$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/de89b5cc-8cd4-4206-884c-189b4133f8da.roa File: de89b5cc-8cd4-4206-884c-189b4133f8da.roa (raw, json) Hash identifier: RgxibmKtqEcYK/5SO767GHd1IVkNf7zXoH/XF2m2ENI= Subject key identifier: DA:0D:ED:55:5F:92:AF:D8:DD:CA:23:1E:4A:C6:9C:21:BF:F4:88:36 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1584E8759CEE5518841772A9AA8252B0064E32AD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/de89b5cc-8cd4-4206-884c-189b4133f8da.roa Signing time: Fri 10 Oct 2025 17:04:58 +0000 ROA not before: Fri 10 Oct 2025 17:04:58 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:84:e8:75:9c:ee:55:18:84:17:72:a9:aa:82:52:b0:06:4e:32:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:04:58 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=2b0c3a2322f3f99fb595d1d3b759ac2eede20a5c596c5d260115fa5b1b671270, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0d:ff:4b:03:d6:2b:7b:7b:f2:76:a8:ba:ec: 7a:a0:89:5e:88:23:c1:8a:ba:9a:ed:a2:06:c0:95: 5f:b8:a4:3e:23:66:1d:29:62:c3:29:92:c7:45:61: 31:e3:68:42:d6:60:99:31:23:2e:20:04:39:8c:b5: ea:0c:8e:af:99:4e:ad:60:e0:7a:9b:da:42:0e:4f: 15:cc:74:0f:60:85:68:c2:18:f7:24:cb:50:6b:43: 10:0a:b4:e8:aa:4e:14:2a:75:cd:8d:8c:40:24:54: fd:13:bf:97:d3:2b:15:ff:13:c0:87:09:9c:24:62: 52:47:ae:38:d2:fc:d6:68:10:36:ef:44:be:e5:62: a8:2d:32:15:7a:cb:ff:e3:37:9b:d8:ea:b3:af:6d: 78:32:b8:5c:21:e2:c2:e5:6d:87:f8:36:af:a4:46: 80:12:db:ba:2a:a9:62:9c:1a:2d:1a:5c:d9:a7:57: cd:84:22:a9:12:9d:05:4f:18:9e:8b:bd:90:93:f2: 2a:60:c4:a2:32:68:80:2b:bb:85:e2:a6:d8:32:fa: 7f:64:60:40:3a:4b:96:39:b6:ca:de:f6:0f:bc:c2: f3:36:ea:3f:ae:9d:4e:05:73:b8:7d:e8:e4:61:0d: eb:52:c3:86:87:ce:c3:6d:85:c3:c5:c5:12:4d:c2: 2a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0D:ED:55:5F:92:AF:D8:DD:CA:23:1E:4A:C6:9C:21:BF:F4:88:36 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/de89b5cc-8cd4-4206-884c-189b4133f8da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.255.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:be:aa:c0:f1:d2:a3:93:a9:47:38:3e:1d:49:b1:0f:b7:37: 5c:e3:e1:2c:08:00:d6:bc:ff:6e:22:d2:26:3e:5f:a3:01:bc: 14:25:3c:89:2e:d0:12:5f:2a:00:9b:60:d3:3a:84:b0:81:9c: ee:2e:2d:02:3c:ec:fa:4a:3e:4d:aa:32:7a:53:d3:92:2a:6a: 3b:f1:36:6e:ef:43:e1:91:17:29:7c:ed:d6:5c:56:c3:8d:e4: 51:e1:61:2f:b1:45:b1:bc:ca:cc:31:ce:1c:e3:f7:eb:ad:52: e5:f1:df:89:b1:b8:70:6f:4d:92:3b:a5:90:11:36:46:39:d9: 69:78:03:c4:fe:8c:90:d0:fd:a0:1b:e8:0d:96:84:22:67:53: 09:a2:4c:45:30:12:3a:dd:32:f7:7d:7e:b2:19:d0:a8:21:ff: e5:74:62:a5:83:b8:94:f1:72:86:14:d7:60:7c:8c:b5:ec:cc: cd:3d:32:af:a2:0f:f6:6f:12:59:dc:43:68:8a:d0:87:10:7f: ef:35:b5:95:10:bb:39:d4:7a:a8:cb:84:5e:e8:62:35:82:61: e3:32:ad:63:cc:eb:ad:65:b1:10:12:8d:b1:2c:60:0e:18:9f: 05:93:87:15:89:a6:74:9b:01:5a:a9:79:23:79:f8:c4:92:17: 93:15:e8:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFYTodZzuVRiEF3KpqoJSsAZOMq0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNDU4WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjBjM2EyMzIyZjNmOTlmYjU5NWQxZDNiNzU5YWMyZWVk ZTIwYTVjNTk2YzVkMjYwMTE1ZmE1YjFiNjcxMjcwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiDf9LA9Yre3vydqi67HqgiV6II8GKuprtogbAlV+4pD4j Zh0pYsMpksdFYTHjaELWYJkxIy4gBDmMteoMjq+ZTq1g4Hqb2kIOTxXMdA9ghWjC GPcky1BrQxAKtOiqThQqdc2NjEAkVP0Tv5fTKxX/E8CHCZwkYlJHrjjS/NZoEDbv RL7lYqgtMhV6y//jN5vY6rOvbXgyuFwh4sLlbYf4Nq+kRoAS27oqqWKcGi0aXNmn V82EIqkSnQVPGJ6LvZCT8ipgxKIyaIAru4Xiptgy+n9kYEA6S5Y5tsre9g+8wvM2 6j+unU4Fc7h96ORhDetSw4aHzsNthcPFxRJNwioxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2g3tVV+Sr9jdyiMeSsacIb/0iDYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RlODliNWNjLThjZDQtNDIwNi04ODRjLTE4OWI0MTMzZjhkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP8wDQYJKoZIhvcNAQELBQADggEBAA++qsDx0qOTqUc4Ph1JsQ+3N1zj 4SwIANa8/24i0iY+X6MBvBQlPIku0BJfKgCbYNM6hLCBnO4uLQI87PpKPk2qMnpT 05IqajvxNm7vQ+GRFyl87dZcVsON5FHhYS+xRbG8yswxzhzj9+utUuXx34mxuHBv TZI7pZARNkY52Wl4A8T+jJDQ/aAb6A2WhCJnUwmiTEUwEjrdMvd9frIZ0Kgh/+V0 YqWDuJTxcoYU12B8jLXszM09Mq+iD/ZvElncQ2iK0IcQf+81tZUQuznUeqjLhF7o YjWCYeMyrWPM661lsRASjbEsYA4YnwWThxWJpnSbAVqpeSN5+MSSF5MV6Fc= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:54 2025 by rpki-client