$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e4d62aec-ee54-47ea-ac30-2c49dfa9eb6f.roa File: e4d62aec-ee54-47ea-ac30-2c49dfa9eb6f.roa (raw, json) Hash identifier: gdBYGdwHKDQQiXyifzlygFMroVriWMdtt/dhMCvC9/Q= Subject key identifier: BB:A8:B6:12:F3:C5:5A:57:A7:39:F3:0E:58:C6:27:E9:15:0D:7B:24 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: CC4183125C440348196B370404A2F6985AD8EB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e4d62aec-ee54-47ea-ac30-2c49dfa9eb6f.roa Signing time: Tue 04 Nov 2025 00:30:09 +0000 ROA not before: Tue 04 Nov 2025 00:30:09 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: cc:41:83:12:5c:44:03:48:19:6b:37:04:04:a2:f6:98:5a:d8:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 4 00:30:09 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=40ad103185837e67bd9e6f1dbaf9f57dff09fc3323777a7f063eb8a0415c13a8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:53:d4:e2:64:58:f3:84:b6:6b:d3:6b:3e:23: 27:a4:f9:8f:9d:d3:49:ca:13:cb:09:66:71:5f:b6: f7:16:77:cc:45:ce:8d:6f:5a:1c:7d:02:38:84:17: 4b:90:ba:b3:13:34:86:e3:8c:49:62:53:2d:1e:32: 0d:3e:13:b8:b3:5b:a8:da:26:66:96:1c:24:3e:73: aa:ea:90:02:c1:6e:a0:52:29:46:a0:e1:b7:e9:12: 11:4d:84:bb:5b:a4:74:70:bf:47:ba:e3:ee:26:63: a1:57:f0:11:36:60:55:ff:a0:63:81:d0:02:7a:e9: 20:41:f2:7c:d4:61:60:b8:09:f3:92:a2:b6:d0:eb: 2a:05:cc:86:7e:ae:f1:0b:57:e8:30:28:d2:ad:ec: 57:1d:a2:0a:4d:70:89:b4:a3:fc:d2:45:41:32:45: 9e:74:e7:23:10:ec:51:3d:63:e4:32:cc:fb:ef:4e: e2:4a:45:a2:b0:91:a8:e4:8d:13:c1:d4:31:f0:f8: 2d:65:e9:a1:54:d5:ef:52:0e:b3:10:77:a2:7b:b4: 5a:0c:93:d1:64:a3:ed:a0:e2:7d:05:8a:27:1d:bf: fe:4f:5b:61:65:35:c0:74:10:a3:ce:38:5b:b2:56: cb:3d:54:26:64:5f:98:de:f7:41:f7:4f:e9:e8:52: 65:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A8:B6:12:F3:C5:5A:57:A7:39:F3:0E:58:C6:27:E9:15:0D:7B:24 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e4d62aec-ee54-47ea-ac30-2c49dfa9eb6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.12.0/24 Signature Algorithm: sha256WithRSAEncryption 96:6d:5e:1a:78:df:e3:e9:05:0c:09:6e:ed:18:17:a6:7e:63: 11:d1:4c:36:4a:13:c8:8d:62:a0:ce:34:46:07:b0:82:10:1d: ec:10:e1:c0:ef:28:e6:18:74:21:f3:64:d7:a4:7c:2f:cc:aa: e4:13:0e:ec:71:07:8b:47:de:0f:28:0b:3a:8b:d2:42:06:44: db:54:92:74:46:db:07:1f:d7:da:59:ef:d8:44:8b:42:37:2b: c2:15:96:92:49:40:9a:d7:c7:85:34:80:c6:10:a4:ae:14:64: 90:27:45:0f:40:17:87:74:ee:8f:c5:ec:21:44:b3:9d:89:1e: b5:d9:3d:c2:8f:aa:7d:64:f7:e7:eb:13:6d:5a:89:bc:2a:20: 05:8e:e1:a1:3a:75:fb:ac:bb:c0:fc:62:6f:6a:c5:37:a9:d5: 97:f3:e9:3f:1e:89:ac:04:19:47:59:b4:6f:62:27:03:05:59: 68:a4:98:cb:fc:e1:0e:bd:ca:0d:45:40:ac:a8:27:f0:f0:a2: 37:10:e9:57:24:cf:3f:0a:5b:88:65:28:b3:d4:99:6a:1b:e7: a5:d2:56:af:70:59:2a:a4:ec:88:ce:6f:76:7d:ad:7e:c7:54: 22:99:2c:30:f9:0a:b0:4c:c4:e0:3a:ec:b6:c3:64:1f:d3:79: 7b:02:c3:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAMxBgxJcRANIGWs3BASi9pha2OswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTA0MDAzMDA5WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGFkMTAzMTg1ODM3ZTY3YmQ5ZTZmMWRiYWY5ZjU3ZGZm MDlmYzMzMjM3NzdhN2YwNjNlYjhhMDQxNWMxM2E4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYU9TiZFjzhLZr02s+Iyek+Y+d00nKE8sJZnFftvcWd8xF zo1vWhx9AjiEF0uQurMTNIbjjEliUy0eMg0+E7izW6jaJmaWHCQ+c6rqkALBbqBS KUag4bfpEhFNhLtbpHRwv0e64+4mY6FX8BE2YFX/oGOB0AJ66SBB8nzUYWC4CfOS orbQ6yoFzIZ+rvELV+gwKNKt7FcdogpNcIm0o/zSRUEyRZ505yMQ7FE9Y+QyzPvv TuJKRaKwkajkjRPB1DHw+C1l6aFU1e9SDrMQd6J7tFoMk9Fko+2g4n0Fiicdv/5P W2FlNcB0EKPOOFuyVss9VCZkX5je90H3T+noUmUlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu6i2EvPFWlenOfMOWMYn6RUNeyQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U0ZDYyYWVjLWVlNTQtNDdlYS1hYzMwLTJjNDlkZmE5ZWI2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAwwDQYJKoZIhvcNAQELBQADggEBAJZtXhp43+PpBQwJbu0YF6Z+YxHR TDZKE8iNYqDONEYHsIIQHewQ4cDvKOYYdCHzZNekfC/MquQTDuxxB4tH3g8oCzqL 0kIGRNtUknRG2wcf19pZ79hEi0I3K8IVlpJJQJrXx4U0gMYQpK4UZJAnRQ9AF4d0 7o/F7CFEs52JHrXZPcKPqn1k9+frE21aibwqIAWO4aE6dfusu8D8Ym9qxTep1Zfz 6T8eiawEGUdZtG9iJwMFWWikmMv84Q69yg1FQKyoJ/DwojcQ6Vckzz8KW4hlKLPU mWob56XSVq9wWSqk7IjOb3Z9rX7HVCKZLDD5CrBMxOA67LbDZB/TeXsCw1g= -----END CERTIFICATE-----Generated at Wed Nov 5 18:37:27 2025 by rpki-client