$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa File: dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa (raw, json) Hash identifier: oE5EHHqjGhsqiNMzxh0f7Z+gd4hGBEV2uSju/PN4RFY= Subject key identifier: 0B:01:50:87:A0:0E:B4:BB:FE:35:1D:A0:0A:60:8F:F5:75:2F:63:73 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 44037108CD15FF9AA1574FCB099E3548573202D0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa Signing time: Mon 15 Sep 2025 17:40:25 +0000 ROA not before: Mon 15 Sep 2025 17:40:25 +0000 ROA not after: Mon 20 Oct 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:03:71:08:cd:15:ff:9a:a1:57:4f:cb:09:9e:35:48:57:32:02:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Sep 15 17:40:25 2025 GMT Not After : Oct 20 23:59:59 2025 GMT Subject: serialNumber=c08ac98323f0f1e6114441adf9bd58518b7b81a3a3af1ef2146bde275924faa2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:de:fa:46:6c:5a:24:d6:25:3d:23:38:96: 94:27:6c:19:55:bf:00:cd:50:8a:f1:07:63:1f:d1: 5a:ed:1b:8f:c5:c2:58:8f:da:96:f2:58:0c:be:a9: 5d:9b:a1:cb:3b:d2:0e:3d:61:1c:86:9f:c0:06:46: 8f:59:03:46:a6:30:7a:25:7c:c9:85:44:04:97:a1: 2a:72:80:06:50:bc:76:82:2e:88:7e:8c:c1:47:0e: 1d:db:13:76:dc:2d:f8:e5:95:ab:65:14:43:f3:ea: 9a:5e:86:7b:1e:4c:37:48:dd:1e:ce:1b:7e:70:14: 2e:44:db:77:b8:90:fa:56:13:0c:63:39:b8:65:99: b8:cc:7f:a7:76:65:ca:b2:79:63:a0:5e:a4:36:36: 65:96:c5:0a:4f:df:22:8d:d1:21:95:1c:58:f7:52: 82:79:65:a1:6d:21:d1:e6:d5:24:fe:49:2b:8b:45: 0d:a0:d9:3b:57:d3:72:0b:8b:07:6d:2c:56:c9:56: 74:69:60:52:45:a2:ef:cf:93:c0:31:bb:b2:a4:71: 3b:f9:7a:8d:ac:dd:b8:fd:45:b3:0f:06:b4:d7:3f: 2e:43:06:84:69:18:0c:2a:aa:ac:14:97:fb:53:84: 61:32:ca:29:b4:db:f3:58:11:7b:a3:22:f3:bd:60: 76:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:01:50:87:A0:0E:B4:BB:FE:35:1D:A0:0A:60:8F:F5:75:2F:63:73 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:80:7e:35:bc:1d:71:40:b8:c4:0e:5b:a5:c1:b4:4f:4f:f3: 6f:ec:41:e1:d7:af:4d:5b:2a:9d:ea:fb:51:eb:38:f5:e8:b0: 96:34:17:8e:50:76:9c:07:f3:6c:da:24:16:9e:29:49:15:6c: a8:a7:7d:00:20:1a:23:8a:b3:ec:c1:8d:e7:dc:49:5b:71:d6: 78:59:11:5a:93:99:bd:04:7c:3e:2a:dd:7f:93:ab:22:a4:75: 33:2b:63:e2:b3:7e:ac:ef:73:9e:22:2d:61:5e:26:60:32:b9: f2:83:b0:af:ac:a3:21:ca:f6:d6:93:7e:8f:52:c8:80:47:98: 40:17:d9:3f:0d:2d:ae:20:65:a0:51:1d:f9:5c:dd:c4:e4:dd: 1c:c4:12:a1:13:cc:2b:89:f4:6c:c3:65:e9:d0:29:51:6d:6a: 6c:8c:70:c7:8c:f3:94:27:58:0c:b8:75:dd:21:f8:70:17:72: 3a:ce:53:c8:9b:6d:ad:3a:de:8a:b7:a2:33:93:c2:84:99:de: 6a:28:6d:b6:9e:22:e5:c5:d4:d0:65:3b:27:61:90:7f:22:e7: d0:93:28:ac:bc:fd:ee:8c:61:36:1d:8a:b4:0b:7b:d1:9a:54: 69:c0:cf:da:22:dd:4a:7d:91:f8:f0:e2:6d:30:8f:c3:74:da: d1:44:9a:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURANxCM0V/5qhV0/LCZ41SFcyAtAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwOTE1MTc0MDI1WhcNMjUxMDIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDhhYzk4MzIzZjBmMWU2MTE0NDQxYWRmOWJkNTg1MThi N2I4MWEzYTNhZjFlZjIxNDZiZGUyNzU5MjRmYWEyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxsd76RmxaJNYlPSM4lpQnbBlVvwDNUIrxB2Mf0VrtG4/F wliP2pbyWAy+qV2bocs70g49YRyGn8AGRo9ZA0amMHolfMmFRASXoSpygAZQvHaC Loh+jMFHDh3bE3bcLfjllatlFEPz6ppehnseTDdI3R7OG35wFC5E23e4kPpWEwxj ObhlmbjMf6d2ZcqyeWOgXqQ2NmWWxQpP3yKN0SGVHFj3UoJ5ZaFtIdHm1ST+SSuL RQ2g2TtX03ILiwdtLFbJVnRpYFJFou/Pk8Axu7KkcTv5eo2s3bj9RbMPBrTXPy5D BoRpGAwqqqwUl/tThGEyyim02/NYEXujIvO9YHYHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCwFQh6AOtLv+NR2gCmCP9XUvY3MwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RjODIyYzAxLTE3MTctNGU0NS1hNWE4LTNhNWRjOTE2Yzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAAyAfjW8HXFAuMQOW6XBtE9P82/s QeHXr01bKp3q+1HrOPXosJY0F45QdpwH82zaJBaeKUkVbKinfQAgGiOKs+zBjefc SVtx1nhZEVqTmb0EfD4q3X+TqyKkdTMrY+Kzfqzvc54iLWFeJmAyufKDsK+soyHK 9taTfo9SyIBHmEAX2T8NLa4gZaBRHflc3cTk3RzEEqETzCuJ9GzDZenQKVFtamyM cMeM85QnWAy4dd0h+HAXcjrOU8ibba063oq3ojOTwoSZ3moobbaeIuXF1NBlOydh kH8i59CTKKy8/e6MYTYdirQLe9GaVGnAz9oi3Up9kfjw4m0wj8N02tFEmng= -----END CERTIFICATE-----Generated at Fri Sep 19 08:49:03 2025 by rpki-client