$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa File: 2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa (raw, json) Hash identifier: VN0ls4INGaT2jZVOYdcoMeEdTuEck1Fmf254/YlazKM= Subject key identifier: 5A:E3:3D:78:26:44:1E:D5:30:11:B8:CC:96:7C:04:5D:34:27:6F:68 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1249B964B4C15357683F01E055CCA5B4F5F10B7A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa Signing time: Fri 10 Oct 2025 17:05:00 +0000 ROA not before: Fri 10 Oct 2025 17:05:00 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:49:b9:64:b4:c1:53:57:68:3f:01:e0:55:cc:a5:b4:f5:f1:0b:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:00 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=0e2e0eea0b3e33e08b1cd45073518a13c63c835803ce1d38f0cd811d9b31ca5e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:3c:94:ec:ee:b3:5a:ff:b1:95:e1:48:47:20: 06:20:14:3d:ff:bb:48:2f:1d:cd:cf:a9:be:a3:e6: e3:d7:a9:f9:07:57:53:94:33:7a:c7:98:e3:ce:88: 88:01:5e:42:96:38:e8:71:b9:b5:94:ef:f9:28:80: 88:16:b6:ae:57:24:e8:a5:3a:c7:80:b9:2e:5e:72: 58:00:ea:fb:65:e1:62:3a:95:88:53:36:2d:4c:73: 5e:cb:71:7f:e5:e7:5a:92:4b:ca:de:67:ce:25:47: d5:71:d1:54:47:dc:e8:cc:2d:a1:b1:f1:c8:2d:e2: 70:61:83:4e:8b:8d:51:e7:c9:b2:47:66:dd:d5:65: c8:44:f3:a7:13:c9:b9:25:f4:c9:03:e9:da:7b:56: a2:d3:c0:9d:d0:fe:d1:6e:d3:75:9f:c9:57:57:51: e2:45:12:d4:7c:ba:d1:2b:a3:6c:6f:d6:db:57:5b: 84:15:e6:a5:cd:41:0f:00:dd:6b:67:74:0b:23:f3: 27:fb:b6:ab:7b:66:6c:8e:3f:65:20:02:f9:c7:84: e2:ec:df:d2:b7:cc:cd:e7:f7:6e:dc:fd:80:75:b0: b5:4e:73:cd:97:cc:7c:f0:a0:01:d0:5f:30:51:9f: 54:9d:1d:ab:30:ce:44:9a:89:de:a9:34:e5:c3:c5: 45:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E3:3D:78:26:44:1E:D5:30:11:B8:CC:96:7C:04:5D:34:27:6F:68 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:52:72:ef:79:7e:d1:d7:82:85:15:79:05:ca:45:b4:3c:13: dd:1c:4f:cd:3e:d9:76:34:0b:b3:fd:50:57:34:b1:fc:10:61: b3:3c:3b:77:cf:34:d8:91:a6:21:38:c8:da:20:95:c5:4e:3d: ad:6a:a0:67:42:36:bf:ed:21:96:7b:43:05:61:b5:ce:ca:f7: d1:88:ee:b6:b1:7c:90:d1:38:13:d0:ec:a4:97:77:1f:b7:a7: 96:53:d3:98:35:ef:65:f4:18:3d:61:05:82:ad:91:3b:b2:29: 8b:5c:20:63:b4:6c:f5:ca:86:95:6e:99:54:ba:e3:49:a0:40: a4:ec:c3:2a:98:12:62:9f:1e:b3:2f:9d:d4:2d:13:76:81:9f: b5:f7:44:41:fd:86:8f:76:c8:18:36:6d:94:28:1f:90:ef:e3: 03:23:66:f6:b6:ae:09:51:5e:03:b4:88:dd:58:92:7a:94:c4: 08:a3:a5:57:ba:c6:82:e2:85:0a:01:8e:f1:d4:a6:55:6d:9b: da:dc:4d:97:95:d1:07:7b:5b:dc:84:1d:49:19:51:39:7f:b1: dd:28:68:16:4c:07:ca:cb:05:23:5a:b1:9c:31:fe:25:d7:2f: 12:9c:bc:59:86:55:e6:39:58:bb:83:bc:5e:8b:6e:4b:07:e4: 6a:ef:b1:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEkm5ZLTBU1doPwHgVcyltPXxC3owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTAwWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTJlMGVlYTBiM2UzM2UwOGIxY2Q0NTA3MzUxOGExM2M2 M2M4MzU4MDNjZTFkMzhmMGNkODExZDliMzFjYTVlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzPJTs7rNa/7GV4UhHIAYgFD3/u0gvHc3Pqb6j5uPXqfkH V1OUM3rHmOPOiIgBXkKWOOhxubWU7/kogIgWtq5XJOilOseAuS5eclgA6vtl4WI6 lYhTNi1Mc17LcX/l51qSS8reZ84lR9Vx0VRH3OjMLaGx8cgt4nBhg06LjVHnybJH Zt3VZchE86cTybkl9MkD6dp7VqLTwJ3Q/tFu03WfyVdXUeJFEtR8utEro2xv1ttX W4QV5qXNQQ8A3WtndAsj8yf7tqt7ZmyOP2UgAvnHhOLs39K3zM3n927c/YB1sLVO c82XzHzwoAHQXzBRn1SdHaswzkSaid6pNOXDxUXnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWuM9eCZEHtUwEbjMlnwEXTQnb2gwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJjYTUyNjRjLTdiZjUtNDI0OC1iNmFkLWRkOWNmNTdhMmJlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBAGtScu95ftHXgoUVeQXKRbQ8E90c T80+2XY0C7P9UFc0sfwQYbM8O3fPNNiRpiE4yNoglcVOPa1qoGdCNr/tIZZ7QwVh tc7K99GI7raxfJDROBPQ7KSXdx+3p5ZT05g172X0GD1hBYKtkTuyKYtcIGO0bPXK hpVumVS640mgQKTswyqYEmKfHrMvndQtE3aBn7X3REH9ho92yBg2bZQoH5Dv4wMj Zva2rglRXgO0iN1YknqUxAijpVe6xoLihQoBjvHUplVtm9rcTZeV0Qd7W9yEHUkZ UTl/sd0oaBZMB8rLBSNasZwx/iXXLxKcvFmGVeY5WLuDvF6LbksH5GrvsYo= -----END CERTIFICATE-----Generated at Mon Oct 20 02:15:44 2025 by rpki-client