$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa File: b063da57-37b1-4f36-91b0-613247453bd5.roa (raw, json) Hash identifier: HbAv1bzDTvP6DNSVLX2IrgQHMoUDoqCMnI6bp9LD9lU= Subject key identifier: F4:D3:51:30:46:BF:E0:A7:96:36:7B:F3:1A:0D:39:05:82:63:8D:50 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3C271B8EE3310C26C4BEF3242944B858B700C522 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa Signing time: Fri 31 Oct 2025 01:40:14 +0000 ROA not before: Fri 31 Oct 2025 01:40:14 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:27:1b:8e:e3:31:0c:26:c4:be:f3:24:29:44:b8:58:b7:00:c5:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 31 01:40:14 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8e68a37d83b3485f31fb0aff6c6b557f696b8957f3eceffba677cec35fcbcd35, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:16:8b:d5:fd:0d:ad:60:ba:1b:f5:79:34:a2: fb:e4:cd:0a:65:73:33:73:e8:1c:b2:c4:b8:3d:77: 3e:3c:7d:c5:2b:c6:2f:fd:2e:4f:8b:37:ce:f3:40: e6:7c:78:80:a9:8c:ec:38:e0:c4:af:03:28:f6:e8: 8c:87:b3:cc:8d:a7:f3:25:ff:21:4d:9b:88:4f:85: 02:8f:ad:af:c8:4d:fc:27:2c:09:e2:6a:9d:6b:57: 4b:80:6b:35:5e:a9:1e:83:29:2a:1c:07:3a:79:6f: 5a:ec:3a:3b:1c:99:32:31:b4:3f:d8:c8:de:9c:e3: 2d:29:06:d1:ea:cb:ac:15:5e:b3:aa:3e:a2:47:f6: 82:fe:a6:58:de:a4:8c:d8:b9:ed:db:76:ab:07:1a: e8:a4:63:21:a4:46:22:26:8c:53:a0:f8:51:89:99: 4e:49:ec:57:65:b6:f3:4e:28:d4:5e:0f:fd:b4:44: 0c:d0:bd:69:64:48:b6:4c:fe:31:fc:07:0d:ca:fd: 28:11:0f:d5:5e:dc:5f:86:9f:a5:53:41:13:f7:07: 6f:54:d2:1f:b6:d8:32:48:6e:80:8b:e0:70:8f:5d: e6:8e:98:91:d4:57:d9:25:74:6e:32:bd:d8:5a:05: dd:7f:f7:2f:ce:f1:24:46:54:1e:7e:80:bb:bf:10: 39:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D3:51:30:46:BF:E0:A7:96:36:7B:F3:1A:0D:39:05:82:63:8D:50 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:87:51:71:97:e1:43:6e:96:37:2c:de:db:42:0a:91:3d:63: 00:4d:56:be:fc:c9:a4:fa:c3:33:f4:91:07:11:35:c1:16:9b: ab:3b:29:5b:17:63:b9:41:ac:f5:41:7a:57:9d:5e:b3:10:28: 93:5a:98:08:99:7c:f4:be:44:7d:20:72:3d:40:56:f7:5a:ee: 78:f5:c5:6f:c8:2f:c9:54:0c:17:b6:2a:6a:41:01:79:e2:48: d7:17:a2:52:c0:3a:34:af:ed:92:04:23:b9:ab:7f:ee:a0:f0: e9:5e:84:e2:ac:32:8c:1c:52:8c:34:1b:f1:92:28:e8:1c:11: 6c:15:f1:f3:53:32:b2:bb:0d:f1:fd:fb:34:f7:d3:e4:be:d1: 62:a6:6d:07:3c:63:06:74:cf:c5:18:0e:0e:82:5e:e3:b5:53: 1d:6a:ef:55:71:a3:9d:65:b1:df:f0:30:64:6b:ad:c8:53:60: 3c:06:73:d7:ec:5c:5d:7c:b3:10:ac:d5:a6:38:56:26:14:d2: bf:77:f6:33:99:06:73:e1:e8:e4:20:26:ab:0c:3c:bb:4a:23: 23:a6:0f:b0:69:a6:1f:b8:98:86:e9:b5:46:11:49:dc:1b:f2: 57:04:5a:b5:4a:37:13:a9:2a:78:f1:f3:63:44:2b:8a:d8:35: bc:8d:f9:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPCcbjuMxDCbEvvMkKUS4WLcAxSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDMxMDE0MDE0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTY4YTM3ZDgzYjM0ODVmMzFmYjBhZmY2YzZiNTU3ZjY5 NmI4OTU3ZjNlY2VmZmJhNjc3Y2VjMzVmY2JjZDM1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAFovV/Q2tYLob9Xk0ovvkzQplczNz6ByyxLg9dz48fcUr xi/9Lk+LN87zQOZ8eICpjOw44MSvAyj26IyHs8yNp/Ml/yFNm4hPhQKPra/ITfwn LAniap1rV0uAazVeqR6DKSocBzp5b1rsOjscmTIxtD/YyN6c4y0pBtHqy6wVXrOq PqJH9oL+pljepIzYue3bdqsHGuikYyGkRiImjFOg+FGJmU5J7FdltvNOKNReD/20 RAzQvWlkSLZM/jH8Bw3K/SgRD9Ve3F+Gn6VTQRP3B29U0h+22DJIboCL4HCPXeaO mJHUV9kldG4yvdhaBd1/9y/O8SRGVB5+gLu/EDmZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9NNRMEa/4KeWNnvzGg05BYJjjVAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2IwNjNkYTU3LTM3YjEtNGYzNi05MWIwLTYxMzI0NzQ1M2JkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBAF+HUXGX4UNuljcs3ttCCpE9YwBN Vr78yaT6wzP0kQcRNcEWm6s7KVsXY7lBrPVBeledXrMQKJNamAiZfPS+RH0gcj1A Vvda7nj1xW/IL8lUDBe2KmpBAXniSNcXolLAOjSv7ZIEI7mrf+6g8OlehOKsMowc Uow0G/GSKOgcEWwV8fNTMrK7DfH9+zT30+S+0WKmbQc8YwZ0z8UYDg6CXuO1Ux1q 71Vxo51lsd/wMGRrrchTYDwGc9fsXF18sxCs1aY4ViYU0r939jOZBnPh6OQgJqsM PLtKIyOmD7Bpph+4mIbptUYRSdwb8lcEWrVKNxOpKnjx82NEK4rYNbyN+VA= -----END CERTIFICATE-----Generated at Wed Nov 5 17:18:49 2025 by rpki-client