$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa File: 4a409b3c-5797-4e0a-a251-693df1106b07.roa (raw, json) Hash identifier: cihyUdeRFwVMtPDqxSeUW8TfGSvLu9SeUZFeSncEU6A= Subject key identifier: 8C:FA:D9:19:55:33:40:9D:D8:85:6A:D1:AF:92:38:0C:C3:A2:0B:19 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7F3CCC1289997E0C59B27FCF022E8708DF7B908F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa Signing time: Fri 10 Oct 2025 17:05:15 +0000 ROA not before: Fri 10 Oct 2025 17:05:15 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:3c:cc:12:89:99:7e:0c:59:b2:7f:cf:02:2e:87:08:df:7b:90:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:15 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=d2dbcdf1dbe80cc25a88374eaef4328ebc66d6551d344e23e614ed870d1aab34, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c4:c8:04:ff:87:66:d6:17:7b:3f:0d:5b:f7: e7:2c:3f:a7:f3:a7:17:01:05:cd:dc:7b:63:22:fe: 44:d0:d7:94:04:aa:1a:2b:19:69:cc:e3:cd:3f:85: dc:fd:eb:95:7e:c5:1a:b0:18:96:4a:af:4e:7f:89: 6b:5c:16:0f:63:cd:d1:a1:34:ca:31:36:69:a3:ac: 4c:d0:4d:88:61:78:e3:47:b1:09:58:77:1d:d3:0d: a3:4c:e5:bf:ba:f5:ce:6b:d7:11:5b:b2:46:ae:e8: d8:61:ab:be:0e:8d:52:08:53:2c:9b:5f:cb:95:94: e9:e9:86:30:ee:09:21:17:b4:e0:5a:d3:e3:5b:54: c6:aa:5d:69:4d:d4:8f:0b:9e:30:8c:3d:f6:ef:42: 55:b7:f1:7f:2c:db:72:05:6c:94:f2:45:5a:c8:66: d8:06:97:2d:0d:1f:41:ca:2d:a2:ff:c7:ec:6c:34: f3:c1:7f:f7:ec:d3:df:b7:ea:93:fb:a3:bb:e7:82: cd:83:2c:c1:38:9d:39:03:ac:31:b7:f8:b1:ea:a3: a7:d1:7c:e7:ef:34:df:50:96:20:73:d7:e2:d5:a0: 31:f3:f0:20:58:8f:56:fb:f0:9d:b7:15:0d:40:0f: a8:80:b8:43:98:0c:31:4a:bc:06:e0:a5:48:4b:ba: cf:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:FA:D9:19:55:33:40:9D:D8:85:6A:D1:AF:92:38:0C:C3:A2:0B:19 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.248.0/24 Signature Algorithm: sha256WithRSAEncryption 13:5b:0f:65:a3:f2:14:5e:f0:f4:c1:43:47:7c:07:ab:f1:2e: cf:08:5e:ee:4f:f8:5e:ac:37:8a:53:72:13:a9:57:b6:b4:67: 3b:6b:4c:28:9d:53:57:d6:0b:06:2b:db:0f:31:fd:4b:e0:0d: 95:b2:09:39:04:34:d6:c1:ee:a5:43:00:64:ea:f6:72:04:f5: 3a:dd:4e:9e:3f:08:71:12:c4:52:7c:aa:9d:96:d3:a1:cc:5b: ee:5e:c9:73:fc:d7:47:e8:ba:51:7a:57:4b:3d:a6:28:86:b4: 57:29:63:06:89:18:1f:2e:60:3f:b0:93:0a:d3:98:74:c1:12: 46:c8:61:25:de:47:e9:c8:f0:ad:8e:9c:cf:9c:5b:c4:ef:81: ce:91:5f:85:70:94:6d:22:2b:50:a5:ab:cf:24:68:37:9b:c4: 5c:0d:ab:de:37:05:05:28:0f:a1:fe:4d:46:59:b1:83:1c:8e: 27:7e:5f:ef:60:ef:75:3a:2c:d4:74:c0:89:da:a8:8c:0f:55: 1c:88:e8:5a:38:e5:9f:67:9d:1c:dc:13:e1:f1:40:c7:ea:7e: f5:55:1a:ff:db:39:c3:72:bf:0d:c3:2c:d2:b8:99:15:ca:26: 12:0a:96:1f:72:1f:cc:bf:89:3e:0e:e3:ed:20:c6:f8:98:6a: 63:65:e2:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfzzMEomZfgxZsn/PAi6HCN97kI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTE1WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmRiY2RmMWRiZTgwY2MyNWE4ODM3NGVhZWY0MzI4ZWJj NjZkNjU1MWQzNDRlMjNlNjE0ZWQ4NzBkMWFhYjM0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1xMgE/4dm1hd7Pw1b9+csP6fzpxcBBc3ce2Mi/kTQ15QE qhorGWnM480/hdz965V+xRqwGJZKr05/iWtcFg9jzdGhNMoxNmmjrEzQTYhheONH sQlYdx3TDaNM5b+69c5r1xFbskau6Nhhq74OjVIIUyybX8uVlOnphjDuCSEXtOBa 0+NbVMaqXWlN1I8LnjCMPfbvQlW38X8s23IFbJTyRVrIZtgGly0NH0HKLaL/x+xs NPPBf/fs09+36pP7o7vngs2DLME4nTkDrDG3+LHqo6fRfOfvNN9QliBz1+LVoDHz 8CBYj1b78J23FQ1AD6iAuEOYDDFKvAbgpUhLus9PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjPrZGVUzQJ3YhWrRr5I4DMOiCxkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzRhNDA5YjNjLTU3OTctNGUwYS1hMjUxLTY5M2RmMTEwNmIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPgwDQYJKoZIhvcNAQELBQADggEBABNbD2Wj8hRe8PTBQ0d8B6vxLs8I Xu5P+F6sN4pTchOpV7a0ZztrTCidU1fWCwYr2w8x/UvgDZWyCTkENNbB7qVDAGTq 9nIE9TrdTp4/CHESxFJ8qp2W06HMW+5eyXP810foulF6V0s9piiGtFcpYwaJGB8u YD+wkwrTmHTBEkbIYSXeR+nI8K2OnM+cW8Tvgc6RX4VwlG0iK1Clq88kaDebxFwN q943BQUoD6H+TUZZsYMcjid+X+9g73U6LNR0wInaqIwPVRyI6Fo45Z9nnRzcE+Hx QMfqfvVVGv/bOcNyvw3DLNK4mRXKJhIKlh9yH8y/iT4O4+0gxviYamNl4pA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:56 2025 by rpki-client