$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa File: 22f66e2d-2753-44a1-9aec-16b69cdffad1.roa (raw, json) Hash identifier: L2XmaXs/j4tRyou2JPsXQG0Q1LcNhAvOfqDYSQ3vDpM= Subject key identifier: F0:6A:58:26:55:C9:1B:D8:34:2C:15:64:83:B7:53:74:AD:0F:0E:4B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 35A578954A0A799FD1B74B4E3489E81D4B65390C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa Signing time: Sun 16 Nov 2025 00:00:05 +0000 ROA not before: Sun 16 Nov 2025 00:00:05 +0000 ROA not after: Sun 21 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:a5:78:95:4a:0a:79:9f:d1:b7:4b:4e:34:89:e8:1d:4b:65:39:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 16 00:00:05 2025 GMT Not After : Dec 21 23:59:59 2025 GMT Subject: serialNumber=879e1e9d5e7720c2a2f3da5f7805906a831d2592b5c7cb128ff56a15ffdce270, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d9:84:c2:ed:5c:20:2d:f0:03:f2:14:1a:5b: e7:3c:c4:f5:fd:5f:01:41:e5:ef:38:14:34:76:30: 3d:9a:8a:27:b0:cc:57:bb:3f:2a:af:fb:a3:45:e1: 3c:90:82:dd:06:4d:06:d3:87:ef:c5:2f:c5:5d:90: 46:73:76:ab:72:b4:85:95:c8:f8:a2:90:e6:3b:c8: 8f:98:20:37:6a:5b:63:cf:73:e5:2f:22:39:3a:02: 66:c3:ef:55:95:65:b1:bf:19:b0:22:d3:02:d4:bb: 65:62:f3:76:a1:e1:59:b0:7a:f5:0d:bc:a4:fb:46: 0f:04:77:42:1e:30:35:c6:1a:08:87:d2:de:53:3e: 5a:d9:ff:31:7b:2e:04:3a:dc:a7:56:f2:f8:fa:67: 4e:1d:c6:3d:05:05:9e:8d:14:55:99:3b:86:28:40: e6:3d:36:ba:89:fe:e1:ab:8b:7b:44:4f:d8:f0:df: 2f:20:7f:98:10:8f:f6:dd:2a:5b:da:35:ab:29:3d: c8:84:f9:37:18:55:6e:8b:7d:49:c9:16:0e:89:90: d3:8c:27:fa:31:1d:c9:01:a9:ed:1d:fe:66:17:7a: 44:ea:8b:48:64:33:ad:14:31:69:c3:78:9f:40:96: fc:f1:33:a3:ed:bf:5b:9e:15:4d:d6:65:55:f0:73: d9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6A:58:26:55:C9:1B:D8:34:2C:15:64:83:B7:53:74:AD:0F:0E:4B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.1.0/24 Signature Algorithm: sha256WithRSAEncryption 86:fd:0c:7d:3a:50:2c:68:2f:41:63:ef:82:8b:24:b5:89:db: d8:75:c7:40:f5:19:a1:b5:5f:ec:60:40:c2:2b:dd:d3:3a:36: e4:d0:71:79:a5:e9:92:30:20:c7:2c:e6:63:d2:f9:83:06:e7: cd:3e:43:f6:d3:ae:65:c7:ae:5a:e9:93:bd:fa:cf:d7:65:a0: 97:c8:35:b2:cc:29:1e:01:10:6b:9b:3a:61:79:65:7f:3c:03: fe:02:e3:7a:00:24:4f:d1:3b:f1:b3:59:81:1f:25:b7:8b:cb: c5:56:84:c7:2b:5d:97:7d:55:13:e7:8d:6f:8b:eb:ef:a2:69: ad:3f:fc:3c:4e:65:82:d5:37:89:db:5d:b6:1b:fa:c2:9c:30: 0c:96:6b:b5:dc:7a:0f:e4:cb:9f:bc:69:e1:c3:0f:91:78:19: 91:d7:fc:90:d7:25:1b:4a:ae:ae:0d:df:38:49:73:4b:03:a7: e4:e5:56:82:fc:ed:39:73:d1:79:64:b1:1b:2a:8e:2e:21:92: 04:39:1b:bc:4b:28:a9:15:78:5d:7b:72:92:0c:27:e8:81:02: 9b:9a:67:8d:e0:63:3c:4e:42:ef:ff:f0:33:ae:12:49:9d:14: f7:f4:e5:eb:d8:ed:57:ee:f8:b4:46:79:d6:e3:2a:e3:64:aa: b5:d7:0e:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNaV4lUoKeZ/Rt0tONInoHUtlOQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTE2MDAwMDA1WhcNMjUxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzllMWU5ZDVlNzcyMGMyYTJmM2RhNWY3ODA1OTA2YTgz MWQyNTkyYjVjN2NiMTI4ZmY1NmExNWZmZGNlMjcwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf2YTC7VwgLfAD8hQaW+c8xPX9XwFB5e84FDR2MD2aiiew zFe7Pyqv+6NF4TyQgt0GTQbTh+/FL8VdkEZzdqtytIWVyPiikOY7yI+YIDdqW2PP c+UvIjk6AmbD71WVZbG/GbAi0wLUu2Vi83ah4VmwevUNvKT7Rg8Ed0IeMDXGGgiH 0t5TPlrZ/zF7LgQ63KdW8vj6Z04dxj0FBZ6NFFWZO4YoQOY9NrqJ/uGri3tET9jw 3y8gf5gQj/bdKlvaNaspPciE+TcYVW6LfUnJFg6JkNOMJ/oxHckBqe0d/mYXekTq i0hkM60UMWnDeJ9AlvzxM6Ptv1ueFU3WZVXwc9m/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8GpYJlXJG9g0LBVkg7dTdK0PDkswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyZjY2ZTJkLTI3NTMtNDRhMS05YWVjLTE2YjY5Y2RmZmFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAEwDQYJKoZIhvcNAQELBQADggEBAIb9DH06UCxoL0Fj74KLJLWJ29h1 x0D1GaG1X+xgQMIr3dM6NuTQcXml6ZIwIMcs5mPS+YMG580+Q/bTrmXHrlrpk736 z9dloJfINbLMKR4BEGubOmF5ZX88A/4C43oAJE/RO/GzWYEfJbeLy8VWhMcrXZd9 VRPnjW+L6++iaa0//DxOZYLVN4nbXbYb+sKcMAyWa7Xceg/ky5+8aeHDD5F4GZHX /JDXJRtKrq4N3zhJc0sDp+TlVoL87Tlz0XlksRsqji4hkgQ5G7xLKKkVeF17cpIM J+iBApuaZ43gYzxOQu//8DOuEkmdFPf05evY7Vfu+LRGedbjKuNkqrXXDl8= -----END CERTIFICATE-----Generated at Tue Nov 18 08:23:50 2025 by rpki-client