$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa File: c2811169-c1c6-4559-b237-580a584aa58a.roa (raw, json) Hash identifier: 3txj7JAVnwrjxMXyQX0OZenv/8s8yag6tkgpKRiZfqs= Subject key identifier: AE:D3:CF:F1:3A:EE:0E:EA:02:C1:BE:03:0C:EB:EA:02:2C:E7:3F:4A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4011926C2A7CC7F091663927537DC062A0164BEE Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa Signing time: Sun 19 Oct 2025 04:00:08 +0000 ROA not before: Sun 19 Oct 2025 04:00:08 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:11:92:6c:2a:7c:c7:f0:91:66:39:27:53:7d:c0:62:a0:16:4b:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 19 04:00:08 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=0c543eed71b3bf8e26efcabc9bff3e27fef086f47c8dff77b62c8d2ad3df2f48, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:91:48:91:84:87:a2:f7:02:36:66:39:4f:5b: 69:bb:3c:e7:aa:1b:e7:18:2d:84:f8:18:fc:91:3b: e9:c1:dc:8b:26:4a:82:19:e0:f6:71:cf:07:77:58: 8c:6d:a3:1d:30:1c:57:52:c4:32:86:a0:76:38:31: fa:ad:b6:cd:de:74:98:f8:28:ab:0e:d8:0d:56:77: a2:57:8b:92:7b:32:0d:0d:07:bd:cb:3b:eb:6d:4f: 69:b1:90:a3:c2:58:3a:bd:1b:4a:78:46:9b:1b:b3: 5d:9b:d0:de:7d:ed:9d:49:42:b6:c1:cb:41:bd:84: 29:82:92:ee:23:f8:81:f1:c5:af:85:28:31:e8:57: 51:20:a1:8e:8b:5e:75:9d:54:c1:c2:8c:51:90:e3: b1:7b:02:c6:43:dc:62:4f:a6:5e:7a:a9:1d:6f:f6: 8b:94:41:53:cd:88:4a:13:7c:7e:77:7f:99:21:23: cd:ed:ac:08:3b:f6:05:50:85:e3:03:66:68:4b:4f: 5f:e4:b6:d0:d4:96:de:cc:03:e3:06:33:28:46:ff: d6:f2:9d:0f:99:7c:81:e1:8f:7f:47:79:cc:19:26: e3:f7:ee:c7:1b:58:b0:e9:de:f0:df:70:1c:13:94: df:bd:18:d5:fe:ca:3d:e7:7f:4e:e2:e9:25:e2:68: eb:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D3:CF:F1:3A:EE:0E:EA:02:C1:BE:03:0C:EB:EA:02:2C:E7:3F:4A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.34.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:52:41:d8:38:3a:bd:83:35:98:f6:91:e0:e2:2a:b6:e6:f7: 2c:5e:d9:79:17:29:f8:cc:a5:ad:12:d0:5b:3d:27:43:77:bf: e9:a8:2f:7c:f8:33:bf:10:0f:fa:b7:79:99:61:07:10:d3:5d: 90:d1:5c:88:25:f9:10:4a:1d:35:c6:1e:64:1f:3d:81:da:8a: db:54:f5:5c:1e:24:f0:bc:3c:09:58:d4:48:75:2f:f4:35:f0: 1b:0a:85:4a:bb:c8:fb:91:47:82:0e:b7:25:6b:73:25:23:b5: 64:d8:28:39:d3:70:b7:83:ae:53:83:d4:2a:5f:40:09:73:88: 12:63:6b:d2:88:35:1c:1e:7c:d8:c8:4b:f6:f0:b6:2c:04:6b: 16:42:9f:ec:96:80:69:f5:b9:3a:01:06:30:a5:c7:fb:5e:34: 8f:14:6c:3f:55:5c:58:b8:68:42:19:69:19:5c:c3:28:2a:77: 77:3d:d6:ef:4b:e0:ea:21:e1:e3:24:8f:8b:86:ab:1c:37:44: 3e:df:c3:41:e1:b8:0f:af:a0:bb:dd:47:39:93:7a:54:88:7b: 7e:85:a5:e2:05:4b:5e:02:e4:b8:73:d6:cc:55:e7:e8:19:fc: b9:0e:8c:5f:22:8c:5b:7b:72:e1:72:7c:e4:23:29:6d:c0:5c: d8:5b:d9:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQBGSbCp8x/CRZjknU33AYqAWS+4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDE5MDQwMDA4WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzU0M2VlZDcxYjNiZjhlMjZlZmNhYmM5YmZmM2UyN2Zl ZjA4NmY0N2M4ZGZmNzdiNjJjOGQyYWQzZGYyZjQ4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCykUiRhIei9wI2ZjlPW2m7POeqG+cYLYT4GPyRO+nB3Ism SoIZ4PZxzwd3WIxtox0wHFdSxDKGoHY4Mfqtts3edJj4KKsO2A1Wd6JXi5J7Mg0N B73LO+ttT2mxkKPCWDq9G0p4Rpsbs12b0N597Z1JQrbBy0G9hCmCku4j+IHxxa+F KDHoV1EgoY6LXnWdVMHCjFGQ47F7AsZD3GJPpl56qR1v9ouUQVPNiEoTfH53f5kh I83trAg79gVQheMDZmhLT1/kttDUlt7MA+MGMyhG/9bynQ+ZfIHhj39HecwZJuP3 7scbWLDp3vDfcBwTlN+9GNX+yj3nf07i6SXiaOvXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrtPP8TruDuoCwb4DDOvqAiznP0owHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyODExMTY5LWMxYzYtNDU1OS1iMjM3LTU4MGE1ODRhYTU4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCIwDQYJKoZIhvcNAQELBQADggEBAIpSQdg4Or2DNZj2keDiKrbm9yxe 2XkXKfjMpa0S0Fs9J0N3v+moL3z4M78QD/q3eZlhBxDTXZDRXIgl+RBKHTXGHmQf PYHaittU9VweJPC8PAlY1Eh1L/Q18BsKhUq7yPuRR4IOtyVrcyUjtWTYKDnTcLeD rlOD1CpfQAlziBJja9KINRwefNjIS/bwtiwEaxZCn+yWgGn1uToBBjClx/teNI8U bD9VXFi4aEIZaRlcwygqd3c91u9L4Ooh4eMkj4uGqxw3RD7fw0HhuA+voLvdRzmT elSIe36FpeIFS14C5Lhz1sxV5+gZ/LkOjF8ijFt7cuFyfOQjKW3AXNhb2Q0= -----END CERTIFICATE-----Generated at Wed Nov 5 21:41:43 2025 by rpki-client