$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa File: 35dd8080-5375-4755-bea9-982f40526ea4.roa (raw, json) Hash identifier: nQundgBG+KoBzsXTUJ5ni2vDjuwA7RBcCTA/BZqnGQw= Subject key identifier: EF:40:A5:A3:3B:4F:1A:89:BF:98:7B:B7:07:5B:2B:87:10:7B:A1:39 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 781381517B84C44768727279BED5D9AFDD05CFD2 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa Signing time: Fri 10 Oct 2025 00:21:07 +0000 ROA not before: Fri 10 Oct 2025 00:21:07 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:13:81:51:7b:84:c4:47:68:72:72:79:be:d5:d9:af:dd:05:cf:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Oct 10 00:21:07 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=06fbc9350df5762aa161318d63879b53ef6e1c7466f2e47c16a5f3ea5e10372d, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:fa:de:8c:af:b9:c5:6e:af:3a:9e:a1:e0: 19:0b:55:b1:80:ea:d8:d9:14:a0:6b:51:ce:ec:5a: 4a:f7:a4:b8:a2:7a:53:af:a0:a8:a8:d8:3d:e2:a2: 93:20:de:c3:29:4e:12:8d:94:9a:ac:13:91:7e:61: b9:df:c9:85:5c:90:ed:fd:c8:b4:3b:8c:49:bc:87: 4c:5e:f6:0a:8e:b5:fd:7e:6d:94:ec:7f:9a:89:79: 2e:d8:f8:a2:9d:41:69:22:9f:26:05:d7:b9:a3:5d: 5a:4d:cf:02:fb:de:59:5e:69:8b:c5:03:5f:73:9c: f0:d5:62:07:bc:85:19:82:55:14:04:59:a9:da:41: ad:ec:b4:17:2b:1a:82:04:a2:75:62:86:8d:6e:d0: 6b:05:24:6a:cb:b2:65:63:0a:5a:ec:ee:ea:11:df: 21:f5:9a:7e:0d:1a:4c:3a:22:0e:bc:c3:2c:1e:74: a8:eb:70:ec:89:28:9d:c6:a7:97:c4:a4:37:56:a6: 73:d0:8b:ff:80:0b:0e:f1:0f:4e:24:af:c4:1b:8f: d9:22:b4:9b:8f:28:3e:28:0d:1c:f7:b7:a9:98:2f: 35:29:71:01:7a:11:bf:57:aa:14:b4:11:46:c8:87: 32:bd:2a:4a:b0:30:e3:4b:ff:9f:aa:c9:da:30:79: d0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:40:A5:A3:3B:4F:1A:89:BF:98:7B:B7:07:5B:2B:87:10:7B:A1:39 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 02:ac:f1:bd:d4:42:3e:2b:aa:d8:5a:3c:d2:db:29:52:7a:ef: d2:af:82:02:9e:03:e4:f7:aa:ff:1c:b0:96:f3:c6:1f:a7:65: 21:23:56:a6:e2:7a:22:a1:95:be:70:5b:81:37:51:44:23:29: d4:fc:a6:29:92:9c:99:ac:19:96:29:dc:4c:54:59:fe:f6:bb: 66:8f:c7:31:0a:11:eb:32:04:5f:df:d5:5f:d5:db:57:e3:f2: 77:6d:1d:2a:02:e4:9c:84:79:a2:e4:4f:69:e2:a3:f4:4b:93: 4f:88:9c:ba:f4:74:73:d7:7b:28:56:c0:81:61:29:f3:f4:41: 31:cf:52:f7:23:b6:cc:f7:1b:9e:e2:e4:ef:55:10:45:60:7a: 8a:57:3f:81:12:3f:32:a8:b8:15:39:5a:9c:4c:f0:da:cf:71: 57:10:5e:05:31:ff:4a:d7:70:5d:4a:48:ab:91:24:7f:2f:77: e6:03:84:c8:27:ae:67:f0:50:87:26:7d:dd:89:c3:0b:5c:14: 90:ad:2f:4a:a1:ec:af:45:f7:b3:8d:fd:f7:78:c8:28:ed:6c: 00:0b:bc:ca:47:1a:60:79:f7:3d:ca:a9:7c:e1:ce:a6:24:67: 4f:ad:73:88:46:15:de:a7:c0:66:bd:54:e6:b6:a9:1c:43:9a: 8a:62:0d:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeBOBUXuExEdocnJ5vtXZr90Fz9IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUxMDEwMDAyMTA3WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmZiYzkzNTBkZjU3NjJhYTE2MTMxOGQ2Mzg3OWI1M2Vm NmUxYzc0NjZmMmU0N2MxNmE1ZjNlYTVlMTAzNzJkMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCufrejK+5xW6vOp6h4BkLVbGA6tjZFKBrUc7sWkr3pLii elOvoKio2D3iopMg3sMpThKNlJqsE5F+YbnfyYVckO39yLQ7jEm8h0xe9gqOtf1+ bZTsf5qJeS7Y+KKdQWkinyYF17mjXVpNzwL73lleaYvFA19znPDVYge8hRmCVRQE WanaQa3stBcrGoIEonViho1u0GsFJGrLsmVjClrs7uoR3yH1mn4NGkw6Ig68wywe dKjrcOyJKJ3Gp5fEpDdWpnPQi/+ACw7xD04kr8Qbj9kitJuPKD4oDRz3t6mYLzUp cQF6Eb9XqhS0EUbIhzK9KkqwMONL/5+qydowedBrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU70CloztPGom/mHu3B1srhxB7oTkwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzM1ZGQ4MDgwLTUzNzUtNDc1NS1iZWE5LTk4MmY0MDUyNmVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBAAKs8b3UQj4rqthaPNLbKVJ679Kv ggKeA+T3qv8csJbzxh+nZSEjVqbieiKhlb5wW4E3UUQjKdT8pimSnJmsGZYp3ExU Wf72u2aPxzEKEesyBF/f1V/V21fj8ndtHSoC5JyEeaLkT2nio/RLk0+InLr0dHPX eyhWwIFhKfP0QTHPUvcjtsz3G57i5O9VEEVgeopXP4ESPzKouBU5WpxM8NrPcVcQ XgUx/0rXcF1KSKuRJH8vd+YDhMgnrmfwUIcmfd2JwwtcFJCtL0qh7K9F97ON/fd4 yCjtbAALvMpHGmB59z3KqXzhzqYkZ0+tc4hGFd6nwGa9VOa2qRxDmopiDag= -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:10 2025 by rpki-client