$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa File: 95808009-fbc3-494a-8fba-ce3cf5711341.roa (raw, json) Hash identifier: yjb/0xS33KeFmqs8jpeKJMvWR10xayPdSx8z/1KMJkM= Subject key identifier: 0B:2C:C1:19:1B:F9:A2:D6:FD:12:57:87:93:35:0A:BA:D9:FC:05:07 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4B66EB07E9D1C620A6EFBA63D27720DAC1D138F5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa Signing time: Mon 06 Oct 2025 17:37:43 +0000 ROA not before: Mon 06 Oct 2025 17:37:43 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:66:eb:07:e9:d1:c6:20:a6:ef:ba:63:d2:77:20:da:c1:d1:38:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 6 17:37:43 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=5bdc97e7b0cad30be4e4e9f5111122241ada9d123b37bdda93b14889cb6c9023, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c1:93:0c:76:3f:86:92:0f:df:07:c9:80:1e: 8f:a5:2c:2b:e2:20:85:ee:53:ab:cb:c9:4d:b8:cf: ef:35:a0:00:d0:88:62:34:2f:39:d6:ee:f5:85:9a: 8a:94:9e:99:32:29:42:fa:63:a2:e1:1e:e0:10:55: 47:ae:30:34:4a:e0:b5:be:c3:aa:68:6e:2a:0b:74: 48:ec:7d:b2:e3:00:ac:9c:31:83:2d:ba:d6:a5:39: 48:54:dd:74:fb:49:3e:9c:ef:15:9c:e1:4d:aa:40: a0:05:a0:dd:f7:00:46:0d:85:03:59:3a:19:48:2e: 09:07:09:f2:bf:36:07:d2:86:3a:65:2b:be:5a:f5: 1c:6e:5e:25:7f:34:3d:31:32:6b:e6:5b:2b:61:a1: 07:5e:cc:39:5c:1f:f8:29:15:1c:82:5b:99:1c:27: 2c:9f:28:18:7f:aa:84:6d:58:41:6c:67:e8:e4:e7: 9d:0d:28:00:88:a5:2e:52:61:f6:ca:b7:a6:e3:0e: 27:e5:64:04:e4:dd:d5:3e:97:08:58:2f:7c:cd:11: 96:aa:d8:de:d5:53:b2:ac:eb:c8:6d:83:b6:8d:26: 05:07:78:46:ef:16:89:16:71:6f:e2:a3:c1:e4:eb: 4e:9b:39:06:80:92:aa:8a:75:12:28:55:ac:88:56: f7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2C:C1:19:1B:F9:A2:D6:FD:12:57:87:93:35:0A:BA:D9:FC:05:07 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 09:bd:a3:c1:c3:66:8b:d2:46:2e:cb:07:26:1d:c6:ca:95:66: 40:fd:8a:8d:2a:de:29:e7:15:73:fe:50:cb:6e:d1:04:c9:17: b5:6c:89:a4:ff:d4:25:1f:79:9f:bf:04:dd:05:0d:0e:cb:4b: e5:3a:09:02:86:d0:3c:74:2f:97:89:ff:02:83:bc:c7:bf:49: 27:b3:d9:db:64:4e:e6:b8:af:43:0f:76:4a:2c:b2:3b:a7:01: f8:58:40:91:63:74:82:a4:9f:62:4f:db:89:7d:30:22:08:17: 33:f1:c0:3a:43:b4:86:b6:d5:b7:a7:e2:21:67:5b:e3:6c:c7: 93:0a:da:ae:d3:7a:5d:de:6f:98:8c:f6:78:5f:e4:ed:9a:b0: 39:e3:f8:b8:5d:52:a4:b7:f8:d4:cf:5c:9c:1b:3c:76:81:21: 19:ba:7a:43:d8:98:f2:a4:89:6b:30:26:94:20:18:7c:29:d1: 91:6b:e5:fd:61:4e:dc:f8:fa:3f:13:a3:da:bf:cf:a1:55:0c: 90:fe:8b:50:b8:d1:f8:90:f1:3e:1d:f0:00:32:ad:c5:5e:7c: fb:41:e3:f8:55:db:64:5e:17:cf:65:d5:e0:02:2e:6c:aa:1d: a1:5a:25:aa:ba:09:b4:94:ca:32:02:1e:4f:a5:5f:be:ec:60: 24:6e:d5:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS2brB+nRxiCm77pj0ncg2sHROPUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDA2MTczNzQzWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YmRjOTdlN2IwY2FkMzBiZTRlNGU5ZjUxMTExMjIyNDFh ZGE5ZDEyM2IzN2JkZGE5M2IxNDg4OWNiNmM5MDIzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqwZMMdj+Gkg/fB8mAHo+lLCviIIXuU6vLyU24z+81oADQ iGI0LznW7vWFmoqUnpkyKUL6Y6LhHuAQVUeuMDRK4LW+w6pobioLdEjsfbLjAKyc MYMtutalOUhU3XT7ST6c7xWc4U2qQKAFoN33AEYNhQNZOhlILgkHCfK/NgfShjpl K75a9RxuXiV/ND0xMmvmWythoQdezDlcH/gpFRyCW5kcJyyfKBh/qoRtWEFsZ+jk 550NKACIpS5SYfbKt6bjDiflZATk3dU+lwhYL3zNEZaq2N7VU7Ks68htg7aNJgUH eEbvFokWcW/io8Hk606bOQaAkqqKdRIoVayIVvetAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCyzBGRv5otb9EleHkzUKutn8BQcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk1ODA4MDA5LWZiYzMtNDk0YS04ZmJhLWNlM2NmNTcxMTM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAAm9o8HDZovSRi7LByYdxsqVZkD9 io0q3innFXP+UMtu0QTJF7VsiaT/1CUfeZ+/BN0FDQ7LS+U6CQKG0Dx0L5eJ/wKD vMe/SSez2dtkTua4r0MPdkossjunAfhYQJFjdIKkn2JP24l9MCIIFzPxwDpDtIa2 1ben4iFnW+Nsx5MK2q7Tel3eb5iM9nhf5O2asDnj+LhdUqS3+NTPXJwbPHaBIRm6 ekPYmPKkiWswJpQgGHwp0ZFr5f1hTtz4+j8To9q/z6FVDJD+i1C40fiQ8T4d8AAy rcVefPtB4/hV22ReF89l1eACLmyqHaFaJaq6CbSUyjICHk+lX77sYCRu1b4= -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:57 2025 by rpki-client