$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9caf50d7-1511-48a7-abcf-d261ded7f7c1.roa File: 9caf50d7-1511-48a7-abcf-d261ded7f7c1.roa (raw, json) Hash identifier: 43pynXAa6CEZOvh3o7KGOZOsmRQojPuU54TZyWyCk2A= Subject key identifier: 5D:24:3B:DF:C3:7C:6B:12:67:BD:13:E8:18:72:B7:F5:DB:7A:45:DA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7AB90B9D91EA8BD5B804A9E5395452C9CE204434 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9caf50d7-1511-48a7-abcf-d261ded7f7c1.roa Signing time: Sun 19 Oct 2025 04:00:24 +0000 ROA not before: Sun 19 Oct 2025 04:00:24 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:b9:0b:9d:91:ea:8b:d5:b8:04:a9:e5:39:54:52:c9:ce:20:44:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 19 04:00:24 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=d5e73e2f83764d9719ee521cde68574b945c5926c78dcfa1015add98dcfa079b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:16:b5:6e:12:f1:68:53:94:a4:e4:03:4d:7c: 73:54:ab:1d:6d:bd:3b:ae:90:11:2d:95:67:b7:d9: d0:6f:cd:5c:fe:a6:8c:b2:01:78:70:df:46:11:bb: 85:9b:e9:d4:6b:a4:7a:a2:3b:db:bd:e3:cd:02:c4: 13:f4:2b:3c:42:d8:24:e2:e9:09:cc:85:d5:7f:f1: a9:ec:95:41:74:53:f1:ee:75:fa:cb:4d:de:a1:4b: 02:f0:d7:a6:fb:aa:66:ac:d2:65:a9:78:67:7b:5d: 2c:f1:8c:75:ba:33:88:95:6e:43:86:22:35:e7:2a: 17:94:73:09:2d:d6:c2:c7:55:92:16:23:7d:bb:f1: 6f:21:6e:a8:7b:63:9a:54:96:94:ac:63:ae:43:90: 65:66:bf:02:32:e8:d2:20:17:15:ea:f2:32:1b:58: 5b:4e:5e:9b:61:94:dd:68:ec:8f:5d:39:bc:8a:52: 88:a3:cf:22:fe:24:90:f2:39:71:b8:cb:61:bd:44: 4e:54:06:12:17:e5:15:55:5d:bf:27:fb:d0:89:e2: 21:a1:93:a0:eb:b7:d3:c5:f9:d8:54:e1:1d:50:f8: e5:29:f6:e1:ce:4b:dd:26:cf:78:22:6b:87:f5:ff: ab:a4:5b:1c:c4:7f:c0:91:12:66:67:16:b5:4e:d3: 26:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:24:3B:DF:C3:7C:6B:12:67:BD:13:E8:18:72:B7:F5:DB:7A:45:DA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9caf50d7-1511-48a7-abcf-d261ded7f7c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.45.0/24 Signature Algorithm: sha256WithRSAEncryption 02:b6:ef:fc:08:80:30:78:82:8c:77:6f:7e:62:0e:67:12:86: 17:ca:17:18:10:83:0a:1e:b3:80:20:b0:92:ca:15:e8:99:21: b3:18:8c:e7:93:6a:dc:06:42:c1:2b:c2:9e:3b:02:ad:22:06: a9:95:98:f7:fa:24:ab:b8:c4:76:cf:e8:2f:5c:fd:f2:0b:85: 25:80:72:1c:cf:21:d6:8c:c0:d6:49:e6:05:59:1b:e1:96:a8: c3:b8:93:2e:f2:e7:a9:51:7e:3c:fc:c8:88:a2:c0:86:80:0f: 56:94:ae:02:80:4d:26:fd:71:bc:6f:15:39:25:99:ad:b4:4b: f6:31:fd:2b:21:7e:99:95:e3:60:b9:89:6d:52:54:6c:c4:3d: 48:ea:0b:8b:a7:ed:f3:4f:fa:c7:89:18:7c:64:58:15:cc:af: 3a:99:fc:00:f5:de:da:8d:18:c6:7d:0d:b9:1c:a9:34:90:38: e8:1f:4b:fc:e3:76:90:99:a2:44:f5:81:89:fa:7c:a8:7d:1c: f9:f1:aa:2c:79:e3:be:26:cb:5c:fe:1c:38:d5:fa:ea:9f:b1: ae:7b:09:80:ae:ee:4e:b2:db:24:77:0f:c2:50:18:4d:e8:0c: 2e:9c:16:84:68:6c:30:49:24:69:94:b5:87:18:0a:d8:fe:70: 60:40:0a:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUerkLnZHqi9W4BKnlOVRSyc4gRDQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE5MDQwMDI0WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWU3M2UyZjgzNzY0ZDk3MTllZTUyMWNkZTY4NTc0Yjk0 NWM1OTI2Yzc4ZGNmYTEwMTVhZGQ5OGRjZmEwNzliMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFFrVuEvFoU5Sk5ANNfHNUqx1tvTuukBEtlWe32dBvzVz+ poyyAXhw30YRu4Wb6dRrpHqiO9u9480CxBP0KzxC2CTi6QnMhdV/8anslUF0U/Hu dfrLTd6hSwLw16b7qmas0mWpeGd7XSzxjHW6M4iVbkOGIjXnKheUcwkt1sLHVZIW I3278W8hbqh7Y5pUlpSsY65DkGVmvwIy6NIgFxXq8jIbWFtOXpthlN1o7I9dObyK UoijzyL+JJDyOXG4y2G9RE5UBhIX5RVVXb8n+9CJ4iGhk6Drt9PF+dhU4R1Q+OUp 9uHOS90mz3gia4f1/6ukWxzEf8CREmZnFrVO0ya/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXSQ738N8axJnvRPoGHK39dt6RdowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzljYWY1MGQ3LTE1MTEtNDhhNy1hYmNmLWQyNjFkZWQ3ZjdjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYC0wDQYJKoZIhvcNAQELBQADggEBAAK27/wIgDB4gox3b35iDmcShhfK FxgQgwoes4AgsJLKFeiZIbMYjOeTatwGQsErwp47Aq0iBqmVmPf6JKu4xHbP6C9c /fILhSWAchzPIdaMwNZJ5gVZG+GWqMO4ky7y56lRfjz8yIiiwIaAD1aUrgKATSb9 cbxvFTklma20S/Yx/SshfpmV42C5iW1SVGzEPUjqC4un7fNP+seJGHxkWBXMrzqZ /AD13tqNGMZ9DbkcqTSQOOgfS/zjdpCZokT1gYn6fKh9HPnxqix5474my1z+HDjV +uqfsa57CYCu7k6y2yR3D8JQGE3oDC6cFoRobDBJJGmUtYcYCtj+cGBACnw= -----END CERTIFICATE-----Generated at Mon Oct 20 10:14:37 2025 by rpki-client