$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa File: 5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa (raw, json) Hash identifier: XsGr4iQtgQKFrGJmcnV3DJ1qK/RyDYEIHeCu8PBdpkU= Subject key identifier: BF:3F:5B:E2:87:12:F6:D7:8C:FF:A4:F7:49:47:5C:CD:CD:F4:ED:CE Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 37E91435576376996796CF878EFD22724DEE2B74 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa Signing time: Fri 31 Oct 2025 01:40:13 +0000 ROA not before: Fri 31 Oct 2025 01:40:13 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e9:14:35:57:63:76:99:67:96:cf:87:8e:fd:22:72:4d:ee:2b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 31 01:40:13 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=96a6a378cbe3fc696ca89b62247a02e9fdbd73708450b61b4ec23b0ad6520d09, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:14:6a:2e:f2:05:c9:48:c8:e0:24:ed:58:85: 72:e5:6e:5c:cd:39:5c:8c:a2:19:01:fd:73:6f:43: 0d:c9:ab:a2:00:77:4e:50:1b:86:1b:ee:ee:75:75: ba:85:30:0c:e8:2a:32:f1:b0:4e:a1:62:80:22:ef: 25:f4:8d:db:cd:18:ac:b8:c2:5c:56:03:d9:3c:91: 45:38:39:76:cf:ab:87:2b:af:5a:37:1d:43:e8:fd: 9e:41:89:f2:94:96:b7:ef:52:08:96:84:98:43:65: 73:6c:2c:4f:23:fd:d3:71:d2:1e:a2:0f:9f:76:df: 2e:0a:2c:a7:d5:21:ad:12:99:12:8c:6f:89:45:0f: ea:e0:67:1a:95:cd:03:85:59:6c:10:ea:c3:a1:0f: a8:91:02:1b:ed:ce:68:10:3e:ea:cc:01:93:1f:82: 2b:7d:47:a0:28:9e:7e:d7:40:10:89:27:63:03:b1: b5:c2:70:cd:45:3c:72:38:35:d3:12:bd:6d:7e:12: 0d:be:5a:f5:32:08:ca:6b:32:f9:59:3c:be:60:22: ad:a6:36:8b:bd:03:ad:41:a4:b1:f4:12:45:6a:47: 95:7e:8e:dc:07:ae:eb:c9:d3:3d:28:b2:ba:21:05: b5:e4:98:37:f3:8d:71:07:37:53:87:3a:dd:d1:4b: 33:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:3F:5B:E2:87:12:F6:D7:8C:FF:A4:F7:49:47:5C:CD:CD:F4:ED:CE X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.253.0/24 Signature Algorithm: sha256WithRSAEncryption 04:65:84:00:7d:87:c7:d1:e3:a7:34:84:f8:f4:f5:2f:bb:eb: f1:51:e3:7a:8c:0c:36:fe:e8:43:2e:04:29:e3:99:fa:f8:bf: 92:cf:78:74:ee:7b:87:ad:75:07:ab:7c:f8:ba:fd:17:0d:1d: 80:cb:2d:c1:fe:ae:1f:d1:6f:79:ef:5c:12:7a:70:45:cc:3c: ab:5c:62:3d:62:54:ac:59:1c:e9:3e:fb:7a:6e:3a:68:92:22: 9b:a4:34:03:8d:01:53:c2:3c:d2:80:9c:ec:7f:66:a5:e3:0f: 09:50:f8:7b:59:76:89:c9:a1:41:13:b9:e9:81:f8:25:0f:f4: 1d:8e:17:3d:9f:12:b7:0c:1f:b9:c5:14:56:38:5b:5b:f1:9e: 5e:f5:f4:05:8d:e8:3b:3b:c2:73:4b:fb:a6:8b:d3:d1:a3:1b: 47:fe:32:35:68:e1:82:ae:8d:56:17:fa:c6:e6:02:8c:ff:cb: cc:b6:d0:5f:e6:c6:16:b0:cd:a7:ad:3b:2b:5d:e3:8f:ed:6a: 35:b6:07:00:a6:53:db:4e:f4:14:cf:cc:67:71:b5:07:d3:ef: 67:78:e0:b2:fb:72:3e:08:82:64:8d:8b:48:ec:9f:ce:2e:bb: dd:a3:15:2c:f8:54:d6:1e:28:33:a5:2c:a0:48:03:17:20:9f: 19:af:03:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN+kUNVdjdplnls+Hjv0ick3uK3QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDMxMDE0MDEzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NmE2YTM3OGNiZTNmYzY5NmNhODliNjIyNDdhMDJlOWZk YmQ3MzcwODQ1MGI2MWI0ZWMyM2IwYWQ2NTIwZDA5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzFGou8gXJSMjgJO1YhXLlblzNOVyMohkB/XNvQw3Jq6IA d05QG4Yb7u51dbqFMAzoKjLxsE6hYoAi7yX0jdvNGKy4wlxWA9k8kUU4OXbPq4cr r1o3HUPo/Z5BifKUlrfvUgiWhJhDZXNsLE8j/dNx0h6iD5923y4KLKfVIa0SmRKM b4lFD+rgZxqVzQOFWWwQ6sOhD6iRAhvtzmgQPurMAZMfgit9R6Aonn7XQBCJJ2MD sbXCcM1FPHI4NdMSvW1+Eg2+WvUyCMprMvlZPL5gIq2mNou9A61BpLH0EkVqR5V+ jtwHruvJ0z0osrohBbXkmDfzjXEHN1OHOt3RSzN3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvz9b4ocS9teM/6T3SUdczc307c4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkM2E3MWNkLTllMGYtNDdkMS1iZmVmLWJiMjk5MGZhOTk2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP0wDQYJKoZIhvcNAQELBQADggEBAARlhAB9h8fR46c0hPj09S+76/FR 43qMDDb+6EMuBCnjmfr4v5LPeHTue4etdQerfPi6/RcNHYDLLcH+rh/Rb3nvXBJ6 cEXMPKtcYj1iVKxZHOk++3puOmiSIpukNAONAVPCPNKAnOx/ZqXjDwlQ+HtZdonJ oUETuemB+CUP9B2OFz2fErcMH7nFFFY4W1vxnl719AWN6Ds7wnNL+6aL09GjG0f+ MjVo4YKujVYX+sbmAoz/y8y20F/mxhawzaetOytd44/tajW2BwCmU9tO9BTPzGdx tQfT72d44LL7cj4IgmSNi0jsn84uu92jFSz4VNYeKDOlLKBIAxcgnxmvA7c= -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:37 2025 by rpki-client