$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa File: e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa (raw, json) Hash identifier: YI8dxdmBT1sNYxTxc9J4L9yNcIY5+jp0Ki54ICHq7jM= Subject key identifier: E9:3E:9F:DD:7C:A3:36:13:B7:D3:53:8D:3E:5D:85:5C:D4:22:41:BE Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 47EBE52C1D5105381175CB7DC81738F701091B47 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa Signing time: Tue 21 Oct 2025 12:20:03 +0000 ROA not before: Tue 21 Oct 2025 12:20:03 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:eb:e5:2c:1d:51:05:38:11:75:cb:7d:c8:17:38:f7:01:09:1b:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 21 12:20:03 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=66485a09360e5b4d9fa0b4ae503a75cd1087fb94344abce4656151c3e5ef263f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5b:7f:46:6b:57:19:e6:9b:42:79:32:6b:25: 73:7c:d5:0b:8f:2a:08:12:2c:da:24:ec:a2:8d:54: 34:86:8d:c3:77:fd:b4:f8:f2:d9:11:52:74:8e:c8: e4:ea:af:3c:5d:56:34:4f:e7:bf:95:ea:02:67:2c: 10:e0:c5:d8:92:2b:35:11:7a:10:b7:c4:25:c9:e6: ae:4d:67:27:0c:54:9f:d5:30:54:1a:f8:1c:cd:31: 73:83:67:de:94:5f:43:0b:c1:ca:34:34:01:f4:7d: a4:58:16:f9:21:c6:48:9e:ee:d4:35:22:b1:42:5a: 62:fa:44:d2:1f:4e:e2:7b:78:c2:f7:9e:5e:40:b9: df:d1:ca:21:1d:89:fe:67:44:2f:fc:95:53:36:f6: 95:a6:21:59:b5:11:51:2b:c3:21:bf:2d:71:af:ec: 06:37:f9:33:7d:43:ca:67:9b:79:8b:27:93:5b:0c: 99:d0:60:e6:fd:6b:5b:ee:00:4c:d5:55:a7:0d:f0: b2:ea:74:04:60:55:20:0d:52:e6:1b:e4:e3:13:d9: 49:f3:4b:5a:fb:d3:26:75:b3:c2:20:e2:9e:8d:7e: e6:80:7b:3e:61:f9:c7:74:82:7d:d8:18:69:96:ce: 2c:1a:92:34:0b:f4:50:ce:b0:33:77:91:36:5b:0f: 5e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3E:9F:DD:7C:A3:36:13:B7:D3:53:8D:3E:5D:85:5C:D4:22:41:BE X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 98:22:a4:3c:85:ea:85:7b:68:b1:c1:a0:44:42:c3:14:05:54: c6:d2:89:56:1f:ca:0e:61:69:6f:34:5b:88:e5:dd:14:7d:47: 65:ad:5b:f4:8c:6b:98:05:e8:13:62:6c:a2:68:60:cf:47:26: f0:3d:83:1c:19:c1:38:6b:a6:1e:c4:c0:85:63:37:dd:49:9c: 66:3e:db:d7:cc:b9:ff:eb:9c:0e:35:9d:b7:3d:b4:29:f4:a5: 04:2e:57:b4:8d:14:e6:8c:87:74:3d:ae:1d:11:d9:6c:7e:45: ec:f1:10:20:d4:55:82:e9:eb:a9:49:6e:ad:50:ca:22:65:70: d1:00:dc:51:a5:c9:89:8a:bb:95:c9:da:9f:8d:20:84:ec:ad: 29:5f:83:a5:e4:63:71:11:c4:42:9c:f5:8e:12:ae:0b:9f:a5: b8:ac:75:c9:33:62:27:02:af:a8:87:7c:26:b9:0d:11:7e:98: d3:c3:ab:65:14:78:31:c0:7a:8a:bb:e3:fb:5a:73:86:ca:38: 58:8a:63:c8:a7:95:2b:05:f4:c3:17:47:31:86:71:95:5e:85: 02:7a:57:d1:b6:d8:18:55:ba:a0:19:42:e0:a4:8c:d0:a4:e4: 0c:52:92:76:06:d6:ff:3f:2b:81:d5:95:83:bd:c8:cf:67:d4: 18:49:b7:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR+vlLB1RBTgRdct9yBc49wEJG0cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDIxMTIyMDAzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NjQ4NWEwOTM2MGU1YjRkOWZhMGI0YWU1MDNhNzVjZDEw ODdmYjk0MzQ0YWJjZTQ2NTYxNTFjM2U1ZWYyNjNmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmW39Ga1cZ5ptCeTJrJXN81QuPKggSLNok7KKNVDSGjcN3 /bT48tkRUnSOyOTqrzxdVjRP57+V6gJnLBDgxdiSKzURehC3xCXJ5q5NZycMVJ/V MFQa+BzNMXODZ96UX0MLwco0NAH0faRYFvkhxkie7tQ1IrFCWmL6RNIfTuJ7eML3 nl5Aud/RyiEdif5nRC/8lVM29pWmIVm1EVErwyG/LXGv7AY3+TN9Q8pnm3mLJ5Nb DJnQYOb9a1vuAEzVVacN8LLqdARgVSANUuYb5OMT2UnzS1r70yZ1s8Ig4p6NfuaA ez5h+cd0gn3YGGmWziwakjQL9FDOsDN3kTZbD15VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6T6f3XyjNhO301ONPl2FXNQiQb4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1YzFiOWI4LTk3ZjAtNDRlMC1hNGI1LTJmNmMyYTI1MzFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAJgipDyF6oV7aLHBoERCwxQFVMbS iVYfyg5haW80W4jl3RR9R2WtW/SMa5gF6BNibKJoYM9HJvA9gxwZwThrph7EwIVj N91JnGY+29fMuf/rnA41nbc9tCn0pQQuV7SNFOaMh3Q9rh0R2Wx+RezxECDUVYLp 66lJbq1QyiJlcNEA3FGlyYmKu5XJ2p+NIITsrSlfg6XkY3ERxEKc9Y4Srgufpbis dckzYicCr6iHfCa5DRF+mNPDq2UUeDHAeoq74/tac4bKOFiKY8inlSsF9MMXRzGG cZVehQJ6V9G22BhVuqAZQuCkjNCk5AxSknYG1v8/K4HVlYO9yM9n1BhJt8M= -----END CERTIFICATE-----Generated at Wed Nov 5 17:14:52 2025 by rpki-client