$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa File: 2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa (raw, json) Hash identifier: eT9wAq0UBPUxZcgKwSgIYxE2GbQbFtdVSh71SfE8QjI= Subject key identifier: 84:D2:AB:6C:91:B6:E7:19:57:B2:51:27:DA:B1:85:22:48:17:EE:50 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 36101D295CE2AF67BA41A29FAFF867E01D0CCF5F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa Signing time: Mon 06 Oct 2025 17:37:48 +0000 ROA not before: Mon 06 Oct 2025 17:37:48 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:10:1d:29:5c:e2:af:67:ba:41:a2:9f:af:f8:67:e0:1d:0c:cf:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 6 17:37:48 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=45ff23829816d48c685ea5dd92b6406e0af5400f5813fcd4f806bfccf779da42, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c2:e8:5a:d6:02:1b:db:a9:26:6c:43:35:90: 23:ad:fb:2a:30:4a:9a:88:7c:b9:cb:84:a4:9d:89: 99:41:33:29:18:b2:d3:9a:cd:a9:8d:03:b4:08:79: fc:0e:1d:3d:b9:30:55:d9:f2:36:23:37:64:09:f9: 7f:8f:85:24:70:48:b9:de:fe:be:c4:aa:ef:a2:4d: de:85:b8:df:78:3d:ff:89:7e:49:81:9c:10:22:92: 48:f7:50:1f:4d:49:ea:43:56:19:20:77:64:96:68: d5:37:27:c5:da:05:d3:72:d8:b0:a3:ca:d0:0c:94: 25:41:93:c0:4d:1b:95:9e:e8:a2:72:69:e8:0f:90: d9:9d:bb:1b:5b:8e:a2:98:61:8d:5c:a9:70:41:ce: d2:d4:02:27:25:4d:9f:30:be:e8:29:dd:a7:e6:1f: da:78:bc:ef:4b:ab:f8:a9:65:46:94:f9:5f:81:db: c0:08:eb:2f:40:69:91:2d:6a:6a:39:af:1a:cd:81: 8a:5e:f2:57:9a:71:27:cd:99:78:2c:3e:7d:51:e2: e5:85:e7:c7:e5:6b:d7:15:7f:0f:a1:80:46:6a:1d: a2:36:de:c4:24:10:5c:2e:e4:c7:5b:cb:aa:b6:ee: 06:c5:2a:46:eb:bc:c4:fc:6e:29:f4:1b:fa:62:b5: ea:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D2:AB:6C:91:B6:E7:19:57:B2:51:27:DA:B1:85:22:48:17:EE:50 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 91:bf:7c:63:c9:eb:ed:d8:c0:c1:70:2e:05:d0:3b:33:40:ab: c0:20:80:f0:7f:12:01:e2:4e:c7:6c:f7:18:c2:9b:c0:a3:7f: 7c:b3:ea:77:b2:04:8b:8d:04:c1:63:3a:de:8f:20:fb:3f:89: de:d0:82:57:4f:a4:35:9e:9f:ba:db:ca:c5:7f:f4:05:0f:d4: ed:17:e7:b8:b9:76:e6:1b:fb:4e:06:47:75:27:ad:fc:58:84: db:7e:78:e3:db:56:18:67:a5:bc:45:5a:6d:b8:1b:34:f6:ad: 41:99:3e:70:dc:b4:23:5d:d2:c2:d3:7b:65:7b:f8:d9:6f:37: b1:93:de:c0:bb:9d:62:b1:b0:a0:7d:4f:84:96:ec:e7:76:f8: 6c:3b:dd:0e:75:68:18:95:fa:a7:5d:1f:31:fd:a9:66:df:7a: e6:5f:2d:a1:07:d4:a7:f6:43:48:64:ff:95:38:bd:14:be:64: 81:93:5f:45:65:67:ce:aa:2b:a7:97:86:e1:1c:be:b5:62:e7: 33:71:c0:5a:5c:98:f7:8d:75:24:ea:89:84:47:5d:ae:ab:cd: b9:d4:61:30:1f:04:77:3f:92:8b:fe:63:60:13:24:55:22:48: 4a:ee:f2:ed:2e:eb:6b:19:f1:53:d2:c1:fc:50:4b:7a:3d:84: 8e:32:9a:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNhAdKVzir2e6QaKfr/hn4B0Mz18wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDA2MTczNzQ4WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWZmMjM4Mjk4MTZkNDhjNjg1ZWE1ZGQ5MmI2NDA2ZTBh ZjU0MDBmNTgxM2ZjZDRmODA2YmZjY2Y3NzlkYTQyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtwuha1gIb26kmbEM1kCOt+yowSpqIfLnLhKSdiZlBMykY stOazamNA7QIefwOHT25MFXZ8jYjN2QJ+X+PhSRwSLne/r7Equ+iTd6FuN94Pf+J fkmBnBAikkj3UB9NSepDVhkgd2SWaNU3J8XaBdNy2LCjytAMlCVBk8BNG5We6KJy aegPkNmduxtbjqKYYY1cqXBBztLUAiclTZ8wvugp3afmH9p4vO9Lq/ipZUaU+V+B 28AI6y9AaZEtamo5rxrNgYpe8leacSfNmXgsPn1R4uWF58fla9cVfw+hgEZqHaI2 3sQkEFwu5Mdby6q27gbFKkbrvMT8bin0G/piteplAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhNKrbJG25xlXslEn2rGFIkgX7lAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJmMjU2YzJiLThiY2YtNDdiNS1iMmY1LTZkODRmZjFkNWZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBAJG/fGPJ6+3YwMFwLgXQOzNAq8Ag gPB/EgHiTsds9xjCm8Cjf3yz6neyBIuNBMFjOt6PIPs/id7QgldPpDWen7rbysV/ 9AUP1O0X57i5duYb+04GR3UnrfxYhNt+eOPbVhhnpbxFWm24GzT2rUGZPnDctCNd 0sLTe2V7+NlvN7GT3sC7nWKxsKB9T4SW7Od2+Gw73Q51aBiV+qddHzH9qWbfeuZf LaEH1Kf2Q0hk/5U4vRS+ZIGTX0VlZ86qK6eXhuEcvrVi5zNxwFpcmPeNdSTqiYRH Xa6rzbnUYTAfBHc/kov+Y2ATJFUiSEru8u0u62sZ8VPSwfxQS3o9hI4ymi0= -----END CERTIFICATE-----Generated at Mon Oct 20 19:01:29 2025 by rpki-client