$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa File: dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa (raw, json) Hash identifier: b4rzpJWbRh7wbXdOlwGJfjMtAdbFDQFaad7YGLQqbQw= Subject key identifier: 83:AE:2A:E6:7A:98:71:C9:0F:CF:95:A3:BC:E6:0E:FF:83:B1:05:7D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0544A960E26EBE4FA62508D9758DC6B6433267C0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa Signing time: Tue 04 Nov 2025 00:30:08 +0000 ROA not before: Tue 04 Nov 2025 00:30:08 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:44:a9:60:e2:6e:be:4f:a6:25:08:d9:75:8d:c6:b6:43:32:67:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 4 00:30:08 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=d7a0631b8ad53ee332c3c4c9d8045b86d5a4eea5f836b7f38615f60454521ba0, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ca:4b:60:3e:36:33:5b:09:f4:e5:06:60:33: d5:79:32:94:46:5a:e8:82:0d:2b:a1:c7:8b:09:53: 2e:c3:99:bd:d1:98:ca:45:a0:cf:1a:70:43:0e:7e: 95:ab:44:d6:27:d9:b8:8b:7d:fb:ee:32:a9:58:d9: 36:f3:2d:ec:1f:41:73:be:05:da:9c:8b:ee:34:0d: 88:ee:ca:fa:bd:1c:c5:10:25:30:62:93:69:de:4a: 8c:8a:b4:92:7a:48:62:8e:13:aa:44:c4:c2:58:b9: 64:f6:81:43:d9:d5:16:ef:08:41:1b:78:10:cc:ca: ae:bf:d8:e8:d7:e9:67:07:d1:40:b2:21:d9:3b:c5: 79:70:90:24:67:a3:8e:36:35:07:dc:97:24:d3:1f: 66:84:92:0a:10:a4:51:3f:c3:08:0e:73:2f:03:04: 0d:95:32:01:42:62:0b:07:93:48:e5:ee:36:7a:da: 4f:0a:49:23:6b:fb:67:02:07:05:d2:e4:bb:e7:8f: 25:e2:1a:95:98:09:b3:b2:38:88:19:f9:b8:94:2d: c7:0a:1a:5a:66:cb:ea:b7:41:5c:4e:a0:42:b8:10: 2c:b8:02:c8:97:32:ee:03:98:5a:01:0c:90:ad:80: 10:18:8d:40:b0:14:82:be:26:01:c7:ac:36:9f:be: 23:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:AE:2A:E6:7A:98:71:C9:0F:CF:95:A3:BC:E6:0E:FF:83:B1:05:7D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:29:3e:0f:40:50:47:5d:95:98:ff:10:89:32:cb:37:d3:cd: b7:45:c6:56:a8:a9:b6:77:c3:16:b3:23:17:b2:59:18:64:3c: d5:de:30:40:52:69:08:02:d4:cc:ce:85:d8:19:53:9a:77:71: ff:49:35:6b:e4:05:5f:b0:ee:51:f0:e1:7f:35:d6:1d:de:fd: fb:65:49:2f:f4:9f:7b:54:ea:92:f0:2e:73:a1:d6:18:e3:46: 87:6c:7f:6f:bd:d5:63:c2:c7:f3:c9:6e:87:54:c1:d9:24:8d: 64:45:d2:8c:e8:70:84:fc:18:d1:a6:e8:ab:d5:99:b9:77:a7: 59:c2:7a:55:c8:4c:d4:a2:36:e3:48:fa:d7:90:56:30:0c:c6: 8c:37:4c:e5:07:6e:79:80:cc:dd:19:fb:b1:7e:7f:b1:a7:40: 06:ae:65:59:9a:1f:f5:0c:d4:1a:a6:ef:cf:c9:86:17:8c:94: 67:86:e1:b5:8e:8e:bb:4e:23:86:a3:8b:f8:57:f9:05:41:48: 97:36:3f:35:0e:b8:54:c2:c2:2b:27:e0:14:7c:bd:bb:3f:38: 40:bb:5c:5e:61:12:07:42:91:2c:84:d5:a5:22:89:d8:8c:fe: f6:0b:42:72:03:e6:a7:aa:09:ac:dc:2a:77:5c:75:b0:a0:1d: f2:3a:26:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBUSpYOJuvk+mJQjZdY3GtkMyZ8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTA0MDAzMDA4WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2EwNjMxYjhhZDUzZWUzMzJjM2M0YzlkODA0NWI4NmQ1 YTRlZWE1ZjgzNmI3ZjM4NjE1ZjYwNDU0NTIxYmEwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZyktgPjYzWwn05QZgM9V5MpRGWuiCDSuhx4sJUy7Dmb3R mMpFoM8acEMOfpWrRNYn2biLffvuMqlY2TbzLewfQXO+Bdqci+40DYjuyvq9HMUQ JTBik2neSoyKtJJ6SGKOE6pExMJYuWT2gUPZ1RbvCEEbeBDMyq6/2OjX6WcH0UCy Idk7xXlwkCRno442NQfclyTTH2aEkgoQpFE/wwgOcy8DBA2VMgFCYgsHk0jl7jZ6 2k8KSSNr+2cCBwXS5LvnjyXiGpWYCbOyOIgZ+biULccKGlpmy+q3QVxOoEK4ECy4 AsiXMu4DmFoBDJCtgBAYjUCwFIK+JgHHrDafviNtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg64q5nqYcckPz5WjvOYO/4OxBX0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RjODIyYzAxLTE3MTctNGU0NS1hNWE4LTNhNWRjOTE2Yzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAEspPg9AUEddlZj/EIkyyzfTzbdF xlaoqbZ3wxazIxeyWRhkPNXeMEBSaQgC1MzOhdgZU5p3cf9JNWvkBV+w7lHw4X81 1h3e/ftlSS/0n3tU6pLwLnOh1hjjRodsf2+91WPCx/PJbodUwdkkjWRF0ozocIT8 GNGm6KvVmbl3p1nCelXITNSiNuNI+teQVjAMxow3TOUHbnmAzN0Z+7F+f7GnQAau ZVmaH/UM1Bqm78/JhheMlGeG4bWOjrtOI4aji/hX+QVBSJc2PzUOuFTCwisn4BR8 vbs/OEC7XF5hEgdCkSyE1aUiidiM/vYLQnID5qeqCazcKndcdbCgHfI6Jro= -----END CERTIFICATE-----Generated at Wed Nov 5 18:37:34 2025 by rpki-client