$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa File: a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa (raw, json) Hash identifier: oQM52B0yD/vUlhu+dqv/qRMebY/3Jm0K/rvgOCLzVcs= Subject key identifier: 48:2B:52:87:DF:F1:E7:EA:35:D1:89:B9:1D:BA:CB:34:42:DA:F5:64 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 78EDE7D7BE437D20347359E3FA2B4BD148F9AE78 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa Signing time: Mon 06 Oct 2025 17:37:43 +0000 ROA not before: Mon 06 Oct 2025 17:37:43 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ed:e7:d7:be:43:7d:20:34:73:59:e3:fa:2b:4b:d1:48:f9:ae:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 6 17:37:43 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=2983224dd04e03b775cfea43cfac5e5a7d11d205c95034e67001c13c4f06d8a9, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:f5:8c:72:98:31:14:a1:b0:31:74:25:49:bf: 0a:05:b2:95:4b:52:de:d4:4b:13:18:6e:5b:49:b1: dc:7d:eb:67:c4:f4:33:3c:e4:24:1a:6c:f2:65:7b: a1:e9:15:84:11:fe:cd:15:10:92:e8:82:8e:3d:b3: 71:9e:3d:67:3b:6d:e0:ed:ec:b3:bc:73:cf:65:21: 1c:ee:9c:80:4a:9f:b5:24:78:0c:f3:97:07:b0:03: 62:ff:71:0d:7a:9d:d8:dc:6e:bb:ea:2f:f1:d9:66: 5d:71:8f:0b:8d:52:0d:c1:3a:3b:2b:64:c8:a7:70: c9:ee:11:c6:ef:da:9f:ed:e6:1a:f3:b3:6e:27:d0: 43:56:4e:16:64:f1:5e:12:47:f1:d3:d8:fc:f1:d3: d4:dc:25:e2:19:d6:be:54:1a:2a:fb:a5:4c:2f:83: c2:b5:c2:af:69:a1:0a:7a:da:a4:96:d9:1b:c4:17: af:dd:ba:56:e2:f1:90:be:2b:b3:df:13:c0:00:af: ce:27:94:df:ae:24:66:6a:34:e8:33:01:0c:77:03: bf:15:af:3e:02:d7:8b:77:01:e9:10:c8:35:e5:4b: c0:f3:a5:f8:83:bf:27:a1:1d:30:2b:a3:eb:9b:55: e2:b7:e2:e9:4a:9a:86:04:81:84:14:1c:76:0f:2d: fa:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2B:52:87:DF:F1:E7:EA:35:D1:89:B9:1D:BA:CB:34:42:DA:F5:64 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 80:a1:b9:41:46:a4:c6:48:e4:90:c1:f2:bf:44:49:16:17:85: 07:a0:c0:4a:4d:0e:c9:b9:54:bb:ee:21:7c:d9:f7:b3:f1:1b: 08:83:fc:f9:b0:8d:6c:e8:d0:22:ed:07:92:6e:bf:74:e5:cc: 7c:c5:71:71:f3:3e:f6:60:92:a8:c5:00:9a:1e:d5:d9:2a:12: 94:8f:50:3e:0b:e0:de:64:2e:da:25:8e:3b:b8:6c:ac:b0:80: 13:17:01:fc:4f:04:ff:2a:5e:ed:e9:03:0b:72:02:b5:aa:4c: d4:65:d5:d8:4f:5a:f8:75:cf:cc:9b:12:58:8d:30:ae:ed:ed: 7b:05:62:76:29:b8:e8:79:70:50:f3:85:ee:ad:6a:f1:ba:4d: 78:a9:3b:09:34:af:55:2b:19:35:3e:b0:3a:5f:ef:c8:74:9b: c9:5f:b9:90:61:d7:6c:a0:8e:30:79:f6:ab:9a:a0:ae:0a:eb: 14:25:aa:a7:9d:77:4b:5f:f7:87:2d:3e:cd:c1:f9:ba:aa:8d: b5:59:fb:e6:73:fe:af:4b:d6:97:9b:fb:fc:d9:02:6d:c3:11: e6:2f:ca:a6:3d:08:6c:77:f2:24:78:4d:88:7e:4c:fc:7a:ba: e3:7d:7b:b0:67:e5:cb:ec:38:1b:25:31:bb:28:d7:b6:96:d9: 8a:9c:0c:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeO3n175DfSA0c1nj+itL0Uj5rngwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDA2MTczNzQzWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTgzMjI0ZGQwNGUwM2I3NzVjZmVhNDNjZmFjNWU1YTdk MTFkMjA1Yzk1MDM0ZTY3MDAxYzEzYzRmMDZkOGE5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQ9YxymDEUobAxdCVJvwoFspVLUt7USxMYbltJsdx962fE 9DM85CQabPJle6HpFYQR/s0VEJLogo49s3GePWc7beDt7LO8c89lIRzunIBKn7Uk eAzzlwewA2L/cQ16ndjcbrvqL/HZZl1xjwuNUg3BOjsrZMincMnuEcbv2p/t5hrz s24n0ENWThZk8V4SR/HT2Pzx09TcJeIZ1r5UGir7pUwvg8K1wq9poQp62qSW2RvE F6/dulbi8ZC+K7PfE8AAr84nlN+uJGZqNOgzAQx3A78Vrz4C14t3AekQyDXlS8Dz pfiDvyehHTAro+ubVeK34ulKmoYEgYQUHHYPLfrPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSCtSh9/x5+o10Ym5HbrLNELa9WQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2EyN2NkMTQwLTFkMmItNGU3ZC1hNmMwLTdlM2M4NjE1MGMzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAIChuUFGpMZI5JDB8r9ESRYXhQeg wEpNDsm5VLvuIXzZ97PxGwiD/PmwjWzo0CLtB5Juv3TlzHzFcXHzPvZgkqjFAJoe 1dkqEpSPUD4L4N5kLtoljju4bKywgBMXAfxPBP8qXu3pAwtyArWqTNRl1dhPWvh1 z8ybEliNMK7t7XsFYnYpuOh5cFDzhe6tavG6TXipOwk0r1UrGTU+sDpf78h0m8lf uZBh12ygjjB59quaoK4K6xQlqqedd0tf94ctPs3B+bqqjbVZ++Zz/q9L1peb+/zZ Am3DEeYvyqY9CGx38iR4TYh+TPx6uuN9e7Bn5cvsOBslMbso17aW2YqcDE0= -----END CERTIFICATE-----Generated at Mon Oct 20 02:16:12 2025 by rpki-client