$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa File: 85bd9bca-c692-4bac-9212-6cc968f995d7.roa (raw, json) Hash identifier: F+dsTRtx6GiPirMTrr9XT/7DIP35EMjP87w/7Zi4oNM= Subject key identifier: E9:E5:4B:CB:62:54:2B:85:12:F9:8F:23:83:D4:A0:84:A5:1E:52:5A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 186914237F1FA9F70A601C1CB4E64341A3408717 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa Signing time: Fri 10 Oct 2025 17:05:11 +0000 ROA not before: Fri 10 Oct 2025 17:05:11 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:69:14:23:7f:1f:a9:f7:0a:60:1c:1c:b4:e6:43:41:a3:40:87:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:11 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=7ff0816b083b8f4f974ca13c1bec36bbf23d4de6f261a46ce5f78e9fc7d23796, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e3:47:04:21:ef:d0:58:2c:92:a3:2b:41:f4: 96:35:a8:8b:f3:32:ce:03:b3:8d:a7:d4:e5:e4:60: 23:d1:ec:74:14:d9:b7:47:d6:66:82:fd:d1:92:9a: 49:1c:13:f7:75:9a:44:18:a4:8d:32:77:66:36:c3: 26:7c:75:3c:46:17:41:97:0a:f7:ea:7c:77:be:73: 35:1b:f8:23:d9:8c:29:24:a9:b3:5d:a1:5a:e3:8e: d2:96:bf:4e:d3:e0:18:61:42:23:a8:62:08:96:62: 02:9b:e9:50:c5:a9:07:dd:24:24:85:5b:62:bd:c5: 0a:b0:00:77:92:63:0d:f7:14:42:b6:75:22:94:df: 1c:bc:cf:18:da:5b:95:dd:90:24:f9:fd:30:44:7d: 52:61:9e:cf:8e:7d:eb:bc:98:a9:4c:97:bc:fa:58: 8a:70:25:41:15:fa:42:82:32:46:9f:2d:11:59:0a: 21:f1:9a:0c:6e:3c:bb:b0:78:ae:fa:79:27:98:9d: 32:2d:09:6d:50:f6:58:5b:eb:44:2a:b5:d7:e0:09: e0:82:5e:4f:18:85:77:d3:e7:53:f3:8f:7f:e4:ca: 28:23:6e:10:cc:0f:81:8b:f2:a5:58:9a:1a:44:61: 69:f2:78:75:1a:2f:20:c8:18:d8:5e:0d:78:ae:f4: 04:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E5:4B:CB:62:54:2B:85:12:F9:8F:23:83:D4:A0:84:A5:1E:52:5A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.250.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:13:3a:13:ad:1c:3f:b5:1d:d9:35:93:b5:77:3f:ce:9d:07: 52:5f:65:c1:2c:3e:b0:5d:e2:47:74:67:0d:5e:f7:c6:91:0e: 03:e1:bd:2f:59:fa:69:8a:0e:f0:fe:e1:03:60:e1:b2:08:2c: 46:2c:28:e4:b7:9b:d1:12:cd:1d:d1:00:b9:db:6c:35:f0:76: bb:e2:f5:72:a0:a1:1f:a8:db:ba:67:14:3a:9a:fa:94:f5:21: dc:a8:ce:83:6a:17:5d:97:a5:09:45:c6:e2:d7:33:a5:02:d5: 80:7d:74:0f:d7:1f:b9:49:d5:79:3b:67:73:85:55:41:cb:64: a9:0d:66:07:d3:39:cf:94:57:c8:94:1c:74:81:66:e0:c4:13: cc:b2:36:7a:00:08:74:d7:df:a5:33:ba:e6:97:e7:c2:9b:29: f6:aa:14:df:31:c4:88:d5:71:eb:ac:b7:ad:42:b5:61:37:a6: f3:bd:b4:28:7b:8b:e6:e2:93:ca:81:63:d9:cf:9f:21:d1:a1: c5:13:2b:7b:4e:7a:3f:74:98:53:f6:0e:dd:bc:09:87:e7:30: 69:30:bf:b4:14:82:0a:f6:4a:66:94:b9:3c:79:3e:e4:4d:d6: 71:e6:08:80:05:ee:f7:de:64:4c:93:1e:89:3d:16:4d:b8:e1: 16:0b:b9:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGGkUI38fqfcKYBwctOZDQaNAhxcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTExWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmYwODE2YjA4M2I4ZjRmOTc0Y2ExM2MxYmVjMzZiYmYy M2Q0ZGU2ZjI2MWE0NmNlNWY3OGU5ZmM3ZDIzNzk2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCY40cEIe/QWCySoytB9JY1qIvzMs4Ds42n1OXkYCPR7HQU 2bdH1maC/dGSmkkcE/d1mkQYpI0yd2Y2wyZ8dTxGF0GXCvfqfHe+czUb+CPZjCkk qbNdoVrjjtKWv07T4BhhQiOoYgiWYgKb6VDFqQfdJCSFW2K9xQqwAHeSYw33FEK2 dSKU3xy8zxjaW5XdkCT5/TBEfVJhns+Ofeu8mKlMl7z6WIpwJUEV+kKCMkafLRFZ CiHxmgxuPLuweK76eSeYnTItCW1Q9lhb60QqtdfgCeCCXk8YhXfT51Pzj3/kyigj bhDMD4GL8qVYmhpEYWnyeHUaLyDIGNheDXiu9ATHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6eVLy2JUK4US+Y8jg9SghKUeUlowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg1YmQ5YmNhLWM2OTItNGJhYy05MjEyLTZjYzk2OGY5OTVkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPowDQYJKoZIhvcNAQELBQADggEBAGoTOhOtHD+1Hdk1k7V3P86dB1Jf ZcEsPrBd4kd0Zw1e98aRDgPhvS9Z+mmKDvD+4QNg4bIILEYsKOS3m9ESzR3RALnb bDXwdrvi9XKgoR+o27pnFDqa+pT1IdyozoNqF12XpQlFxuLXM6UC1YB9dA/XH7lJ 1Xk7Z3OFVUHLZKkNZgfTOc+UV8iUHHSBZuDEE8yyNnoACHTX36UzuuaX58KbKfaq FN8xxIjVceust61CtWE3pvO9tCh7i+bik8qBY9nPnyHRocUTK3tOej90mFP2Dt28 CYfnMGkwv7QUggr2SmaUuTx5PuRN1nHmCIAF7vfeZEyTHok9Fk244RYLuVU= -----END CERTIFICATE-----Generated at Mon Oct 20 05:38:53 2025 by rpki-client