$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa File: 06068fda-8886-4835-9c88-81ea15fda48e.roa (raw, json) Hash identifier: cmSQYAy4gn3nvhEmOblAbUTBzSpqFeHoNo6U+N5whrw= Subject key identifier: E9:AA:52:F4:C7:C9:02:26:5B:CC:C0:F3:C3:C1:88:62:D9:0F:9F:FD Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1EC2234049E343F61735C8249617E8449D0A9518 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa Signing time: Tue 21 Oct 2025 12:20:06 +0000 ROA not before: Tue 21 Oct 2025 12:20:06 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c2:23:40:49:e3:43:f6:17:35:c8:24:96:17:e8:44:9d:0a:95:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 21 12:20:06 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=92ba860aab1cc2941422555368cd91d47a4ddf474a6b07e9555245338c56ba4f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9b:b1:84:60:de:ed:4d:50:9b:a1:8a:05:27: fd:06:b6:01:51:28:15:b2:a8:06:9f:b4:e3:d5:e6: 70:77:7a:a4:1d:8e:b6:c9:5a:9d:bb:4b:d4:f5:e7: 24:c0:10:8e:25:75:a7:99:e1:94:a8:84:13:18:b2: 4a:f1:f7:cf:1d:0d:c7:9c:92:b1:94:75:f6:6a:40: fa:e2:79:fa:c2:16:a6:5f:09:ee:85:01:d6:4e:40: 59:4a:23:29:9f:a0:d3:89:c1:22:77:f6:b9:1e:ac: e6:7a:ca:54:a9:39:5c:13:84:01:43:6a:b1:0e:6b: 6a:64:c2:89:2e:ff:a6:5d:6f:d2:67:ed:28:13:41: 95:12:b5:08:5d:68:3f:3e:ac:e3:da:66:66:69:4f: 1f:70:61:d7:f9:65:22:96:ed:85:a9:25:41:f7:1b: f8:96:ad:ef:31:be:22:d1:d0:77:51:0e:c8:8a:9e: 08:9f:71:b2:c6:07:52:51:b7:55:5c:f3:dd:1a:ea: 16:b0:11:43:ca:a4:5e:25:25:b7:bd:da:09:f5:46: 8e:03:7e:e3:69:e9:30:49:63:7d:4a:1d:91:57:ed: 95:cd:ea:17:10:89:65:22:5c:e2:60:1a:94:e6:81: c9:1f:4c:c4:89:de:bd:73:35:b4:3e:ab:b4:54:f9: f6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:AA:52:F4:C7:C9:02:26:5B:CC:C0:F3:C3:C1:88:62:D9:0F:9F:FD X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.47.0/24 Signature Algorithm: sha256WithRSAEncryption 21:ad:6b:dd:a1:e2:11:39:85:0f:6e:d6:4f:f7:9c:00:ee:39: bf:5d:90:f1:38:91:32:90:0a:b9:bb:a3:8d:bc:54:22:c9:e9: de:3e:36:bf:70:2a:92:33:c1:06:0a:12:a6:71:e4:7d:1e:26: 0a:79:0f:d6:ce:21:da:d0:52:3e:1b:11:8b:66:bb:f9:55:f1: f8:af:98:41:3c:26:d6:d0:de:77:3f:dd:94:68:a7:b8:cc:c8: a8:ee:87:b7:68:5e:05:41:63:af:c3:91:d1:a5:1d:8c:fd:bc: e9:57:05:43:f8:b2:ce:56:75:69:ee:89:0f:65:55:af:10:a5: 48:72:00:11:2f:6a:36:e5:0d:4c:04:be:d4:dc:0d:a5:98:69: 5a:0a:2b:a8:c2:b9:22:1d:c0:c8:34:62:a7:a9:d5:83:8f:a9: c0:85:19:e5:5e:86:12:99:bd:ce:1d:ef:a0:1a:1d:6e:23:69: 1f:2e:cf:15:6c:c7:8a:40:aa:f2:2f:b2:98:28:e0:99:57:a0: 2c:6c:07:a3:c3:cb:3f:67:eb:2d:5b:55:03:68:74:16:87:1a: d2:6d:80:6e:de:d2:d4:04:2c:a3:7a:ea:93:00:15:92:0c:46: 43:de:99:a4:f3:2c:b1:2c:d2:83:3f:55:33:65:6d:7a:be:49: 81:c3:39:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHsIjQEnjQ/YXNcgklhfoRJ0KlRgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDIxMTIyMDA2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MmJhODYwYWFiMWNjMjk0MTQyMjU1NTM2OGNkOTFkNDdh NGRkZjQ3NGE2YjA3ZTk1NTUyNDUzMzhjNTZiYTRmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRm7GEYN7tTVCboYoFJ/0GtgFRKBWyqAaftOPV5nB3eqQd jrbJWp27S9T15yTAEI4ldaeZ4ZSohBMYskrx988dDceckrGUdfZqQPriefrCFqZf Ce6FAdZOQFlKIymfoNOJwSJ39rkerOZ6ylSpOVwThAFDarEOa2pkwoku/6Zdb9Jn 7SgTQZUStQhdaD8+rOPaZmZpTx9wYdf5ZSKW7YWpJUH3G/iWre8xviLR0HdRDsiK ngifcbLGB1JRt1Vc890a6hawEUPKpF4lJbe92gn1Ro4DfuNp6TBJY31KHZFX7ZXN 6hcQiWUiXOJgGpTmgckfTMSJ3r1zNbQ+q7RU+fZNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6apS9MfJAiZbzMDzw8GIYtkPn/0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA2MDY4ZmRhLTg4ODYtNDgzNS05Yzg4LTgxZWExNWZkYTQ4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYC8wDQYJKoZIhvcNAQELBQADggEBACGta92h4hE5hQ9u1k/3nADuOb9d kPE4kTKQCrm7o428VCLJ6d4+Nr9wKpIzwQYKEqZx5H0eJgp5D9bOIdrQUj4bEYtm u/lV8fivmEE8JtbQ3nc/3ZRop7jMyKjuh7doXgVBY6/DkdGlHYz9vOlXBUP4ss5W dWnuiQ9lVa8QpUhyABEvajblDUwEvtTcDaWYaVoKK6jCuSIdwMg0Yqep1YOPqcCF GeVehhKZvc4d76AaHW4jaR8uzxVsx4pAqvIvspgo4JlXoCxsB6PDyz9n6y1bVQNo dBaHGtJtgG7e0tQELKN66pMAFZIMRkPemaTzLLEs0oM/VTNlbXq+SYHDOZI= -----END CERTIFICATE-----Generated at Wed Nov 5 18:30:43 2025 by rpki-client