$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa File: 6df93fb2-679f-4247-81c7-fd108c812488.roa (raw, json) Hash identifier: TGpfu6pmUrSCePko6zQDQ6B3EAgKboVSrrynoyuLW8s= Subject key identifier: 01:4B:7A:E6:D2:3E:F7:98:B3:DE:BC:0B:DC:2C:12:36:51:D7:26:16 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4D006FEC3C5540D9F6FD7D44FF11755F8C9F81EA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa Signing time: Fri 10 Oct 2025 17:05:35 +0000 ROA not before: Fri 10 Oct 2025 17:05:35 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:00:6f:ec:3c:55:40:d9:f6:fd:7d:44:ff:11:75:5f:8c:9f:81:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:35 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=5481b4f2fb4cc3f09a188e98f021d4a963cdeb05086eb56f0c264be7a78caa61, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ad:c6:d8:f8:fa:42:c4:15:14:e6:b3:d8:b7: 0e:7c:0a:24:4b:b8:ee:9b:8d:69:4c:f8:17:90:02: 06:a8:c1:1a:bd:00:7e:3d:db:9c:9f:de:59:4a:ed: 55:e2:6a:71:63:81:a8:a2:4d:2c:11:3d:b2:db:69: fd:0c:13:eb:40:a9:3a:d7:1d:e5:96:41:0d:f5:00: 1d:58:0d:24:c0:10:d1:c4:c6:1b:78:a9:b1:28:e3: 49:e5:f8:88:ce:7c:88:3d:1b:d7:5f:51:13:0a:75: e0:8e:a4:d7:64:5b:4a:c7:ca:cf:84:25:73:f4:e4: 75:95:d7:a9:eb:87:eb:88:be:d3:d6:0e:57:86:a1: 93:22:51:f2:77:27:7f:e1:26:7a:92:bc:9f:71:60: eb:10:7c:cd:50:13:50:0a:7e:d2:56:e8:02:ca:55: 55:b3:cf:f6:bb:6c:1d:23:4c:d7:c7:e6:57:ca:72: 9e:a2:03:d2:26:08:47:cd:b2:b8:40:e5:4c:cd:d6: 0d:99:03:28:15:e6:0d:8f:54:d6:50:4a:a9:2a:73: b5:4c:a1:d0:d4:83:f8:34:09:36:3c:03:ce:f1:8e: 1f:ec:8c:66:24:cf:37:28:fb:10:63:e8:2e:8d:77: 05:4d:ee:b3:63:8b:0f:df:73:af:2a:71:6c:e7:b2: 86:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:4B:7A:E6:D2:3E:F7:98:B3:DE:BC:0B:DC:2C:12:36:51:D7:26:16 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.128.0/20 Signature Algorithm: sha256WithRSAEncryption 9d:0b:7e:46:da:a9:c7:d2:b8:6b:a4:99:10:a1:5b:d5:a2:33: d6:ad:ed:4f:b0:db:0c:0c:66:64:b0:7b:91:78:54:58:ac:63: 77:f7:36:00:bf:82:fc:2a:a6:8b:6a:30:c6:a8:f3:b3:4d:ff: ad:3b:04:4c:5a:c5:b6:2a:0f:5b:cf:f9:6e:31:28:4f:3a:24: 9e:ab:0d:66:ef:87:e4:ff:3f:06:ea:5c:91:cf:99:75:d3:0c: cf:22:c7:a3:8c:6d:bb:52:78:01:e2:3c:b3:d7:e1:b9:c7:35: ad:3f:1e:5b:49:4a:ec:7a:3c:e1:7f:b7:13:23:d4:8d:81:15: c0:cc:6f:18:c0:0c:99:75:19:61:7b:f0:4d:1e:79:7d:03:d8: 9a:59:80:88:de:b7:fd:85:19:a1:e5:42:25:c0:e6:a0:df:79: 64:91:2f:a9:57:ac:64:6a:89:44:78:57:4e:df:61:c1:f3:e1: 94:b1:bf:14:ab:f9:6d:a8:05:3e:e4:ef:6b:94:f7:1b:ff:43: 3b:8d:78:2a:0c:27:be:2b:2a:d4:0d:be:c9:d7:49:a2:55:2a: e5:18:fc:0b:de:37:90:d9:44:fb:15:1a:fa:a2:7d:13:08:0c: 72:1e:00:19:cf:d9:1b:e2:b6:92:d5:c8:f7:8d:06:95:f1:da: ab:70:dc:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTQBv7DxVQNn2/X1E/xF1X4yfgeowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTM1WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDgxYjRmMmZiNGNjM2YwOWExODhlOThmMDIxZDRhOTYz Y2RlYjA1MDg2ZWI1NmYwYzI2NGJlN2E3OGNhYTYxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOrcbY+PpCxBUU5rPYtw58CiRLuO6bjWlM+BeQAgaowRq9 AH4925yf3llK7VXianFjgaiiTSwRPbLbaf0ME+tAqTrXHeWWQQ31AB1YDSTAENHE xht4qbEo40nl+IjOfIg9G9dfURMKdeCOpNdkW0rHys+EJXP05HWV16nrh+uIvtPW DleGoZMiUfJ3J3/hJnqSvJ9xYOsQfM1QE1AKftJW6ALKVVWzz/a7bB0jTNfH5lfK cp6iA9ImCEfNsrhA5UzN1g2ZAygV5g2PVNZQSqkqc7VModDUg/g0CTY8A87xjh/s jGYkzzco+xBj6C6NdwVN7rNjiw/fc68qcWznsoanAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAUt65tI+95iz3rwL3CwSNlHXJhYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZkZjkzZmIyLTY3OWYtNDI0Ny04MWM3LWZkMTA4YzgxMjQ4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYIAwDQYJKoZIhvcNAQELBQADggEBAJ0LfkbaqcfSuGukmRChW9WiM9at 7U+w2wwMZmSwe5F4VFisY3f3NgC/gvwqpotqMMao87NN/607BExaxbYqD1vP+W4x KE86JJ6rDWbvh+T/PwbqXJHPmXXTDM8ix6OMbbtSeAHiPLPX4bnHNa0/HltJSux6 POF/txMj1I2BFcDMbxjADJl1GWF78E0eeX0D2JpZgIjet/2FGaHlQiXA5qDfeWSR L6lXrGRqiUR4V07fYcHz4ZSxvxSr+W2oBT7k72uU9xv/QzuNeCoMJ74rKtQNvsnX SaJVKuUY/AveN5DZRPsVGvqifRMIDHIeABnP2RvitpLVyPeNBpXx2qtw3Kg= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:58 2025 by rpki-client