$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa File: 27feea1a-4933-4577-b9c4-9488e2a550f0.roa (raw, json) Hash identifier: S2Wj0r/hIw/ZRzAL16bNLGINoEuOLHyA8MKEsFie6L4= Subject key identifier: 5C:D3:0A:FE:3E:1E:7F:07:1B:25:9D:40:1C:74:50:BF:29:B9:FA:95 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 406854ED8E66FD4D4B2307A0E9D3BBE3B287C924 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa Signing time: Tue 04 Nov 2025 00:30:11 +0000 ROA not before: Tue 04 Nov 2025 00:30:11 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:68:54:ed:8e:66:fd:4d:4b:23:07:a0:e9:d3:bb:e3:b2:87:c9:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 4 00:30:11 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=4c7c51abe0ab7fbd3e02724daab1eb0a314ad8da07a42c9a36eb9ebf31d32097, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ff:2d:c0:16:52:8f:7e:e7:bb:02:ee:2e:ad: 28:a7:af:3b:ea:21:ea:48:37:36:84:8d:52:2a:1e: c6:5a:2b:18:41:aa:2d:f8:3f:ab:6e:0d:e5:5b:02: 48:62:22:19:ef:92:91:fe:57:0e:20:ed:35:ca:93: d6:b0:c3:b9:74:99:6f:fa:03:fb:27:e4:86:6a:9c: 11:d0:1e:26:e7:e9:29:0f:19:c9:dc:17:81:a4:f7: c6:49:58:47:9c:43:4f:8f:cd:d0:80:76:5f:84:ab: 3b:37:c2:27:06:80:0a:94:51:d9:ce:3c:ca:90:a4: f7:ee:be:58:7e:57:07:f6:53:24:11:0d:51:54:5f: 22:fe:2d:e6:0a:83:84:3b:e3:c7:b2:2f:f9:1e:d7: db:0a:24:12:23:98:0b:1b:81:a1:69:07:57:02:59: 21:f0:5d:0b:6e:bd:8c:f6:10:3d:be:7f:c4:b0:69: e6:ac:2b:a0:6e:ee:c8:41:6d:ce:c9:1f:47:be:06: 7a:f6:87:93:86:d8:d7:dd:11:a8:ba:42:b5:64:8d: c5:e5:05:ee:da:00:5a:ae:60:ca:c8:4e:f2:b2:ae: f8:a5:0b:ac:cf:82:50:2d:6f:08:4b:b4:33:51:d9: 23:0d:76:6f:45:1d:7a:73:f0:87:44:cd:03:d9:cb: c0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D3:0A:FE:3E:1E:7F:07:1B:25:9D:40:1C:74:50:BF:29:B9:FA:95 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 21:64:b7:cc:24:c4:e8:6c:4e:73:ec:c0:cf:8f:03:c5:13:f5: 8b:a7:cf:0d:87:17:49:3b:e9:c0:03:6d:28:4e:15:b7:df:34: 85:92:ef:98:e3:1b:91:e5:0f:60:ed:30:65:5e:aa:38:e6:28: 91:de:bb:28:4d:c2:70:a5:4b:29:ab:76:6a:e9:71:1f:72:53: 26:37:10:d3:96:7e:f9:d1:59:9b:78:20:3f:24:62:d4:49:7f: 7c:b8:f4:48:f2:2b:a4:8a:a4:97:c4:d5:9f:55:8d:67:86:1e: a8:8e:2c:25:7c:d6:be:a5:6d:51:22:1e:9c:e9:48:0d:cb:e5: 54:6e:4d:5f:65:9d:55:d8:b8:6b:28:3f:69:76:30:4d:49:c3: dd:02:d8:75:69:43:b9:de:b1:51:00:87:43:e0:ba:41:1d:15: 15:86:ad:a2:49:a8:3c:76:62:db:05:eb:39:6a:66:3a:97:69: d6:11:df:b3:ba:37:f2:52:99:6f:ef:a9:1e:ac:a6:ee:80:27: 89:50:f8:00:dc:ec:dd:40:29:5b:60:8e:9d:2f:7c:df:b1:99: 15:77:0e:db:1c:98:38:f0:04:04:64:74:6a:15:ee:d4:62:c1: e3:0e:a9:10:84:28:c3:2e:ed:f6:81:6c:80:16:fb:7d:0f:3e: 7e:ae:38:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQGhU7Y5m/U1LIweg6dO747KHySQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTA0MDAzMDExWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzdjNTFhYmUwYWI3ZmJkM2UwMjcyNGRhYWIxZWIwYTMx NGFkOGRhMDdhNDJjOWEzNmViOWViZjMxZDMyMDk3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr/y3AFlKPfue7Au4urSinrzvqIepINzaEjVIqHsZaKxhB qi34P6tuDeVbAkhiIhnvkpH+Vw4g7TXKk9aww7l0mW/6A/sn5IZqnBHQHibn6SkP GcncF4Gk98ZJWEecQ0+PzdCAdl+Eqzs3wicGgAqUUdnOPMqQpPfuvlh+Vwf2UyQR DVFUXyL+LeYKg4Q748eyL/ke19sKJBIjmAsbgaFpB1cCWSHwXQtuvYz2ED2+f8Sw aeasK6Bu7shBbc7JH0e+Bnr2h5OG2NfdEai6QrVkjcXlBe7aAFquYMrITvKyrvil C6zPglAtbwhLtDNR2SMNdm9FHXpz8IdEzQPZy8CLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXNMK/j4efwcbJZ1AHHRQvym5+pUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI3ZmVlYTFhLTQ5MzMtNDU3Ny1iOWM0LTk0ODhlMmE1NTBmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBACFkt8wkxOhsTnPswM+PA8UT9Yun zw2HF0k76cADbShOFbffNIWS75jjG5HlD2DtMGVeqjjmKJHeuyhNwnClSymrdmrp cR9yUyY3ENOWfvnRWZt4ID8kYtRJf3y49EjyK6SKpJfE1Z9VjWeGHqiOLCV81r6l bVEiHpzpSA3L5VRuTV9lnVXYuGsoP2l2ME1Jw90C2HVpQ7nesVEAh0PgukEdFRWG raJJqDx2YtsF6zlqZjqXadYR37O6N/JSmW/vqR6spu6AJ4lQ+ADc7N1AKVtgjp0v fN+xmRV3DtscmDjwBARkdGoV7tRiweMOqRCEKMMu7faBbIAW+30PPn6uOAk= -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:38 2025 by rpki-client