$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fb9df9b5-d079-4021-ba4d-b1bb1d31050a.roa File: fb9df9b5-d079-4021-ba4d-b1bb1d31050a.roa (raw, json) Hash identifier: kxl2Bk22Ir/mI6KznU6QhN2LCbCuyaTNyuHL465i6YQ= Subject key identifier: 39:8E:A5:28:18:2E:29:EF:49:85:7C:A3:53:16:01:01:29:8B:B8:0E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5D0DA279530E202AE2057FE41993DF851F15F446 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fb9df9b5-d079-4021-ba4d-b1bb1d31050a.roa Signing time: Mon 13 Oct 2025 17:55:00 +0000 ROA not before: Mon 13 Oct 2025 17:55:00 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:0d:a2:79:53:0e:20:2a:e2:05:7f:e4:19:93:df:85:1f:15:f4:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 13 17:55:00 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=d34090c9abdfc8451ce80df1970af0f992f04283a76f5e2cb48083d7cd1d4071, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:04:9e:19:88:b3:97:ec:c0:8e:b8:ef:5b:ab: e9:2d:37:ec:f4:ab:26:58:10:e4:12:62:99:cf:64: 83:60:62:81:e6:19:71:c9:88:bd:57:17:c4:0e:5d: f4:96:5e:8f:68:e7:d5:72:18:69:16:d2:4e:87:f2: e6:2f:1c:77:42:f6:16:43:7b:54:7c:64:4c:cd:dd: c6:a5:bd:f8:1e:cd:af:c7:cd:e1:6b:a8:9e:cc:31: d3:c8:8a:a1:74:52:35:8a:73:1d:3e:df:c5:34:90: f4:77:a7:76:a1:bd:ca:a9:12:ae:13:d8:7f:86:d6: 15:6c:c4:9f:35:2e:92:f5:6f:52:95:17:0d:93:29: d7:65:4c:a3:21:38:cd:07:6d:a3:03:23:01:f0:07: 05:44:e1:e1:26:35:9f:a1:19:44:9c:c7:aa:69:11: fd:8d:9e:da:dd:51:8c:4c:d3:9d:c1:d4:3b:91:7c: c2:d0:e7:53:68:40:70:d8:a8:d9:5b:63:a4:4c:d8: 2c:8b:9a:e4:74:93:b4:ea:ac:c7:12:b7:4c:f0:5f: 41:70:9d:fb:d5:a1:c2:df:97:fb:f5:a0:78:18:a7: f9:99:3c:94:50:15:1e:1f:e2:44:81:0b:35:3f:59: ca:d4:da:ed:99:39:bb:95:8c:f4:51:c1:91:38:7a: 3c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:8E:A5:28:18:2E:29:EF:49:85:7C:A3:53:16:01:01:29:8B:B8:0E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fb9df9b5-d079-4021-ba4d-b1bb1d31050a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/12 Signature Algorithm: sha256WithRSAEncryption 38:ed:cb:59:84:33:fa:3f:07:cf:2d:9d:9e:0f:e2:73:e7:3f: c5:76:ea:61:53:9d:9a:fb:73:6d:98:fe:97:ae:07:43:3f:20: 66:2c:dc:a6:81:7c:41:d3:47:fb:11:5d:30:95:d5:80:cc:9d: c5:1e:a1:f4:63:c9:46:56:16:b3:b5:97:2f:86:ac:50:90:b2: c3:9b:76:7a:da:d0:5d:94:3c:10:43:14:b9:52:b1:84:e5:86: 15:04:82:e4:67:ef:25:f4:53:86:2f:05:b6:bd:41:f5:cb:41: 25:8a:f7:1d:57:e9:cd:4c:5a:f5:c0:df:72:c0:95:e3:f7:53: 28:b2:fe:7f:f3:f2:19:83:4c:b2:b0:48:1d:9a:44:02:7d:99: e1:4b:57:19:54:26:07:39:bf:c1:75:a2:a7:6f:44:0e:67:00: 47:6d:10:6f:3d:81:63:28:71:4f:fa:ab:77:69:d6:70:06:d6: 15:14:82:50:be:80:9d:ad:43:84:e4:e6:3e:8f:5c:c0:9d:bf: 1b:b4:2d:e8:e6:ac:12:06:1c:3b:5b:4c:e2:4b:47:0a:c9:f8: 3f:89:07:40:b0:97:d6:ba:33:45:a6:1f:0d:05:1e:d3:7b:26: 40:32:52:40:d3:d3:7a:56:f2:70:f5:e1:ac:9e:66:ce:6c:09: c3:f9:47:30 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXQ2ieVMOICriBX/kGZPfhR8V9EYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEzMTc1NTAwWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzQwOTBjOWFiZGZjODQ1MWNlODBkZjE5NzBhZjBmOTky ZjA0MjgzYTc2ZjVlMmNiNDgwODNkN2NkMWQ0MDcxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgBJ4ZiLOX7MCOuO9bq+ktN+z0qyZYEOQSYpnPZINgYoHm GXHJiL1XF8QOXfSWXo9o59VyGGkW0k6H8uYvHHdC9hZDe1R8ZEzN3calvfgeza/H zeFrqJ7MMdPIiqF0UjWKcx0+38U0kPR3p3ahvcqpEq4T2H+G1hVsxJ81LpL1b1KV Fw2TKddlTKMhOM0HbaMDIwHwBwVE4eEmNZ+hGUScx6ppEf2NntrdUYxM053B1DuR fMLQ51NoQHDYqNlbY6RM2CyLmuR0k7TqrMcSt0zwX0FwnfvVocLfl/v1oHgYp/mZ PJRQFR4f4kSBCzU/WcrU2u2ZObuVjPRRwZE4ejxLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOY6lKBguKe9JhXyjUxYBASmLuA4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZiOWRmOWI1LWQwNzktNDAyMS1iYTRkLWIxYmIxZDMxMDUwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQjYDANBgkqhkiG9w0BAQsFAAOCAQEAOO3LWYQz+j8Hzy2dng/ic+c/xXbq YVOdmvtzbZj+l64HQz8gZizcpoF8QdNH+xFdMJXVgMydxR6h9GPJRlYWs7WXL4as UJCyw5t2etrQXZQ8EEMUuVKxhOWGFQSC5GfvJfRThi8Ftr1B9ctBJYr3HVfpzUxa 9cDfcsCV4/dTKLL+f/PyGYNMsrBIHZpEAn2Z4UtXGVQmBzm/wXWip29EDmcAR20Q bz2BYyhxT/qrd2nWcAbWFRSCUL6Ana1DhOTmPo9cwJ2/G7Qt6OasEgYcO1tM4ktH Csn4P4kHQLCX1rozRaYfDQUe03smQDJSQNPTelbycPXhrJ5mzmwJw/lHMA== -----END CERTIFICATE-----Generated at Mon Oct 20 08:37:29 2025 by rpki-client