$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa File: cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa (raw, json) Hash identifier: Vm2eUYcbgMghPAo+wi1wS9YHYFW2yv9fslllJIcM5/c= Subject key identifier: 51:75:0E:1D:B8:76:6D:55:92:2C:C9:37:6B:73:CC:B1:CB:FB:44:94 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3B88DEA7D648D71214E67EF296116A58A9583A95 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa Signing time: Tue 21 Oct 2025 12:20:08 +0000 ROA not before: Tue 21 Oct 2025 12:20:08 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:88:de:a7:d6:48:d7:12:14:e6:7e:f2:96:11:6a:58:a9:58:3a:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 21 12:20:08 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=0200d21378cb52a23be04882185708dcf5f2d1261b050ba608bb758d578e1da1, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:08:3f:7c:1c:71:32:88:2f:03:16:cb:a9:1a: 52:58:1e:35:19:09:d8:11:be:d8:e8:e4:49:22:17: 89:41:6d:e1:06:c3:55:7f:a5:04:e0:42:1b:da:a5: b9:85:09:f4:87:1f:51:ba:79:12:37:a5:12:05:28: 9a:68:70:f5:0f:95:1d:60:81:bb:8b:54:d5:db:4a: f0:7c:50:46:42:01:bf:48:f4:12:ea:2e:fb:dc:3e: b0:39:11:9b:11:ba:94:e0:bd:6b:f6:2e:fe:a1:e0: 02:be:0e:c2:e1:dd:48:80:e3:a6:fc:3d:15:e6:ac: f5:a0:57:c8:4a:8c:e2:eb:40:a6:7b:e4:82:54:3a: 83:ac:28:13:40:04:b5:35:18:18:43:f6:ce:88:b7: eb:63:de:d9:16:33:d0:12:3c:cc:60:a7:01:64:f7: 06:2d:35:9f:2e:60:c1:d1:20:fc:8d:20:95:bc:3c: b6:5c:93:03:40:e0:14:7d:3f:f5:e9:46:f4:19:78: 70:f3:87:0f:ed:f4:8d:c2:a3:03:75:a2:9a:bd:a0: 5d:f4:1c:3e:6f:ee:2c:a2:20:fb:e9:b2:d2:5c:18: 5d:76:b2:63:5d:86:e3:fe:78:74:4d:49:d0:e5:15: fd:03:d9:4f:65:d1:93:9a:73:92:e7:1d:64:08:f9: cd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:75:0E:1D:B8:76:6D:55:92:2C:C9:37:6B:73:CC:B1:CB:FB:44:94 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.9.0/24 Signature Algorithm: sha256WithRSAEncryption 37:51:18:f5:80:33:7d:c1:8f:32:47:e5:90:2b:2f:c1:38:46: ef:40:8d:e2:3e:f3:e3:fb:86:c2:11:24:5a:bb:cc:bd:bd:b8: 4e:5b:45:9d:3b:37:b5:b7:2f:7a:5c:6a:4b:e8:68:7b:b7:5e: 20:7f:8c:53:e5:a7:80:83:12:3b:d0:e2:ff:20:74:cc:02:72: c3:d6:93:c7:69:cc:b0:1d:15:e0:c4:e3:ee:f5:e8:67:9f:ab: 13:0a:58:f1:91:7a:71:96:f5:51:33:31:d5:2d:0d:16:94:4c: 60:bd:24:f5:f6:c3:63:b3:ba:f9:69:74:5b:60:80:b3:8c:7a: 4a:ce:97:47:4e:9f:8f:79:9e:04:e9:9e:a7:09:6f:75:25:ab: 56:90:44:74:e6:17:96:2a:dc:af:54:99:4e:4a:11:bb:ca:4d: 97:07:c4:cd:a6:a0:2e:51:fa:cc:b9:90:17:d9:80:ac:6f:9d: 20:6b:dc:3c:ea:a4:6d:c9:6b:e4:af:0b:1c:b1:27:8f:2a:b6: 75:91:f4:8e:79:82:08:68:71:ab:84:2b:a8:bb:85:c3:08:e2: 94:eb:86:22:e2:b4:43:8a:f6:ae:68:07:ac:44:8d:22:2d:14: c4:83:ef:a7:b4:49:db:26:86:e2:be:99:da:4a:1e:b7:59:aa: 6a:46:b6:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO4jep9ZI1xIU5n7ylhFqWKlYOpUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDIxMTIyMDA4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjAwZDIxMzc4Y2I1MmEyM2JlMDQ4ODIxODU3MDhkY2Y1 ZjJkMTI2MWIwNTBiYTYwOGJiNzU4ZDU3OGUxZGExMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqCD98HHEyiC8DFsupGlJYHjUZCdgRvtjo5EkiF4lBbeEG w1V/pQTgQhvapbmFCfSHH1G6eRI3pRIFKJpocPUPlR1ggbuLVNXbSvB8UEZCAb9I 9BLqLvvcPrA5EZsRupTgvWv2Lv6h4AK+DsLh3UiA46b8PRXmrPWgV8hKjOLrQKZ7 5IJUOoOsKBNABLU1GBhD9s6It+tj3tkWM9ASPMxgpwFk9wYtNZ8uYMHRIPyNIJW8 PLZckwNA4BR9P/XpRvQZeHDzhw/t9I3CowN1opq9oF30HD5v7iyiIPvpstJcGF12 smNdhuP+eHRNSdDlFf0D2U9l0ZOac5LnHWQI+c2vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUXUOHbh2bVWSLMk3a3PMscv7RJQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NmN2M4ZjRhLTA4MjctNDQ0Yi1iNmU0LTlhNDVjYTY5ZjYwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAkwDQYJKoZIhvcNAQELBQADggEBADdRGPWAM33BjzJH5ZArL8E4Ru9A jeI+8+P7hsIRJFq7zL29uE5bRZ07N7W3L3pcakvoaHu3XiB/jFPlp4CDEjvQ4v8g dMwCcsPWk8dpzLAdFeDE4+716GefqxMKWPGRenGW9VEzMdUtDRaUTGC9JPX2w2Oz uvlpdFtggLOMekrOl0dOn495ngTpnqcJb3Ulq1aQRHTmF5Yq3K9UmU5KEbvKTZcH xM2moC5R+sy5kBfZgKxvnSBr3DzqpG3Ja+SvCxyxJ48qtnWR9I55gghocauEK6i7 hcMI4pTrhiLitEOK9q5oB6xEjSItFMSD76e0SdsmhuK+mdpKHrdZqmpGtuI= -----END CERTIFICATE-----Generated at Wed Nov 5 23:06:56 2025 by rpki-client