$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa File: fecb6982-06d4-4bb4-a59c-59982eb1b971.roa (raw, json) Hash identifier: mBYJvo3BPTjPlwKoKbslzUsCvqSegKH5a0jdG8p9xbw= Subject key identifier: 35:7B:84:A9:14:B3:6B:C4:D1:33:81:D3:A0:1A:D1:88:D8:9E:BA:DC Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7DE4DF8554DD2546AAC5DCAD7166BEF1974E9974 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa Signing time: Mon 06 Oct 2025 17:37:47 +0000 ROA not before: Mon 06 Oct 2025 17:37:47 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e4:df:85:54:dd:25:46:aa:c5:dc:ad:71:66:be:f1:97:4e:99:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 6 17:37:47 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=46227207ca8786f522eb9c4be895a8d9ef0cde6ee7944f277931c0a8fff4f5d7, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:b0:6a:ba:2f:7c:8f:c4:fd:6d:cd:45:e3: 3b:84:00:9b:89:b2:ce:ce:dc:02:17:fd:aa:bd:d2: ab:e9:d7:d4:30:fb:d1:c1:a3:a7:35:3b:27:b9:69: 45:33:35:08:9d:69:1e:e0:46:f9:be:ac:90:75:7f: 9f:f1:32:ea:22:51:bc:d3:5a:85:8a:7a:52:9b:e9: d0:bd:af:ab:6d:8c:72:0c:8d:bf:aa:f8:02:f6:e8: 79:34:2b:cf:cd:6e:a8:8d:40:4f:9f:12:25:d1:49: 79:a7:38:be:62:3d:a1:fc:6c:22:cc:fc:68:ec:b7: 93:88:50:73:aa:74:71:e1:c3:a9:66:ec:9a:71:00: 93:1e:18:ee:c1:fa:96:52:98:08:fd:55:cc:99:6b: de:09:2a:7e:16:3f:f5:3c:69:be:6d:45:36:89:5c: 8d:68:02:f3:ea:44:93:df:fc:57:ce:59:26:19:e1: 88:4d:0d:c0:01:8b:7c:29:0b:e5:40:9e:01:81:ce: 04:32:42:e2:87:d1:ac:a6:cb:d4:36:ef:d7:38:bf: 6d:cb:78:1a:18:22:31:30:25:b9:46:78:d7:dd:f9: c1:07:0a:77:ab:be:9a:8e:4a:68:d0:a8:a5:1c:70: 2a:1a:17:89:23:ac:91:e1:de:6f:bb:2d:53:e5:ac: fb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7B:84:A9:14:B3:6B:C4:D1:33:81:D3:A0:1A:D1:88:D8:9E:BA:DC X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.30.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:ad:bd:ca:17:ec:d5:ce:00:61:73:f8:ea:f2:d2:42:65:a5: be:e4:94:7c:7e:8b:6c:a0:be:79:a1:c6:e5:37:ef:c2:f1:ea: 50:49:64:cc:ac:86:2d:af:5d:15:e8:99:ee:d8:82:8f:a4:c8: 08:8a:06:fd:13:8c:3b:8d:d3:5c:ec:96:94:1c:c3:16:d8:7a: f6:27:87:9e:97:7d:85:4f:e7:47:c8:81:9c:05:ab:e2:e4:8c: eb:8c:2b:c3:6c:2b:2e:47:25:58:dd:9e:f9:4b:49:14:3f:d8: 5f:fc:e2:ee:f5:0d:ca:fd:8d:af:97:22:c1:95:96:01:62:63: 29:77:43:89:25:24:9e:0d:36:1a:26:f7:fc:93:14:fc:3f:21: 01:d2:16:bc:0b:58:16:4c:8a:95:46:61:3d:63:08:20:44:73: 92:b6:c6:b2:24:1d:53:55:79:b0:ea:ea:4d:2a:c1:b9:1b:d3: 45:d6:88:34:1f:81:36:09:e7:ac:3d:61:5a:ad:5b:f0:50:12: e0:67:a5:82:8a:32:4c:c7:59:ce:74:93:fe:67:ee:a3:a3:2e: 09:d7:83:4c:85:dc:12:bd:72:46:d2:5f:14:ef:63:40:18:f7: 37:67:28:63:2d:bf:34:e6:53:89:c6:83:bc:c1:9a:2e:b9:90: af:47:f9:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfeTfhVTdJUaqxdytcWa+8ZdOmXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDA2MTczNzQ3WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjIyNzIwN2NhODc4NmY1MjJlYjljNGJlODk1YThkOWVm MGNkZTZlZTc5NDRmMjc3OTMxYzBhOGZmZjRmNWQ3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJWbBqui98j8T9bc1F4zuEAJuJss7O3AIX/aq90qvp19Qw +9HBo6c1Oye5aUUzNQidaR7gRvm+rJB1f5/xMuoiUbzTWoWKelKb6dC9r6ttjHIM jb+q+AL26Hk0K8/NbqiNQE+fEiXRSXmnOL5iPaH8bCLM/Gjst5OIUHOqdHHhw6lm 7JpxAJMeGO7B+pZSmAj9VcyZa94JKn4WP/U8ab5tRTaJXI1oAvPqRJPf/FfOWSYZ 4YhNDcABi3wpC+VAngGBzgQyQuKH0aymy9Q279c4v23LeBoYIjEwJblGeNfd+cEH CnervpqOSmjQqKUccCoaF4kjrJHh3m+7LVPlrPvrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNXuEqRSza8TRM4HToBrRiNieutwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZlY2I2OTgyLTA2ZDQtNGJiNC1hNTljLTU5OTgyZWIxYjk3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYB4wDQYJKoZIhvcNAQELBQADggEBAH+tvcoX7NXOAGFz+Ory0kJlpb7k lHx+i2ygvnmhxuU378Lx6lBJZMyshi2vXRXome7Ygo+kyAiKBv0TjDuN01zslpQc wxbYevYnh56XfYVP50fIgZwFq+LkjOuMK8NsKy5HJVjdnvlLSRQ/2F/84u71Dcr9 ja+XIsGVlgFiYyl3Q4klJJ4NNhom9/yTFPw/IQHSFrwLWBZMipVGYT1jCCBEc5K2 xrIkHVNVebDq6k0qwbkb00XWiDQfgTYJ56w9YVqtW/BQEuBnpYKKMkzHWc50k/5n 7qOjLgnXg0yF3BK9ckbSXxTvY0AY9zdnKGMtvzTmU4nGg7zBmi65kK9H+VM= -----END CERTIFICATE-----Generated at Mon Oct 20 07:28:13 2025 by rpki-client