$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa File: 1b8dd216-c20b-4301-bd6e-0d090408de27.roa (raw, json) Hash identifier: VDIT6igrPoGAcnaYV89vn2CSC8rjvE9QzT17sCZI/oA= Subject key identifier: 57:5F:6C:F1:EF:0D:74:56:6C:53:73:67:E0:19:AA:EA:10:25:0A:58 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3B9F050E5A589D2C60865271A15A7D6309230E21 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa Signing time: Mon 13 Oct 2025 17:55:02 +0000 ROA not before: Mon 13 Oct 2025 17:55:02 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:9f:05:0e:5a:58:9d:2c:60:86:52:71:a1:5a:7d:63:09:23:0e:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 13 17:55:02 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=36daf71e36ccc5526db49b226f8ad136b65d09aa6d45a3221ff955bdf5eba5cf, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f1:e1:bc:d6:c9:6f:ab:76:58:3a:16:d0:e1: f1:29:dd:3d:12:90:1a:73:ad:12:28:12:ce:51:0a: e2:fa:34:74:a2:c6:3e:be:bb:27:3c:e2:5e:23:b9: 61:15:1f:15:d1:08:7c:3d:bc:19:f5:c5:4b:be:f4: cd:c3:77:28:4c:f0:7d:8f:e9:9a:cb:0b:86:78:f8: 1b:5e:fb:60:22:55:bb:a3:4b:59:43:5c:5f:97:a8: 0d:7c:0f:df:18:8f:21:86:98:4d:39:1f:22:08:cf: 2b:14:90:1e:bb:2b:f5:50:7b:cf:9f:d8:66:c4:f7: f0:d3:b6:a8:42:1d:6a:6c:b4:d9:78:f7:dd:60:6c: 38:92:72:c8:b5:e2:82:b1:0d:e9:0e:88:aa:b2:c6: 12:32:be:da:71:ef:9b:9e:6c:71:5d:14:e3:5a:05: fb:d9:a3:99:81:b5:e3:76:89:4c:ce:de:75:87:7c: fe:b4:88:12:b6:0e:c2:9c:05:b5:48:42:a4:05:b8: e9:c8:93:db:77:09:15:97:c5:7f:6e:1b:78:fd:4b: ee:3c:6c:20:60:0f:2b:29:93:c6:31:41:d8:6f:9e: 90:84:05:66:d6:9f:ff:0b:ef:4e:4a:7d:d1:ef:05: 46:29:7c:ef:2b:55:3f:95:25:8c:7e:03:ba:18:50: 8a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:5F:6C:F1:EF:0D:74:56:6C:53:73:67:E0:19:AA:EA:10:25:0A:58 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/24 Signature Algorithm: sha256WithRSAEncryption 68:70:5b:67:a6:97:e8:73:04:f0:73:14:95:ea:08:ee:78:2b: ea:44:2b:92:5b:76:b0:8e:2a:da:1b:f0:e6:9a:16:f6:9e:7b: f3:10:41:80:ed:e4:a4:f3:1e:33:71:c9:e5:a9:e9:21:75:c6: 04:19:4c:fc:d9:89:9a:d1:5d:46:9b:34:dc:9c:a4:c9:d3:a9: de:f7:e4:35:f8:20:6f:f7:1a:08:dd:cc:b6:46:07:40:78:0f: 30:8d:f6:54:72:90:91:90:0a:33:ac:fb:8e:6c:b5:be:00:e5: 09:68:1f:9b:3d:f9:bd:c0:40:2d:38:e6:05:a7:5f:e4:13:2e: 6b:cc:36:fa:17:51:a6:07:14:56:9f:d9:1e:e6:ca:53:2c:01: e4:df:80:2d:e1:fd:04:a7:90:89:bc:e2:5f:8b:f9:b2:50:95: d7:31:22:5f:c6:57:31:88:b7:95:4e:3f:1c:57:56:da:42:f0: 39:29:d1:ae:1c:f1:dc:be:f6:81:15:58:e2:43:7b:ea:07:99: 0f:ae:34:6b:20:02:56:a5:bc:ec:08:67:be:de:69:20:13:c7: 2a:bf:09:f6:82:13:c5:39:8a:54:24:6e:17:7e:49:d3:40:df: 72:d8:ea:49:81:ed:a3:3f:20:19:20:2f:51:94:52:33:ed:ab: f5:d6:64:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO58FDlpYnSxghlJxoVp9YwkjDiEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEzMTc1NTAyWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmRhZjcxZTM2Y2NjNTUyNmRiNDliMjI2ZjhhZDEzNmI2 NWQwOWFhNmQ0NWEzMjIxZmY5NTViZGY1ZWJhNWNmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ8eG81slvq3ZYOhbQ4fEp3T0SkBpzrRIoEs5RCuL6NHSi xj6+uyc84l4juWEVHxXRCHw9vBn1xUu+9M3DdyhM8H2P6ZrLC4Z4+Bte+2AiVbuj S1lDXF+XqA18D98YjyGGmE05HyIIzysUkB67K/VQe8+f2GbE9/DTtqhCHWpstNl4 991gbDiScsi14oKxDekOiKqyxhIyvtpx75uebHFdFONaBfvZo5mBteN2iUzO3nWH fP60iBK2DsKcBbVIQqQFuOnIk9t3CRWXxX9uG3j9S+48bCBgDyspk8YxQdhvnpCE BWbWn/8L705KfdHvBUYpfO8rVT+VJYx+A7oYUIpXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV19s8e8NdFZsU3Nn4Bmq6hAlClgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFiOGRkMjE2LWMyMGItNDMwMS1iZDZlLTBkMDkwNDA4ZGUyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDAwDQYJKoZIhvcNAQELBQADggEBAGhwW2eml+hzBPBzFJXqCO54K+pE K5JbdrCOKtob8OaaFvaee/MQQYDt5KTzHjNxyeWp6SF1xgQZTPzZiZrRXUabNNyc pMnTqd735DX4IG/3GgjdzLZGB0B4DzCN9lRykJGQCjOs+45stb4A5QloH5s9+b3A QC045gWnX+QTLmvMNvoXUaYHFFaf2R7mylMsAeTfgC3h/QSnkIm84l+L+bJQldcx Il/GVzGIt5VOPxxXVtpC8Dkp0a4c8dy+9oEVWOJDe+oHmQ+uNGsgAlalvOwIZ77e aSATxyq/CfaCE8U5ilQkbhd+SdNA33LY6kmB7aM/IBkgL1GUUjPtq/XWZPo= -----END CERTIFICATE-----Generated at Mon Oct 20 18:10:45 2025 by rpki-client