$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2d03cc6-f4a8-43c1-9778-0cfd9163675d.roa File: c2d03cc6-f4a8-43c1-9778-0cfd9163675d.roa (raw, json) Hash identifier: wjtYVFiIkX2+PvkXy8KDScJhPZ5RX9mYU0fkxB9VTyI= Subject key identifier: CF:62:7F:64:0E:78:35:B1:8D:BE:BF:5C:03:70:E9:9A:A0:46:F6:20 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 06972E4674CEE497D8141A2AFBE91599E0CBC47F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2d03cc6-f4a8-43c1-9778-0cfd9163675d.roa Signing time: Mon 27 Oct 2025 15:06:50 +0000 ROA not before: Mon 27 Oct 2025 15:06:50 +0000 ROA not after: Mon 01 Dec 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 02 Nov 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:97:2e:46:74:ce:e4:97:d8:14:1a:2a:fb:e9:15:99:e0:cb:c4:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 27 15:06:50 2025 GMT Not After : Dec 1 23:59:59 2025 GMT Subject: serialNumber=6956e4042afd8333a933cb7632c475c9195757ebe44b82f5b22d3b7ce85fff23, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fd:ef:ae:5b:99:07:93:e6:f0:a2:e5:fa:c8: 78:df:c3:e8:04:37:89:03:da:2d:e8:56:d0:fe:79: 48:26:32:07:66:64:8b:af:0e:02:e7:c2:62:b1:bf: 6c:1f:e6:8d:9f:97:f1:8a:90:30:54:50:49:da:19: 40:8f:1d:58:e7:c7:c0:84:37:e6:c0:1c:e5:04:c3: f5:d8:37:fb:ea:7f:48:c5:95:f0:6c:db:c9:29:4b: 22:e3:fd:e9:39:b6:53:67:57:6c:a2:6b:d3:4a:3a: 38:bc:00:6f:c5:04:3d:d1:fd:d4:5a:7a:27:59:8e: 94:66:65:ee:b7:1e:79:cf:2a:26:ed:14:92:5a:d9: d0:52:9f:97:d5:73:59:5d:ba:54:a3:b5:72:d4:99: ca:cf:94:93:a9:59:93:f9:9d:bf:e2:c7:34:55:10: 9c:52:90:6e:f9:01:2d:b3:7d:ca:bc:dc:9f:30:17: 54:95:2f:66:e9:5b:a9:40:ee:e1:50:83:f6:32:66: 2f:e4:b5:3f:e2:16:25:ee:75:7f:e6:12:76:20:97: 6b:b7:9b:a9:8b:27:a9:a3:90:f3:0b:39:54:ea:1e: c1:da:6c:8f:11:0c:2d:1f:45:30:f4:d4:26:24:ad: 0c:0c:94:30:97:fe:e6:2e:8a:64:4c:81:0f:ac:a4: a6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:62:7F:64:0E:78:35:B1:8D:BE:BF:5C:03:70:E9:9A:A0:46:F6:20 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2d03cc6-f4a8-43c1-9778-0cfd9163675d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/12 Signature Algorithm: sha256WithRSAEncryption 10:bf:a4:ca:e4:ac:a1:06:4c:c9:81:e1:9c:9e:08:0b:e2:14: a4:47:f5:05:0e:c4:b2:1d:6a:f8:38:40:9a:ba:95:58:da:b9: b4:85:b3:89:36:e0:21:1b:a2:91:cc:f3:ef:cc:67:c6:22:4d: e0:2a:bf:6b:0a:e5:eb:e6:29:50:f7:4d:ec:df:f7:45:ef:2c: 51:03:fa:aa:65:86:7e:37:9d:e9:47:a4:d0:9e:ad:38:b3:95: fd:99:11:08:7d:b3:80:58:a9:94:34:73:d6:f2:ea:58:29:4e: 62:2e:d8:c5:f6:38:8a:f3:aa:92:53:5b:a8:0d:3f:6b:50:c5: 9e:88:e0:8a:87:6c:3c:4b:fb:3e:aa:81:8e:a7:a8:22:f1:40: e4:7d:98:e1:ae:cd:5e:6b:a8:6b:2e:58:63:8a:6e:06:c0:49: c4:ec:bc:d2:a1:f7:71:e8:60:21:4e:a4:55:30:10:54:fa:fb: d7:20:03:98:19:b2:b3:ec:1b:cc:a1:3d:7f:8c:0a:cc:77:77: 45:82:d4:00:84:0d:1c:c0:2f:df:75:a8:74:da:96:65:0c:bf: d9:44:7a:1f:c2:b8:04:a9:05:94:49:c3:04:4d:fb:c0:2c:9a: 6c:1f:7e:d3:21:8e:f7:f2:80:1f:5e:e8:a5:c3:42:af:64:f4: 34:e2:a0:76 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBpcuRnTO5JfYFBoq++kVmeDLxH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDI3MTUwNjUwWhcNMjUxMjAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTU2ZTQwNDJhZmQ4MzMzYTkzM2NiNzYzMmM0NzVjOTE5 NTc1N2ViZTQ0YjgyZjViMjJkM2I3Y2U4NWZmZjIzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf/e+uW5kHk+bwouX6yHjfw+gEN4kD2i3oVtD+eUgmMgdm ZIuvDgLnwmKxv2wf5o2fl/GKkDBUUEnaGUCPHVjnx8CEN+bAHOUEw/XYN/vqf0jF lfBs28kpSyLj/ek5tlNnV2yia9NKOji8AG/FBD3R/dRaeidZjpRmZe63HnnPKibt FJJa2dBSn5fVc1ldulSjtXLUmcrPlJOpWZP5nb/ixzRVEJxSkG75AS2zfcq83J8w F1SVL2bpW6lA7uFQg/YyZi/ktT/iFiXudX/mEnYgl2u3m6mLJ6mjkPMLOVTqHsHa bI8RDC0fRTD01CYkrQwMlDCX/uYuimRMgQ+spKYjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUz2J/ZA54NbGNvr9cA3DpmqBG9iAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyZDAzY2M2LWY0YTgtNDNjMS05Nzc4LTBjZmQ5MTYzNjc1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQjYDANBgkqhkiG9w0BAQsFAAOCAQEAEL+kyuSsoQZMyYHhnJ4IC+IUpEf1 BQ7Esh1q+DhAmrqVWNq5tIWziTbgIRuikczz78xnxiJN4Cq/awrl6+YpUPdN7N/3 Re8sUQP6qmWGfjed6Uek0J6tOLOV/ZkRCH2zgFiplDRz1vLqWClOYi7YxfY4ivOq klNbqA0/a1DFnojgiodsPEv7PqqBjqeoIvFA5H2Y4a7NXmuoay5YY4puBsBJxOy8 0qH3cehgIU6kVTAQVPr71yADmBmys+wbzKE9f4wKzHd3RYLUAIQNHMAv33WodNqW ZQy/2UR6H8K4BKkFlEnDBE37wCyabB9+0yGO9/KAH17opcNCr2T0NOKgdg== -----END CERTIFICATE-----Generated at Fri Oct 31 21:00:51 2025 by rpki-client