$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa File: decfa8a2-ad50-432e-96a7-cba83d9032f9.roa (raw, json) Hash identifier: Bivj+RJZUD4fj/gVX4/5nbDEBnEehZ6Br8djofs9uDY= Subject key identifier: AC:D3:A0:9E:EE:53:DE:49:5F:5E:60:8F:34:9C:14:CB:4C:91:3C:14 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 515A5CBFFE4A8A7CA4601A4DE40283ADC1A4DA2E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa Signing time: Tue 21 Oct 2025 12:20:08 +0000 ROA not before: Tue 21 Oct 2025 12:20:08 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:5a:5c:bf:fe:4a:8a:7c:a4:60:1a:4d:e4:02:83:ad:c1:a4:da:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 21 12:20:08 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=77fbff88674f758f2099caebe782470d47129ab0b66b101b8783f31a9bacd9fe, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:fe:f2:8a:35:f0:32:9a:10:55:47:ac:1e: bc:7f:a0:0f:4d:94:ee:e8:f9:8c:8b:e7:a1:b3:f2: e7:28:93:ee:d7:a1:2e:04:fc:ed:4a:9a:b3:47:63: 0c:41:46:b6:9a:86:96:5b:d5:7c:05:43:fd:69:3d: 9f:8c:04:0f:80:1f:ff:b6:22:07:69:20:2d:03:d9: 1a:0f:00:f9:d1:29:a0:33:c5:11:5d:24:34:ff:fe: 34:db:46:bc:15:e6:54:b7:82:66:34:0c:d3:dc:bc: 84:ab:14:41:68:a2:1b:52:2b:1f:7f:fc:b5:13:df: 1c:3b:c7:c5:35:1d:5d:db:60:ad:49:6a:91:45:84: 83:34:7f:e5:38:81:83:34:65:c3:2f:b7:21:84:3a: 3b:69:87:66:5c:16:4a:0f:16:d4:c9:17:d0:34:cf: 8b:82:23:56:75:e3:28:5d:d1:b8:7a:0e:b1:2a:e7: e8:e4:50:85:01:ee:f0:9e:2a:6e:fb:df:89:78:f9: 25:37:ea:76:44:83:4b:65:d5:18:3e:9d:47:7b:15: b0:cd:a2:04:1d:7e:79:50:5e:93:a8:f3:09:c5:9d: 1e:3e:18:7f:07:d0:6a:cb:7b:e0:74:e2:ae:ef:59: 16:fa:8f:47:ce:de:f8:65:b3:4f:b5:a7:ba:fd:3a: b4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D3:A0:9E:EE:53:DE:49:5F:5E:60:8F:34:9C:14:CB:4C:91:3C:14 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.9.0/24 Signature Algorithm: sha256WithRSAEncryption 30:07:80:6a:a8:c8:35:62:46:23:77:c1:c1:e8:3b:1d:02:fd: db:8d:8d:bc:89:38:66:30:00:e4:6c:2b:52:de:ed:02:dc:67: ef:6b:d0:75:dd:df:be:45:d0:3b:fa:e0:8e:7c:86:02:37:a2: 25:8c:f8:76:d6:67:a5:3d:35:ce:d7:94:55:86:c2:9a:bd:62: 1c:88:be:22:2f:b7:91:a8:40:4f:b7:c3:5f:14:a0:d4:12:50: 93:3e:18:57:96:08:5e:1c:60:f1:83:ff:70:63:f3:f8:24:92: 4c:62:52:15:0d:d8:68:9d:09:5e:b6:6d:49:17:fa:5f:ec:d9: f3:f4:92:47:3a:d6:28:67:d5:f6:da:54:1e:01:aa:7a:6f:87: 9e:d1:64:ce:3a:48:16:a5:8f:51:8f:e3:65:c9:25:6f:1b:37: 91:de:a3:64:ab:ad:0b:67:41:d2:25:d8:f2:24:46:94:ac:da: 05:d2:f2:cf:c6:42:ba:8f:ac:fe:ae:3f:99:cf:bd:d5:ac:c4: 44:6c:56:97:78:2c:2f:ff:3c:f3:49:f5:ba:11:14:1b:31:83: 01:0f:ee:78:8e:5d:db:1a:9d:29:95:aa:9e:61:e5:c7:df:7d: c7:36:02:d2:23:40:36:22:5b:53:eb:89:7a:b2:90:c0:0a:7c: 66:4d:c5:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUVpcv/5KinykYBpN5AKDrcGk2i4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDIxMTIyMDA4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2ZiZmY4ODY3NGY3NThmMjA5OWNhZWJlNzgyNDcwZDQ3 MTI5YWIwYjY2YjEwMWI4NzgzZjMxYTliYWNkOWZlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuIP7yijXwMpoQVUesHrx/oA9NlO7o+YyL56Gz8ucok+7X oS4E/O1KmrNHYwxBRraahpZb1XwFQ/1pPZ+MBA+AH/+2IgdpIC0D2RoPAPnRKaAz xRFdJDT//jTbRrwV5lS3gmY0DNPcvISrFEFoohtSKx9//LUT3xw7x8U1HV3bYK1J apFFhIM0f+U4gYM0ZcMvtyGEOjtph2ZcFkoPFtTJF9A0z4uCI1Z14yhd0bh6DrEq 5+jkUIUB7vCeKm7734l4+SU36nZEg0tl1Rg+nUd7FbDNogQdfnlQXpOo8wnFnR4+ GH8H0GrLe+B04q7vWRb6j0fO3vhls0+1p7r9OrRNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrNOgnu5T3klfXmCPNJwUy0yRPBQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RlY2ZhOGEyLWFkNTAtNDMyZS05NmE3LWNiYTgzZDkwMzJmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAkwDQYJKoZIhvcNAQELBQADggEBADAHgGqoyDViRiN3wcHoOx0C/duN jbyJOGYwAORsK1Le7QLcZ+9r0HXd375F0Dv64I58hgI3oiWM+HbWZ6U9Nc7XlFWG wpq9YhyIviIvt5GoQE+3w18UoNQSUJM+GFeWCF4cYPGD/3Bj8/gkkkxiUhUN2Gid CV62bUkX+l/s2fP0kkc61ihn1fbaVB4Bqnpvh57RZM46SBalj1GP42XJJW8bN5He o2SrrQtnQdIl2PIkRpSs2gXS8s/GQrqPrP6uP5nPvdWsxERsVpd4LC//PPNJ9boR FBsxgwEP7niOXdsanSmVqp5h5cfffcc2AtIjQDYiW1PriXqykMAKfGZNxZY= -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:19 2025 by rpki-client