$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/070f035c-929a-4988-90b1-3eb5df15552f.roa File: 070f035c-929a-4988-90b1-3eb5df15552f.roa (raw, json) Hash identifier: KfslnpJWPI1epwADWF4whM3aQnGNMox31OxugAxebV0= Subject key identifier: 4E:DE:55:A7:79:B2:33:D5:AE:99:02:83:0A:64:50:F6:A8:92:A2:D5 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 11DF33871EEBCECF8E54A3C62ADFC163DB254231 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/070f035c-929a-4988-90b1-3eb5df15552f.roa Signing time: Fri 10 Oct 2025 17:04:51 +0000 ROA not before: Fri 10 Oct 2025 17:04:51 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:df:33:87:1e:eb:ce:cf:8e:54:a3:c6:2a:df:c1:63:db:25:42:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:04:51 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=c8ee9f0fd8784f354539f472db328f7f21ed24ecced6f27abce7904a3bd70789, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:05:e7:de:bb:d0:c9:5d:5a:31:87:17:d5:0b: 5a:44:18:0b:fc:6e:42:7b:2f:39:8a:53:dd:3c:63: 38:72:c4:bb:4a:f9:0f:b0:c3:9d:db:fd:93:4d:1e: 2e:34:ab:54:43:9d:c6:0a:5f:b1:87:0d:75:38:91: e7:32:b2:b8:e3:da:b1:1d:74:4f:c3:a4:5d:f4:d1: 94:d9:70:d7:89:e5:04:bf:e0:0e:fd:2b:76:28:b0: 1b:a0:c7:9a:81:81:70:d3:d6:6a:2d:a9:68:f4:10: 9b:04:fb:dc:0c:64:d3:8d:6d:09:16:55:57:91:aa: 55:60:df:27:40:31:88:b4:c8:54:a6:31:19:1d:62: 13:05:10:3f:3c:32:5a:66:51:e5:33:c9:88:98:18: 35:5c:fe:8c:4d:21:36:11:13:c6:c5:a4:28:90:dd: c5:d7:60:3b:af:08:93:84:72:06:27:fe:fa:2a:a2: 18:07:8f:2f:fe:f6:8b:fd:d9:96:4f:76:7e:13:32: 2c:6c:4b:41:3a:1d:13:0b:17:62:40:a9:f5:7e:a7: 12:57:fb:08:96:af:da:9d:57:03:b5:70:25:d8:2f: 37:b9:03:ff:4e:e6:d6:d7:ce:5e:32:35:0e:6f:0f: 74:ae:ca:83:92:c8:c8:b2:da:7b:9c:20:51:7d:7e: 19:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DE:55:A7:79:B2:33:D5:AE:99:02:83:0A:64:50:F6:A8:92:A2:D5 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/070f035c-929a-4988-90b1-3eb5df15552f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.33.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:26:45:da:e2:69:db:41:46:85:de:5f:08:0e:c8:35:22:5e: 52:49:73:08:a2:02:2a:53:29:73:d2:d2:a4:26:07:67:4c:86: f2:1d:fe:14:22:48:66:85:54:d2:c8:86:c3:6b:1a:db:c8:f6: 64:ea:ec:ee:eb:33:65:8d:3f:2e:a9:8b:68:f3:5b:7a:0d:c8: eb:7e:f0:71:fc:a5:76:8b:8e:e5:31:c9:19:5d:aa:eb:ea:15: 5b:a9:75:b8:42:6c:17:a7:a5:1a:db:e3:d9:69:3c:c5:86:4c: 6c:e2:58:31:2f:f5:6b:73:23:7e:30:5a:1c:55:10:0b:15:b8: 46:d5:ed:9a:9d:84:10:75:37:5e:d4:87:7d:1e:c0:bc:c4:2a: 59:18:67:39:20:7b:85:4a:0a:fd:ab:dd:e5:1c:d3:37:37:1f: 17:a0:d0:34:0b:0f:18:fd:3b:d8:6e:81:37:cc:cf:14:b6:f4: b6:e2:76:42:ca:57:64:4f:2e:15:68:39:86:0d:20:71:25:96: 94:8a:6a:e4:da:a0:4d:2a:c6:e9:e9:a9:d7:1e:52:26:07:44: 31:46:8d:23:c5:98:61:f2:3a:30:7e:b0:25:88:4a:34:e9:cb: 7e:29:8d:21:05:de:87:3b:a1:39:5f:4a:88:d4:d7:83:b5:b4: 81:6a:9f:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEd8zhx7rzs+OVKPGKt/BY9slQjEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNDUxWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOGVlOWYwZmQ4Nzg0ZjM1NDUzOWY0NzJkYjMyOGY3ZjIx ZWQyNGVjY2VkNmYyN2FiY2U3OTA0YTNiZDcwNzg5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJBefeu9DJXVoxhxfVC1pEGAv8bkJ7LzmKU908YzhyxLtK +Q+ww53b/ZNNHi40q1RDncYKX7GHDXU4kecysrjj2rEddE/DpF300ZTZcNeJ5QS/ 4A79K3YosBugx5qBgXDT1motqWj0EJsE+9wMZNONbQkWVVeRqlVg3ydAMYi0yFSm MRkdYhMFED88MlpmUeUzyYiYGDVc/oxNITYRE8bFpCiQ3cXXYDuvCJOEcgYn/voq ohgHjy/+9ov92ZZPdn4TMixsS0E6HRMLF2JAqfV+pxJX+wiWr9qdVwO1cCXYLze5 A/9O5tbXzl4yNQ5vD3SuyoOSyMiy2nucIFF9fhnRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTt5Vp3myM9WumQKDCmRQ9qiSotUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA3MGYwMzVjLTkyOWEtNDk4OC05MGIxLTNlYjVkZjE1NTUyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCEwDQYJKoZIhvcNAQELBQADggEBAHsmRdriadtBRoXeXwgOyDUiXlJJ cwiiAipTKXPS0qQmB2dMhvId/hQiSGaFVNLIhsNrGtvI9mTq7O7rM2WNPy6pi2jz W3oNyOt+8HH8pXaLjuUxyRldquvqFVupdbhCbBenpRrb49lpPMWGTGziWDEv9Wtz I34wWhxVEAsVuEbV7ZqdhBB1N17Uh30ewLzEKlkYZzkge4VKCv2r3eUc0zc3Hxeg 0DQLDxj9O9hugTfMzxS29LbidkLKV2RPLhVoOYYNIHEllpSKauTaoE0qxunpqdce UiYHRDFGjSPFmGHyOjB+sCWISjTpy34pjSEF3oc7oTlfSojU14O1tIFqn1A= -----END CERTIFICATE-----Generated at Mon Oct 20 04:47:46 2025 by rpki-client