$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa File: 98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa (raw, json) Hash identifier: hifVwqV1fKHGMx1WdqYnob7PHoOgStDcu/4JxCcuAjE= Subject key identifier: 58:8E:DF:34:4D:C3:B9:2A:AC:2D:32:FE:FC:E9:05:03:77:42:19:C9 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5BCF14E7F2B1331B1BA4C45FC5E142B64020DDF0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa Signing time: Fri 31 Oct 2025 01:40:11 +0000 ROA not before: Fri 31 Oct 2025 01:40:11 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:cf:14:e7:f2:b1:33:1b:1b:a4:c4:5f:c5:e1:42:b6:40:20:dd:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 31 01:40:11 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=836604cc478592f8c99d8066b3a28cbeadec0bdeaf68068a52df8c0cc5ffacad, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:de:df:43:84:e4:3e:08:fc:a0:51:3c:26:32: 4c:cb:fa:13:d8:37:da:45:55:31:ad:97:11:52:fd: 35:1b:3f:e4:be:79:2b:26:c4:50:94:c4:a3:7a:96: 81:5a:1d:e9:14:9c:c8:f3:b0:04:22:26:ff:32:0f: 2d:14:e4:bc:f1:d2:ad:cf:12:05:3f:15:d6:46:e6: 4e:73:54:47:5d:86:cb:0a:eb:31:ac:cb:26:7b:6e: 91:e9:5a:88:7c:55:0c:f3:1c:23:e2:88:a1:dd:46: ae:83:af:5c:f4:cd:17:f1:51:10:0e:b2:05:5f:b2: 6a:78:5c:ce:f4:e0:1b:0b:03:50:ac:2d:40:12:ad: 09:df:3d:a3:20:98:33:a0:58:02:1d:06:9a:ef:8d: 31:b8:68:f8:64:f7:63:4f:90:7a:77:6d:81:de:6f: d6:54:d5:ed:c0:24:04:2a:f9:50:e7:54:52:37:5a: 2e:f0:ba:b2:85:f2:24:31:7d:db:40:23:aa:bc:94: bd:5f:23:51:2e:96:d9:b7:11:c2:ba:26:83:7d:c3: ec:00:2a:94:23:1b:f8:4f:6d:3a:b2:7e:6c:da:26: 63:0a:09:2f:e9:c9:36:a2:d6:44:6d:bd:a6:29:ee: 47:3d:91:4a:4b:7c:d4:de:f4:dd:70:61:b3:96:6e: 73:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8E:DF:34:4D:C3:B9:2A:AC:2D:32:FE:FC:E9:05:03:77:42:19:C9 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 58:36:a0:81:f5:96:61:a1:f2:b1:24:0b:42:65:62:6d:63:49: 1e:aa:e8:65:12:3a:ab:61:86:93:25:8d:89:93:2f:7f:e2:d8: cf:15:e6:4c:7c:7b:5a:d5:2d:e4:ac:4e:01:19:80:13:7e:a6: 4f:ff:b0:ee:db:64:e5:3e:db:b7:1a:ec:68:1d:f6:24:1c:63: 4d:55:01:15:50:3a:76:20:d3:8f:60:dd:01:4f:8a:71:76:b2: 50:dd:a8:6d:18:4a:30:66:a8:75:3a:15:8f:9e:e7:ac:c1:bb: b4:bb:16:6b:b4:12:33:91:47:56:49:a3:83:c0:3f:4f:71:bb: cf:32:f7:1f:ae:c0:43:43:6b:3e:69:84:3e:d7:ff:ba:47:e6: 5d:8d:75:b2:c9:a3:9c:c4:da:73:ab:9e:37:fd:02:5c:14:a4: bd:43:31:1c:8b:9d:fd:a8:79:ea:ef:ba:47:54:78:d6:30:4c: cc:79:8a:3a:ec:1c:84:28:49:9f:b2:6f:cd:24:9b:d2:bc:8c: 43:ef:88:dd:8c:f4:09:86:b6:37:38:16:d4:35:4d:69:6f:f9: d6:41:55:45:21:c2:0d:39:cf:88:a9:1f:07:ca:99:0f:a8:9d: 64:50:97:bf:ac:c0:81:0b:eb:3b:c8:a5:d2:69:d1:e5:7e:35: 2d:b7:25:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW88U5/KxMxsbpMRfxeFCtkAg3fAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDMxMDE0MDExWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzY2MDRjYzQ3ODU5MmY4Yzk5ZDgwNjZiM2EyOGNiZWFk ZWMwYmRlYWY2ODA2OGE1MmRmOGMwY2M1ZmZhY2FkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY3t9DhOQ+CPygUTwmMkzL+hPYN9pFVTGtlxFS/TUbP+S+ eSsmxFCUxKN6loFaHekUnMjzsAQiJv8yDy0U5Lzx0q3PEgU/FdZG5k5zVEddhssK 6zGsyyZ7bpHpWoh8VQzzHCPiiKHdRq6Dr1z0zRfxURAOsgVfsmp4XM704BsLA1Cs LUASrQnfPaMgmDOgWAIdBprvjTG4aPhk92NPkHp3bYHeb9ZU1e3AJAQq+VDnVFI3 Wi7wurKF8iQxfdtAI6q8lL1fI1Eultm3EcK6JoN9w+wAKpQjG/hPbTqyfmzaJmMK CS/pyTai1kRtvaYp7kc9kUpLfNTe9N1wYbOWbnPfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWI7fNE3DuSqsLTL+/OkFA3dCGckwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk4YjVjODkwLTQ3ZjEtNGY3Zi1hOWRkLTMyMjg5NTU0ZjFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAFg2oIH1lmGh8rEkC0JlYm1jSR6q 6GUSOqthhpMljYmTL3/i2M8V5kx8e1rVLeSsTgEZgBN+pk//sO7bZOU+27ca7Ggd 9iQcY01VARVQOnYg049g3QFPinF2slDdqG0YSjBmqHU6FY+e56zBu7S7Fmu0EjOR R1ZJo4PAP09xu88y9x+uwENDaz5phD7X/7pH5l2NdbLJo5zE2nOrnjf9AlwUpL1D MRyLnf2oeervukdUeNYwTMx5ijrsHIQoSZ+yb80km9K8jEPviN2M9AmGtjc4FtQ1 TWlv+dZBVUUhwg05z4ipHwfKmQ+onWRQl7+swIEL6zvIpdJp0eV+NS23Ja4= -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:29 2025 by rpki-client