$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa File: 2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa (raw, json) Hash identifier: I/di4w4wi6Hly9QEFlSSsbFcMD10l5bBV67e0e8mTpo= Subject key identifier: AE:F3:0C:B3:D7:FB:B4:5E:8D:16:8F:F2:EE:62:53:F3:46:39:85:3E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0F43ED8A035782A93101C0EE78D0FFCA0C370B92 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa Signing time: Fri 08 May 2026 03:10:30 +0000 ROA not before: Fri 08 May 2026 03:10:30 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:43:ed:8a:03:57:82:a9:31:01:c0:ee:78:d0:ff:ca:0c:37:0b:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 8 03:10:30 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=594c62f97978cf673cd687a80704d346d7a5195f7bc6ba9da6f69f2d10ccf2f7, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:61:33:fc:e8:18:94:bc:5b:97:f6:3b:fd:48: 09:c5:f3:12:15:66:c5:19:5e:1e:01:b1:b1:df:3b: 81:45:a6:b6:ca:b1:8d:5b:fa:74:e2:62:9b:63:f9: 8f:7f:c4:06:4c:b2:4d:0b:72:97:06:2f:c5:c3:2d: 83:93:f6:0d:af:75:41:e5:e7:9d:1c:de:b1:89:60: 0b:7a:9e:11:89:f8:cb:a8:f6:bc:48:03:46:49:10: c1:2d:87:d5:d8:11:5d:76:95:6f:ff:da:75:fc:79: 1d:96:d8:28:05:e9:97:c1:e1:4d:be:ae:77:d2:51: 66:31:8c:47:72:8a:c9:fe:18:12:84:82:4a:c5:fd: d8:f5:13:95:40:36:f3:90:22:8e:b3:a3:08:90:6e: 27:a0:47:5b:67:fe:45:ff:3b:4f:bb:01:b0:9e:f9: 71:4c:fa:62:b4:70:73:f3:22:4e:b3:c2:08:1a:3d: 62:93:4e:45:4b:ea:8b:c8:d3:c5:84:d9:c6:84:03: c3:82:a0:b2:52:2f:78:c1:21:8d:d7:04:87:98:bd: a3:a6:bc:ea:99:4b:8b:a4:85:f1:be:54:64:bc:dc: b0:cb:b6:24:11:e8:25:c0:57:a4:18:b7:c3:2a:2d: cb:26:16:6d:4b:c5:0b:07:b2:3e:ec:1b:77:6a:7b: f6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:F3:0C:B3:D7:FB:B4:5E:8D:16:8F:F2:EE:62:53:F3:46:39:85:3E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 93:6e:ca:6a:7f:bc:5f:58:c7:6a:70:76:42:68:29:09:b5:d3: 24:e0:94:f5:78:65:4c:32:8e:a8:50:04:81:62:95:a3:c5:51: d1:96:9a:fa:a7:a3:6b:4d:eb:9a:22:dd:9b:a0:1d:26:45:7f: 4f:6c:b9:e6:0e:f8:cf:9b:8d:3c:ec:bc:a6:0f:8e:69:36:66: 5e:f3:03:ea:15:6d:d8:93:70:53:1d:b8:bb:c1:90:8b:7b:e7: bf:76:e8:d0:c3:07:91:41:e2:e0:f4:07:25:75:54:b7:25:a9: 15:1f:42:0a:95:a4:0b:69:69:2c:02:56:3f:2e:0b:07:77:68: b2:7c:76:b1:74:2a:69:c5:36:a2:73:41:65:89:ed:95:8f:4c: 3d:cb:44:b6:80:b0:6d:d0:48:6f:ab:17:61:db:e8:ca:d3:d7: ba:d7:19:8f:f5:46:19:08:c1:a1:12:c4:08:e0:d3:97:2e:db: ab:93:0c:3f:3f:20:de:a3:c6:00:1e:ed:01:8f:f6:08:bb:7a: ef:1f:30:9f:ae:bc:d8:62:15:62:e7:9f:4a:a9:9c:04:7b:e8: 8b:f6:ae:7a:15:71:57:c3:f3:14:4f:b1:86:53:b9:ef:a5:3e: 3b:13:c8:41:cd:5e:4d:46:82:80:03:3c:ef:58:33:95:fe:35: 2e:72:9a:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD0PtigNXgqkxAcDueND/ygw3C5IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA4MDMxMDMwWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTRjNjJmOTc5NzhjZjY3M2NkNjg3YTgwNzA0ZDM0NmQ3 YTUxOTVmN2JjNmJhOWRhNmY2OWYyZDEwY2NmMmY3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFYTP86BiUvFuX9jv9SAnF8xIVZsUZXh4BsbHfO4FFprbK sY1b+nTiYptj+Y9/xAZMsk0LcpcGL8XDLYOT9g2vdUHl550c3rGJYAt6nhGJ+Muo 9rxIA0ZJEMEth9XYEV12lW//2nX8eR2W2CgF6ZfB4U2+rnfSUWYxjEdyisn+GBKE gkrF/dj1E5VANvOQIo6zowiQbiegR1tn/kX/O0+7AbCe+XFM+mK0cHPzIk6zwgga PWKTTkVL6ovI08WE2caEA8OCoLJSL3jBIY3XBIeYvaOmvOqZS4ukhfG+VGS83LDL tiQR6CXAV6QYt8MqLcsmFm1LxQsHsj7sG3dqe/bTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrvMMs9f7tF6NFo/y7mJT80Y5hT4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI4MDBjNzBjLTZlYzEtNGQ4Ni1hOTE2LTQ4NTBkZWIyZGZhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBAJNuymp/vF9Yx2pwdkJoKQm10yTg lPV4ZUwyjqhQBIFilaPFUdGWmvqno2tN65oi3ZugHSZFf09sueYO+M+bjTzsvKYP jmk2Zl7zA+oVbdiTcFMduLvBkIt757926NDDB5FB4uD0ByV1VLclqRUfQgqVpAtp aSwCVj8uCwd3aLJ8drF0KmnFNqJzQWWJ7ZWPTD3LRLaAsG3QSG+rF2Hb6MrT17rX GY/1RhkIwaESxAjg05cu26uTDD8/IN6jxgAe7QGP9gi7eu8fMJ+uvNhiFWLnn0qp nAR76Iv2rnoVcVfD8xRPsYZTue+lPjsTyEHNXk1GgoADPO9YM5X+NS5ymsw= -----END CERTIFICATE-----Generated at Wed May 13 03:46:46 2026 by rpki-client