$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1bbf117d-2531-42a6-b595-4c38287c1d36.roa File: 1bbf117d-2531-42a6-b595-4c38287c1d36.roa (raw, json) Hash identifier: 8Ufl3UX64wpvFpAG0NVq2hlg01CWcF7GqikszTRreN8= Subject key identifier: 31:48:87:BF:14:9A:EB:4B:2F:B5:D5:0A:6C:DE:6E:0A:D6:30:10:80 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0D901FAB724495D999EAD87565C766385F299251 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1bbf117d-2531-42a6-b595-4c38287c1d36.roa Signing time: Mon 04 May 2026 15:00:47 +0000 ROA not before: Mon 04 May 2026 15:00:47 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:90:1f:ab:72:44:95:d9:99:ea:d8:75:65:c7:66:38:5f:29:92:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:47 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=32646b77cc310e542d7a615d75e7903354897bff4b0d7d41add8c0ae8d11d5be, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:55:2e:af:eb:6f:05:b7:c2:11:98:47:b0:63: 2f:8e:aa:16:34:6f:ac:fd:64:f1:18:94:77:64:c4: 28:c4:06:aa:d5:9b:72:49:c0:dd:91:c5:82:9b:bb: 4c:45:9e:04:53:1d:e7:36:8d:cf:38:af:95:d8:a1: c9:4f:d1:fc:fb:34:ac:a3:34:d0:cc:66:c9:26:e3: a0:18:90:82:b3:9e:c8:a9:05:ec:1e:07:14:66:9d: be:82:32:6e:8e:88:7d:d5:ed:d7:7d:75:89:10:25: 62:b6:fa:aa:ff:2d:c6:ee:f4:31:71:f7:4f:d2:78: 83:f6:37:77:39:39:60:71:b3:35:13:b4:7b:e8:66: 3d:10:f8:dc:25:86:1f:cb:07:07:28:22:62:e8:9f: 8e:05:09:21:bc:67:a6:31:88:67:ca:60:5d:b3:b6: 89:cc:2f:63:7e:79:54:34:55:c7:63:49:47:92:b9: eb:4d:e5:63:a0:c2:08:48:83:d9:05:10:4c:a2:26: 4f:c8:ed:c7:3b:11:0c:3c:7d:80:d3:c2:aa:eb:fd: 10:c7:c6:54:90:7c:9a:c8:58:0d:6f:6e:b6:a0:27: da:48:af:dd:1f:41:c0:1a:14:91:bc:3c:c1:42:e1: 2a:9e:8a:e9:cf:70:68:d4:1c:dc:ce:c6:72:cf:05: 3b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:48:87:BF:14:9A:EB:4B:2F:B5:D5:0A:6C:DE:6E:0A:D6:30:10:80 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1bbf117d-2531-42a6-b595-4c38287c1d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.5.0/24 Signature Algorithm: sha256WithRSAEncryption 97:7e:19:39:db:09:89:42:89:96:2f:6f:c9:69:cd:5c:8e:ab: ce:8e:53:ec:9d:95:fa:1f:cc:fe:c3:85:34:b7:77:df:d9:98: 1d:a8:11:92:ac:b7:06:53:80:a9:18:7a:7a:eb:97:3f:06:56: 76:85:69:fe:2e:bb:9a:ee:ff:40:fc:62:a2:2c:44:2f:7e:46: dd:3b:71:85:cc:bd:4f:99:75:a2:d8:b1:2e:4f:2a:d0:6d:8e: 42:e1:15:cb:84:2e:43:df:92:9f:9d:a6:b6:76:d5:7b:d3:e8: 55:0e:30:bf:b3:64:9a:75:5c:e9:6c:b0:af:52:5c:41:74:28: a5:25:fe:8d:7f:99:86:5e:e4:c0:ff:57:bf:3a:69:1f:48:91: fa:f6:8c:c6:42:9f:8d:47:fd:a4:da:0f:14:e3:4b:2c:f7:ce: dd:e3:d2:b9:f2:bc:6e:e5:91:7f:22:6b:ea:cd:61:29:50:0b: 5a:e4:81:2b:ea:15:9f:99:01:69:f8:92:bb:95:f7:38:3b:fc: 6b:2d:10:b4:6e:94:bd:a7:09:f1:f9:48:47:06:a8:5c:de:72: c3:a1:24:4e:1a:34:23:6b:72:1f:b0:5b:c7:b1:9a:1f:e8:6f: 59:6e:d4:4b:f3:3e:94:71:0d:ed:08:63:a8:26:97:95:fa:95: c3:9f:e7:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDZAfq3JEldmZ6th1ZcdmOF8pklEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDQ3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjY0NmI3N2NjMzEwZTU0MmQ3YTYxNWQ3NWU3OTAzMzU0 ODk3YmZmNGIwZDdkNDFhZGQ4YzBhZThkMTFkNWJlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9VS6v628Ft8IRmEewYy+OqhY0b6z9ZPEYlHdkxCjEBqrV m3JJwN2RxYKbu0xFngRTHec2jc84r5XYoclP0fz7NKyjNNDMZskm46AYkIKznsip BeweBxRmnb6CMm6OiH3V7dd9dYkQJWK2+qr/Lcbu9DFx90/SeIP2N3c5OWBxszUT tHvoZj0Q+Nwlhh/LBwcoImLon44FCSG8Z6YxiGfKYF2ztonML2N+eVQ0VcdjSUeS uetN5WOgwghIg9kFEEyiJk/I7cc7EQw8fYDTwqrr/RDHxlSQfJrIWA1vbragJ9pI r90fQcAaFJG8PMFC4SqeiunPcGjUHNzOxnLPBTu7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMUiHvxSa60svtdUKbN5uCtYwEIAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFiYmYxMTdkLTI1MzEtNDJhNi1iNTk1LTRjMzgyODdjMWQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAUwDQYJKoZIhvcNAQELBQADggEBAJd+GTnbCYlCiZYvb8lpzVyOq86O U+ydlfofzP7DhTS3d9/ZmB2oEZKstwZTgKkYenrrlz8GVnaFaf4uu5ru/0D8YqIs RC9+Rt07cYXMvU+ZdaLYsS5PKtBtjkLhFcuELkPfkp+dprZ21XvT6FUOML+zZJp1 XOlssK9SXEF0KKUl/o1/mYZe5MD/V786aR9Ikfr2jMZCn41H/aTaDxTjSyz3zt3j 0rnyvG7lkX8ia+rNYSlQC1rkgSvqFZ+ZAWn4kruV9zg7/GstELRulL2nCfH5SEcG qFzecsOhJE4aNCNrch+wW8exmh/ob1lu1EvzPpRxDe0IY6gml5X6lcOf5/k= -----END CERTIFICATE-----Generated at Wed May 13 02:41:52 2026 by rpki-client