$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa File: e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa (raw, json) Hash identifier: eXrw6iGl+xOFN0pVQjqyz6zGpSnflVUlhv1jgJl8F+w= Subject key identifier: 1C:F3:BD:7D:02:44:F5:EA:A5:03:B4:9B:14:13:B8:C8:AC:49:F7:67 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4B0EBDF34A74A32571FF1E52630DDAF54D903C68 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa Signing time: Fri 31 Oct 2025 01:40:07 +0000 ROA not before: Fri 31 Oct 2025 01:40:07 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:0e:bd:f3:4a:74:a3:25:71:ff:1e:52:63:0d:da:f5:4d:90:3c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 31 01:40:07 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=27e55afe4e564f52c3d5f44c6c5d418c1de3ae1e0d40093117272d1f46843715, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:4a:12:43:39:1d:c7:69:55:85:27:a1:2c: 9b:82:c3:a2:62:e3:c9:f4:dc:00:a9:a1:df:ec:8a: 10:4a:f8:b3:06:3e:f3:17:c6:6d:63:7d:c0:3a:29: d6:d5:62:25:15:60:ce:b8:83:8b:a2:0d:e8:22:f1: d9:77:a3:a5:81:b7:4b:06:54:42:40:f5:84:08:9c: bd:07:80:d3:39:c5:40:6d:80:d0:fb:43:39:1d:48: 73:9b:b4:ca:47:03:8d:67:c8:46:7c:c3:15:c7:6b: f4:75:e2:aa:c4:b3:a0:98:c6:ae:79:e6:6f:52:4c: 6a:f9:4f:73:2a:3f:b7:ca:06:a7:03:a0:91:b5:a3: 62:bc:53:bf:0d:b1:1c:9e:3a:ef:ca:d7:4b:2a:f4: 36:4a:97:c2:52:7b:e0:cb:a7:88:ac:a3:bc:75:8d: e8:24:de:40:91:64:23:59:ba:b5:51:d8:ba:b9:b8: ed:d6:e2:a2:5e:30:df:fd:69:a2:cc:99:2c:f1:68: 4b:7d:9b:19:3b:df:d4:a2:8b:c7:eb:9f:b6:a0:2f: 92:e0:9d:87:14:de:cb:f8:73:90:94:a0:dc:15:90: 9f:8a:96:2b:6b:5e:fd:f8:ff:ee:e9:ad:08:31:0e: 5c:a0:2c:04:fd:c4:18:e8:d7:c2:be:f4:4f:38:11: cd:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F3:BD:7D:02:44:F5:EA:A5:03:B4:9B:14:13:B8:C8:AC:49:F7:67 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 77:f1:38:20:d7:53:fb:72:2d:87:25:b3:9f:cf:c9:4f:9f:9f: 12:5c:ab:38:e6:37:8e:8d:c4:23:aa:f4:b4:b8:18:43:45:ae: c3:20:20:8a:b2:85:8c:ac:87:b8:8c:94:37:88:78:0f:5b:3c: de:e1:48:8d:ba:e0:55:ad:46:29:2d:28:c6:0a:d3:61:aa:80: ab:be:62:80:fe:af:8f:39:0d:b9:13:db:d4:10:6f:00:30:cd: 77:71:70:ff:dc:e9:76:92:86:c8:2e:ce:1d:f3:94:27:51:82: 01:25:8d:67:6d:d4:c8:9f:7d:2a:a9:19:a0:fd:ee:22:5d:78: cb:c2:4b:49:2c:22:a9:85:06:d3:47:a5:09:93:34:26:e6:46: 34:c7:1a:2b:06:00:90:2e:c5:e0:05:63:e4:f2:74:96:d8:6c: 53:3b:b4:50:24:0f:91:ac:a1:9f:2e:4f:4f:78:5e:75:77:42: f5:78:60:55:3b:f4:5e:f3:46:7e:e3:93:12:f0:06:5e:5a:55: e2:08:f2:78:54:1f:1f:b1:47:b3:23:97:3d:ec:76:86:93:57: 00:b9:4a:69:63:e5:dc:0e:dc:7c:18:b3:1f:99:d4:56:65:3b: 0b:ab:e1:ea:3e:61:2e:57:90:8e:57:0c:e5:16:9e:a8:38:48: 78:dd:4f:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSw6980p0oyVx/x5SYw3a9U2QPGgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDMxMDE0MDA3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyN2U1NWFmZTRlNTY0ZjUyYzNkNWY0NGM2YzVkNDE4YzFk ZTNhZTFlMGQ0MDA5MzExNzI3MmQxZjQ2ODQzNzE1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUHUoSQzkdx2lVhSehLJuCw6Ji48n03ACpod/sihBK+LMG PvMXxm1jfcA6KdbVYiUVYM64g4uiDegi8dl3o6WBt0sGVEJA9YQInL0HgNM5xUBt gND7QzkdSHObtMpHA41nyEZ8wxXHa/R14qrEs6CYxq555m9STGr5T3MqP7fKBqcD oJG1o2K8U78NsRyeOu/K10sq9DZKl8JSe+DLp4iso7x1jegk3kCRZCNZurVR2Lq5 uO3W4qJeMN/9aaLMmSzxaEt9mxk739Sii8frn7agL5LgnYcU3sv4c5CUoNwVkJ+K litrXv34/+7prQgxDlygLAT9xBjo18K+9E84Ec15AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHPO9fQJE9eqlA7SbFBO4yKxJ92cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2UyYjhhNzYzLTgzZTQtNDA4ZS04NTRhLWEyZTlmNjhjYTk5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAHfxOCDXU/tyLYcls5/PyU+fnxJc qzjmN46NxCOq9LS4GENFrsMgIIqyhYysh7iMlDeIeA9bPN7hSI264FWtRiktKMYK 02GqgKu+YoD+r485DbkT29QQbwAwzXdxcP/c6XaShsguzh3zlCdRggEljWdt1Mif fSqpGaD97iJdeMvCS0ksIqmFBtNHpQmTNCbmRjTHGisGAJAuxeAFY+TydJbYbFM7 tFAkD5GsoZ8uT094XnV3QvV4YFU79F7zRn7jkxLwBl5aVeII8nhUHx+xR7Mjlz3s doaTVwC5Smlj5dwO3HwYsx+Z1FZlOwur4eo+YS5XkI5XDOUWnqg4SHjdT0c= -----END CERTIFICATE-----Generated at Wed Nov 5 20:06:38 2025 by rpki-client