$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9c674793-2377-4f72-bcf8-2ff0d70f9566.roa File: 9c674793-2377-4f72-bcf8-2ff0d70f9566.roa (raw, json) Hash identifier: wdBuzfFTdxVd5bGjckJW3jg5S9HzqwzgyT1P2QWaDVU= Subject key identifier: E5:93:3C:00:1A:50:30:06:64:9F:4F:E8:90:2E:29:27:D9:8C:CA:6D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5CC6B1D48DFD543BDB3573CE1BAC4E61DF2D105C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9c674793-2377-4f72-bcf8-2ff0d70f9566.roa Signing time: Fri 10 Oct 2025 17:05:37 +0000 ROA not before: Fri 10 Oct 2025 17:05:37 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c6:b1:d4:8d:fd:54:3b:db:35:73:ce:1b:ac:4e:61:df:2d:10:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:37 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=529c4cbb0ad363328b85abbd238f1567e0d3ee6b8a8b5c4d2c13c21cad1d684b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1d:ff:48:58:91:28:fb:5c:ca:4a:8b:b1:6c: 27:b5:6b:6c:43:3c:15:91:6a:26:f9:b5:9e:4b:0b: d4:a9:a3:ee:01:7d:ad:7f:dc:75:e6:03:f9:5f:06: b4:f8:68:32:e7:6f:7f:18:63:82:7f:f2:0f:82:ac: 76:c6:b0:a3:6b:d8:0d:d6:d1:ec:69:c9:52:94:7c: b6:ff:3e:a9:96:75:2d:83:16:ea:83:f6:f3:10:a7: 22:86:55:53:0e:b6:fd:5d:5f:25:03:c5:99:36:99: eb:98:39:27:8a:22:a7:ea:32:81:32:eb:de:ac:55: 82:e4:5f:98:1d:8e:9e:c5:db:a0:10:85:0f:ae:e8: 56:66:1c:26:6d:8b:a3:a6:6e:30:f2:4c:0a:47:53: 50:b3:20:66:39:0a:d8:f5:30:f1:48:e4:1b:c9:16: 2f:7b:37:73:df:23:4f:f8:45:a4:af:36:82:a1:0b: 43:29:ab:5a:9d:fd:af:7c:fb:64:de:1e:b3:42:39: c8:44:0d:f0:56:a2:c0:a5:dc:3e:bc:64:29:55:1f: 56:05:85:99:61:f9:e7:c3:d4:c3:a0:33:00:46:aa: be:48:e1:f3:3e:39:ed:1d:23:ff:32:e5:c2:19:c6: 64:52:e2:d6:1f:83:e0:f6:ed:65:78:d8:2b:c4:48: 31:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:93:3C:00:1A:50:30:06:64:9F:4F:E8:90:2E:29:27:D9:8C:CA:6D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9c674793-2377-4f72-bcf8-2ff0d70f9566.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.96.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:b8:11:8d:ef:02:13:58:70:1f:1e:72:56:d1:4a:e2:fb:6b: 08:83:79:39:80:cc:9e:48:67:d9:65:80:09:0b:44:88:3b:0e: c3:40:af:67:78:8f:01:0f:5b:95:5b:26:bd:2b:9e:a2:3f:a9: cd:96:49:9b:9d:60:ee:06:6e:d2:4b:ac:66:58:ff:4d:0d:74: 75:c4:ba:e5:63:db:62:2b:28:20:96:90:58:cf:b2:3c:7a:ba: bb:55:13:13:ff:55:9f:28:a3:7c:f7:32:09:4a:9d:45:1e:44: 7b:d2:99:27:2c:2c:5f:4b:ef:1f:41:03:03:b5:f0:2a:78:06: db:e7:dd:8e:11:30:51:51:9b:55:66:e0:0a:5c:79:c9:c9:08: d7:46:bf:b0:58:14:82:e9:1b:1a:ed:07:73:cf:04:b9:6d:6b: 9d:eb:5f:16:81:d0:8b:8c:50:a0:b8:c9:90:03:aa:15:00:d0: 0a:70:ea:b9:e8:07:73:e5:9c:68:d0:5b:95:06:e5:40:04:82: 8d:90:6d:82:8b:ab:07:05:9b:7d:0f:2f:44:4a:75:ac:d0:e1: f2:70:ee:ca:75:b2:21:d7:02:8d:2b:4c:a3:aa:c3:97:08:7e: 05:f6:b6:9f:c7:f4:e0:d1:f9:ad:97:f1:51:4f:c3:03:2c:c2: 01:e0:d2:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXMax1I39VDvbNXPOG6xOYd8tEFwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTM3WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjljNGNiYjBhZDM2MzMyOGI4NWFiYmQyMzhmMTU2N2Uw ZDNlZTZiOGE4YjVjNGQyYzEzYzIxY2FkMWQ2ODRiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Hf9IWJEo+1zKSouxbCe1a2xDPBWRaib5tZ5LC9Spo+4B fa1/3HXmA/lfBrT4aDLnb38YY4J/8g+CrHbGsKNr2A3W0expyVKUfLb/PqmWdS2D FuqD9vMQpyKGVVMOtv1dXyUDxZk2meuYOSeKIqfqMoEy696sVYLkX5gdjp7F26AQ hQ+u6FZmHCZti6OmbjDyTApHU1CzIGY5Ctj1MPFI5BvJFi97N3PfI0/4RaSvNoKh C0Mpq1qd/a98+2TeHrNCOchEDfBWosCl3D68ZClVH1YFhZlh+efD1MOgMwBGqr5I 4fM+Oe0dI/8y5cIZxmRS4tYfg+D27WV42CvESDGDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5ZM8ABpQMAZkn0/okC4pJ9mMym0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzljNjc0NzkzLTIzNzctNGY3Mi1iY2Y4LTJmZjBkNzBmOTU2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYGAwDQYJKoZIhvcNAQELBQADggEBAJq4EY3vAhNYcB8eclbRSuL7awiD eTmAzJ5IZ9llgAkLRIg7DsNAr2d4jwEPW5VbJr0rnqI/qc2WSZudYO4GbtJLrGZY /00NdHXEuuVj22IrKCCWkFjPsjx6urtVExP/VZ8oo3z3MglKnUUeRHvSmScsLF9L 7x9BAwO18Cp4Btvn3Y4RMFFRm1Vm4ApcecnJCNdGv7BYFILpGxrtB3PPBLlta53r XxaB0IuMUKC4yZADqhUA0Apw6rnoB3PlnGjQW5UG5UAEgo2QbYKLqwcFm30PL0RK dazQ4fJw7sp1siHXAo0rTKOqw5cIfgX2tp/H9ODR+a2X8VFPwwMswgHg0k4= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:56 2025 by rpki-client