$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa File: 1b8dd216-c20b-4301-bd6e-0d090408de27.roa (raw, json) Hash identifier: ZQvur5tCC4h1iOBlK4qF21XQEqVirNx8mH1n1PDVQNo= Subject key identifier: 25:BC:79:CF:33:5A:FF:CC:1C:18:2F:5C:2E:05:AC:7C:D1:41:78:2E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 691D0CD87D97BB09EF11F1F9F8B94AF5291B39D7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa Signing time: Tue 12 May 2026 01:00:06 +0000 ROA not before: Tue 12 May 2026 01:00:06 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:1d:0c:d8:7d:97:bb:09:ef:11:f1:f9:f8:b9:4a:f5:29:1b:39:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 12 01:00:06 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=0e2a07ba0f7a7cfce271b95aa033d236394f0aba27444db2ad734f7f329b6d08, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:be:3f:2c:ee:40:6e:52:b1:23:fa:47:4c:88: 1a:68:b5:8f:35:1a:ad:78:58:16:f6:9e:16:60:47: 3a:f7:d5:de:74:b1:df:7e:8b:61:01:23:ff:e0:96: 50:99:34:d1:e9:5a:58:b3:9d:d2:cb:07:e2:2c:0e: de:e1:d4:ad:de:16:10:c9:e5:e7:ac:80:2a:13:66: ef:7b:cd:cd:a5:b1:8c:de:5e:89:5f:8b:8f:b2:18: 22:23:04:c9:96:e4:ab:37:ff:65:62:b8:a9:1c:7d: ae:b5:79:9d:cd:f9:5d:24:49:57:4c:dc:4d:d6:0f: a4:52:22:85:91:00:26:0b:a7:21:ba:ca:d9:7b:47: fe:92:44:2b:45:eb:37:77:74:01:be:fa:6d:83:89: ca:02:c4:ee:5c:5b:6d:11:1d:17:60:15:fd:9d:97: ad:9e:83:d0:d4:b7:0a:df:db:21:40:1d:2c:a0:98: c2:29:26:51:41:f6:7f:c4:53:f9:f1:d9:e8:75:0e: c5:b8:f0:cc:c6:ef:51:5f:4b:d4:ac:23:a2:3f:04: 44:97:8e:6a:19:12:be:fa:66:72:9e:95:22:84:11: 29:a4:2a:98:e9:b5:b8:21:a6:82:e1:18:d3:68:cc: 05:a0:2f:f3:0d:9e:f7:a7:60:9a:08:56:08:81:cf: 85:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BC:79:CF:33:5A:FF:CC:1C:18:2F:5C:2E:05:AC:7C:D1:41:78:2E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/24 Signature Algorithm: sha256WithRSAEncryption 35:4d:e8:4d:9a:78:7a:5d:bf:52:41:93:ec:91:7f:8b:d9:c5: 72:f9:1b:f3:6c:e8:b2:b1:b4:b1:bd:98:d4:40:95:68:cc:32: 4c:92:a0:22:17:60:65:40:9c:1d:14:bd:5e:c3:d7:ad:a6:71: 3a:c4:99:6c:14:41:a1:b9:f8:4f:6a:15:3a:b1:57:78:64:fe: 76:7b:54:d1:b2:1c:8d:be:80:b8:76:9d:df:1c:b0:b8:db:91: 3b:37:63:08:c1:be:5d:f6:37:78:1c:6b:0f:70:54:9c:f5:dd: d0:49:75:8d:43:57:d5:6b:bd:61:8d:78:7d:d1:cb:d2:b0:17: b5:bf:5e:81:cd:80:fd:df:fb:1f:e7:ed:87:15:19:82:c3:4a: 6c:08:7e:2b:f8:7d:9f:6c:25:4a:08:a3:d9:90:69:43:e2:ce: 3f:b9:2e:21:28:95:ad:18:2f:bf:94:c1:ee:6d:f0:fd:84:f6: cb:72:e6:f4:e3:f9:9f:ab:9d:4f:ea:a1:80:cc:7d:59:43:4d: 27:64:eb:70:0f:c9:49:fc:f8:e3:70:80:c4:56:2c:dc:ed:8a: 56:e2:30:cb:0d:a0:37:8c:2f:9d:8f:e8:12:0e:a8:18:a2:a5: f9:8b:d5:ea:4c:b3:b7:32:93:4f:3b:96:0c:dc:59:06:98:a4: 45:ca:54:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaR0M2H2XuwnvEfH5+LlK9SkbOdcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTEyMDEwMDA2WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTJhMDdiYTBmN2E3Y2ZjZTI3MWI5NWFhMDMzZDIzNjM5 NGYwYWJhMjc0NDRkYjJhZDczNGY3ZjMyOWI2ZDA4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9vj8s7kBuUrEj+kdMiBpotY81Gq14WBb2nhZgRzr31d50 sd9+i2EBI//gllCZNNHpWlizndLLB+IsDt7h1K3eFhDJ5eesgCoTZu97zc2lsYze Xolfi4+yGCIjBMmW5Ks3/2ViuKkcfa61eZ3N+V0kSVdM3E3WD6RSIoWRACYLpyG6 ytl7R/6SRCtF6zd3dAG++m2DicoCxO5cW20RHRdgFf2dl62eg9DUtwrf2yFAHSyg mMIpJlFB9n/EU/nx2eh1DsW48MzG71FfS9SsI6I/BESXjmoZEr76ZnKelSKEESmk KpjptbghpoLhGNNozAWgL/MNnvenYJoIVgiBz4VLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJbx5zzNa/8wcGC9cLgWsfNFBeC4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFiOGRkMjE2LWMyMGItNDMwMS1iZDZlLTBkMDkwNDA4ZGUyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDAwDQYJKoZIhvcNAQELBQADggEBADVN6E2aeHpdv1JBk+yRf4vZxXL5 G/Ns6LKxtLG9mNRAlWjMMkySoCIXYGVAnB0UvV7D162mcTrEmWwUQaG5+E9qFTqx V3hk/nZ7VNGyHI2+gLh2nd8csLjbkTs3YwjBvl32N3gcaw9wVJz13dBJdY1DV9Vr vWGNeH3Ry9KwF7W/XoHNgP3f+x/n7YcVGYLDSmwIfiv4fZ9sJUoIo9mQaUPizj+5 LiEola0YL7+Uwe5t8P2E9sty5vTj+Z+rnU/qoYDMfVlDTSdk63APyUn8+ONwgMRW LNztilbiMMsNoDeML52P6BIOqBiipfmL1epMs7cyk087lgzcWQaYpEXKVME= -----END CERTIFICATE-----Generated at Wed May 13 03:40:43 2026 by rpki-client