$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa File: 8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa (raw, json) Hash identifier: RbSrV/DVip5vWvp3pT4U/xodXlNb6DL4aJ/nCIot15s= Subject key identifier: DD:B2:2C:39:53:5F:C6:9F:F2:8E:43:31:C8:EC:AE:89:8E:5A:BB:34 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7BA05907D9470F16B701A50CE4BDAF952187B498 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa Signing time: Tue 04 Nov 2025 00:30:16 +0000 ROA not before: Tue 04 Nov 2025 00:30:16 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a0:59:07:d9:47:0f:16:b7:01:a5:0c:e4:bd:af:95:21:87:b4:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 4 00:30:16 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=e0d465f534faddb9f8dfcee88da82ae8bf569badfba2dc7f85c3de0fe675998c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fe:72:13:5b:19:04:ea:fd:f1:21:6d:f7:b0: 78:0a:46:b7:45:50:f7:a3:77:46:43:17:5d:2e:c1: e6:b7:1b:76:63:12:f3:eb:20:46:d2:11:9b:48:f4: e6:c9:32:1b:92:58:20:7b:d6:a5:5e:68:ec:55:19: 1f:4e:5f:db:05:f8:c7:fa:6c:00:4d:f0:1d:bd:1f: 0c:9a:8b:ee:16:d4:50:5c:b7:12:13:9a:bc:64:48: 7e:c9:66:d3:b5:2b:37:2f:87:9f:f8:79:45:83:da: 10:20:ac:6b:18:23:f4:3c:53:b5:95:b6:c4:dc:2b: 7f:c3:e5:cb:90:03:40:d9:e4:79:6d:06:2f:f3:68: 71:f5:b6:c2:5d:d5:16:cd:dc:d6:27:1a:f0:ee:ef: a5:1d:d0:e5:bd:f3:5e:69:78:1b:f5:52:49:3e:1c: 4d:e9:63:5d:89:07:b3:7c:37:06:77:08:a4:ff:a0: 36:f8:e5:d1:13:9e:17:58:f3:cd:41:4a:9d:07:46: a5:1c:a5:ad:57:c1:62:f9:5e:64:e5:7c:a1:a3:95: 35:36:76:6c:89:3d:e4:c4:e7:73:53:18:c5:0d:28: f1:12:36:9f:a3:b6:40:24:be:6e:f3:7a:5d:49:86: 10:4e:7c:b1:51:40:2d:b1:b7:48:a4:5f:c6:e8:05: 53:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B2:2C:39:53:5F:C6:9F:F2:8E:43:31:C8:EC:AE:89:8E:5A:BB:34 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 62:e5:d1:a3:64:fe:a4:50:ba:56:65:15:cf:cf:ea:eb:72:d4: 3f:47:82:17:3f:ac:69:fe:53:90:a4:ae:1d:8a:68:ba:6d:8f: d0:8d:4d:d4:0b:fb:46:f2:5e:5d:f2:3e:e4:ed:76:53:16:0a: 90:b0:25:88:2c:b5:07:d0:b0:2f:04:c3:9e:22:45:44:29:71: 3b:7a:6a:3f:d5:d6:eb:7a:e9:72:7a:c4:f2:a7:6d:a2:28:97: 39:b2:59:b7:af:99:86:99:ad:b0:5c:d9:54:51:b7:3a:bf:fc: b6:93:a7:8d:92:47:71:f3:53:a4:86:65:29:21:a2:b3:90:c4: 12:ff:11:71:f5:53:6f:83:a4:49:94:fc:c2:16:19:c6:73:03: 38:3c:23:1b:ad:1a:71:0a:4c:01:9e:9d:fe:1b:85:1c:da:8e: e9:26:ea:05:f9:88:51:b0:4f:3b:3c:10:95:e3:7d:3e:97:23: 28:0d:f1:b3:b8:e5:a7:1a:aa:bf:09:f8:ce:b8:27:04:86:df: 8e:c2:e8:e3:cf:c0:43:10:10:fe:c9:7f:f8:e6:ea:2c:8e:b9: bb:2b:b9:7c:26:57:7c:ea:b0:58:3f:00:44:81:33:bc:e9:16: ef:fa:b7:0d:d9:78:e3:2b:75:50:76:41:d7:e6:39:0c:69:9f: 1a:6b:2a:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe6BZB9lHDxa3AaUM5L2vlSGHtJgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTA0MDAzMDE2WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGQ0NjVmNTM0ZmFkZGI5ZjhkZmNlZTg4ZGE4MmFlOGJm NTY5YmFkZmJhMmRjN2Y4NWMzZGUwZmU2NzU5OThjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe/nITWxkE6v3xIW33sHgKRrdFUPejd0ZDF10uwea3G3Zj EvPrIEbSEZtI9ObJMhuSWCB71qVeaOxVGR9OX9sF+Mf6bABN8B29Hwyai+4W1FBc txITmrxkSH7JZtO1Kzcvh5/4eUWD2hAgrGsYI/Q8U7WVtsTcK3/D5cuQA0DZ5Hlt Bi/zaHH1tsJd1RbN3NYnGvDu76Ud0OW9815peBv1Ukk+HE3pY12JB7N8NwZ3CKT/ oDb45dETnhdY881BSp0HRqUcpa1XwWL5XmTlfKGjlTU2dmyJPeTE53NTGMUNKPES Np+jtkAkvm7zel1JhhBOfLFRQC2xt0ikX8boBVNRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3bIsOVNfxp/yjkMxyOyuiY5auzQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhlODgzOThmLTgwY2QtNGIwNi1iYmRmLWUzZmFiNmU2YWJlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBAGLl0aNk/qRQulZlFc/P6uty1D9H ghc/rGn+U5Ckrh2KaLptj9CNTdQL+0byXl3yPuTtdlMWCpCwJYgstQfQsC8Ew54i RUQpcTt6aj/V1ut66XJ6xPKnbaIolzmyWbevmYaZrbBc2VRRtzq//LaTp42SR3Hz U6SGZSkhorOQxBL/EXH1U2+DpEmU/MIWGcZzAzg8IxutGnEKTAGenf4bhRzajukm 6gX5iFGwTzs8EJXjfT6XIygN8bO45acaqr8J+M64JwSG347C6OPPwEMQEP7Jf/jm 6iyOubsruXwmV3zqsFg/AESBM7zpFu/6tw3ZeOMrdVB2QdfmOQxpnxprKlk= -----END CERTIFICATE-----Generated at Wed Nov 5 18:37:28 2025 by rpki-client