN3l40CVr3xVvHAqo8yQqYdDosB8Oui4QgNY5E9nSTFUyn Ydwn2KIkoETnJN3hzCqPn85Pb5psIMycesnDzWqGFgK78T7pn9x1OehHeFDyJX6X P/ME8YKzmHGuFAhNOKTCQLk1NWJREFFGyG6E4YH3tu8kf2uJ0gdHqRjubknaiLMB CpQGN9/6fDPqk7yvjt09ueApzWdWEIf7JFhGL6NxIAjjkOR5ltAn2O4sjuO1aq+e C9LbxZHDkV6eTRrUKey+VA6w6gRguNzRIjdnhxKD5DxRt8uqiJ7NYx3RMyw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:44:01 2025 by rpki-client