$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa File: 35dd8080-5375-4755-bea9-982f40526ea4.roa (raw, json) Hash identifier: s/DUJxZmfIfEo4mQX/hE5qZLMLNskogjr/x5N+ti3Uw= Subject key identifier: 56:28:88:9C:9F:39:36:32:21:8D:41:86:CC:94:09:57:3F:C4:47:62 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 2DE637E4C35289B5C1DE25807E002058A6FDCC7B Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa Signing time: Fri 08 May 2026 00:10:08 +0000 ROA not before: Fri 08 May 2026 00:10:08 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:e6:37:e4:c3:52:89:b5:c1:de:25:80:7e:00:20:58:a6:fd:cc:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: May 8 00:10:08 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=79c5d08b18d8a4408ba9a836c64839b2d9ad55cca2b07a0fb24c186bb08506d7, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:92:b7:ae:56:d8:00:48:ed:87:fe:0b:72:7e: 7e:78:4b:5a:18:f0:63:ab:fa:25:56:ec:67:af:7f: 98:26:d8:64:ce:2c:20:3d:1b:63:3b:ba:38:19:ec: a8:40:07:21:ae:00:30:9f:e3:a0:f3:8e:74:3b:5e: f6:d5:33:c8:1a:4c:08:85:96:2b:9c:86:22:c2:c7: 66:d1:9f:37:93:b3:4e:0c:77:51:34:11:fa:54:3b: 45:42:c0:74:49:a0:7e:ad:7b:2f:89:7c:18:c2:c8: d3:44:94:a3:6e:f9:ae:1a:13:9b:88:4a:39:b5:c1: cd:c1:bb:ad:38:77:6b:cd:17:eb:21:97:c5:12:a4: e4:b8:77:aa:dd:e8:29:f8:54:42:00:cf:8e:c9:1e: 63:fc:b3:c7:ed:8e:15:e0:58:b5:d0:86:53:67:d0: 68:a8:49:98:bf:b0:4d:84:e9:3e:56:66:54:dc:33: d3:c0:bf:37:d6:d5:30:43:02:40:6c:5b:f5:21:0a: c7:2d:97:58:fa:37:a0:8a:fe:1e:c1:02:00:2f:14: d7:36:91:63:85:53:eb:08:78:67:dc:aa:c6:15:59: be:29:8b:a6:a2:eb:41:b0:1c:3d:42:19:4e:b7:ea: eb:ba:d1:fa:52:2b:a6:69:06:78:45:6a:73:ea:38: b8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:28:88:9C:9F:39:36:32:21:8D:41:86:CC:94:09:57:3F:C4:47:62 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 25:26:ae:a0:24:b7:05:52:28:d8:96:f3:a0:3f:8e:2f:9f:5e: 98:01:62:96:1c:eb:ff:54:ed:22:8e:3a:44:51:6b:d4:da:10: 9b:ee:f9:35:4a:c6:8d:40:47:dd:a0:c0:97:ec:f2:5d:fc:ef: df:b7:59:0f:21:4a:3f:9f:40:a5:64:fe:ef:eb:54:4a:bc:f1: ed:1b:08:a4:b6:81:05:b1:8a:ae:18:53:2c:00:8b:2f:af:74: ec:a9:42:56:f5:f4:70:4c:9a:77:d4:55:a7:6f:5b:a9:91:c1: 24:fb:d0:b9:a1:bf:6c:40:ab:3f:61:69:a0:5d:9b:19:07:e2: 6d:d0:0f:88:40:76:48:66:e8:11:77:2f:c7:48:19:71:15:b3: 0c:1a:df:76:cd:25:48:7b:ba:81:72:a8:b6:d6:d2:d6:df:87: 15:28:a5:3d:b6:fd:d6:45:5c:53:5d:e9:e5:bb:11:ab:29:94: c1:8c:c8:2c:92:e6:00:f7:55:f0:a3:7a:23:e9:05:67:2c:49: 11:59:49:24:6d:91:d0:69:fb:b2:c1:ef:f8:81:c4:e9:b8:16: e7:e7:3c:b0:e1:13:0c:78:5c:3c:a5:d8:48:8d:0d:28:5a:f9: 54:f5:f4:8a:ae:41:13:0b:24:e3:e2:e0:7c:96:ee:44:37:a3: d3:58:55:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULeY35MNSibXB3iWAfgAgWKb9zHswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjYwNTA4MDAxMDA4WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWM1ZDA4YjE4ZDhhNDQwOGJhOWE4MzZjNjQ4MzliMmQ5 YWQ1NWNjYTJiMDdhMGZiMjRjMTg2YmIwODUwNmQ3MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCukreuVtgASO2H/gtyfn54S1oY8GOr+iVW7Gevf5gm2GTO LCA9G2M7ujgZ7KhAByGuADCf46DzjnQ7XvbVM8gaTAiFliuchiLCx2bRnzeTs04M d1E0EfpUO0VCwHRJoH6tey+JfBjCyNNElKNu+a4aE5uISjm1wc3Bu604d2vNF+sh l8USpOS4d6rd6Cn4VEIAz47JHmP8s8ftjhXgWLXQhlNn0GioSZi/sE2E6T5WZlTc M9PAvzfW1TBDAkBsW/UhCsctl1j6N6CK/h7BAgAvFNc2kWOFU+sIeGfcqsYVWb4p i6ai60GwHD1CGU636uu60fpSK6ZpBnhFanPqOLghAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUViiInJ85NjIhjUGGzJQJVz/ER2IwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzM1ZGQ4MDgwLTUzNzUtNDc1NS1iZWE5LTk4MmY0MDUyNmVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBACUmrqAktwVSKNiW86A/ji+fXpgB YpYc6/9U7SKOOkRRa9TaEJvu+TVKxo1AR92gwJfs8l3879+3WQ8hSj+fQKVk/u/r VEq88e0bCKS2gQWxiq4YUywAiy+vdOypQlb19HBMmnfUVadvW6mRwST70Lmhv2xA qz9haaBdmxkH4m3QD4hAdkhm6BF3L8dIGXEVswwa33bNJUh7uoFyqLbW0tbfhxUo pT22/dZFXFNd6eW7EasplMGMyCyS5gD3VfCjeiPpBWcsSRFZSSRtkdBp+7LB7/iB xOm4FufnPLDhEwx4XDyl2EiNDSha+VT19IquQRMLJOPi4HyW7kQ3o9NYVYw= -----END CERTIFICATE-----Generated at Tue May 12 23:13:28 2026 by rpki-client