$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/74abdb75-ce74-4f18-ac4b-2432fc81d1f1.roa File: 74abdb75-ce74-4f18-ac4b-2432fc81d1f1.roa (raw, json) Hash identifier: /4MIEnv0AlDCGRcT7/tfuO46NuXl+yC9bX6MUWhBa0g= Subject key identifier: 59:56:D1:80:D3:68:7C:11:88:CC:2D:BF:77:B2:B5:48:82:FD:E9:C8 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7027B1B04972170C2940FAE4F9A3FB85D08BF1E5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/74abdb75-ce74-4f18-ac4b-2432fc81d1f1.roa Signing time: Tue 21 Oct 2025 12:20:04 +0000 ROA not before: Tue 21 Oct 2025 12:20:04 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:27:b1:b0:49:72:17:0c:29:40:fa:e4:f9:a3:fb:85:d0:8b:f1:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 21 12:20:04 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=e0a52586887c4384a9fb6ca9326257c2b98b625b1afa1b56b1848458d3f4aab5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ef:32:55:80:4f:7a:2f:88:17:f6:e1:b2:22: f7:44:dc:b1:e2:46:b3:2a:e1:a3:5c:0e:09:a1:11: f5:ab:3d:d2:2b:82:7f:00:3b:45:42:62:e3:f3:84: 78:a8:ce:e6:eb:c2:24:3e:37:84:9e:ea:d0:8a:eb: 95:c7:f4:26:f6:d4:4f:6b:a5:db:7b:99:80:0d:0f: a7:4f:b4:e1:70:46:07:6a:26:ab:b7:0f:1f:84:7e: b9:d8:b4:91:a3:d3:53:47:13:e1:9d:bb:80:aa:6e: cd:9c:9d:8e:cf:72:ac:cf:93:60:1a:59:d7:82:a2: 8f:ef:10:17:d4:2b:e4:23:c9:2f:10:cb:0a:94:79: ac:ff:35:44:c3:1b:0f:2b:ab:a0:c2:91:69:e4:a5: 25:05:31:d4:03:03:5c:23:22:ae:76:1f:6c:a9:91: c8:2f:af:ce:b4:59:c6:58:f1:6d:70:d0:c5:a5:53: b7:85:1b:55:30:24:19:3d:80:c0:7c:bc:83:6e:24: a0:b2:81:3d:13:ac:bc:74:18:17:b6:e6:8f:17:3c: 91:0e:d2:ad:69:f5:14:55:61:f9:08:97:9d:4b:08: 02:ad:e2:70:dc:cc:f5:68:72:32:ea:e8:ba:b1:06: 57:59:65:8c:25:5c:22:51:06:8d:4f:4d:e2:da:db: 3d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:56:D1:80:D3:68:7C:11:88:CC:2D:BF:77:B2:B5:48:82:FD:E9:C8 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/74abdb75-ce74-4f18-ac4b-2432fc81d1f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.46.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:06:76:b1:d8:d1:ff:ad:c2:77:bb:96:de:c7:77:6f:5f:02: 8d:3b:60:c2:eb:c1:43:08:93:ba:ad:02:d7:68:6a:4b:ca:06: 5e:4e:c0:7f:8c:c4:93:10:eb:69:21:b2:f3:93:50:af:bd:f0: 00:92:ec:4b:47:e1:5e:3d:f2:73:de:6e:28:01:e7:2c:d6:5c: fd:91:ab:bc:99:c0:54:8a:b6:15:2d:95:54:e2:99:6b:ab:63: 87:d6:9a:ac:9f:83:a7:23:96:dc:c4:64:f7:24:8e:d6:79:60: 4f:a5:95:fb:a4:9f:2e:58:a5:a3:9e:b6:66:ea:bc:e0:e1:7f: ee:6f:5c:f5:8a:f3:d7:a8:c3:50:d3:10:d0:3d:8c:dc:79:cf: 3a:54:b8:48:51:69:bb:ea:5f:78:e9:03:64:a9:d5:63:57:05: e9:1f:9f:8b:7d:4b:84:e4:8b:51:d5:76:9a:a7:ab:2c:30:4d: 8f:db:80:fb:29:9f:88:a0:82:f7:4c:af:51:da:41:a4:21:57: 12:12:c0:87:75:3e:2c:2b:b1:be:c7:03:b9:65:37:9f:f8:fe: 74:63:62:9c:c8:0a:10:28:f7:a6:f0:c3:e9:bf:2c:91:f4:6f: 95:98:e1:f9:3c:7c:b6:88:08:20:f2:6b:00:d9:7e:73:69:4c: 9a:b6:30:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcCexsElyFwwpQPrk+aP7hdCL8eUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDIxMTIyMDA0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGE1MjU4Njg4N2M0Mzg0YTlmYjZjYTkzMjYyNTdjMmI5 OGI2MjViMWFmYTFiNTZiMTg0ODQ1OGQzZjRhYWI1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ7zJVgE96L4gX9uGyIvdE3LHiRrMq4aNcDgmhEfWrPdIr gn8AO0VCYuPzhHiozubrwiQ+N4Se6tCK65XH9Cb21E9rpdt7mYAND6dPtOFwRgdq Jqu3Dx+EfrnYtJGj01NHE+Gdu4Cqbs2cnY7PcqzPk2AaWdeCoo/vEBfUK+QjyS8Q ywqUeaz/NUTDGw8rq6DCkWnkpSUFMdQDA1wjIq52H2ypkcgvr860WcZY8W1w0MWl U7eFG1UwJBk9gMB8vINuJKCygT0TrLx0GBe25o8XPJEO0q1p9RRVYfkIl51LCAKt 4nDczPVocjLq6LqxBldZZYwlXCJRBo1PTeLa2z09AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWVbRgNNofBGIzC2/d7K1SIL96cgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzc0YWJkYjc1LWNlNzQtNGYxOC1hYzRiLTI0MzJmYzgxZDFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYC4wDQYJKoZIhvcNAQELBQADggEBAC0GdrHY0f+twne7lt7Hd29fAo07 YMLrwUMIk7qtAtdoakvKBl5OwH+MxJMQ62khsvOTUK+98ACS7EtH4V498nPebigB 5yzWXP2Rq7yZwFSKthUtlVTimWurY4fWmqyfg6cjltzEZPckjtZ5YE+llfukny5Y paOetmbqvODhf+5vXPWK89eow1DTENA9jNx5zzpUuEhRabvqX3jpA2Sp1WNXBekf n4t9S4Tki1HVdpqnqywwTY/bgPspn4iggvdMr1HaQaQhVxISwId1Piwrsb7HA7ll N5/4/nRjYpzIChAo96bww+m/LJH0b5WY4fk8fLaICCDyawDZfnNpTJq2MKc= -----END CERTIFICATE-----Generated at Wed Nov 5 21:03:41 2025 by rpki-client