$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/342b156c-bd31-4e65-a4e8-4d81ff1fa160.roa File: 342b156c-bd31-4e65-a4e8-4d81ff1fa160.roa (raw, json) Hash identifier: f3F2gFRFBm55nxaC8S0RmQ03akWh5OoGDoDR90/ZZRc= Subject key identifier: 72:1A:C2:6A:B8:6C:10:8F:A7:01:DC:61:A6:1C:07:48:D1:7A:15:F0 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3252B43148EC15B1BF4233D0D77EB613E282F700 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/342b156c-bd31-4e65-a4e8-4d81ff1fa160.roa Signing time: Thu 09 Oct 2025 14:07:02 +0000 ROA not before: Thu 09 Oct 2025 14:07:02 +0000 ROA not after: Thu 13 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.100.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:52:b4:31:48:ec:15:b1:bf:42:33:d0:d7:7e:b6:13:e2:82:f7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 9 14:07:02 2025 GMT Not After : Nov 13 23:59:59 2025 GMT Subject: serialNumber=146c15b480fa9904de01d1d04d4a4c9a7659d356410484bb158ee4d5d99a0d9b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:11:1b:8b:ef:9b:5c:60:bf:23:26:08:fb:31: 55:e5:6b:cd:4a:78:7c:9e:90:8e:8e:a0:1b:00:e9: e5:2b:6a:11:8d:08:4d:ae:c4:52:21:7d:28:76:aa: a8:16:d7:9a:28:31:4d:2c:93:18:a0:2d:19:5a:74: 25:4f:32:8f:26:7a:36:39:4c:59:ee:68:d8:45:42: dc:63:ef:c5:74:e3:76:a9:ae:25:ba:71:0d:5f:52: f7:cb:3c:c9:a0:dc:4b:c0:cf:22:6e:ee:fb:e8:05: 96:31:f6:5a:41:50:8e:96:a2:54:93:0d:fb:e0:45: 74:d1:a2:1c:2f:d7:1f:e3:17:77:57:68:10:ff:93: d4:2d:da:74:3a:d3:e3:9a:99:7b:01:9a:fe:c5:56: e0:0e:12:8e:d4:2f:69:23:ae:ea:a0:94:c1:da:69: fd:15:01:26:4b:a7:96:04:c0:d5:22:7c:4b:48:9a: ae:ac:1c:f5:0e:9f:eb:07:3c:cb:84:68:83:53:d6: 1a:c5:a4:32:6b:4a:3d:c9:b7:03:f8:ff:9f:83:ec: 50:f5:5d:7b:ce:fe:f7:39:4d:0a:fa:4d:34:2f:b4: a1:b9:5d:e6:97:6f:35:22:27:4f:7f:ac:c8:6b:23: 1a:56:6c:3f:57:68:58:6d:00:90:df:bf:ae:a3:36: 50:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1A:C2:6A:B8:6C:10:8F:A7:01:DC:61:A6:1C:07:48:D1:7A:15:F0 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/342b156c-bd31-4e65-a4e8-4d81ff1fa160.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.100.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2d:ac:1c:80:35:44:72:a7:dd:08:4b:93:7e:ad:e1:43:d1:17: 4a:f4:34:51:82:25:ec:a5:09:49:b0:33:28:a7:83:fa:d4:ac: 7e:48:53:03:5b:9b:91:2a:e0:9d:42:79:3b:77:3c:53:85:b9: 3f:58:0f:5c:2e:13:ea:fb:c2:dd:2e:ab:3c:a4:9e:d9:57:97: 3f:0d:25:e6:ad:5a:e1:97:f7:b0:4e:20:19:22:4f:98:49:d6: 42:3b:e0:f9:a4:81:9c:c7:9b:67:49:b0:74:7e:28:57:cb:ec: 1c:33:2a:29:9c:fc:cc:c3:b8:28:e5:b7:3a:f6:9a:a6:2b:e4: 2e:11:a2:21:fe:a7:a4:a5:af:b4:d3:be:87:14:76:53:79:0a: c5:a2:a0:46:69:1e:b9:62:b1:bf:9b:c4:56:69:8d:3f:d8:7d: 7c:d1:c0:b8:30:d0:19:44:3d:00:8b:7f:3b:14:5a:db:1e:f2: de:c0:52:10:dc:d8:91:1c:38:4d:35:74:34:92:84:ba:49:2c: 23:fd:de:b3:05:63:ae:2d:58:f2:45:99:b6:cc:c8:2f:a3:a9: 4c:87:1f:32:ed:8e:a2:ad:b5:e1:a9:0f:b4:ec:a7:26:52:dc: 83:eb:1e:95:5b:d0:42:76:e7:59:ac:a3:14:79:15:8c:91:c4: 33:a1:7a:fb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMlK0MUjsFbG/QjPQ1362E+KC9wAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDA5MTQwNzAyWhcNMjUxMTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDZjMTViNDgwZmE5OTA0ZGUwMWQxZDA0ZDRhNGM5YTc2 NTlkMzU2NDEwNDg0YmIxNThlZTRkNWQ5OWEwZDliMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcERuL75tcYL8jJgj7MVXla81KeHyekI6OoBsA6eUrahGN CE2uxFIhfSh2qqgW15ooMU0skxigLRladCVPMo8mejY5TFnuaNhFQtxj78V043ap riW6cQ1fUvfLPMmg3EvAzyJu7vvoBZYx9lpBUI6WolSTDfvgRXTRohwv1x/jF3dX aBD/k9Qt2nQ60+OamXsBmv7FVuAOEo7UL2kjruqglMHaaf0VASZLp5YEwNUifEtI mq6sHPUOn+sHPMuEaINT1hrFpDJrSj3JtwP4/5+D7FD1XXvO/vc5TQr6TTQvtKG5 XeaXbzUiJ09/rMhrIxpWbD9XaFhtAJDfv66jNlAVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUchrCarhsEI+nAdxhphwHSNF6FfAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzM0MmIxNTZjLWJkMzEtNGU2NS1hNGU4LTRkODFmZjFmYTE2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIjZDANBgkqhkiG9w0BAQsFAAOCAQEALawcgDVEcqfdCEuTfq3hQ9EXSvQ0 UYIl7KUJSbAzKKeD+tSsfkhTA1ubkSrgnUJ5O3c8U4W5P1gPXC4T6vvC3S6rPKSe 2VeXPw0l5q1a4Zf3sE4gGSJPmEnWQjvg+aSBnMebZ0mwdH4oV8vsHDMqKZz8zMO4 KOW3OvaapivkLhGiIf6npKWvtNO+hxR2U3kKxaKgRmkeuWKxv5vEVmmNP9h9fNHA uDDQGUQ9AIt/OxRa2x7y3sBSENzYkRw4TTV0NJKEukksI/3eswVjri1Y8kWZtszI L6OpTIcfMu2Ooq214akPtOynJlLcg+selVvQQnbnWayjFHkVjJHEM6F6+w== -----END CERTIFICATE-----Generated at Mon Oct 20 15:19:57 2025 by rpki-client