$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd032031-9fc2-4a6b-8d1d-6eb21a5f8258.roa File: dd032031-9fc2-4a6b-8d1d-6eb21a5f8258.roa (raw, json) Hash identifier: W12VKiv+Xw37ZwOlaR86HSISDiYsyYS5PUipqaM0cYc= Subject key identifier: 5C:8D:58:33:E3:AE:EE:36:31:DB:57:B3:CB:D9:BE:54:64:72:08:FF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4A9B7A7A23F9ADEF9D6F1CFA43BBA48CB2803155 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd032031-9fc2-4a6b-8d1d-6eb21a5f8258.roa Signing time: Sun 19 Oct 2025 04:00:09 +0000 ROA not before: Sun 19 Oct 2025 04:00:09 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:9b:7a:7a:23:f9:ad:ef:9d:6f:1c:fa:43:bb:a4:8c:b2:80:31:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 19 04:00:09 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=c1ce0a1431e8fc1da9ca712d0e81c7038a98d1939376f5c8e4797afdc91be3a7, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f5:f9:d4:02:c4:5e:6b:aa:57:89:26:dd:56: 20:01:43:5e:13:02:72:64:ad:ac:f5:e2:bf:5c:f6: 28:60:60:0b:e0:95:f8:a9:c4:c0:24:77:16:37:a5: 0c:53:db:dc:6c:90:59:35:ac:85:77:96:2e:00:fb: f3:12:8e:a7:42:22:a0:b4:c5:a0:cd:ff:5b:81:62: f5:3a:8e:11:c1:14:b9:17:fd:d3:97:89:e6:bb:53: 73:9c:76:80:33:1f:f2:68:bd:ef:ce:ce:ea:7d:90: 37:3e:2e:78:1b:09:fc:8c:70:05:33:0a:74:18:5f: 49:1e:ba:5b:5e:3c:9b:66:d9:c9:17:02:c7:71:ff: 76:ac:63:63:78:c2:bb:62:15:e2:9d:e6:62:a2:17: 19:d7:6e:72:8b:76:c7:57:67:bf:9c:c0:ee:31:36: ce:a6:3d:3e:ce:c5:43:96:d3:3b:d3:b8:32:13:81: 6a:54:eb:28:fb:03:33:ae:c5:20:45:f5:15:bb:61: b9:49:e7:a2:66:06:13:f4:15:3d:87:94:71:a9:97: 74:2c:b8:03:0b:14:19:7f:29:70:16:19:e7:d3:1e: 98:5d:a8:d8:28:90:ee:7e:e6:9a:f5:e0:76:66:cd: 7c:33:05:03:92:ab:f5:04:8d:6c:2f:ed:a6:46:0a: 63:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:8D:58:33:E3:AE:EE:36:31:DB:57:B3:CB:D9:BE:54:64:72:08:FF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd032031-9fc2-4a6b-8d1d-6eb21a5f8258.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.35.0/24 Signature Algorithm: sha256WithRSAEncryption 13:81:54:18:24:9b:0e:e6:af:a0:c5:37:b3:38:ea:b7:73:12: 99:8d:2c:38:0f:61:f5:86:a2:7e:45:53:a8:4f:3c:2a:6b:88: 20:4a:5a:8c:46:41:bd:17:7d:fb:bc:6b:62:e3:c3:08:3c:5b: b9:56:d8:cf:fd:ec:0d:20:22:fd:65:e9:bd:34:f9:b2:9a:67: bc:da:97:19:49:11:2a:80:52:fb:12:7e:ff:bb:30:84:bc:6c: 17:6f:55:bf:27:ce:ad:e2:0a:b7:24:d2:6a:eb:c3:de:6c:25: f9:ae:c1:6c:90:e0:85:fd:25:09:fb:ed:6d:aa:e4:8e:7c:0d: 1e:f3:89:29:a2:fe:83:3c:2a:33:3f:e5:4a:fb:dc:d4:af:92: 59:0e:e5:09:1f:18:09:85:83:ef:ef:73:96:94:00:17:b4:33: 93:37:2a:5c:78:4f:6f:76:2f:4f:31:e0:77:f2:d3:89:51:5d: 91:b9:23:91:ee:d1:4f:4a:76:91:94:96:bc:1b:86:ec:83:e8: 32:87:18:25:db:72:a2:7a:31:d2:3a:ab:ac:23:62:4c:53:46: 48:89:56:29:ae:67:18:03:2f:0e:47:36:66:7e:1a:0f:20:dc: a6:cd:f2:ec:35:1c:d1:4f:c2:3e:77:c2:60:31:88:a6:71:e1: 40:ad:d7:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSpt6eiP5re+dbxz6Q7ukjLKAMVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE5MDQwMDA5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWNlMGExNDMxZThmYzFkYTljYTcxMmQwZTgxYzcwMzhh OThkMTkzOTM3NmY1YzhlNDc5N2FmZGM5MWJlM2E3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK9fnUAsRea6pXiSbdViABQ14TAnJkraz14r9c9ihgYAvg lfipxMAkdxY3pQxT29xskFk1rIV3li4A+/MSjqdCIqC0xaDN/1uBYvU6jhHBFLkX /dOXiea7U3OcdoAzH/Jove/Ozup9kDc+LngbCfyMcAUzCnQYX0keultePJtm2ckX Asdx/3asY2N4wrtiFeKd5mKiFxnXbnKLdsdXZ7+cwO4xNs6mPT7OxUOW0zvTuDIT gWpU6yj7AzOuxSBF9RW7YblJ56JmBhP0FT2HlHGpl3QsuAMLFBl/KXAWGefTHphd qNgokO5+5pr14HZmzXwzBQOSq/UEjWwv7aZGCmNnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXI1YM+Ou7jYx21ezy9m+VGRyCP8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RkMDMyMDMxLTlmYzItNGE2Yi04ZDFkLTZlYjIxYTVmODI1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCMwDQYJKoZIhvcNAQELBQADggEBABOBVBgkmw7mr6DFN7M46rdzEpmN LDgPYfWGon5FU6hPPCpriCBKWoxGQb0Xffu8a2Ljwwg8W7lW2M/97A0gIv1l6b00 +bKaZ7zalxlJESqAUvsSfv+7MIS8bBdvVb8nzq3iCrck0mrrw95sJfmuwWyQ4IX9 JQn77W2q5I58DR7ziSmi/oM8KjM/5Ur73NSvklkO5QkfGAmFg+/vc5aUABe0M5M3 Klx4T292L08x4Hfy04lRXZG5I5Hu0U9KdpGUlrwbhuyD6DKHGCXbcqJ6MdI6q6wj YkxTRkiJVimuZxgDLw5HNmZ+Gg8g3KbN8uw1HNFPwj53wmAxiKZx4UCt1/I= -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:11 2025 by rpki-client