$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ba8b81b2-d008-45b7-b8fc-a7f71141759b.roa File: ba8b81b2-d008-45b7-b8fc-a7f71141759b.roa (raw, json) Hash identifier: bLORrkIUk+aa9xbPYsAGi4ChxwAAsWY9/vDRdDfIZ0A= Subject key identifier: 6E:7F:C0:D8:2E:D9:36:39:0F:9A:7E:C8:FA:2B:52:E2:88:02:9A:E0 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4071C21574F5BB9EFA56835B8D1BA4DCD87AFCF1 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ba8b81b2-d008-45b7-b8fc-a7f71141759b.roa Signing time: Thu 09 Oct 2025 14:07:03 +0000 ROA not before: Thu 09 Oct 2025 14:07:03 +0000 ROA not after: Thu 13 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.110.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:71:c2:15:74:f5:bb:9e:fa:56:83:5b:8d:1b:a4:dc:d8:7a:fc:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 9 14:07:03 2025 GMT Not After : Nov 13 23:59:59 2025 GMT Subject: serialNumber=57627d9d3b4756d3a86064af3b090af93f28cce9f8c66f439fcc4868e53ea772, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1d:51:04:31:6a:72:7a:c5:b1:4b:ff:8e:a6: 4d:64:7a:24:b6:c2:4a:b5:0f:7d:72:6a:f9:20:6a: d8:8d:2f:db:3b:f0:4b:58:e7:64:4e:44:2d:f5:52: c9:f5:b4:19:83:ee:b2:2e:b8:63:eb:92:6f:9d:75: 04:84:40:a4:6e:95:4f:31:94:cf:65:c0:37:52:76: c3:d6:f7:1c:00:b1:10:3e:47:4e:57:87:a4:d7:7d: b5:ed:a3:6a:e4:79:0b:ac:5c:58:f0:1b:df:97:05: a9:63:1e:4b:54:0e:52:d1:65:8b:3b:f4:a5:0b:10: a0:e9:39:c8:33:f8:94:28:e5:65:39:d7:cf:01:13: c7:03:9e:c4:e4:98:e1:23:de:30:be:e9:3d:63:5c: a8:37:d5:73:03:f4:f6:94:06:78:be:e8:4f:44:83: ca:76:0d:1e:12:85:ec:2a:ef:fb:3a:f2:d9:f5:30: 54:ba:75:93:c0:29:c2:17:bb:4e:3e:fb:b2:04:da: ab:c4:b3:90:cb:15:45:43:db:35:4f:a4:46:53:85: 42:be:4f:9b:6d:4e:15:39:f8:70:4f:22:d8:18:bb: f0:37:be:a6:e0:ca:ee:9a:c2:3b:bc:b3:be:00:3e: 60:b1:48:71:34:71:f8:e0:86:67:3a:98:73:94:a5: 26:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:7F:C0:D8:2E:D9:36:39:0F:9A:7E:C8:FA:2B:52:E2:88:02:9A:E0 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ba8b81b2-d008-45b7-b8fc-a7f71141759b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.110.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:58:be:64:13:9c:5d:3c:7d:71:9d:4f:f6:fd:49:a2:6d:ce: d3:9d:cf:a5:84:f2:71:dc:3f:f7:25:6b:6b:84:88:8f:eb:4e: 4d:00:00:8f:9c:1c:c8:d4:c1:25:30:03:4f:a6:60:70:a0:ce: df:93:2c:af:8e:b3:7a:e1:05:1a:86:fa:e2:45:70:04:b5:28: 49:68:26:ee:26:9f:6e:f0:dd:88:db:a9:1c:b2:40:ee:0f:44: cb:0e:4e:6a:cd:9e:c6:f2:1e:56:36:dc:91:18:a3:33:ca:83: cb:d5:84:33:8d:ef:db:8b:75:f6:b8:19:db:b3:28:2e:66:b6: 57:e6:29:e1:e9:87:95:97:50:c9:27:6c:1c:a2:93:98:11:42: fd:f6:70:c8:23:e1:93:83:ce:50:45:82:80:d6:9b:c1:ef:de: 71:d3:34:29:60:ef:de:22:4a:3d:08:e3:ff:25:ae:5b:4d:75: 48:a9:8d:2e:8d:9f:b6:59:2a:9e:59:2e:22:54:41:f3:77:7a: f6:8d:6e:53:da:b4:33:26:81:72:49:3c:d1:0d:67:1c:a9:3f: c9:0d:8d:b5:88:5f:c0:bb:f2:a9:f5:b0:e7:43:52:78:d1:43: c6:d5:ba:47:5b:b8:7f:d0:b6:04:a6:5a:98:64:b9:13:e7:ac: 26:ec:58:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQHHCFXT1u576VoNbjRuk3Nh6/PEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDA5MTQwNzAzWhcNMjUxMTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzYyN2Q5ZDNiNDc1NmQzYTg2MDY0YWYzYjA5MGFmOTNm MjhjY2U5ZjhjNjZmNDM5ZmNjNDg2OGU1M2VhNzcyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGHVEEMWpyesWxS/+Opk1keiS2wkq1D31yavkgatiNL9s7 8EtY52RORC31Usn1tBmD7rIuuGPrkm+ddQSEQKRulU8xlM9lwDdSdsPW9xwAsRA+ R05Xh6TXfbXto2rkeQusXFjwG9+XBaljHktUDlLRZYs79KULEKDpOcgz+JQo5WU5 188BE8cDnsTkmOEj3jC+6T1jXKg31XMD9PaUBni+6E9Eg8p2DR4Shewq7/s68tn1 MFS6dZPAKcIXu04++7IE2qvEs5DLFUVD2zVPpEZThUK+T5ttThU5+HBPItgYu/A3 vqbgyu6awju8s74APmCxSHE0cfjghmc6mHOUpSbLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbn/A2C7ZNjkPmn7I+itS4ogCmuAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JhOGI4MWIyLWQwMDgtNDViNy1iOGZjLWE3ZjcxMTQxNzU5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjbjANBgkqhkiG9w0BAQsFAAOCAQEABVi+ZBOcXTx9cZ1P9v1Jom3O053P pYTycdw/9yVra4SIj+tOTQAAj5wcyNTBJTADT6ZgcKDO35Msr46zeuEFGob64kVw BLUoSWgm7iafbvDdiNupHLJA7g9Eyw5Oas2exvIeVjbckRijM8qDy9WEM43v24t1 9rgZ27MoLma2V+Yp4emHlZdQySdsHKKTmBFC/fZwyCPhk4POUEWCgNabwe/ecdM0 KWDv3iJKPQjj/yWuW011SKmNLo2ftlkqnlkuIlRB83d69o1uU9q0MyaBckk80Q1n HKk/yQ2NtYhfwLvyqfWw50NSeNFDxtW6R1u4f9C2BKZamGS5E+esJuxYSg== -----END CERTIFICATE-----Generated at Mon Oct 20 18:11:12 2025 by rpki-client