$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cab47dac-09a8-4952-8453-614e0299abcf.roa File: cab47dac-09a8-4952-8453-614e0299abcf.roa (raw, json) Hash identifier: K6CuRDN2n7rgZAu3R44/zF4Dzs2VWgglpHutob4EvUo= Subject key identifier: AC:ED:2B:BC:0B:8A:A3:C2:90:9C:C3:50:B9:D4:39:17:B6:4B:7C:81 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5219B0237F25DC36D63BAF52E9A97FA4560C4F06 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cab47dac-09a8-4952-8453-614e0299abcf.roa Signing time: Mon 29 Sep 2025 15:23:44 +0000 ROA not before: Mon 29 Sep 2025 15:23:44 +0000 ROA not after: Mon 03 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:19:b0:23:7f:25:dc:36:d6:3b:af:52:e9:a9:7f:a4:56:0c:4f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Sep 29 15:23:44 2025 GMT Not After : Nov 3 23:59:59 2025 GMT Subject: serialNumber=8f0fc5db556f2fcadb9b62a22baf2e177d8b25d9cb92085cb957915c78484485, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c2:3e:e7:0c:08:45:2b:16:76:73:df:14:59: 01:f6:94:4c:cd:08:9f:6b:89:98:d2:d9:b6:32:a2: 54:e0:09:db:fd:6d:7c:02:36:42:d8:83:fe:b5:47: 47:b4:6e:8e:5a:40:e6:58:ed:94:c4:19:df:42:5d: 23:f1:8e:3c:35:cc:c2:e5:24:72:0a:f9:13:32:2b: 58:65:fd:5a:80:ce:a1:dd:50:a8:73:76:24:be:db: 7d:f4:18:03:c0:0e:b0:2f:b3:79:16:cb:78:dd:84: 21:cf:ee:27:81:12:ae:61:f8:2e:0b:ce:9b:54:cc: 84:4d:bb:67:a6:75:b6:59:6e:c5:1a:03:95:c2:eb: 7b:2a:66:a4:99:08:22:7a:60:21:5f:c9:e3:b7:c4: ff:f3:9f:0f:b8:16:47:3a:15:ee:0c:04:bc:28:c2: 12:2f:ee:81:9e:36:6a:79:bf:f6:e2:18:e8:f4:00: a5:a6:e1:89:2d:bd:9d:14:2d:97:e6:2d:bb:1c:24: 67:ad:ff:d5:7f:a3:ae:14:fb:ba:27:e7:3c:ff:31: dd:fb:99:3b:bb:16:56:63:b7:75:8d:c0:c1:3e:28: 05:ea:91:4e:c9:60:d5:c7:28:ee:4a:39:6e:9b:4b: 0d:fc:f8:13:59:d7:6b:6c:6c:17:a9:8e:22:b9:af: 2a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:ED:2B:BC:0B:8A:A3:C2:90:9C:C3:50:B9:D4:39:17:B6:4B:7C:81 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cab47dac-09a8-4952-8453-614e0299abcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.243.0/24 Signature Algorithm: sha256WithRSAEncryption 60:4d:f3:d3:62:57:e2:f9:ed:28:f6:30:20:11:52:ee:ca:b4: b3:6b:96:95:09:ff:d4:94:d6:1a:72:0a:51:54:3c:3f:91:ab: 60:46:b1:d9:d4:f8:62:d1:fb:76:25:11:cb:d9:a9:8d:e2:b6: 6c:c3:77:9c:d8:23:a9:37:3c:c4:75:74:6b:66:c5:ca:c8:6c: ff:a4:d5:82:24:5a:c1:00:df:0e:1c:b1:6c:99:48:d8:cb:60: 31:b6:cb:da:d4:42:00:eb:40:b2:72:d6:2c:a5:83:d7:df:44: 08:eb:c1:91:63:28:09:d9:c4:f4:64:f1:cd:f8:d7:4c:22:3b: cc:5c:53:e4:31:cd:77:22:4a:3d:82:aa:69:90:48:49:be:62: 11:0d:17:4b:d9:3d:95:21:3e:4e:b7:35:a6:2e:9b:9f:b9:22: 53:c6:75:6b:be:10:b0:e3:bb:15:47:18:97:e6:37:86:0d:b4: 30:3f:8f:7e:79:44:49:a0:94:aa:af:f8:65:7c:bf:bb:68:f4: d0:4c:5d:96:8c:d5:de:e9:7e:b3:19:11:89:4a:f7:b0:53:fb: 61:c4:39:aa:39:ba:19:c3:2b:83:e7:dc:7c:f6:38:c7:03:31: 6f:80:cc:4e:8c:84:00:6d:28:2e:95:e1:c1:c8:de:92:55:3a: 77:49:e3:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUhmwI38l3DbWO69S6al/pFYMTwYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwOTI5MTUyMzQ0WhcNMjUxMTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjBmYzVkYjU1NmYyZmNhZGI5YjYyYTIyYmFmMmUxNzdk OGIyNWQ5Y2I5MjA4NWNiOTU3OTE1Yzc4NDg0NDg1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjwj7nDAhFKxZ2c98UWQH2lEzNCJ9riZjS2bYyolTgCdv9 bXwCNkLYg/61R0e0bo5aQOZY7ZTEGd9CXSPxjjw1zMLlJHIK+RMyK1hl/VqAzqHd UKhzdiS+2330GAPADrAvs3kWy3jdhCHP7ieBEq5h+C4LzptUzIRNu2emdbZZbsUa A5XC63sqZqSZCCJ6YCFfyeO3xP/znw+4Fkc6Fe4MBLwowhIv7oGeNmp5v/biGOj0 AKWm4YktvZ0ULZfmLbscJGet/9V/o64U+7on5zz/Md37mTu7FlZjt3WNwME+KAXq kU7JYNXHKO5KOW6bSw38+BNZ12tsbBepjiK5ryrHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrO0rvAuKo8KQnMNQudQ5F7ZLfIEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NhYjQ3ZGFjLTA5YTgtNDk1Mi04NDUzLTYxNGUwMjk5YWJjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPMwDQYJKoZIhvcNAQELBQADggEBAGBN89NiV+L57Sj2MCARUu7KtLNr lpUJ/9SU1hpyClFUPD+Rq2BGsdnU+GLR+3YlEcvZqY3itmzDd5zYI6k3PMR1dGtm xcrIbP+k1YIkWsEA3w4csWyZSNjLYDG2y9rUQgDrQLJy1iylg9ffRAjrwZFjKAnZ xPRk8c3410wiO8xcU+QxzXciSj2CqmmQSEm+YhENF0vZPZUhPk63NaYum5+5IlPG dWu+ELDjuxVHGJfmN4YNtDA/j355REmglKqv+GV8v7to9NBMXZaM1d7pfrMZEYlK 97BT+2HEOao5uhnDK4Pn3Hz2OMcDMW+AzE6MhABtKC6V4cHI3pJVOndJ47Q= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:10 2025 by rpki-client