$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa File: 5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa (raw, json) Hash identifier: Z5CD4koonde6n0BtUhfb6f12SF70FAnwTlAP+pcANpg= Subject key identifier: FA:15:61:EE:F5:54:77:EA:CE:7F:93:CF:5A:06:6A:E0:EE:1E:0B:14 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 29071A06E32EAE98DAE59DB6B2AE2EDB3DE54A4A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa Signing time: Fri 10 Oct 2025 17:05:18 +0000 ROA not before: Fri 10 Oct 2025 17:05:18 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:07:1a:06:e3:2e:ae:98:da:e5:9d:b6:b2:ae:2e:db:3d:e5:4a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:18 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=0f3c6e375ffa27b676c0cda0ba1a686bdc8958dc107b1cfc8071dc23c4c0573b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b3:2b:f7:9a:ed:d2:6d:c7:59:61:13:9b:98: b1:50:0e:6f:0f:43:80:9a:4c:f8:a4:46:a3:99:32: 3c:00:88:f9:9f:d3:1d:45:f3:44:e2:b5:40:b0:40: 58:2c:e4:5a:f2:77:3a:18:e1:d0:29:7d:f6:07:07: 54:e4:54:8a:1e:df:43:8c:99:a2:13:1b:2c:0a:4a: ff:11:02:b8:72:6f:36:ea:31:c9:0c:87:3c:ab:87: d2:60:10:26:2b:9a:20:d5:0b:b7:e0:6d:a5:93:01: bd:49:d9:7a:98:ac:7c:d0:20:0b:24:4f:f0:5e:50: e6:2a:a2:c8:04:5a:c7:0d:06:53:31:27:43:18:6c: 9d:37:13:a1:ca:f5:13:14:f2:d0:46:17:47:2b:99: bb:1b:1f:85:05:5c:f1:2d:1c:93:d3:87:50:6e:3e: 54:f9:e3:e0:27:26:69:03:e5:a7:53:9b:26:6c:65: 1b:57:56:86:1c:fb:ba:0b:54:2a:5f:b5:d2:01:a6: d2:63:3c:4f:b1:66:12:78:e3:25:55:fb:c2:29:3f: 83:39:e6:cf:e4:7e:12:6b:7d:65:00:8b:6c:b9:36: 19:91:61:14:6c:74:be:ad:0f:cf:36:f4:eb:8d:81: 35:e2:e9:67:3a:c8:08:17:45:7f:5a:12:72:33:c9: f5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:15:61:EE:F5:54:77:EA:CE:7F:93:CF:5A:06:6A:E0:EE:1E:0B:14 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.144.0/20 Signature Algorithm: sha256WithRSAEncryption 45:7f:02:23:9f:58:13:f5:17:d3:e3:81:ce:c7:25:96:d2:37: fb:d0:1c:79:75:4d:f1:95:fb:ec:81:4e:ea:3a:a9:fb:24:6f: ee:70:af:fc:8d:41:58:3e:e9:7e:ec:48:a6:b8:c8:9a:67:82: 82:f0:d7:d3:cb:eb:b0:e5:43:70:fc:7d:a0:90:38:82:62:88: 28:ea:c5:96:47:44:11:52:c1:72:18:88:a0:ae:05:80:b5:3e: 90:4f:d7:33:6f:74:f1:e4:2a:95:9f:d0:6d:5c:50:d9:f8:10: 68:da:7b:18:8c:a9:4d:eb:20:bc:21:ac:5c:4d:12:79:20:83: 52:6f:69:6a:f0:a6:1c:b0:f6:72:9f:41:ab:2d:59:17:6b:24: aa:37:b1:37:e7:54:d8:fb:50:00:00:dc:fd:a7:3d:d4:1f:0c: 41:bd:9f:60:39:f8:1d:15:5c:de:33:4a:32:d9:27:02:bc:57: b8:6d:5b:66:32:84:4f:53:3f:a4:3e:6e:83:0c:81:bf:d5:b8: a9:05:5c:2b:ab:8e:d6:50:9c:32:3d:eb:93:2f:a1:d0:8b:0a: e2:3e:38:34:ad:b1:45:4e:1d:62:19:0a:af:25:0e:dc:02:18: 05:5c:34:71:ea:11:1e:a8:65:41:04:d9:c5:86:5e:f5:2d:b0: e6:16:2e:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKQcaBuMurpja5Z22sq4u2z3lSkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTE4WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjNjNmUzNzVmZmEyN2I2NzZjMGNkYTBiYTFhNjg2YmRj ODk1OGRjMTA3YjFjZmM4MDcxZGMyM2M0YzA1NzNiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnsyv3mu3SbcdZYRObmLFQDm8PQ4CaTPikRqOZMjwAiPmf 0x1F80TitUCwQFgs5FrydzoY4dApffYHB1TkVIoe30OMmaITGywKSv8RArhybzbq MckMhzyrh9JgECYrmiDVC7fgbaWTAb1J2XqYrHzQIAskT/BeUOYqosgEWscNBlMx J0MYbJ03E6HK9RMU8tBGF0crmbsbH4UFXPEtHJPTh1BuPlT54+AnJmkD5adTmyZs ZRtXVoYc+7oLVCpftdIBptJjPE+xZhJ44yVV+8IpP4M55s/kfhJrfWUAi2y5NhmR YRRsdL6tD8829OuNgTXi6Wc6yAgXRX9aEnIzyfW5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+hVh7vVUd+rOf5PPWgZq4O4eCxQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzU3NzcxNDZkLWI5MGYtNGU3Zi04ODE2LWQ5MWM4ZThkNDdiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYJAwDQYJKoZIhvcNAQELBQADggEBAEV/AiOfWBP1F9Pjgc7HJZbSN/vQ HHl1TfGV++yBTuo6qfskb+5wr/yNQVg+6X7sSKa4yJpngoLw19PL67DlQ3D8faCQ OIJiiCjqxZZHRBFSwXIYiKCuBYC1PpBP1zNvdPHkKpWf0G1cUNn4EGjaexiMqU3r ILwhrFxNEnkgg1JvaWrwphyw9nKfQastWRdrJKo3sTfnVNj7UAAA3P2nPdQfDEG9 n2A5+B0VXN4zSjLZJwK8V7htW2YyhE9TP6Q+boMMgb/VuKkFXCurjtZQnDI965Mv odCLCuI+ODStsUVOHWIZCq8lDtwCGAVcNHHqER6oZUEE2cWGXvUtsOYWLgA= -----END CERTIFICATE-----Generated at Mon Oct 20 08:04:36 2025 by rpki-client