$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa File: 2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa (raw, json) Hash identifier: XcBTOxm0FO4k6psXa5iURVij/pXm6afodAbUKGu4Yy8= Subject key identifier: 7A:11:A9:32:34:95:67:9F:EA:1F:FA:57:0E:AA:F8:BA:6F:12:74:24 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 395C5EE94C0D96D1D78AA3D8D63159BB85831ED2 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa Signing time: Fri 31 Oct 2025 01:40:14 +0000 ROA not before: Fri 31 Oct 2025 01:40:14 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:5c:5e:e9:4c:0d:96:d1:d7:8a:a3:d8:d6:31:59:bb:85:83:1e:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 31 01:40:14 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=9b83fd02546ba5402c5b8af649eb1da8d321f6aafacd71da649bbd126b5b93d4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:14:6c:7b:46:4c:e4:30:d7:f9:fb:7c:9b:6c: bc:22:08:bc:38:3c:90:72:a9:04:d5:dd:e0:87:36: 47:53:9b:c0:11:ac:2a:e9:c2:31:8c:06:26:82:46: 1b:21:1e:83:63:52:35:aa:b0:10:ce:e9:0c:8b:85: d2:d4:d1:67:d1:fb:3f:ac:ff:8b:80:bf:56:17:40: c1:6c:ef:d1:ae:9f:ff:54:79:2d:15:34:10:29:7c: 5c:5a:bd:54:a9:a3:1c:ac:30:97:b3:2e:46:26:ad: d3:9f:1f:00:d2:1b:bb:16:d3:03:1f:0c:9e:d9:f0: b2:8b:f9:e2:f8:43:5d:26:50:08:e1:79:03:81:63: b0:b7:75:61:24:45:5c:82:71:af:34:9a:29:34:7d: 57:d2:01:b0:5e:70:a9:ef:01:4e:1a:a2:61:be:36: 1c:75:db:cc:63:5a:44:18:13:7e:63:bb:80:1e:52: e3:d8:10:46:4a:2e:b1:09:16:76:11:0e:84:00:f4: c1:82:b6:c1:6d:6d:c1:c0:22:43:99:c7:ee:49:de: 03:85:b6:0f:ac:92:02:b5:19:b0:27:2a:c6:d5:93: 88:ae:96:c7:8d:00:c1:db:91:55:75:19:58:0c:45: 4d:d2:4e:6a:79:e9:b2:64:ce:73:58:7a:62:e4:9b: 90:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:11:A9:32:34:95:67:9F:EA:1F:FA:57:0E:AA:F8:BA:6F:12:74:24 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 20:6e:6c:d6:b5:83:ed:d7:00:c3:27:f1:19:3e:9e:3b:9f:eb: cd:f4:a9:9a:9d:b8:b8:2d:a9:96:a8:86:be:bc:22:fb:e0:64: b9:59:3c:cb:5d:26:d3:ca:ea:53:57:b1:9a:e7:48:b6:21:15: 25:b6:be:ae:d0:03:7d:0b:28:66:d2:f6:dd:58:33:76:bb:fd: 97:43:25:18:74:9e:ba:02:ca:84:e3:2b:c7:53:95:f2:94:7b: 1d:76:40:17:6c:c6:31:a7:82:77:8d:44:c4:a8:49:eb:72:c7: 6e:15:47:85:ab:57:76:c6:29:4e:e4:b6:e0:85:e6:5e:99:d6: 87:26:02:29:02:83:39:99:64:f3:79:7d:30:31:22:ac:19:ba: 03:cf:e6:82:cc:2a:d3:63:f0:9e:e9:d7:c5:fd:13:28:54:3f: 83:5c:ac:41:1a:d0:d9:83:f9:b1:a4:f8:ed:1d:23:7a:c4:bd: bd:13:7c:1d:34:3c:bf:70:f8:91:34:09:36:d7:5a:d0:25:87: 62:87:86:68:a4:55:9f:1b:ca:b2:7b:4e:3a:f2:61:a6:8a:26: 58:1c:39:6f:aa:6e:cb:b7:99:e0:d1:26:31:c1:6f:ba:f5:89: f1:70:eb:41:21:d7:63:df:36:7a:7b:67:75:11:0c:5c:09:96: 2e:00:38:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOVxe6UwNltHXiqPY1jFZu4WDHtIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDMxMDE0MDE0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YjgzZmQwMjU0NmJhNTQwMmM1YjhhZjY0OWViMWRhOGQz MjFmNmFhZmFjZDcxZGE2NDliYmQxMjZiNWI5M2Q0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvFGx7RkzkMNf5+3ybbLwiCLw4PJByqQTV3eCHNkdTm8AR rCrpwjGMBiaCRhshHoNjUjWqsBDO6QyLhdLU0WfR+z+s/4uAv1YXQMFs79Gun/9U eS0VNBApfFxavVSpoxysMJezLkYmrdOfHwDSG7sW0wMfDJ7Z8LKL+eL4Q10mUAjh eQOBY7C3dWEkRVyCca80mik0fVfSAbBecKnvAU4aomG+Nhx128xjWkQYE35ju4Ae UuPYEEZKLrEJFnYRDoQA9MGCtsFtbcHAIkOZx+5J3gOFtg+skgK1GbAnKsbVk4iu lseNAMHbkVV1GVgMRU3STmp56bJkznNYemLkm5BFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUehGpMjSVZ5/qH/pXDqr4um8SdCQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJmMjU2YzJiLThiY2YtNDdiNS1iMmY1LTZkODRmZjFkNWZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBACBubNa1g+3XAMMn8Rk+njuf6830 qZqduLgtqZaohr68IvvgZLlZPMtdJtPK6lNXsZrnSLYhFSW2vq7QA30LKGbS9t1Y M3a7/ZdDJRh0nroCyoTjK8dTlfKUex12QBdsxjGngneNRMSoSetyx24VR4WrV3bG KU7ktuCF5l6Z1ocmAikCgzmZZPN5fTAxIqwZugPP5oLMKtNj8J7p18X9EyhUP4Nc rEEa0NmD+bGk+O0dI3rEvb0TfB00PL9w+JE0CTbXWtAlh2KHhmikVZ8byrJ7Tjry YaaKJlgcOW+qbsu3meDRJjHBb7r1ifFw60Eh12PfNnp7Z3URDFwJli4AOEI= -----END CERTIFICATE-----Generated at Wed Nov 5 11:36:45 2025 by rpki-client