$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa File: 0caf62b0-1cb6-426a-827d-61eb989f8a93.roa (raw, json) Hash identifier: siEdz8QFEFE2VGmVczZqrLGI3Fp0Dlok7oefWmjBpbM= Subject key identifier: 4B:4D:74:0C:43:56:82:DA:7D:40:A0:BF:44:33:53:2F:95:5D:96:97 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 15CB61D66FBA3EF16E732B40374C7AB5158C4A33 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa Signing time: Tue 12 May 2026 00:50:10 +0000 ROA not before: Tue 12 May 2026 00:50:10 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:cb:61:d6:6f:ba:3e:f1:6e:73:2b:40:37:4c:7a:b5:15:8c:4a:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 12 00:50:10 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=7fd87616c9e6c0df2a66366a47eb99120a47b3fd0797af9856ee09894249af45, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:01:66:4a:97:1f:ae:30:42:5e:7a:c1:d7: ae:b0:55:b9:65:ae:9d:2b:ee:23:74:42:a1:28:8a: c5:5d:51:bf:b6:a2:a5:c8:e0:df:e9:fd:3f:51:c2: 26:e1:b0:26:ea:2d:59:67:2d:ee:1b:cc:ab:4a:61: 43:0a:c3:91:f8:4e:07:bf:2b:3a:93:73:d9:78:9f: 51:fc:b6:b9:d8:52:a2:52:a4:b5:35:4d:c5:b8:c4: 74:76:0d:ea:fd:2e:54:01:ea:86:76:a9:68:55:07: ee:a1:b9:40:ab:97:7f:ed:29:eb:6d:b5:e4:27:d0: c9:29:00:3b:a5:c6:ae:cd:0d:d0:49:b2:07:4b:14: c8:cc:9b:01:61:63:5e:69:c7:4e:7b:18:7f:72:d1: b6:33:11:09:1d:26:28:f1:b2:7d:57:61:4f:6d:67: ad:21:d0:50:67:4a:a3:fe:a5:72:67:3f:41:2c:df: 23:97:47:12:07:20:f0:ec:9a:c5:af:1e:61:a4:bf: 45:53:2d:84:5a:5d:0e:45:1a:f5:94:c2:8c:7f:f2: a4:2c:69:f5:5c:da:24:0e:3a:2d:bc:3a:14:e8:8d: 48:f4:fb:7a:c5:1a:80:a7:7d:29:cd:21:44:1d:4e: 43:3a:78:f8:6e:39:0e:b2:e1:ff:cb:9d:0b:02:67: 05:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:4D:74:0C:43:56:82:DA:7D:40:A0:BF:44:33:53:2F:95:5D:96:97 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.49.0/24 Signature Algorithm: sha256WithRSAEncryption 37:d8:e5:56:87:2d:5a:39:30:d5:4f:78:7b:8b:67:3c:1d:4d: a5:25:77:68:78:f9:14:76:67:81:e9:1a:9e:ee:e5:04:38:1d: 17:2c:bf:ed:ec:23:21:91:cd:b2:b9:7b:8d:02:bc:a0:10:59: b8:e4:20:b2:73:93:fc:28:d2:f7:27:ed:bd:06:1b:4f:e4:8b: 0a:ee:eb:22:c2:79:ff:f9:47:df:45:c3:1a:c4:9f:3c:e5:c4: b2:ea:5d:0e:7b:19:c6:62:ac:d7:d9:2c:d7:fb:29:8b:04:53: 9b:e8:52:a6:e2:b3:d0:27:6f:72:b5:1b:a3:75:62:9d:71:0b: 88:78:59:22:cc:dd:9c:23:fa:f9:47:9b:91:53:ab:3a:f4:2f: b5:1c:70:5d:f7:ed:cb:9f:42:87:15:2b:af:c3:8d:12:13:ca: 11:56:47:f7:ed:a5:24:10:9c:df:01:da:4c:0c:76:45:92:50: fa:db:ed:4d:83:12:1c:4a:76:a7:e4:e8:00:bb:ad:58:47:6a: 0b:51:fa:4b:81:65:6c:25:ee:53:8c:b8:6f:a3:b8:78:d6:16: 2c:e9:5a:88:ba:ce:34:7f:ff:57:a8:55:68:f5:c8:91:3b:7d: 3c:d1:45:22:6e:c7:07:7a:a6:f6:60:ce:f3:e4:a6:26:b7:9b: 0a:a4:fe:75 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFcth1m+6PvFucytAN0x6tRWMSjMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTEyMDA1MDEwWhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmQ4NzYxNmM5ZTZjMGRmMmE2NjM2NmE0N2ViOTkxMjBh NDdiM2ZkMDc5N2FmOTg1NmVlMDk4OTQyNDlhZjQ1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl2wFmSpcfrjBCXnrB166wVbllrp0r7iN0QqEoisVdUb+2 oqXI4N/p/T9RwibhsCbqLVlnLe4bzKtKYUMKw5H4Tge/KzqTc9l4n1H8trnYUqJS pLU1TcW4xHR2Der9LlQB6oZ2qWhVB+6huUCrl3/tKettteQn0MkpADulxq7NDdBJ sgdLFMjMmwFhY15px057GH9y0bYzEQkdJijxsn1XYU9tZ60h0FBnSqP+pXJnP0Es 3yOXRxIHIPDsmsWvHmGkv0VTLYRaXQ5FGvWUwox/8qQsafVc2iQOOi28OhTojUj0 +3rFGoCnfSnNIUQdTkM6ePhuOQ6y4f/LnQsCZwWJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS010DENWgtp9QKC/RDNTL5VdlpcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBjYWY2MmIwLTFjYjYtNDI2YS04MjdkLTYxZWI5ODlmOGE5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDEwDQYJKoZIhvcNAQELBQADggEBADfY5VaHLVo5MNVPeHuLZzwdTaUl d2h4+RR2Z4HpGp7u5QQ4HRcsv+3sIyGRzbK5e40CvKAQWbjkILJzk/wo0vcn7b0G G0/kiwru6yLCef/5R99FwxrEnzzlxLLqXQ57GcZirNfZLNf7KYsEU5voUqbis9An b3K1G6N1Yp1xC4h4WSLM3Zwj+vlHm5FTqzr0L7UccF337cufQocVK6/DjRITyhFW R/ftpSQQnN8B2kwMdkWSUPrb7U2DEhxKdqfk6AC7rVhHagtR+kuBZWwl7lOMuG+j uHjWFizpWoi6zjR//1eoVWj1yJE7fTzRRSJuxwd6pvZgzvPkpia3mwqk/nU= -----END CERTIFICATE-----Generated at Wed May 13 03:46:45 2026 by rpki-client