$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa File: 6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa (raw, json) Hash identifier: eg7Q0xscfYCFNsjdivzIN0J0+nwKU6dIsfQhMv3CYR4= Subject key identifier: 8F:F8:CB:B5:C6:26:DC:E0:9D:4B:2F:4E:41:AF:27:97:A4:3D:3A:09 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7EAA64B76A9374FDE076B48F3CC1652564F495E3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa Signing time: Fri 10 Oct 2025 17:05:13 +0000 ROA not before: Fri 10 Oct 2025 17:05:13 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:aa:64:b7:6a:93:74:fd:e0:76:b4:8f:3c:c1:65:25:64:f4:95:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:13 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=e51597277f26deb08d9ae934214b33fa5ff5b32b7ebacf10f71e0656696afb5e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:40:b2:48:f1:a4:f3:aa:e2:a4:3b:4d:5c:e7: 66:2e:b1:06:80:09:b7:c7:df:dd:b3:67:31:6b:ed: 04:8d:aa:ef:9b:be:a8:a5:62:4c:bb:df:53:cc:4e: b6:22:c4:eb:c4:dc:25:d4:6c:b3:a6:5c:e7:b0:63: 21:86:23:08:c2:88:e9:a7:66:95:ba:91:55:42:e4: 2e:f0:d0:ff:4e:cd:e9:a8:f7:c2:76:a2:96:2c:6d: 32:91:05:30:d1:90:be:49:d3:61:31:9f:69:45:c3: 24:c1:03:40:09:d2:a6:22:4d:86:b4:06:c7:43:40: b7:a1:75:24:5a:40:f3:17:df:cf:0d:ea:92:5b:11: 8d:cf:27:22:de:59:23:1c:70:35:a0:a2:f3:16:23: cb:57:7e:f8:8d:94:5d:17:01:be:7d:01:8d:dd:6a: 85:ca:4a:b9:c1:c0:c3:8e:b6:f2:4b:d9:23:68:7a: 3d:3f:e3:c6:00:23:4f:cc:82:54:30:2c:1f:b9:69: e3:fb:da:d4:40:63:18:fa:49:92:5f:c1:a3:fd:05: ec:d2:1f:3b:45:5b:0d:c6:53:59:1b:45:b0:5b:f7: 6e:d8:54:1c:29:0c:63:5e:9a:02:20:c5:92:32:92: 63:53:8a:fd:4c:06:18:df:87:bf:25:de:38:3b:ab: e8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F8:CB:B5:C6:26:DC:E0:9D:4B:2F:4E:41:AF:27:97:A4:3D:3A:09 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.240.0/24 Signature Algorithm: sha256WithRSAEncryption 70:38:09:f2:0d:d3:be:57:3c:0f:e1:b9:14:e2:28:9d:58:22: dd:3a:26:54:6f:06:94:f9:d8:c0:f2:23:80:ac:a4:7d:c6:dc: fe:45:45:06:60:6c:f5:f9:cf:2f:2a:02:c7:7a:0a:47:8a:6b: 66:c6:f9:64:cc:3d:13:08:47:eb:1a:7b:23:99:02:d4:82:d5: c2:0e:9e:54:58:da:5d:a3:3e:f6:17:a0:38:d9:cc:42:3a:65: 1d:6d:21:69:96:d3:03:c5:c8:b7:fd:36:a6:30:e2:16:8f:b7: 66:71:67:bd:7a:dc:40:de:f2:c8:b1:a5:ff:d1:b5:31:b8:44: ab:d6:ba:55:f7:a9:fe:34:68:bd:40:e6:fb:ec:d8:cb:fb:46: 2a:80:c0:b6:b3:94:62:1a:1c:36:e0:d3:e5:ee:9b:78:dd:7e: 7a:9f:fd:8e:dc:06:b7:23:8c:86:10:2e:22:7b:8c:a3:54:18: 00:c1:bc:3c:91:56:42:3a:5c:f2:50:7b:99:1d:0e:1c:c2:b2: ff:ff:d2:60:47:f9:55:35:a3:6d:51:65:44:9c:21:32:7a:df: 7a:bf:88:e0:2c:be:ff:88:ad:74:fe:b2:91:1b:40:98:13:f8: 86:81:d7:9e:c5:08:ec:8b:f6:f4:3d:e8:d5:5e:a6:41:fe:06: 12:e6:35:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfqpkt2qTdP3gdrSPPMFlJWT0leMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTEzWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTE1OTcyNzdmMjZkZWIwOGQ5YWU5MzQyMTRiMzNmYTVm ZjViMzJiN2ViYWNmMTBmNzFlMDY1NjY5NmFmYjVlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgQLJI8aTzquKkO01c52YusQaACbfH392zZzFr7QSNqu+b vqilYky731PMTrYixOvE3CXUbLOmXOewYyGGIwjCiOmnZpW6kVVC5C7w0P9Ozemo 98J2opYsbTKRBTDRkL5J02Exn2lFwyTBA0AJ0qYiTYa0BsdDQLehdSRaQPMX388N 6pJbEY3PJyLeWSMccDWgovMWI8tXfviNlF0XAb59AY3daoXKSrnBwMOOtvJL2SNo ej0/48YAI0/MglQwLB+5aeP72tRAYxj6SZJfwaP9BezSHztFWw3GU1kbRbBb927Y VBwpDGNemgIgxZIykmNTiv1MBhjfh78l3jg7q+i1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj/jLtcYm3OCdSy9OQa8nl6Q9OgkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZhZDNhMThhLTkzZmUtNGZhZS1hYWZkLTE2MWQ0NjhhMzJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPAwDQYJKoZIhvcNAQELBQADggEBAHA4CfIN075XPA/huRTiKJ1YIt06 JlRvBpT52MDyI4CspH3G3P5FRQZgbPX5zy8qAsd6CkeKa2bG+WTMPRMIR+saeyOZ AtSC1cIOnlRY2l2jPvYXoDjZzEI6ZR1tIWmW0wPFyLf9NqYw4haPt2ZxZ7163EDe 8sixpf/RtTG4RKvWulX3qf40aL1A5vvs2Mv7RiqAwLazlGIaHDbg0+Xum3jdfnqf /Y7cBrcjjIYQLiJ7jKNUGADBvDyRVkI6XPJQe5kdDhzCsv//0mBH+VU1o21RZUSc ITJ633q/iOAsvv+IrXT+spEbQJgT+IaB157FCOyL9vQ96NVepkH+BhLmNcw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:56 2025 by rpki-client