$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa File: f9e50d68-b0c9-485d-9221-bde42a68abe9.roa (raw, json) Hash identifier: KK+GSbM2KxGkhVJAE4OPrywvxix7HZ1Ak/ZG49hxFHQ= Subject key identifier: 9C:CC:08:41:DE:B1:1D:05:4E:53:D3:6B:03:45:33:F2:71:80:DD:73 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 15884EC6D3B9FBEFB22701797A25B86B2C3F0D8A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa Signing time: Fri 10 Oct 2025 17:05:36 +0000 ROA not before: Fri 10 Oct 2025 17:05:36 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:88:4e:c6:d3:b9:fb:ef:b2:27:01:79:7a:25:b8:6b:2c:3f:0d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:36 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=b99f84e1d93903b2211b139a03b3c92fdf9c2a61b8bab4411c50e6d8b534b0d4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f9:fe:d2:e2:c8:b5:70:a4:36:01:8e:89:6a: 8d:8b:d7:35:bf:6c:50:fe:ee:26:76:1d:10:cf:f1: 7d:06:18:0f:4b:43:c2:cf:75:45:f5:0a:70:f7:9f: f0:e8:85:f1:16:d4:86:e0:55:2e:53:c6:20:c1:2a: 5a:fe:38:36:03:c7:f3:9f:2f:b8:7b:e8:85:b9:f0: e1:19:2b:b3:f9:71:6d:09:78:f2:c3:66:24:5f:94: f9:1f:89:fe:ff:60:d1:e8:eb:14:7a:8d:08:18:09: 79:a2:55:c1:5c:d2:59:03:5b:b1:70:e0:43:5c:85: 88:46:d1:29:0d:1f:6d:9f:4c:a3:98:2e:82:77:3f: 4e:7f:6d:3a:eb:cb:7d:b3:8b:12:70:3b:1f:99:3d: fc:c7:03:f9:27:79:65:0d:4a:80:dd:92:94:24:bf: 1a:e6:3f:0b:9f:8f:c1:cd:71:ba:da:60:7d:70:62: 95:48:79:4d:22:f4:c6:df:10:5a:41:b4:17:15:bf: f6:db:13:33:fa:1e:cc:d8:51:1b:8a:2c:1b:59:5f: 1c:5c:d7:fd:c0:e6:1b:22:ea:69:32:7b:c4:c2:e2: bd:12:fb:8e:c4:75:b3:e2:72:51:46:ab:a7:c6:27: 95:14:b3:31:30:5d:36:29:5e:11:26:a3:18:c8:b2: f3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:CC:08:41:DE:B1:1D:05:4E:53:D3:6B:03:45:33:F2:71:80:DD:73 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.64.0/20 Signature Algorithm: sha256WithRSAEncryption 65:b2:cd:87:8f:a4:7a:72:ea:05:4d:e8:ee:8e:43:00:c6:9b: 36:c8:d9:19:c0:89:2d:ca:25:f3:9d:80:3f:81:33:ac:bc:a7: 35:48:bf:41:a6:9d:d4:20:15:70:c2:86:1a:47:00:d7:1a:29: 29:b4:a3:a7:95:c0:04:9f:d0:6f:04:69:8d:f7:d2:1a:76:0f: f3:6b:97:36:c0:ff:b2:f2:91:a2:20:32:da:9d:ea:b4:50:8b: 75:0d:5a:b5:44:9f:d4:a0:62:bd:90:64:d9:88:8d:a8:5f:4a: 74:20:41:f4:57:48:f9:2b:37:ca:44:f1:b8:49:35:56:99:07: 35:2b:c4:a6:78:71:17:af:c5:04:b7:b6:e7:c7:ce:8a:95:d2: 66:12:f8:79:c0:d7:62:b9:73:cc:ac:d3:65:20:79:97:0f:90: a3:2f:9c:e0:01:9f:c0:3d:fc:9a:b6:1e:b0:70:8e:32:11:0e: b6:d2:ba:52:68:f9:3c:8c:7f:f2:aa:18:4d:89:d1:e3:d0:80: f5:c4:14:b9:94:33:b9:29:81:e7:8c:ae:98:b7:0a:c6:78:24: da:57:2f:20:03:7c:6a:d3:2b:e3:a6:00:94:0d:f1:d8:c5:90: ef:1d:04:05:91:6e:4d:3e:79:8d:93:08:1d:c6:a8:a7:5a:81: 95:f5:13:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFYhOxtO5+++yJwF5eiW4ayw/DYowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTM2WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTlmODRlMWQ5MzkwM2IyMjExYjEzOWEwM2IzYzkyZmRm OWMyYTYxYjhiYWI0NDExYzUwZTZkOGI1MzRiMGQ0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDd+f7S4si1cKQ2AY6Jao2L1zW/bFD+7iZ2HRDP8X0GGA9L Q8LPdUX1CnD3n/DohfEW1IbgVS5TxiDBKlr+ODYDx/OfL7h76IW58OEZK7P5cW0J ePLDZiRflPkfif7/YNHo6xR6jQgYCXmiVcFc0lkDW7Fw4ENchYhG0SkNH22fTKOY LoJ3P05/bTrry32zixJwOx+ZPfzHA/kneWUNSoDdkpQkvxrmPwufj8HNcbraYH1w YpVIeU0i9MbfEFpBtBcVv/bbEzP6HszYURuKLBtZXxxc1/3A5hsi6mkye8TC4r0S +47EdbPiclFGq6fGJ5UUszEwXTYpXhEmoxjIsvMnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnMwIQd6xHQVOU9NrA0Uz8nGA3XMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Y5ZTUwZDY4LWIwYzktNDg1ZC05MjIxLWJkZTQyYTY4YWJlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYEAwDQYJKoZIhvcNAQELBQADggEBAGWyzYePpHpy6gVN6O6OQwDGmzbI 2RnAiS3KJfOdgD+BM6y8pzVIv0GmndQgFXDChhpHANcaKSm0o6eVwASf0G8EaY33 0hp2D/NrlzbA/7LykaIgMtqd6rRQi3UNWrVEn9SgYr2QZNmIjahfSnQgQfRXSPkr N8pE8bhJNVaZBzUrxKZ4cRevxQS3tufHzoqV0mYS+HnA12K5c8ys02UgeZcPkKMv nOABn8A9/Jq2HrBwjjIRDrbSulJo+TyMf/KqGE2J0ePQgPXEFLmUM7kpgeeMrpi3 CsZ4JNpXLyADfGrTK+OmAJQN8djFkO8dBAWRbk0+eY2TCB3GqKdagZX1E2c= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:56 2025 by rpki-client