$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa File: ecc15691-9732-4fda-b2d1-5ad157c2818e.roa (raw, json) Hash identifier: +YoNTo25TIHvquldOmR/e2tQri/cf5T31Y19vxpJuCI= Subject key identifier: 4D:DA:AF:14:88:0B:BF:D5:A7:67:E7:88:FA:BC:BC:49:99:F6:82:56 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 19368AAD4CC25FF55672A637361000880D5CCD42 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa Signing time: Fri 10 Oct 2025 17:05:10 +0000 ROA not before: Fri 10 Oct 2025 17:05:10 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:36:8a:ad:4c:c2:5f:f5:56:72:a6:37:36:10:00:88:0d:5c:cd:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 10 17:05:10 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=dcf77500cc2ed27fdbf4588c74b27e979d07bc42aa769079c3920173577c8aa3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:35:6f:27:21:f2:d7:61:8b:9d:db:4c:db:04: f8:1e:fd:9f:51:7d:f9:74:28:5d:c3:d3:86:de:61: 51:e9:a3:66:44:a2:07:9b:c5:55:cb:6a:49:6a:f2: e2:b9:54:62:d9:43:0b:43:d9:48:11:c5:48:51:73: 07:05:67:c1:01:5c:ff:d2:e4:41:f3:eb:32:8d:44: 9f:23:e6:e8:c1:74:fc:f8:de:12:83:c2:5d:aa:f4: d0:dd:a0:14:77:4e:11:d2:34:73:8f:e9:e2:c3:93: d4:c0:51:5a:91:c8:5b:b8:a7:e9:81:39:75:c3:aa: 65:49:82:c6:71:20:4d:32:3d:de:be:13:76:d2:c5: fb:45:30:e6:fb:aa:50:3d:34:b2:b8:76:e5:46:dc: 77:e4:9f:fc:1b:eb:c5:c9:04:de:7c:2a:20:81:c4: fe:a5:ec:83:42:8b:18:ed:e2:95:3e:30:1b:43:d4: ed:7b:91:ad:40:79:7c:a5:66:60:da:93:6c:29:6e: 36:53:0b:39:64:0a:11:51:6e:63:e6:db:d3:1a:12: 73:a5:a9:70:3e:28:02:ea:c5:5a:53:dd:93:5b:11: e3:ed:ab:71:9d:34:fe:a3:75:e7:d4:c8:c8:37:98: 26:9f:0f:7d:86:49:b7:8e:b5:fc:db:1b:90:05:61: 52:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:DA:AF:14:88:0B:BF:D5:A7:67:E7:88:FA:BC:BC:49:99:F6:82:56 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.3.0/24 Signature Algorithm: sha256WithRSAEncryption 57:d0:4f:8e:0f:2c:e7:42:2a:30:0d:7a:4b:b7:49:19:5c:a2: 34:62:c2:f9:61:80:42:f2:32:6a:fa:2d:28:db:ad:ae:7b:a8: 7d:85:c4:54:21:00:f3:d6:1b:8b:d4:e1:12:88:8f:e2:08:42: 32:24:43:1b:58:05:1b:46:8d:5e:51:92:43:4b:e1:20:1d:c4: 43:fd:30:0b:93:21:7a:1e:f6:1d:61:2f:b1:35:e6:f2:7e:55: 92:be:dc:68:6e:e0:0b:33:86:00:b0:f2:49:27:4f:b7:21:99: 18:01:52:10:b3:d4:54:2e:33:90:2f:12:e6:0f:a5:39:6c:09: 71:bb:ed:6b:18:a8:92:af:c9:9c:d1:47:79:1b:7e:11:59:a0: 28:83:ec:e3:d6:98:da:7f:c3:20:c2:ff:32:75:0f:4e:ab:81: c5:09:68:07:d1:fb:46:7f:28:5c:40:7b:82:6d:7e:ba:8f:4c: b7:8a:f1:14:7f:47:b4:af:a4:04:09:a4:ff:d5:cb:3e:4c:b4: c1:9f:20:98:c2:03:9d:b5:64:43:15:14:00:28:17:c3:ad:c9: af:97:2c:4c:85:f9:fb:06:0d:2e:d8:04:ef:65:fd:b3:ee:1e: 37:94:55:02:bb:2c:0e:8a:6d:fd:8c:b4:e8:04:9c:fe:15:60: a6:4f:e6:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGTaKrUzCX/VWcqY3NhAAiA1czUIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMDEwMTcwNTEwWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2Y3NzUwMGNjMmVkMjdmZGJmNDU4OGM3NGIyN2U5Nzlk MDdiYzQyYWE3NjkwNzljMzkyMDE3MzU3N2M4YWEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0NW8nIfLXYYud20zbBPge/Z9Rffl0KF3D04beYVHpo2ZE ogebxVXLaklq8uK5VGLZQwtD2UgRxUhRcwcFZ8EBXP/S5EHz6zKNRJ8j5ujBdPz4 3hKDwl2q9NDdoBR3ThHSNHOP6eLDk9TAUVqRyFu4p+mBOXXDqmVJgsZxIE0yPd6+ E3bSxftFMOb7qlA9NLK4duVG3Hfkn/wb68XJBN58KiCBxP6l7INCixjt4pU+MBtD 1O17ka1AeXylZmDak2wpbjZTCzlkChFRbmPm29MaEnOlqXA+KALqxVpT3ZNbEePt q3GdNP6jdefUyMg3mCafD32GSbeOtfzbG5AFYVLFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTdqvFIgLv9WnZ+eI+ry8SZn2glYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2VjYzE1NjkxLTk3MzItNGZkYS1iMmQxLTVhZDE1N2MyODE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAMwDQYJKoZIhvcNAQELBQADggEBAFfQT44PLOdCKjANeku3SRlcojRi wvlhgELyMmr6LSjbra57qH2FxFQhAPPWG4vU4RKIj+IIQjIkQxtYBRtGjV5RkkNL 4SAdxEP9MAuTIXoe9h1hL7E15vJ+VZK+3Ghu4AszhgCw8kknT7chmRgBUhCz1FQu M5AvEuYPpTlsCXG77WsYqJKvyZzRR3kbfhFZoCiD7OPWmNp/wyDC/zJ1D06rgcUJ aAfR+0Z/KFxAe4JtfrqPTLeK8RR/R7SvpAQJpP/Vyz5MtMGfIJjCA521ZEMVFAAo F8Otya+XLEyF+fsGDS7YBO9l/bPuHjeUVQK7LA6Kbf2MtOgEnP4VYKZP5gE= -----END CERTIFICATE-----Generated at Mon Oct 20 21:36:18 2025 by rpki-client