$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa File: 0169813a-bb63-4d7c-af7c-621b7522e549.roa (raw, json) Hash identifier: iBSc9SIBIoA5eE4GGqVesvE/ieJeFZWD4SVUUbKN1+o= Subject key identifier: 06:6D:19:88:45:CC:0A:1D:59:50:5B:E1:6F:59:8B:F2:69:22:74:26 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3829C0D5FC7505C3E37226BE6B0E05F201466484 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa Signing time: Fri 31 Oct 2025 01:40:07 +0000 ROA not before: Fri 31 Oct 2025 01:40:07 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:29:c0:d5:fc:75:05:c3:e3:72:26:be:6b:0e:05:f2:01:46:64:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 31 01:40:07 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=74eeb0d28a21576f1300fdd94b4bc1627c81b1741fd854efdd4bf8a796f7ecff, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:21:3e:28:76:03:e9:55:ba:4e:dd:d8:fc:dc: 23:1f:75:61:4b:1b:36:4d:a6:4e:23:1e:0b:7c:56: 2a:18:f3:bf:95:5e:a8:0c:c1:93:44:d1:7e:11:6c: 22:bf:c4:61:94:5a:3a:be:8b:ab:12:08:b2:b2:c6: 15:09:da:6f:17:91:90:53:b6:13:95:00:2c:79:fb: 3f:23:64:9a:91:69:ca:c9:a9:9f:07:e0:8a:67:85: 86:0b:bc:ca:b7:2a:c1:d9:80:ee:ca:73:00:36:4e: 49:d5:7f:8b:9f:0b:39:ed:a9:63:4d:36:11:10:2d: e3:81:78:97:34:b4:b1:8c:9d:f4:78:97:5e:32:94: d6:a3:99:8d:67:ad:22:07:a7:1c:20:67:c1:e5:27: 7f:e1:cf:92:28:43:97:f2:15:95:34:70:29:05:b2: 73:0e:aa:97:5e:df:2a:85:2f:b4:9f:c6:47:e7:29: 38:5b:ac:96:41:3e:e0:c2:04:02:a5:34:40:63:71: 2c:02:e6:d9:18:ac:d4:49:b7:fb:43:1a:ae:77:b3: 44:e2:5f:b2:c2:cb:36:6b:0e:a5:57:e1:e2:8a:21: 81:91:64:f5:f1:8f:13:92:dd:8d:81:cb:e3:e9:e8: 97:7a:d9:c7:86:c0:db:ca:5d:20:35:ee:fc:ef:bf: ba:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6D:19:88:45:CC:0A:1D:59:50:5B:E1:6F:59:8B:F2:69:22:74:26 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 87:30:73:a4:65:c8:79:3f:66:0e:28:37:33:f5:b5:47:d6:c2: d9:6f:20:3f:14:03:a4:f2:e3:f6:77:9e:25:89:62:fd:1d:40: 0d:24:47:ce:f4:63:d6:d8:39:f5:65:05:14:90:73:3f:9d:16: 97:c9:81:7f:1f:61:fb:0d:0c:f6:f0:e6:71:2e:f7:f7:fe:04: 08:78:86:dc:6d:29:16:6d:b0:48:e9:1b:7f:34:b3:e5:63:85: 54:e3:7c:d4:e1:f0:79:a4:2f:39:a4:57:17:ac:19:b1:b2:de: 36:ad:a8:9c:7a:1d:c8:2f:ae:aa:0b:d1:09:9d:b6:e3:4c:c5: 89:15:10:bc:31:de:62:0b:9a:e3:89:c2:e5:2d:cf:f3:a2:16: 34:67:7c:10:0f:e6:48:d7:16:c7:09:19:23:bc:2a:b5:72:d4: fa:b7:17:ea:68:fd:f9:5f:25:c7:bc:60:ab:84:58:7d:69:b6: e1:d6:db:4c:a7:6e:5b:0b:e5:9e:9e:7f:fc:5a:ae:a1:42:24: 4d:33:b1:b1:93:d4:8a:14:cd:ee:42:99:8b:e0:dd:0a:9e:23: f8:fa:81:47:71:9d:56:43:e2:c0:1d:4e:88:ba:81:4c:ae:3b: 83:41:65:4f:18:fd:0d:16:a4:1f:2e:e5:33:9b:e1:6b:66:ba: 7c:67:69:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOCnA1fx1BcPjcia+aw4F8gFGZIQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDMxMDE0MDA3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGVlYjBkMjhhMjE1NzZmMTMwMGZkZDk0YjRiYzE2Mjdj ODFiMTc0MWZkODU0ZWZkZDRiZjhhNzk2ZjdlY2ZmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUIT4odgPpVbpO3dj83CMfdWFLGzZNpk4jHgt8VioY87+V XqgMwZNE0X4RbCK/xGGUWjq+i6sSCLKyxhUJ2m8XkZBTthOVACx5+z8jZJqRacrJ qZ8H4IpnhYYLvMq3KsHZgO7KcwA2TknVf4ufCzntqWNNNhEQLeOBeJc0tLGMnfR4 l14ylNajmY1nrSIHpxwgZ8HlJ3/hz5IoQ5fyFZU0cCkFsnMOqpde3yqFL7Sfxkfn KThbrJZBPuDCBAKlNEBjcSwC5tkYrNRJt/tDGq53s0TiX7LCyzZrDqVX4eKKIYGR ZPXxjxOS3Y2By+Pp6Jd62ceGwNvKXSA17vzvv7qlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBm0ZiEXMCh1ZUFvhb1mL8mkidCYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzAxNjk4MTNhLWJiNjMtNGQ3Yy1hZjdjLTYyMWI3NTIyZTU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBAIcwc6RlyHk/Zg4oNzP1tUfWwtlv ID8UA6Ty4/Z3niWJYv0dQA0kR870Y9bYOfVlBRSQcz+dFpfJgX8fYfsNDPbw5nEu 9/f+BAh4htxtKRZtsEjpG380s+VjhVTjfNTh8HmkLzmkVxesGbGy3jatqJx6Hcgv rqoL0QmdtuNMxYkVELwx3mILmuOJwuUtz/OiFjRnfBAP5kjXFscJGSO8KrVy1Pq3 F+po/flfJce8YKuEWH1ptuHW20ynblsL5Z6ef/xarqFCJE0zsbGT1IoUze5CmYvg 3QqeI/j6gUdxnVZD4sAdToi6gUyuO4NBZU8Y/Q0WpB8u5TOb4Wtmunxnaf0= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:40 2025 by rpki-client