$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa File: 27feea1a-4933-4577-b9c4-9488e2a550f0.roa (raw, json) Hash identifier: zAWLzxg2e1lQJRmbXeMpKAY2LjH48U700j5ZwixIXYE= Subject key identifier: 78:CF:A5:7A:ED:33:C7:65:41:86:CC:5B:D0:BC:07:08:CE:73:C2:E2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0B85118E8B5EB0800B3B20396C812B7188AF50AF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa Signing time: Fri 10 Oct 2025 17:05:00 +0000 ROA not before: Fri 10 Oct 2025 17:05:00 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:85:11:8e:8b:5e:b0:80:0b:3b:20:39:6c:81:2b:71:88:af:50:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:00 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=a65d1cf55dcde419026298f82835621bcd856022e136111fc45ebb821369fab4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:44:c5:f4:c0:40:5c:66:4d:2d:63:7f:a9:63: 22:d5:61:0e:e5:ee:bd:b5:06:f7:0e:10:f7:26:cd: f4:c0:ec:ff:da:ec:55:3d:64:3b:7d:f2:9f:85:65: 3d:b2:a4:2c:0a:b5:57:cd:98:94:69:d8:70:c5:5b: 13:2f:7b:94:bf:6b:b3:58:21:4d:cb:58:ab:25:9d: 94:90:ce:0f:bf:07:a3:90:4e:8e:76:f1:42:31:6d: f7:a1:51:dc:e8:39:b9:c6:d9:11:20:9d:bc:19:73: cc:b9:38:11:fe:1f:7d:c4:4a:55:7d:53:a8:5e:2c: 18:5d:a8:2b:06:7b:e7:3a:da:1f:46:c9:cd:25:cf: 9b:c8:69:c9:79:0a:1c:0a:5c:30:89:0d:c0:07:ae: 46:ed:1d:66:46:45:98:8d:13:d3:a7:f7:13:8c:0d: fc:40:62:95:05:56:2e:5d:26:23:85:7b:e1:4b:db: 70:be:30:e0:50:58:9f:06:a2:45:43:a0:71:3f:2e: 3c:fd:a1:c5:59:64:a4:a1:7b:0c:f2:17:d6:87:d5: 82:50:ee:f1:c9:4a:a8:e4:99:59:87:c9:5f:b7:e0: c6:97:b6:4e:f2:52:8a:dd:5c:08:05:87:02:d6:24: 9a:b2:e8:f5:17:73:39:b9:56:39:96:18:a1:18:9f: 11:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CF:A5:7A:ED:33:C7:65:41:86:CC:5B:D0:BC:07:08:CE:73:C2:E2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 44:58:68:26:cf:b0:d1:97:ca:bb:06:f6:a2:b3:af:33:45:87: c8:1a:ba:5a:ab:33:dc:f8:b1:a4:54:cc:43:fa:ae:c3:31:ef: e5:65:fe:9f:f5:ef:75:ae:0e:3e:13:0e:d2:69:3c:10:1d:5d: fb:c6:ce:ce:a7:8b:e7:a7:23:5e:1a:0a:5e:70:0c:ca:42:2f: 49:c7:a8:b5:61:7b:06:11:0d:59:4f:a0:51:b6:90:03:f1:be: e7:a2:e5:95:f2:5f:c7:5c:ff:b7:ad:18:21:b9:84:d3:84:8d: a3:82:c5:2a:29:81:cf:ac:81:96:26:42:53:9a:21:3b:44:34: 34:c5:6b:76:a1:e5:e0:0c:8c:48:97:09:ef:1e:34:d6:0a:f2: c6:e5:65:ad:6a:37:bd:e9:8a:5e:ad:3e:5e:69:4d:50:17:5e: 58:ae:d7:09:e5:da:d8:43:f2:41:60:31:81:34:2c:cf:32:05: 34:dd:84:71:5e:41:c8:e1:aa:f2:15:50:c5:60:e8:1d:ae:ac: e3:64:c5:63:88:60:11:a5:00:29:60:48:b7:27:5e:0e:d1:3b: 49:34:02:53:dd:9e:10:e4:37:ae:40:d0:b8:7d:46:7c:0b:f0: 0c:6b:ea:0a:e8:30:08:04:c6:51:fb:cf:83:cb:db:61:bd:de: e6:c7:62:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC4URjotesIALOyA5bIErcYivUK8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTAwWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjVkMWNmNTVkY2RlNDE5MDI2Mjk4ZjgyODM1NjIxYmNk ODU2MDIyZTEzNjExMWZjNDVlYmI4MjEzNjlmYWI0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIRMX0wEBcZk0tY3+pYyLVYQ7l7r21BvcOEPcmzfTA7P/a 7FU9ZDt98p+FZT2ypCwKtVfNmJRp2HDFWxMve5S/a7NYIU3LWKslnZSQzg+/B6OQ To528UIxbfehUdzoObnG2REgnbwZc8y5OBH+H33ESlV9U6heLBhdqCsGe+c62h9G yc0lz5vIacl5ChwKXDCJDcAHrkbtHWZGRZiNE9On9xOMDfxAYpUFVi5dJiOFe+FL 23C+MOBQWJ8GokVDoHE/Ljz9ocVZZKShewzyF9aH1YJQ7vHJSqjkmVmHyV+34MaX tk7yUordXAgFhwLWJJqy6PUXczm5VjmWGKEYnxGZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeM+leu0zx2VBhsxb0LwHCM5zwuIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI3ZmVlYTFhLTQ5MzMtNDU3Ny1iOWM0LTk0ODhlMmE1NTBmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBAERYaCbPsNGXyrsG9qKzrzNFh8ga ulqrM9z4saRUzEP6rsMx7+Vl/p/173WuDj4TDtJpPBAdXfvGzs6ni+enI14aCl5w DMpCL0nHqLVhewYRDVlPoFG2kAPxvuei5ZXyX8dc/7etGCG5hNOEjaOCxSopgc+s gZYmQlOaITtENDTFa3ah5eAMjEiXCe8eNNYK8sblZa1qN73pil6tPl5pTVAXXliu 1wnl2thD8kFgMYE0LM8yBTTdhHFeQcjhqvIVUMVg6B2urONkxWOIYBGlAClgSLcn Xg7RO0k0AlPdnhDkN65A0Lh9RnwL8Axr6groMAgExlH7z4PL22G93ubHYrU= -----END CERTIFICATE-----Generated at Mon Oct 20 04:48:52 2025 by rpki-client