$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9fcd9d6a-7272-4c1e-b46c-cc94e58322e4.roa File: 9fcd9d6a-7272-4c1e-b46c-cc94e58322e4.roa (raw, json) Hash identifier: DGF8RY+rFsKPTOj5C6ELz1MquS1HCIQxgBxulz4csxA= Subject key identifier: 19:D4:46:51:7B:AD:6B:B0:C9:47:09:89:A5:07:12:79:D8:16:81:39 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 217138D8278B96E85C47991C2124EB817260BB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9fcd9d6a-7272-4c1e-b46c-cc94e58322e4.roa Signing time: Fri 10 Oct 2025 17:04:56 +0000 ROA not before: Fri 10 Oct 2025 17:04:56 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:71:38:d8:27:8b:96:e8:5c:47:99:1c:21:24:eb:81:72:60:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:04:56 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=5d986952e111f88d3b1fea15b653ab466ed2e61eff64a9b33e98d6e52b709e7d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7b:4d:de:a3:3e:86:f9:b7:c1:ec:e0:79:70: c4:4e:4e:c1:41:d8:77:14:91:1a:b2:b2:39:87:89: 0f:9d:22:83:ad:91:32:4a:e2:8e:b4:57:a5:dd:54: 68:d9:ab:c6:35:3e:c7:12:41:92:a8:73:df:ed:2b: 23:74:b1:6e:93:0d:0b:dc:ff:a6:46:8e:ca:ad:3f: b4:37:da:ca:bf:63:c6:ce:10:5e:a9:8f:e3:74:31: e8:24:c7:de:f6:70:60:3a:b8:50:62:1a:a6:ce:aa: 65:b6:64:2e:07:fb:24:1d:ee:8f:3d:0c:03:de:4e: ae:a7:8e:80:0c:e7:17:b7:dd:21:47:5a:62:e1:f5: ac:2e:53:fd:c1:f1:fe:6f:13:93:a7:9a:b6:41:36: 4f:32:b8:08:c3:a8:ac:c7:3d:9d:46:9b:c4:65:09: 0d:c9:20:fd:c7:6c:51:5d:6c:d0:47:39:92:8d:b9: 43:e8:b9:9a:47:d4:09:d3:a0:03:b1:a4:19:f4:c7: f2:f2:24:36:5d:f6:23:bd:52:ed:2e:65:52:4d:f2: 02:76:c4:b8:35:f1:08:fb:81:40:5b:a7:e2:9b:b1: 1f:fb:fb:d1:08:d4:3a:69:07:8c:a7:f0:87:d5:97: e8:ea:0b:51:71:a5:31:7c:1d:ee:e9:e3:c9:09:27: 49:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D4:46:51:7B:AD:6B:B0:C9:47:09:89:A5:07:12:79:D8:16:81:39 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9fcd9d6a-7272-4c1e-b46c-cc94e58322e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.12.0/24 Signature Algorithm: sha256WithRSAEncryption 01:35:be:b7:ce:5a:a7:19:bd:01:f6:b3:b8:76:95:75:6a:d8: 5e:03:0c:5e:89:a7:ef:e6:e1:fc:e7:75:8a:77:ba:e6:6f:a8: a1:a9:d0:0e:61:6b:50:d4:88:31:06:fa:30:e6:d4:a9:7a:ad: 62:5e:02:ba:48:fa:fa:39:e3:c8:5d:92:b2:9f:af:31:a4:2f: 8e:b2:94:f0:ea:e0:01:ed:28:07:73:45:a1:9f:e0:0c:ce:65: 54:3a:e7:22:61:59:82:94:9b:c9:1c:5a:2b:d2:5b:f3:58:c3: 