$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa File: 0364b90a-9207-49b7-a1a6-82182889c57c.roa (raw, json) Hash identifier: UMo3PEtvZwTKSlmKBBJXnJysBTHpanCvFZTVhq+QZgQ= Subject key identifier: 42:62:8A:B0:BD:3E:DF:91:E2:FC:44:A7:E1:71:0C:25:B7:21:4F:65 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 19DB64C63AC521660567AF33149FE7EF1C5FDA4F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa Signing time: Mon 13 Oct 2025 17:54:59 +0000 ROA not before: Mon 13 Oct 2025 17:54:59 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:db:64:c6:3a:c5:21:66:05:67:af:33:14:9f:e7:ef:1c:5f:da:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 13 17:54:59 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=ebef2dff2ebd9f6fd9cf0b76c7592473cf037497f3b7a9c32b948e330fee39a4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:21:49:9c:c1:f9:f6:63:b1:97:20:df:39: 85:8d:b7:f3:42:3e:62:df:17:58:7d:1b:29:f5:39: 9f:b9:58:02:7c:0c:c5:35:fa:6a:36:3a:fd:fc:ad: 5c:14:43:f6:95:5d:11:70:bc:34:e4:a2:70:10:24: e6:7f:8b:de:69:e6:64:3e:4e:9a:3e:c6:5c:dd:c7: 49:6a:e5:7e:41:58:85:3a:5f:64:d8:c0:12:9f:77: 9d:e4:05:14:e5:91:b0:49:cf:f0:56:5b:14:1a:7c: e7:dc:1b:57:e5:20:e4:87:44:68:22:1f:29:be:85: 6c:84:1c:2a:ce:73:de:3c:da:a5:f7:d2:13:07:58: 2c:7b:8e:ed:96:9d:c4:96:fd:f8:f9:3a:69:13:a5: d7:9b:62:c9:b1:f1:4c:0b:1a:53:6e:9f:ea:66:0b: 27:72:7f:be:a3:90:be:8f:4a:2e:84:20:7b:eb:5c: 6c:e8:45:0a:37:2f:0c:36:c4:c5:f5:c8:4d:74:22: 58:2b:5b:5e:29:a4:d1:30:cc:17:06:d2:bc:d9:98: 22:0d:dc:31:19:00:ff:dd:f2:07:7c:22:e4:3b:f0: 84:57:b5:0c:a6:30:53:d9:03:4f:71:7c:17:20:78: f4:23:57:fc:c4:a7:32:08:08:e1:d7:7c:70:3b:79: 10:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:62:8A:B0:BD:3E:DF:91:E2:FC:44:A7:E1:71:0C:25:B7:21:4F:65 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0364b90a-9207-49b7-a1a6-82182889c57c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.52.0/24 Signature Algorithm: sha256WithRSAEncryption 29:73:3e:a4:ae:2f:aa:59:c1:7a:e5:e5:1d:2e:3f:41:09:64: dc:b9:0c:a2:5d:80:6e:d5:b8:e2:b7:dc:e3:fa:01:11:80:4a: d5:d6:7e:d4:af:f6:09:ce:63:f0:1e:7b:d1:cc:47:39:d0:83: 68:c2:0f:f5:ce:4c:aa:4d:e8:64:a2:16:1f:84:88:5e:4a:96: 69:d0:69:24:0d:59:a9:63:91:2f:6f:4c:a9:e6:c7:78:96:cf: 59:f8:3b:28:6d:ad:c6:19:2e:4e:31:2e:b4:c4:44:bf:16:01: 49:50:02:30:46:d7:68:bb:98:4b:55:bb:72:71:75:36:8b:9f: 02:4c:0a:d4:4a:37:e2:2e:a5:f1:0a:61:93:0f:d1:f1:49:d2: 28:0a:4f:c3:79:98:7f:ee:b8:b4:67:1d:76:5c:d9:8e:fe:78: 29:47:d7:34:a7:27:93:a8:ec:41:dd:38:72:e9:67:1c:32:91: fd:2c:d7:e1:a8:ef:da:f5:bf:bd:31:f8:37:44:b4:a8:25:bf: b2:4a:3f:ad:50:7a:d9:26:0c:b1:c9:db:b2:e2:8d:0f:be:79: 5c:74:40:97:ec:c4:3a:59:5b:fa:f2:1b:e9:c7:a4:06:bb:a6: ff:7e:25:5f:e5:f5:20:09:78:d7:82:4a:36:bf:a9:60:35:c6: 50:66:c3:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGdtkxjrFIWYFZ68zFJ/n7xxf2k8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEzMTc1NDU5WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmVmMmRmZjJlYmQ5ZjZmZDljZjBiNzZjNzU5MjQ3M2Nm MDM3NDk3ZjNiN2E5YzMyYjk0OGUzMzBmZWUzOWE0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8syFJnMH59mOxlyDfOYWNt/NCPmLfF1h9Gyn1OZ+5WAJ8 DMU1+mo2Ov38rVwUQ/aVXRFwvDTkonAQJOZ/i95p5mQ+Tpo+xlzdx0lq5X5BWIU6 X2TYwBKfd53kBRTlkbBJz/BWWxQafOfcG1flIOSHRGgiHym+hWyEHCrOc9482qX3 0hMHWCx7ju2WncSW/fj5OmkTpdebYsmx8UwLGlNun+pmCydyf76jkL6PSi6EIHvr XGzoRQo3Lww2xMX1yE10IlgrW14ppNEwzBcG0rzZmCIN3DEZAP/d8gd8IuQ78IRX tQymMFPZA09xfBcgePQjV/zEpzIICOHXfHA7eRApAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQmKKsL0+35Hi/ESn4XEMJbchT2UwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzAzNjRiOTBhLTkyMDctNDliNy1hMWE2LTgyMTgyODg5YzU3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDQwDQYJKoZIhvcNAQELBQADggEBAClzPqSuL6pZwXrl5R0uP0EJZNy5 DKJdgG7VuOK33OP6ARGAStXWftSv9gnOY/Aee9HMRznQg2jCD/XOTKpN6GSiFh+E iF5KlmnQaSQNWaljkS9vTKnmx3iWz1n4OyhtrcYZLk4xLrTERL8WAUlQAjBG12i7 mEtVu3JxdTaLnwJMCtRKN+IupfEKYZMP0fFJ0igKT8N5mH/uuLRnHXZc2Y7+eClH 1zSnJ5Oo7EHdOHLpZxwykf0s1+Go79r1v70x+DdEtKglv7JKP61QetkmDLHJ27Li jQ++eVx0QJfsxDpZW/ryG+nHpAa7pv9+JV/l9SAJeNeCSja/qWA1xlBmw0c= -----END CERTIFICATE-----Generated at Mon Oct 20 20:49:23 2025 by rpki-client