$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa File: 3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa (raw, json) Hash identifier: iUZHTa3e81BQkT0PCNkZ5tnNGsM3OFY/ZTUaz7TW4Oo= Subject key identifier: F6:AE:47:F2:23:5F:74:E5:F4:91:01:08:EA:CF:6D:AE:BA:3D:EF:6D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 429AA576AC64290ED9CB800426A16080E2BDA09E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa Signing time: Fri 10 Oct 2025 17:05:13 +0000 ROA not before: Fri 10 Oct 2025 17:05:13 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:9a:a5:76:ac:64:29:0e:d9:cb:80:04:26:a1:60:80:e2:bd:a0:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:13 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=89533b48f9994fa2b15c143b33823e79f14fff9b6d8fb4a629b47a8ea56fcac3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:68:36:51:46:e3:aa:4f:de:48:97:8f:3b:d1: 49:3a:d9:b0:0a:07:4c:89:76:6e:a3:8a:ac:3e:07: 2c:ad:de:56:da:a5:86:a3:2a:a7:19:45:7f:46:19: e5:ec:6e:05:c6:2d:13:35:43:38:9b:ce:09:4a:a2: 3d:d0:ff:05:cc:f4:15:c4:12:35:8e:35:e4:01:13: 5a:0f:ac:46:88:72:29:97:0c:ef:1f:65:d7:94:0d: bb:b2:9b:eb:a0:b2:e3:87:5a:01:f8:1d:db:84:0c: 5a:a6:b4:51:66:e1:0b:a8:15:fe:52:0d:86:45:29: ba:55:e3:83:07:03:cb:4d:0a:ac:04:1c:69:33:33: 9f:9b:bb:8e:a5:77:ee:4c:4c:02:a6:26:6c:7e:29: 7b:00:58:45:db:02:2b:6c:99:03:39:63:d1:bc:9b: f6:29:cb:5a:00:61:04:66:14:f7:7e:88:ca:74:44: f1:63:0e:33:1f:57:f4:67:25:7b:17:c4:50:0d:e6: a1:e4:f6:1b:fb:a7:d7:ea:1b:be:b3:02:af:38:42: dd:9e:cb:d7:2d:d3:e1:9d:23:47:71:e5:d3:6a:ac: 03:4a:c1:23:48:e5:e3:22:b0:c6:c6:2f:09:2b:a3: 7a:56:6a:d0:e8:bd:a6:7f:a3:87:0d:16:56:57:14: 1e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AE:47:F2:23:5F:74:E5:F4:91:01:08:EA:CF:6D:AE:BA:3D:EF:6D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.254.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:23:fc:2a:10:00:ac:b3:55:1c:d0:4d:a7:15:8b:7a:a8:f7: d6:96:e5:a7:0b:a1:b9:62:1b:2d:05:86:59:65:d4:f2:f6:bc: 1d:7b:16:c1:c0:b0:6f:3f:92:2d:a1:f5:1a:05:92:68:f6:67: ba:fd:3b:70:70:b3:e4:cb:97:77:06:98:93:38:57:35:19:a2: 80:98:3e:b8:fa:37:99:95:ab:6b:f8:4b:15:4d:82:fe:cf:0c: d3:93:f4:57:82:7f:8d:62:37:a4:d6:c9:5c:b4:c7:0c:2f:56: b8:7a:24:3f:96:7b:12:47:eb:e5:9d:e8:d1:08:77:45:38:ef: 28:93:b2:ba:25:2e:31:c6:24:16:3f:39:a4:e6:f3:e1:46:b8: 0f:8e:41:54:76:e3:15:1c:22:76:28:d4:9b:18:ed:87:ef:de: f7:a5:47:89:e3:12:8d:05:24:29:d8:b8:04:76:0f:d9:44:94: 1e:71:00:b2:5c:18:6f:73:42:10:a9:bd:f1:4a:64:79:37:58: 9c:5d:d9:e5:85:44:27:a4:93:6f:bc:f8:bc:86:7d:12:89:55: 3a:45:46:85:2a:eb:b0:c2:1e:2f:7f:b3:2a:e1:ff:54:7e:d5: 46:13:cf:be:95:e6:95:05:e3:60:23:20:07:76:5b:63:f2:12: a2:b2:63:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQpqldqxkKQ7Zy4AEJqFggOK9oJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTEzWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTUzM2I0OGY5OTk0ZmEyYjE1YzE0M2IzMzgyM2U3OWYx NGZmZjliNmQ4ZmI0YTYyOWI0N2E4ZWE1NmZjYWMzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpaDZRRuOqT95Il4870Uk62bAKB0yJdm6jiqw+Byyt3lba pYajKqcZRX9GGeXsbgXGLRM1QzibzglKoj3Q/wXM9BXEEjWONeQBE1oPrEaIcimX DO8fZdeUDbuym+ugsuOHWgH4HduEDFqmtFFm4QuoFf5SDYZFKbpV44MHA8tNCqwE HGkzM5+bu46ld+5MTAKmJmx+KXsAWEXbAitsmQM5Y9G8m/Ypy1oAYQRmFPd+iMp0 RPFjDjMfV/RnJXsXxFAN5qHk9hv7p9fqG76zAq84Qt2ey9ct0+GdI0dx5dNqrANK wSNI5eMisMbGLwkro3pWatDovaZ/o4cNFlZXFB7LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9q5H8iNfdOX0kQEI6s9trro9720wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNlMGFhYjhlLTc4YTEtNGI0YS1iODdjLTRhNzkyOTRmYzBhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP4wDQYJKoZIhvcNAQELBQADggEBAGoj/CoQAKyzVRzQTacVi3qo99aW 5acLobliGy0Fhlll1PL2vB17FsHAsG8/ki2h9RoFkmj2Z7r9O3Bws+TLl3cGmJM4 VzUZooCYPrj6N5mVq2v4SxVNgv7PDNOT9FeCf41iN6TWyVy0xwwvVrh6JD+WexJH 6+Wd6NEId0U47yiTsrolLjHGJBY/OaTm8+FGuA+OQVR24xUcInYo1JsY7Yfv3vel R4njEo0FJCnYuAR2D9lElB5xALJcGG9zQhCpvfFKZHk3WJxd2eWFRCekk2+8+LyG fRKJVTpFRoUq67DCHi9/syrh/1R+1UYTz76V5pUF42AjIAd2W2PyEqKyYxo= -----END CERTIFICATE-----Generated at Mon Oct 20 13:44:08 2025 by rpki-client