$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a7f6e0ac-810a-4e40-a286-d05397a13e4e.roa File: a7f6e0ac-810a-4e40-a286-d05397a13e4e.roa (raw, json) Hash identifier: iR1LozMMZeZIdQBo6/e5MsanlBhuX6661wvkKbvD6d0= Subject key identifier: 94:3A:C7:A3:74:75:25:E5:85:C2:D5:15:BA:11:DE:CE:55:CC:60:EA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 74257FBB543C07524A4028B64AF53F843591E8E0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a7f6e0ac-810a-4e40-a286-d05397a13e4e.roa Signing time: Sun 19 Oct 2025 04:00:18 +0000 ROA not before: Sun 19 Oct 2025 04:00:18 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:25:7f:bb:54:3c:07:52:4a:40:28:b6:4a:f5:3f:84:35:91:e8:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 19 04:00:18 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=5c00a9bf7af4864d53745d55164a1957d99efcce71766f53455097ad1594a2e8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:40:1d:2c:7d:e7:22:a5:af:a1:e5:02:a9:4a: 25:70:1c:c7:41:37:cd:82:42:f4:15:ba:ab:d9:1c: b4:1f:27:a0:10:01:0c:b3:5d:73:f4:24:80:e0:1b: 84:75:4e:68:23:d8:35:8e:bc:82:5d:41:f8:41:9e: 6c:98:86:bf:14:b0:59:c0:a4:c6:ab:b9:48:43:9f: 36:7d:e5:97:20:32:fc:3e:f3:9c:47:60:c7:58:5a: 8a:4c:a8:6f:32:9d:b2:43:b0:c6:b5:4c:a2:ab:85: 2e:d7:c7:a9:e2:08:2c:16:8a:af:c0:ef:85:81:63: 62:a1:92:68:01:db:9a:cb:0e:3a:43:7d:38:cc:4f: ae:29:07:3f:c6:9b:29:4f:71:cd:e6:80:07:f1:b3: f1:e8:fc:67:ad:06:cb:bf:be:36:18:ef:7b:5c:3d: 17:2f:5e:77:3c:f3:67:f2:1f:59:30:d7:21:65:9c: 4e:b8:c7:b5:38:c4:2b:f3:e3:3a:34:95:d9:bf:41: 8f:48:18:30:9a:df:e7:ef:0d:79:0e:70:d5:f7:20: 5c:5f:42:00:16:69:bb:32:37:1e:11:af:d6:e5:2e: e8:42:35:84:da:84:1e:ee:e6:cd:5c:96:27:b1:76: f5:2c:81:ad:7c:ee:df:25:5e:6e:fd:6f:e3:6c:8e: 0d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3A:C7:A3:74:75:25:E5:85:C2:D5:15:BA:11:DE:CE:55:CC:60:EA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a7f6e0ac-810a-4e40-a286-d05397a13e4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.41.0/24 Signature Algorithm: sha256WithRSAEncryption 20:9e:3a:19:b7:0d:e3:17:a7:e4:3f:4d:89:21:8a:a0:2b:f6: e6:e9:67:77:e0:96:0b:4a:82:8d:88:e3:cc:9d:d7:bf:b7:51: 37:3a:49:0a:77:d6:90:01:55:cb:7c:89:fe:52:f5:ae:35:be: 87:e0:14:81:a9:32:56:a8:02:ea:02:4d:84:b6:08:a2:63:81: 8d:2c:ac:46:f4:29:af:2d:8f:00:4b:2f:ee:82:2c:32:f5:d6: fb:1e:37:99:bf:1a:37:ad:56:30:ef:e5:36:5c:0c:35:46:20: 36:27:c6:94:e2:6f:d5:6d:98:4a:26:f3:2d:d7:0e:0c:8c:89: 16:bd:24:3f:5f:57:42:58:0b:d0:38:6d:4f:9f:b4:cb:a2:de: 90:4d:d4:4f:a1:ab:10:58:e4:37:66:c1:88:91:f8:40:d4:be: 37:35:12:7a:6f:46:f6:e8:87:b6:be:d5:da:3d:2c:df:17:6a: a9:78:3b:d7:ce:ad:cb:3f:be:00:65:76:03:55:37:a9:c1:ca: eb:cd:d7:30:58:00:01:df:27:e0:6f:07:8a:ea:85:3e:9e:6f: 7f:eb:65:0e:bc:9f:ea:08:b6:1a:39:65:e9:64:90:b1:54:d4: 8d:95:42:a1:0d:f3:28:da:ed:d6:8c:21:ca:24:9b:c8:29:18: ad:95:6d:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdCV/u1Q8B1JKQCi2SvU/hDWR6OAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE5MDQwMDE4WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzAwYTliZjdhZjQ4NjRkNTM3NDVkNTUxNjRhMTk1N2Q5 OWVmY2NlNzE3NjZmNTM0NTUwOTdhZDE1OTRhMmU4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRQB0sfecipa+h5QKpSiVwHMdBN82CQvQVuqvZHLQfJ6AQ AQyzXXP0JIDgG4R1Tmgj2DWOvIJdQfhBnmyYhr8UsFnApMaruUhDnzZ95ZcgMvw+ 85xHYMdYWopMqG8ynbJDsMa1TKKrhS7Xx6niCCwWiq/A74WBY2KhkmgB25rLDjpD fTjMT64pBz/GmylPcc3mgAfxs/Ho/GetBsu/vjYY73tcPRcvXnc882fyH1kw1yFl nE64x7U4xCvz4zo0ldm/QY9IGDCa3+fvDXkOcNX3IFxfQgAWabsyNx4Rr9blLuhC NYTahB7u5s1cliexdvUsga187t8lXm79b+Nsjg1bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlDrHo3R1JeWFwtUVuhHezlXMYOowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E3ZjZlMGFjLTgxMGEtNGU0MC1hMjg2LWQwNTM5N2ExM2U0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCkwDQYJKoZIhvcNAQELBQADggEBACCeOhm3DeMXp+Q/TYkhiqAr9ubp Z3fglgtKgo2I48yd17+3UTc6SQp31pABVct8if5S9a41vofgFIGpMlaoAuoCTYS2 CKJjgY0srEb0Ka8tjwBLL+6CLDL11vseN5m/GjetVjDv5TZcDDVGIDYnxpTib9Vt mEom8y3XDgyMiRa9JD9fV0JYC9A4bU+ftMui3pBN1E+hqxBY5DdmwYiR+EDUvjc1 EnpvRvboh7a+1do9LN8Xaql4O9fOrcs/vgBldgNVN6nByuvN1zBYAAHfJ+BvB4rq hT6eb3/rZQ68n+oItho5ZelkkLFU1I2VQqEN8yja7daMIcokm8gpGK2VbSw= -----END CERTIFICATE-----Generated at Sun Oct 19 23:22:35 2025 by rpki-client