$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa File: ecc15691-9732-4fda-b2d1-5ad157c2818e.roa (raw, json) Hash identifier: EtKFVkVCmlHh5Fj/tzUF2Xq4EI5OltkIkq/UART0vME= Subject key identifier: D7:1A:57:99:51:17:31:48:0F:7E:51:6B:31:94:BC:5B:0D:C6:54:0E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6C8289C8158A118E942A1A620EA6E9FF6C932B4B Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa Signing time: Tue 04 Nov 2025 00:30:11 +0000 ROA not before: Tue 04 Nov 2025 00:30:11 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:82:89:c8:15:8a:11:8e:94:2a:1a:62:0e:a6:e9:ff:6c:93:2b:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 4 00:30:11 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=01793e92628e7b7744031a7fd638ed9b63fa27e5fbb3562e17c5620012d4e5a1, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4a:83:ab:ff:5e:91:bd:b7:16:8d:aa:3c:ea: dd:6a:2c:2d:c9:71:86:17:6b:81:5d:75:fa:96:c9: 13:99:e8:34:ad:fd:48:85:b9:7c:35:ea:5e:56:56: dc:8d:0d:27:ac:9d:b2:4d:a4:cb:2c:14:5c:72:cf: b8:e6:3c:73:b7:4b:17:41:a4:54:6a:ed:83:60:97: 04:25:c3:ed:0a:6f:37:eb:d9:78:d4:10:43:84:a4: 3a:75:23:ed:82:6b:62:ac:c4:52:87:52:70:4b:47: 87:f5:d8:46:6e:7f:de:5a:71:7e:6d:d1:28:35:f4: ea:13:0f:70:c9:58:5d:4a:29:57:a9:6e:bc:db:5a: 07:e0:67:55:0e:63:df:f5:e6:13:3e:b8:42:60:38: d4:12:ac:56:d1:97:2a:62:47:72:eb:ba:8c:e6:e0: 92:7e:6d:06:da:6e:43:08:2f:fb:4f:d2:8c:4a:fc: fe:f7:bd:05:16:f7:43:6b:8a:19:fe:2b:fe:e1:fb: 79:60:00:7a:92:00:f4:76:f4:c6:43:df:3d:21:76: 30:15:34:5b:a3:7f:3b:0c:53:b6:97:d3:59:65:f8: e4:26:67:10:c6:2f:2d:94:64:7e:06:98:72:e9:28: 7d:45:d8:11:44:2a:d4:e4:83:1c:9f:22:df:47:f6: 16:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:1A:57:99:51:17:31:48:0F:7E:51:6B:31:94:BC:5B:0D:C6:54:0E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.3.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:5e:98:a5:7b:3a:05:d5:87:02:8c:24:7e:3a:3e:86:d4:b6: ea:58:1a:97:11:ee:ca:dd:ab:e4:28:73:8a:76:33:43:9c:c0: ea:9e:6a:94:24:3b:d0:69:f9:c7:c2:8c:7d:8f:ef:e7:8f:86: 54:b0:79:8c:8a:3d:87:7e:af:b4:af:18:ea:cf:b3:b8:3d:c7: 10:e6:a7:7f:97:7d:66:8e:56:d4:24:8b:d1:cf:76:88:c8:9d: 5f:43:e3:e1:05:5a:47:ef:29:57:3a:4d:9f:4b:ac:0a:53:89: 3c:f4:9a:c3:f8:ca:28:47:e1:d3:22:8c:42:9f:1f:ec:0b:d8: d6:11:3c:d9:1b:c0:e2:35:3e:2f:67:16:1e:d5:5d:41:ef:25: 84:ee:30:20:81:a4:b6:f7:11:f5:4d:7a:ea:f3:cb:8f:29:bb: fa:a5:10:60:1e:fb:36:3a:02:a6:3c:ac:3b:d4:a2:8e:9c:35: cb:cf:f8:8a:39:7a:21:37:4b:74:85:9c:db:76:3b:85:90:7b: 26:13:76:cc:a3:0a:c4:b1:f6:41:83:cd:d1:e6:94:11:26:de: 44:8c:be:db:d4:cf:8d:1a:8f:c4:31:e7:5f:ab:eb:dc:de:f6: 0b:96:9d:4e:26:aa:28:fa:00:40:82:39:39:b7:86:ba:db:58: f7:dd:4a:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbIKJyBWKEY6UKhpiDqbp/2yTK0swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTA0MDAzMDExWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTc5M2U5MjYyOGU3Yjc3NDQwMzFhN2ZkNjM4ZWQ5YjYz ZmEyN2U1ZmJiMzU2MmUxN2M1NjIwMDEyZDRlNWExMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgSoOr/16RvbcWjao86t1qLC3JcYYXa4FddfqWyROZ6DSt /UiFuXw16l5WVtyNDSesnbJNpMssFFxyz7jmPHO3SxdBpFRq7YNglwQlw+0Kbzfr 2XjUEEOEpDp1I+2Ca2KsxFKHUnBLR4f12EZuf95acX5t0Sg19OoTD3DJWF1KKVep brzbWgfgZ1UOY9/15hM+uEJgONQSrFbRlypiR3Lruozm4JJ+bQbabkMIL/tP0oxK /P73vQUW90Nrihn+K/7h+3lgAHqSAPR29MZD3z0hdjAVNFujfzsMU7aX01ll+OQm ZxDGLy2UZH4GmHLpKH1F2BFEKtTkgxyfIt9H9hbNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1xpXmVEXMUgPflFrMZS8Ww3GVA4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2VjYzE1NjkxLTk3MzItNGZkYS1iMmQxLTVhZDE1N2MyODE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAMwDQYJKoZIhvcNAQELBQADggEBAJxemKV7OgXVhwKMJH46PobUtupY GpcR7srdq+Qoc4p2M0OcwOqeapQkO9Bp+cfCjH2P7+ePhlSweYyKPYd+r7SvGOrP s7g9xxDmp3+XfWaOVtQki9HPdojInV9D4+EFWkfvKVc6TZ9LrApTiTz0msP4yihH 4dMijEKfH+wL2NYRPNkbwOI1Pi9nFh7VXUHvJYTuMCCBpLb3EfVNeurzy48pu/ql EGAe+zY6AqY8rDvUoo6cNcvP+Io5eiE3S3SFnNt2O4WQeyYTdsyjCsSx9kGDzdHm lBEm3kSMvtvUz40aj8Qx51+r69ze9guWnU4mqij6AECCOTm3hrrbWPfdSuI= -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:10 2025 by rpki-client