55:c1:45:2c:35:ce:67:6a:6b:ae:45:fc:1a:f4:c7:01:90:f4: a6:4f:2f:75:7b:93:b3:4e:54:d0:22:34:c6:59:70:9b:03:c1: 25:d4:fd:a5:ad:2a:9b:89:4c:1d:5d:aa:0a:56:5b:ac:42:2e: 6b:5c:c8:ab:3c:42:7d:90:66:09:ae:aa:7f:79:32:03:79:41: 8e:ed:ed:4f:a7:b6:1e:eb:31:63:4d:34:8a:e8:eb:16:7a:11: 2a:18:5f:32:cd:e8:ff:66:02:d2:5e:28:38:4e:8c:9f:e7:99: 05:ba:e4:11:a8:68:7b:77:33:33:0e:0e:b3:8b:69:bc:79:36: 2d:46:12:83:95:03:87:9a:21:8b:e5:dc:ee:83:6b:37:06:80: 48:05:ac:03 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITIXE42CeLluhcR5kcISTrgXJguzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI5YWIwMTVmMzgyNmUwMTM1MTJhNDUyOThhNDJmMmJhYmEx ZmE3MmY4ZDI3OTM4ODc4YzAeFw0yNTEwMTAxNzA0NTZaFw0yNTExMTQyMzU5NTla MHoxSTBHBgNVBAUTQDVkOTg2OTUyZTExMWY4OGQzYjFmZWExNWI2NTNhYjQ2NmVk MmU2MWVmZjY0YTliMzNlOThkNmU1MmI3MDllN2QxLTArBgNVBAMTJDhjZDg0NDJm LTIzNWYtNDE3MS04NGU2LThlMTAwN2E2NGM2MDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANt7Td6jPob5t8Hs4HlwxE5OwUHYdxSRGrKyOYeJD50ig62R MkrijrRXpd1UaNmrxjU+xxJBkqhz3+0rI3SxbpMNC9z/pkaOyq0/tDfayr9jxs4Q XqmP43Qx6CTH3vZwYDq4UGIaps6qZbZkLgf7JB3ujz0MA95OrqeOgAznF7fdIUda YuH1rC5T/cHx/m8Tk6eatkE2TzK4CMOorMc9nUabxGUJDckg/cdsUV1s0Ec5ko25 Q+i5mkfUCdOgA7GkGfTH8vIkNl32I71S7S5lUk3yAnbEuDXxCPuBQFun4puxH/v7 0QjUOmkHjKfwh9WX6OoLUXGlMXwd7unjyQknSfcCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQZ1EZRe61rsMlHCYmlBxJ52BaBOTAfBgNVHSMEGDAWgBRqzD59oudtmREP 1jnEE35CQplw2DAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzY3NTU5NzBjLTQ3 NDctNDk5ZC05Nzc0LTVlMTMwOGM1MDFhNy85YWIwMTVmMzgyNmUwMTM1MTJhNDUy OThhNDJmMmJhYmExZmE3MmY4ZDI3OTM4ODc4Yy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzJkOGRiMC00NzI4LTRmYzEtYmRkOC00NzEx Mjk4NjYzNjIvOWZjZDlkNmEtNzI3Mi00YzFlLWI0NmMtY2M5NGU1ODMyMmU0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgt NDcxMTI5ODY2MzYyL2JnRTFFcVJTbUtRdks2dWgtbkw0MG5rNGg0dy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACNgDDANBgkqhkiG9w0BAQsFAAOCAQEAATW+t85apxm9AfazuHaVdWrYXgMM Xomn7+bh/Od1ine65m+ooanQDmFrUNSIMQb6MObUqXqtYl4Cukj6+jnjyF2Ssp+v MaQvjrKU8OrgAe0oB3NFoZ/gDM5lVDrnImFZgpSbyRxaK9Jb81jDVcFFLDXOZ2pr rkX8GvTHAZD0pk8vdXuTs05U0CI0xllwmwPBJdT9pa0qm4lMHV2qClZbrEIua1zI qzxCfZBmCa6qf3kyA3lBju3tT6e2HusxY000iujrFnoRKhhfMs3o/2YC0l4oOE6M n+eZBbrkEahoe3czMw4Os4tpvHk2LUYSg5UDh5ohi+Xc7oNrNwaASAWsAw== -----END CERTIFICATE-----Generated at Mon Oct 20 07:31:34 2025 by rpki-client