$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa File: 07bd3aac-7c97-429a-9a81-6751e4001f6d.roa (raw, json) Hash identifier: L4bMKf3aeteS0f7RAvv9H9mC6RJ0MObRrp3ZYZffCVM= Subject key identifier: 16:30:BA:34:AA:88:23:48:F9:E7:EF:FC:AC:39:29:A9:A7:5C:72:63 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 681B77B567010EE3FEC1B356C080856D5EF550BB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa Signing time: Sat 15 Nov 2025 05:00:10 +0000 ROA not before: Sat 15 Nov 2025 05:00:10 +0000 ROA not after: Sat 20 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:1b:77:b5:67:01:0e:e3:fe:c1:b3:56:c0:80:85:6d:5e:f5:50:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 15 05:00:10 2025 GMT Not After : Dec 20 23:59:59 2025 GMT Subject: serialNumber=3e011ac7e20319122a480f3d868efcfec91b41551b03e3d96d30c16daef79961, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0b:92:a3:8f:53:63:6c:d8:ce:6a:78:39:23: f0:86:8b:92:9d:3c:f7:be:6c:3e:31:86:06:b4:85: 14:3e:fb:82:2f:0d:60:43:d0:fc:72:95:d5:ab:21: 2b:a4:23:7d:28:af:28:2a:39:b6:f6:2c:48:2f:20: 57:65:69:df:62:b9:cf:52:7c:32:0d:4b:3d:fd:e5: f5:ae:4f:f6:87:eb:12:1b:c9:50:d0:ef:00:f1:eb: b6:0d:e3:f3:7c:97:7f:92:28:a5:89:66:88:f5:16: af:a0:94:5f:3d:e2:16:01:a6:eb:2c:0c:2d:8e:c3: 1b:44:bb:d1:5a:6e:1e:4d:1d:8a:10:97:c4:59:01: d1:d4:64:fe:1c:bf:ad:7e:ad:da:16:83:e5:04:66: d4:83:90:cd:a9:86:7c:f2:33:13:fe:d8:3f:4b:4e: 22:f6:3f:d3:2f:51:cb:e2:ce:bc:5a:16:07:18:a7: 18:94:a3:25:67:64:a5:f0:1f:e2:09:bf:e0:6a:c9: 11:17:46:ac:a4:18:69:79:e6:0e:db:33:09:1c:29: 8c:78:18:cf:62:7b:7a:10:47:3f:41:85:85:da:cd: 2a:72:25:15:b0:e2:32:83:b2:50:c4:b1:2a:56:53: 15:27:c4:b9:0d:dd:c6:c5:c3:75:a3:c7:61:44:ca: 22:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:30:BA:34:AA:88:23:48:F9:E7:EF:FC:AC:39:29:A9:A7:5C:72:63 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.6.0/24 Signature Algorithm: sha256WithRSAEncryption 37:3e:e8:ca:d8:f8:73:6a:89:bf:95:4f:f1:ad:d8:a6:80:97: 18:e0:33:c4:2e:06:22:86:65:96:d2:f7:32:af:ab:42:ed:b6: 0c:ff:b5:a6:ab:e1:ec:c0:d3:28:aa:d8:61:d8:c3:21:2b:c4: d1:b1:af:6e:76:87:ba:cc:d4:77:83:61:98:15:66:9d:ca:ee: 76:a6:37:30:8b:6f:f4:00:aa:2d:dc:25:3f:54:c9:11:22:f0: 8e:96:63:5f:8f:84:f5:3e:78:29:85:fd:de:22:3b:e5:b7:d1: 6e:16:84:81:ab:dd:72:47:ee:03:c6:de:14:54:de:bc:71:ed: b0:ca:c9:d0:ee:82:b5:46:fc:4f:c2:10:dc:31:89:c9:42:ca: 8a:92:a2:2c:89:58:86:74:05:b3:94:9b:62:97:8f:15:8e:df: 4c:8f:01:47:43:1b:e3:05:44:0b:66:27:b9:e0:fe:27:62:60: 14:5f:cf:12:04:ff:ae:a0:58:d0:56:58:99:ff:0a:fb:ab:47: 57:26:e2:0e:59:8e:92:7e:eb:0d:09:ec:58:44:eb:9b:f3:9a: 86:c7:cc:82:07:e3:a7:00:2d:f2:91:98:d9:f6:3e:54:a5:72: d3:58:5d:7b:ac:3c:66:c2:59:3c:1d:3b:1c:3b:a0:79:ee:8e: 1d:61:94:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaBt3tWcBDuP+wbNWwICFbV71ULswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTE1MDUwMDEwWhcNMjUxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTAxMWFjN2UyMDMxOTEyMmE0ODBmM2Q4NjhlZmNmZWM5 MWI0MTU1MWIwM2UzZDk2ZDMwYzE2ZGFlZjc5OTYxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcC5Kjj1NjbNjOang5I/CGi5KdPPe+bD4xhga0hRQ++4Iv DWBD0PxyldWrISukI30orygqObb2LEgvIFdlad9iuc9SfDINSz395fWuT/aH6xIb yVDQ7wDx67YN4/N8l3+SKKWJZoj1Fq+glF894hYBpussDC2OwxtEu9Fabh5NHYoQ l8RZAdHUZP4cv61+rdoWg+UEZtSDkM2phnzyMxP+2D9LTiL2P9MvUcvizrxaFgcY pxiUoyVnZKXwH+IJv+BqyREXRqykGGl55g7bMwkcKYx4GM9ie3oQRz9BhYXazSpy JRWw4jKDslDEsSpWUxUnxLkN3cbFw3Wjx2FEyiIPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFjC6NKqII0j55+/8rDkpqadccmMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA3YmQzYWFjLTdjOTctNDI5YS05YTgxLTY3NTFlNDAwMWY2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAYwDQYJKoZIhvcNAQELBQADggEBADc+6MrY+HNqib+VT/Gt2KaAlxjg M8QuBiKGZZbS9zKvq0Lttgz/taar4ezA0yiq2GHYwyErxNGxr252h7rM1HeDYZgV Zp3K7namNzCLb/QAqi3cJT9UyREi8I6WY1+PhPU+eCmF/d4iO+W30W4WhIGr3XJH 7gPG3hRU3rxx7bDKydDugrVG/E/CENwxiclCyoqSoiyJWIZ0BbOUm2KXjxWO30yP AUdDG+MFRAtmJ7ng/idiYBRfzxIE/66gWNBWWJn/CvurR1cm4g5ZjpJ+6w0J7FhE 65vzmobHzIIH46cALfKRmNn2PlSlctNYXXusPGbCWTwdOxw7oHnujh1hlF8= -----END CERTIFICATE-----Generated at Tue Nov 18 05:47:51 2025 by rpki-client