$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ac52107e-af2b-4459-b9ff-c6d9b1fb8acf.roa File: ac52107e-af2b-4459-b9ff-c6d9b1fb8acf.roa (raw, json) Hash identifier: CkaOohheHmJSCCehWgw72UDxSJIUlDtZN1gg7bBEiP0= Subject key identifier: 32:D8:AE:4F:A2:8D:A1:E9:AD:4B:19:6B:7D:59:A0:7C:9B:27:82:4C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 12C7A7FB1FDD87AC142C76F1BB3447A18A20197C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ac52107e-af2b-4459-b9ff-c6d9b1fb8acf.roa Signing time: Fri 17 Oct 2025 15:06:53 +0000 ROA not before: Fri 17 Oct 2025 15:06:53 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c7:a7:fb:1f:dd:87:ac:14:2c:76:f1:bb:34:47:a1:8a:20:19:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 17 15:06:53 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=604e686d317f39171f1fcd5d2a9b08d5b34c32013a37237c9cbbd63a48261e32, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:15:86:40:66:05:a1:89:eb:c7:54:6a:1a:86: 69:f6:c9:bd:60:df:9a:cb:63:dd:00:1d:c9:c2:06: 79:5d:b3:e8:43:72:15:a9:f4:d6:0d:15:50:ec:ab: 49:88:f5:a6:c1:4d:0c:b4:8d:11:02:83:8a:09:15: 3e:39:b3:3d:ca:a4:53:0c:e2:d6:8a:60:e3:4b:f6: 9e:ba:4d:52:f5:ab:7b:0d:bf:0b:0c:c3:85:21:3e: c4:04:bb:62:06:70:95:0e:2d:36:ea:46:02:e3:cf: e0:2e:24:6d:92:00:c1:55:ec:a2:b1:28:3b:4c:31: 28:db:42:ac:ff:80:46:b2:f0:a6:a5:a6:0e:f2:a9: 66:46:65:5a:f0:67:68:ed:9f:06:37:b4:c3:59:8c: 8b:2a:05:30:94:58:de:f2:a0:71:06:44:e8:66:5e: 32:e6:e7:b2:c4:f8:03:ec:d3:f5:f3:f0:b6:0f:86: 79:b8:ff:67:0e:bf:67:f0:f9:40:8c:ac:99:8a:9b: c6:0d:72:91:5e:c2:2d:6b:5b:e6:d3:a7:e4:2e:47: 52:8e:94:08:50:55:08:4a:ac:44:b4:09:10:97:2c: 76:59:20:bb:ff:24:a5:fb:10:30:89:f1:4c:c2:04: e9:e6:96:02:d2:5d:af:89:61:25:23:8a:ab:ac:84: 88:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D8:AE:4F:A2:8D:A1:E9:AD:4B:19:6B:7D:59:A0:7C:9B:27:82:4C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ac52107e-af2b-4459-b9ff-c6d9b1fb8acf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.18.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:08:d9:75:c4:29:00:ee:c3:fb:65:be:8c:39:cb:1d:36:45: 86:97:8f:4c:8b:dc:c7:92:6c:5c:ec:18:ee:9c:6d:09:2b:4c: 48:d9:fa:7f:17:14:c2:ea:ea:e1:52:51:bd:81:14:6f:0e:61: b7:f9:27:78:46:e9:27:b1:5a:c8:0b:be:0d:48:49:7e:4d:88: ac:f9:ae:f2:cb:26:34:5a:97:0b:eb:46:ec:3c:18:3b:66:0a: 1f:d2:e9:f1:bd:6e:f4:0d:eb:a1:84:4f:f7:50:4b:9a:95:f3: db:37:ce:a9:82:32:93:6d:d5:5c:44:27:08:72:8f:72:fc:16: d8:48:3b:9a:8d:ec:33:05:dc:39:30:26:b5:62:79:98:0b:3e: cf:b1:9d:34:65:a4:0b:01:29:15:8d:47:8b:d9:5e:24:90:08: f5:d5:94:d5:ae:26:f3:72:88:fd:a6:89:2f:95:1b:e0:68:3f: e8:82:7f:2e:87:28:d2:28:24:43:ca:d5:b3:19:40:ae:d8:5f: fd:d9:ec:7a:ea:b0:a8:8a:f2:97:40:ab:61:ba:bd:f2:63:03: 0a:f0:61:f3:1f:ff:e0:51:75:b2:d6:19:f8:3a:a9:f8:29:5c: e9:c4:33:70:f4:83:bc:fb:9b:0c:dc:5f:4b:43:d7:da:a0:51: 5b:ac:32:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEsen+x/dh6wULHbxuzRHoYogGXwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE3MTUwNjUzWhcNMjUxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDRlNjg2ZDMxN2YzOTE3MWYxZmNkNWQyYTliMDhkNWIz NGMzMjAxM2EzNzIzN2M5Y2JiZDYzYTQ4MjYxZTMyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZFYZAZgWhievHVGoahmn2yb1g35rLY90AHcnCBnlds+hD chWp9NYNFVDsq0mI9abBTQy0jRECg4oJFT45sz3KpFMM4taKYONL9p66TVL1q3sN vwsMw4UhPsQEu2IGcJUOLTbqRgLjz+AuJG2SAMFV7KKxKDtMMSjbQqz/gEay8Kal pg7yqWZGZVrwZ2jtnwY3tMNZjIsqBTCUWN7yoHEGROhmXjLm57LE+APs0/Xz8LYP hnm4/2cOv2fw+UCMrJmKm8YNcpFewi1rW+bTp+QuR1KOlAhQVQhKrES0CRCXLHZZ ILv/JKX7EDCJ8UzCBOnmlgLSXa+JYSUjiqushIijAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMtiuT6KNoemtSxlrfVmgfJsngkwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2FjNTIxMDdlLWFmMmItNDQ1OS1iOWZmLWM2ZDliMWZiOGFjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBIwDQYJKoZIhvcNAQELBQADggEBAE0I2XXEKQDuw/tlvow5yx02RYaX j0yL3MeSbFzsGO6cbQkrTEjZ+n8XFMLq6uFSUb2BFG8OYbf5J3hG6SexWsgLvg1I SX5NiKz5rvLLJjRalwvrRuw8GDtmCh/S6fG9bvQN66GET/dQS5qV89s3zqmCMpNt 1VxEJwhyj3L8FthIO5qN7DMF3DkwJrVieZgLPs+xnTRlpAsBKRWNR4vZXiSQCPXV lNWuJvNyiP2miS+VG+BoP+iCfy6HKNIoJEPK1bMZQK7YX/3Z7HrqsKiK8pdAq2G6 vfJjAwrwYfMf/+BRdbLWGfg6qfgpXOnEM3D0g7z7mwzcX0tD19qgUVusMhw= -----END CERTIFICATE-----Generated at Mon Oct 20 12:47:26 2025 by rpki-client