$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa File: 091bd218-6d23-4d4b-a23a-59d4459462ce.roa (raw, json) Hash identifier: R5cegEX/sYMptM42Mciwo5saI+XX8katYgMI95Mw92E= Subject key identifier: 0F:58:ED:0B:5C:5B:D6:DD:51:91:78:04:2D:73:A8:26:C2:44:A3:A7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 23615D858BA1037A80AB2A7D68D0E7224B03FE15 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa Signing time: Fri 10 Oct 2025 17:05:39 +0000 ROA not before: Fri 10 Oct 2025 17:05:39 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:61:5d:85:8b:a1:03:7a:80:ab:2a:7d:68:d0:e7:22:4b:03:fe:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:39 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=f689650045591c47e8bbaae6a6d01fa68c3f7199609d8573ae5c36b5c11b8e2d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a0:0c:57:fd:fb:0b:2b:81:27:1a:c1:73:fb: 9e:d5:d7:f4:11:cf:64:33:bc:ee:43:41:da:5d:b6: 07:a2:ac:b1:36:11:b6:f5:73:73:61:f0:94:f2:1f: 38:0d:50:d2:e3:b1:60:a2:3d:5e:8b:fb:a1:32:7e: 91:d9:e6:90:6c:2c:9d:99:6a:c4:65:e0:fd:c5:0d: e1:e1:36:fd:1c:a9:48:70:e9:a8:62:f9:64:0b:e6: a2:7b:e4:e6:bf:01:68:50:0d:67:f6:0f:04:ac:49: 34:c0:4e:fd:b7:ae:4a:9e:61:8d:8a:44:d0:33:82: 6f:fc:44:bb:b1:0d:40:f2:25:ea:c8:44:2a:4b:b5: 9b:c4:1a:44:62:5f:72:6d:a2:a3:ac:2a:9f:d5:6a: 20:67:54:0a:ef:5a:fe:db:26:1c:d8:6c:c3:44:a4: 43:90:64:72:0f:67:09:ac:c9:8c:08:b2:21:fe:02: 56:b4:c2:b9:fb:50:c8:37:28:9e:b5:97:dd:b6:a0: fa:06:5b:1e:12:1f:9f:07:3a:cb:43:a4:e1:ba:74: 06:ec:a9:cf:84:c8:82:76:b6:5e:26:a1:e7:ed:0d: 96:aa:16:80:13:b5:96:a5:4c:2f:5c:16:8b:b4:b9: a2:ca:af:c4:4c:ab:40:9b:ac:20:56:05:f3:16:d4: ab:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:58:ED:0B:5C:5B:D6:DD:51:91:78:04:2D:73:A8:26:C2:44:A3:A7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.68.0/22 Signature Algorithm: sha256WithRSAEncryption 95:6e:b8:2c:d0:c7:da:9e:06:7a:83:10:e7:b5:7e:d0:95:98: 80:ea:b3:a9:31:e1:fe:23:83:c5:28:a7:0f:4e:a7:4f:af:7a: 4c:a7:31:77:cb:92:a0:df:ba:5e:a2:50:5b:e7:71:18:7a:f4: 79:0d:b8:93:65:7e:aa:9d:8b:b4:ee:57:2e:6d:a6:a7:f3:cd: 70:9a:bb:22:79:9e:8f:c9:49:63:56:89:21:63:84:fb:e1:ec: 4d:07:5f:c1:d5:d7:a1:c8:7c:c7:51:29:16:eb:90:77:b0:ac: b0:4f:a8:23:97:ad:bc:1c:ee:be:cd:55:01:50:97:94:9a:0d: d7:df:b1:27:8c:7e:ef:e6:13:d4:61:24:44:a1:8b:20:0e:09: 85:c3:d2:40:eb:d1:1d:4e:76:56:48:57:d7:5f:54:3e:55:23: 25:75:5c:66:12:38:45:d7:6c:c2:5a:86:38:d6:ee:88:c9:37: 37:08:9e:61:01:3d:8a:b6:c5:ac:5e:bc:c4:d6:6e:75:b8:3b: c9:68:cd:a0:5c:50:bf:47:f1:87:6f:04:34:0e:0a:47:82:c1: 84:f8:77:ec:25:eb:78:07:8a:0d:b5:d7:2e:83:8f:c3:e3:d8: 16:38:76:42:95:24:63:26:1a:f9:69:bd:c1:09:a5:ba:db:3e: f6:38:39:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI2FdhYuhA3qAqyp9aNDnIksD/hUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTM5WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjg5NjUwMDQ1NTkxYzQ3ZThiYmFhZTZhNmQwMWZhNjhj M2Y3MTk5NjA5ZDg1NzNhZTVjMzZiNWMxMWI4ZTJkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHoAxX/fsLK4EnGsFz+57V1/QRz2QzvO5DQdpdtgeirLE2 Ebb1c3Nh8JTyHzgNUNLjsWCiPV6L+6EyfpHZ5pBsLJ2ZasRl4P3FDeHhNv0cqUhw 6ahi+WQL5qJ75Oa/AWhQDWf2DwSsSTTATv23rkqeYY2KRNAzgm/8RLuxDUDyJerI RCpLtZvEGkRiX3JtoqOsKp/VaiBnVArvWv7bJhzYbMNEpEOQZHIPZwmsyYwIsiH+ Ala0wrn7UMg3KJ61l922oPoGWx4SH58HOstDpOG6dAbsqc+EyIJ2tl4moeftDZaq FoATtZalTC9cFou0uaLKr8RMq0CbrCBWBfMW1KuVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUD1jtC1xb1t1RkXgELXOoJsJEo6cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA5MWJkMjE4LTZkMjMtNGQ0Yi1hMjNhLTU5ZDQ0NTk0NjJjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYEQwDQYJKoZIhvcNAQELBQADggEBAJVuuCzQx9qeBnqDEOe1ftCVmIDq s6kx4f4jg8Uopw9Op0+vekynMXfLkqDful6iUFvncRh69HkNuJNlfqqdi7TuVy5t pqfzzXCauyJ5no/JSWNWiSFjhPvh7E0HX8HV16HIfMdRKRbrkHewrLBPqCOXrbwc 7r7NVQFQl5SaDdffsSeMfu/mE9RhJEShiyAOCYXD0kDr0R1OdlZIV9dfVD5VIyV1 XGYSOEXXbMJahjjW7ojJNzcInmEBPYq2xaxevMTWbnW4O8lozaBcUL9H8YdvBDQO CkeCwYT4d+wl63gHig211y6Dj8Pj2BY4dkKVJGMmGvlpvcEJpbrbPvY4OWg= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:57 2025 by rpki-client