$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa File: 0caf62b0-1cb6-426a-827d-61eb989f8a93.roa (raw, json) Hash identifier: 6Q+CXRPVGNnw4Uymf2F3mUkqixqf0ehrd0HTceyceV4= Subject key identifier: 8D:71:E8:2A:09:6E:8F:17:E8:47:F3:9F:99:21:92:1C:89:4C:A5:70 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4686CAAF62ADFE522AFB1DDFD0D80C3DBF59C9BC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa Signing time: Mon 13 Oct 2025 17:55:07 +0000 ROA not before: Mon 13 Oct 2025 17:55:07 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:86:ca:af:62:ad:fe:52:2a:fb:1d:df:d0:d8:0c:3d:bf:59:c9:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 13 17:55:07 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=46cccb69d11c372e4a15da595c78947081c524d0fc92e60715b14ef89d2a2ea3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9c:43:bd:3b:ec:73:b3:41:aa:85:97:f8:9c: 4b:0e:75:31:db:85:ce:6b:11:fd:46:64:85:47:1f: 4d:a3:dd:52:57:c6:84:ad:c7:7d:5a:ba:ab:db:9e: 83:27:6a:44:c0:80:4f:d6:2d:51:9b:7d:dd:1a:98: aa:1c:a3:f3:36:d2:4b:4e:01:57:56:b4:24:38:e7: b1:e2:f9:05:05:5c:3e:b1:65:c9:dd:a4:c4:83:f9: 90:48:b0:08:2b:b3:b1:5b:db:7c:61:04:4f:75:57: 4d:e5:0c:f7:31:f5:2a:28:99:63:0c:c6:32:76:a8: 88:4d:fa:15:5e:5b:e5:07:51:d6:46:97:d7:82:47: 99:91:0d:eb:1f:f8:8e:f7:e4:fc:72:06:91:60:23: 43:85:84:a4:dd:74:dc:36:ac:af:54:46:ad:db:ad: a5:cc:b0:aa:2b:77:57:e3:f9:c5:59:72:9b:ff:be: 24:c1:f8:37:88:cb:d5:af:55:fe:ca:8c:f8:50:75: 4f:18:fa:7f:e2:47:1e:19:14:6a:61:50:55:e9:46: 60:6a:32:ec:43:67:48:cb:c9:89:d9:ae:04:77:37: 4f:85:d5:17:2f:ab:83:2e:11:da:29:4a:f0:4f:7d: 66:c2:59:bf:e4:e4:c3:e0:97:00:a0:07:8a:f9:5d: ad:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:71:E8:2A:09:6E:8F:17:E8:47:F3:9F:99:21:92:1C:89:4C:A5:70 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.49.0/24 Signature Algorithm: sha256WithRSAEncryption 03:01:cf:91:fb:16:76:ba:c8:6d:30:44:e7:36:56:fd:f6:3c: 7f:08:a1:67:09:c2:a0:3e:db:f0:94:a9:c7:0a:5f:0c:e5:26: 48:e3:1d:95:1e:47:57:43:e7:9f:49:e8:5b:ef:e0:9a:be:87: f2:c6:33:26:f9:c8:02:b9:c2:9d:3d:7c:b0:88:c9:97:a5:f0: 5a:74:c3:20:36:22:3f:c4:9b:37:df:b3:b2:bd:01:7a:9c:09: 52:c7:2e:37:f4:9c:07:47:a2:49:13:1f:6a:46:c3:c7:66:30: 15:99:72:c0:36:54:f6:a4:a9:e9:51:85:04:8a:11:7a:bf:09: ce:41:0b:f0:f3:03:49:51:57:04:6d:d3:ea:9e:53:ea:6f:73: 08:16:25:ea:e2:77:4b:33:42:e6:73:16:c7:c6:ab:e0:96:fb: 27:e6:82:c1:fb:b2:4d:fd:20:0c:a4:d2:2d:64:e9:fe:4f:fa: 38:65:e7:44:ef:b5:cd:08:b3:86:31:88:37:55:f7:39:57:60: 89:1f:ee:b4:06:11:be:8a:31:4c:60:05:fa:3a:9a:8b:06:3b: a8:c3:f5:bf:63:43:c5:c1:3f:a1:14:c3:09:2e:c7:99:ff:a6: 8f:b1:76:f7:d1:a6:c8:cf:5c:2c:2c:c7:b7:5a:15:d9:8c:8f: 46:64:3f:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURobKr2Kt/lIq+x3f0NgMPb9ZybwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEzMTc1NTA3WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NmNjY2I2OWQxMWMzNzJlNGExNWRhNTk1Yzc4OTQ3MDgx YzUyNGQwZmM5MmU2MDcxNWIxNGVmODlkMmEyZWEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4nEO9O+xzs0GqhZf4nEsOdTHbhc5rEf1GZIVHH02j3VJX xoStx31auqvbnoMnakTAgE/WLVGbfd0amKoco/M20ktOAVdWtCQ457Hi+QUFXD6x ZcndpMSD+ZBIsAgrs7Fb23xhBE91V03lDPcx9SoomWMMxjJ2qIhN+hVeW+UHUdZG l9eCR5mRDesf+I735PxyBpFgI0OFhKTddNw2rK9URq3braXMsKord1fj+cVZcpv/ viTB+DeIy9WvVf7KjPhQdU8Y+n/iRx4ZFGphUFXpRmBqMuxDZ0jLyYnZrgR3N0+F 1Rcvq4MuEdopSvBPfWbCWb/k5MPglwCgB4r5Xa2pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjXHoKglujxfoR/OfmSGSHIlMpXAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBjYWY2MmIwLTFjYjYtNDI2YS04MjdkLTYxZWI5ODlmOGE5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDEwDQYJKoZIhvcNAQELBQADggEBAAMBz5H7Fna6yG0wROc2Vv32PH8I oWcJwqA+2/CUqccKXwzlJkjjHZUeR1dD559J6Fvv4Jq+h/LGMyb5yAK5wp09fLCI yZel8Fp0wyA2Ij/Emzffs7K9AXqcCVLHLjf0nAdHokkTH2pGw8dmMBWZcsA2VPak qelRhQSKEXq/Cc5BC/DzA0lRVwRt0+qeU+pvcwgWJerid0szQuZzFsfGq+CW+yfm gsH7sk39IAyk0i1k6f5P+jhl50Tvtc0Is4YxiDdV9zlXYIkf7rQGEb6KMUxgBfo6 mosGO6jD9b9jQ8XBP6EUwwkux5n/po+xdvfRpsjPXCwsx7daFdmMj0ZkP+I= -----END CERTIFICATE-----Generated at Mon Oct 20 15:29:04 2025 by rpki-client