$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa File: 87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa (raw, json) Hash identifier: QKFYpZEA47UiZTxQHPE6uX+1WNzveviadr9PLxLBWlk= Subject key identifier: 50:FB:C0:B6:A9:D8:AA:30:AC:CC:CE:02:2F:88:04:4F:0B:4B:C1:61 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 924307F3D936EE7983CA1D57F69739A1301200 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa Signing time: Fri 10 Oct 2025 17:05:39 +0000 ROA not before: Fri 10 Oct 2025 17:05:39 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92:43:07:f3:d9:36:ee:79:83:ca:1d:57:f6:97:39:a1:30:12:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:39 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=42b3a4764f6f8f2f8362eef1020a74a538bfec9376a1aabfc54aee2c398a067a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:e3:8b:39:03:88:aa:11:b3:95:12:7d:a5:bc: 83:73:16:a6:37:99:64:39:00:3d:06:d7:4f:aa:f0: d1:02:fb:ed:3a:8b:54:0e:30:46:f8:50:7d:6d:5d: c7:1f:ff:9c:b2:b8:e0:f1:e3:f3:f5:06:bc:56:01: c6:d9:1b:e1:87:0e:b6:e1:71:60:5c:aa:ad:ef:b1: 5b:e1:5a:24:36:93:e9:61:29:df:e2:ea:94:90:4a: f3:dc:ca:b6:f6:8b:62:82:79:75:44:73:e1:a3:50: ce:cf:0d:d5:7b:fc:13:a6:7a:55:11:6b:d0:90:dd: 69:fc:46:d1:35:a8:a5:bf:a8:14:7f:9e:83:70:12: 19:2d:27:2b:fc:7f:16:2f:f6:ad:90:42:20:36:49: 2d:a5:99:36:78:fb:9f:a7:3e:84:94:6b:f1:4d:a7: e4:4c:6d:f5:a6:a8:13:07:e1:da:a1:f4:5e:e1:fd: 9b:b1:39:3a:ea:39:99:bc:b5:d3:28:c9:aa:3d:bc: c1:8d:72:84:8e:cd:3e:49:87:18:58:8b:cc:ea:08: 0f:3a:fa:39:29:86:fb:8b:cb:26:58:74:e5:30:3a: 89:e0:f5:04:b7:4a:10:62:ef:26:93:8f:ae:2e:61: 6b:02:aa:c7:28:f2:d2:dc:96:9a:e3:1b:47:ce:d1: 4c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:FB:C0:B6:A9:D8:AA:30:AC:CC:CE:02:2F:88:04:4F:0B:4B:C1:61 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.112.0/20 Signature Algorithm: sha256WithRSAEncryption 5a:55:bd:d9:0a:75:fa:53:12:6a:7b:cb:5b:f6:0c:04:3a:95: ca:60:14:f7:00:59:e4:6d:64:c5:3c:65:55:8e:b3:c3:b8:fd: 78:f4:23:d0:87:88:85:de:87:f1:64:b6:17:13:66:53:63:86: ca:4a:a7:93:91:ef:86:03:e0:c3:c0:f7:31:ee:47:e0:13:c4: ab:f0:54:63:70:8e:fa:f3:1b:72:29:d5:88:40:c9:cb:8b:ec: 77:3c:e4:6f:7f:05:20:95:7a:de:4b:94:b1:b0:d4:7c:db:2b: e9:05:c3:e3:30:a5:c4:95:4a:0f:67:3a:e9:a9:84:ed:9c:94: e9:07:ae:08:0f:10:51:6f:91:70:ad:38:41:86:fc:3c:84:f2: 6f:ba:a3:9c:a9:8b:36:0d:90:27:33:91:46:fb:a2:39:e3:77: 5c:65:eb:80:07:69:22:ff:a6:22:97:bc:5b:26:64:af:06:af: 04:55:88:ab:79:9c:85:14:92:c9:18:72:6b:52:d0:14:97:50: 18:fa:b6:2b:ad:23:d4:f6:01:26:62:9c:4b:8b:ca:61:47:9e: 77:ce:d8:95:54:89:af:39:fd:16:36:35:ab:2e:b9:2c:bd:b7: eb:e5:de:fd:0a:a7:7f:cc:32:3a:9a:e4:e7:0f:7b:e9:80:4c: 66:ac:80:05 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAJJDB/PZNu55g8odV/aXOaEwEgAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTM5WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmIzYTQ3NjRmNmY4ZjJmODM2MmVlZjEwMjBhNzRhNTM4 YmZlYzkzNzZhMWFhYmZjNTRhZWUyYzM5OGEwNjdhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCN44s5A4iqEbOVEn2lvINzFqY3mWQ5AD0G10+q8NEC++06 i1QOMEb4UH1tXccf/5yyuODx4/P1BrxWAcbZG+GHDrbhcWBcqq3vsVvhWiQ2k+lh Kd/i6pSQSvPcyrb2i2KCeXVEc+GjUM7PDdV7/BOmelURa9CQ3Wn8RtE1qKW/qBR/ noNwEhktJyv8fxYv9q2QQiA2SS2lmTZ4+5+nPoSUa/FNp+RMbfWmqBMH4dqh9F7h /ZuxOTrqOZm8tdMoyao9vMGNcoSOzT5JhxhYi8zqCA86+jkphvuLyyZYdOUwOong 9QS3ShBi7yaTj64uYWsCqsco8tLclprjG0fO0UybAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUPvAtqnYqjCszM4CL4gETwtLwWEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg3ZTQwY2E3LTRiZDUtNGE4ZS1iYWJjLWVmNDUwZDI1YTBjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYHAwDQYJKoZIhvcNAQELBQADggEBAFpVvdkKdfpTEmp7y1v2DAQ6lcpg FPcAWeRtZMU8ZVWOs8O4/Xj0I9CHiIXeh/FkthcTZlNjhspKp5OR74YD4MPA9zHu R+ATxKvwVGNwjvrzG3Ip1YhAycuL7Hc85G9/BSCVet5LlLGw1HzbK+kFw+MwpcSV Sg9nOumphO2clOkHrggPEFFvkXCtOEGG/DyE8m+6o5ypizYNkCczkUb7ojnjd1xl 64AHaSL/piKXvFsmZK8GrwRViKt5nIUUkskYcmtS0BSXUBj6tiutI9T2ASZinEuL ymFHnnfO2JVUia85/RY2NasuuSy9t+vl3v0Kp3/MMjqa5OcPe+mATGasgAU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:44:09 2025 by rpki-client