$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa File: 0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa (raw, json) Hash identifier: QXz4QnS72SmiqBdi756Br+4g4hRVxbGyQPDe9y1Sxjk= Subject key identifier: 6D:62:F0:5B:BA:21:5F:4A:F1:F8:6B:93:24:C1:06:DE:15:29:86:04 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 164D1D8A7A189EAAB81F474E130A62B71CCD6970 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa Signing time: Tue 21 Oct 2025 12:20:02 +0000 ROA not before: Tue 21 Oct 2025 12:20:02 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:4d:1d:8a:7a:18:9e:aa:b8:1f:47:4e:13:0a:62:b7:1c:cd:69:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 21 12:20:02 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=5f3383d3dd4275166b66fa5390ccc2723a4ff11f6fb6a3b59b75102ed24dd7b4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f3:66:ab:a9:cb:58:00:58:38:40:9e:ea:52: ea:34:21:19:19:63:27:b0:5c:69:a9:68:84:ca:be: 54:ec:32:2f:bb:26:96:cb:ae:9c:83:b4:6b:84:33: 00:74:d4:20:dc:da:51:b3:90:ec:e2:e2:95:97:b3: 56:f7:fd:1c:c5:a3:b7:c8:ff:7a:2e:d1:a6:5f:dd: f5:e8:5d:33:5d:78:cf:34:2f:0a:1c:f3:f0:02:61: bc:de:38:86:cc:06:d6:0f:09:39:64:74:99:d2:b5: c4:47:56:8b:8e:5c:c6:ea:70:13:22:07:78:bb:4a: 2d:ff:76:3f:ed:af:48:95:81:66:74:f4:98:cd:39: a9:ca:cb:cb:a4:07:37:86:87:3e:e1:0e:fe:1b:fb: 2c:4e:94:e4:0b:a0:92:e1:fb:88:eb:03:8b:a1:e4: b9:65:63:61:6c:f3:ff:08:36:44:35:5e:20:e5:c9: bb:dd:fa:fa:1f:18:f3:71:89:b7:0f:b3:fc:ff:1a: 91:9b:b9:e8:e3:95:e9:0b:33:0f:e6:e4:2b:d9:79: 3b:e8:dc:ae:24:a3:79:98:2f:e2:06:3c:6b:d7:20: 4c:81:8d:ab:a5:2c:bc:00:8a:4b:af:b7:fc:48:da: 05:25:e0:bb:43:90:03:7e:b4:ff:47:89:e3:84:e0: f9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:62:F0:5B:BA:21:5F:4A:F1:F8:6B:93:24:C1:06:DE:15:29:86:04 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.2.0/24 Signature Algorithm: sha256WithRSAEncryption 97:54:df:4a:43:fc:9d:90:61:33:cd:e4:f2:11:f8:2b:3f:6e: 7d:b8:c8:a8:b5:40:54:3a:40:fc:cd:2f:5b:02:e8:c1:c3:3a: 1f:f1:6d:46:ef:d1:54:ca:d4:1e:a7:ad:b8:d8:b3:c8:67:82: 38:f3:17:5e:09:c5:60:8c:d5:96:c0:74:39:8f:c0:be:65:36: 34:a5:24:06:5f:3d:b2:ec:4d:9d:06:6e:83:dc:34:9f:0f:46: 43:20:b5:8b:f2:0c:21:7f:f0:06:1d:01:31:62:e9:d0:3b:17: 00:79:0b:68:99:5a:c2:37:a7:b1:09:fb:e6:f9:4a:e0:20:3f: 06:80:4d:7c:27:2c:2b:15:f7:39:f9:de:98:09:f5:f5:f3:6d: 5c:74:2f:e1:f5:3b:06:f3:0a:71:3f:13:a6:84:1c:d7:6f:cf: 4f:fd:59:bb:c2:60:34:78:ab:91:3f:2a:39:8b:a9:86:7d:b4: 7c:5c:39:81:0b:25:54:ad:a6:aa:88:0c:2c:fd:0e:d4:05:d3: 01:3d:96:11:ed:b3:62:40:6c:43:e5:32:d5:5c:fd:73:d6:b6: b2:ba:38:93:8b:52:24:99:73:51:7f:4c:59:89:12:ee:f7:20: 97:e8:ad:4f:9f:a1:9d:75:71:b7:13:cf:ac:1c:55:4e:04:ad: 1f:80:f9:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFk0dinoYnqq4H0dOEwpitxzNaXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDIxMTIyMDAyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjMzODNkM2RkNDI3NTE2NmI2NmZhNTM5MGNjYzI3MjNh NGZmMTFmNmZiNmEzYjU5Yjc1MTAyZWQyNGRkN2I0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb82arqctYAFg4QJ7qUuo0IRkZYyewXGmpaITKvlTsMi+7 JpbLrpyDtGuEMwB01CDc2lGzkOzi4pWXs1b3/RzFo7fI/3ou0aZf3fXoXTNdeM80 Lwoc8/ACYbzeOIbMBtYPCTlkdJnStcRHVouOXMbqcBMiB3i7Si3/dj/tr0iVgWZ0 9JjNOanKy8ukBzeGhz7hDv4b+yxOlOQLoJLh+4jrA4uh5LllY2Fs8/8INkQ1XiDl ybvd+vofGPNxibcPs/z/GpGbuejjlekLMw/m5CvZeTvo3K4ko3mYL+IGPGvXIEyB jaulLLwAikuvt/xI2gUl4LtDkAN+tP9HieOE4Pl1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbWLwW7ohX0rx+GuTJMEG3hUphgQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBlODE0ZjJjLTYxMDAtNDAzNy05ZGNjLWNkYWYzZTIwZDg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAIwDQYJKoZIhvcNAQELBQADggEBAJdU30pD/J2QYTPN5PIR+Cs/bn24 yKi1QFQ6QPzNL1sC6MHDOh/xbUbv0VTK1B6nrbjYs8hngjjzF14JxWCM1ZbAdDmP wL5lNjSlJAZfPbLsTZ0GboPcNJ8PRkMgtYvyDCF/8AYdATFi6dA7FwB5C2iZWsI3 p7EJ++b5SuAgPwaATXwnLCsV9zn53pgJ9fXzbVx0L+H1OwbzCnE/E6aEHNdvz0/9 WbvCYDR4q5E/KjmLqYZ9tHxcOYELJVStpqqIDCz9DtQF0wE9lhHts2JAbEPlMtVc /XPWtrK6OJOLUiSZc1F/TFmJEu73IJforU+foZ11cbcTz6wcVU4ErR+A+QE= -----END CERTIFICATE-----Generated at Wed Nov 5 18:37:37 2025 by rpki-client