$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/44f47a87-fa5e-4db0-bb12-60c873b8710c.roa File: 44f47a87-fa5e-4db0-bb12-60c873b8710c.roa (raw, json) Hash identifier: +MKLtKEyo7d5Db11aO7KF/g+ePyz3ttX8rt9sEfJjiE= Subject key identifier: 65:76:EC:3B:6F:F7:15:01:03:38:C3:87:D9:29:18:BA:FB:58:07:8D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 041301D015DAE5A64FF1EFADB4FBC63401A315F8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/44f47a87-fa5e-4db0-bb12-60c873b8710c.roa Signing time: Fri 08 May 2026 03:10:07 +0000 ROA not before: Fri 08 May 2026 03:10:07 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:13:01:d0:15:da:e5:a6:4f:f1:ef:ad:b4:fb:c6:34:01:a3:15:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 8 03:10:07 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=2fcdf94815f0b50cc3a3904646adc927318561a893124c78e95d613533f4f813, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ee:3c:3a:49:7d:f7:44:36:9d:1c:bf:97:12: f7:00:6c:26:94:07:87:db:ec:c4:e4:cd:cf:49:c3: d3:05:97:c9:e6:c6:f0:b1:6b:0d:5e:f7:9d:92:22: db:4a:ba:37:03:17:3e:6a:37:fc:be:40:d8:3d:f9: 00:19:3e:08:b9:da:ef:3f:f1:d4:9a:f5:6d:bd:e2: 53:76:00:c3:f9:09:34:13:92:74:a4:32:51:b4:24: ad:f4:90:3c:2c:64:bc:0e:a9:35:43:e1:e6:4f:de: 39:da:77:b5:2d:ce:3b:94:aa:2b:c6:9d:00:63:5e: 4e:17:6f:73:d9:82:46:5b:81:71:27:21:88:d5:b9: 14:9a:b5:86:63:83:e7:f8:b9:33:07:71:d7:f3:d6: a9:9d:f1:a9:66:cf:25:95:de:75:3f:03:71:ee:4a: 8a:e1:45:87:a4:99:75:b8:ba:bf:50:ef:01:c5:dc: 6d:99:71:31:35:9d:a4:34:ee:43:2b:e8:df:27:45: 5b:25:2d:59:e5:dc:fe:8e:2a:a9:8b:66:9b:c8:e0: 21:24:dc:24:03:cd:dc:fc:4a:a5:f2:5d:4a:f0:bd: 3f:94:9b:a2:d1:e5:d1:52:4d:60:af:75:aa:60:0b: c7:c2:d2:32:be:eb:42:2c:3f:da:70:fc:32:24:51: c5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:76:EC:3B:6F:F7:15:01:03:38:C3:87:D9:29:18:BA:FB:58:07:8D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/44f47a87-fa5e-4db0-bb12-60c873b8710c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.32.0/24 Signature Algorithm: sha256WithRSAEncryption 08:1e:e2:3c:d6:71:9f:bc:85:61:f6:32:cc:2b:b9:ae:1b:a9: a2:89:1c:12:72:b0:0e:98:fc:3b:2c:f3:ea:c3:63:8d:54:4e: 96:c3:9f:29:c1:79:76:63:e0:33:b9:92:6e:1c:24:cc:74:09: 59:ef:0e:87:3e:0f:9f:d5:31:fc:0e:2e:fd:8f:af:bf:a9:16: 53:c2:77:2f:16:4f:43:c7:8f:a0:11:42:ad:a4:58:0b:3d:c2: 22:0c:28:37:a9:7c:e2:81:2c:c5:88:e6:77:94:82:21:44:80: 6b:f2:fb:33:6e:82:3b:bd:f2:71:41:16:dc:ba:1b:64:e0:93: 7d:d6:43:6a:43:39:ed:de:d1:52:f6:0d:aa:bd:09:aa:1d:63: dd:8b:30:55:b9:6b:44:db:e4:c8:bc:58:89:16:fa:41:42:81: e5:cb:45:df:84:9c:4d:d9:3c:5a:1d:d4:62:13:ac:6b:a1:72: 2d:f4:bc:94:25:f5:6e:91:9b:bf:1d:de:89:ae:60:ab:1b:ad: f5:3f:d5:72:53:80:02:8a:28:55:a5:3d:94:47:e6:3d:5b:ca: 7c:4b:d4:91:ff:0e:8b:0f:d2:74:e9:f9:a4:22:2f:93:72:c8: 85:d9:13:bf:0f:66:18:a4:73:c5:37:03:9c:57:bc:2d:a4:6b: d0:ad:bb:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBBMB0BXa5aZP8e+ttPvGNAGjFfgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA4MDMxMDA3WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmNkZjk0ODE1ZjBiNTBjYzNhMzkwNDY0NmFkYzkyNzMx ODU2MWE4OTMxMjRjNzhlOTVkNjEzNTMzZjRmODEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd7jw6SX33RDadHL+XEvcAbCaUB4fb7MTkzc9Jw9MFl8nm xvCxaw1e952SIttKujcDFz5qN/y+QNg9+QAZPgi52u8/8dSa9W294lN2AMP5CTQT knSkMlG0JK30kDwsZLwOqTVD4eZP3jnad7UtzjuUqivGnQBjXk4Xb3PZgkZbgXEn IYjVuRSatYZjg+f4uTMHcdfz1qmd8almzyWV3nU/A3HuSorhRYekmXW4ur9Q7wHF 3G2ZcTE1naQ07kMr6N8nRVslLVnl3P6OKqmLZpvI4CEk3CQDzdz8SqXyXUrwvT+U m6LR5dFSTWCvdapgC8fC0jK+60IsP9pw/DIkUcUTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZXbsO2/3FQEDOMOH2SkYuvtYB40wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzQ0ZjQ3YTg3LWZhNWUtNGRiMC1iYjEyLTYwYzg3M2I4NzEwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCAwDQYJKoZIhvcNAQELBQADggEBAAge4jzWcZ+8hWH2Mswrua4bqaKJ HBJysA6Y/Dss8+rDY41UTpbDnynBeXZj4DO5km4cJMx0CVnvDoc+D5/VMfwOLv2P r7+pFlPCdy8WT0PHj6ARQq2kWAs9wiIMKDepfOKBLMWI5neUgiFEgGvy+zNugju9 8nFBFty6G2Tgk33WQ2pDOe3e0VL2Daq9CaodY92LMFW5a0Tb5Mi8WIkW+kFCgeXL Rd+EnE3ZPFod1GITrGuhci30vJQl9W6Rm78d3omuYKsbrfU/1XJTgAKKKFWlPZRH 5j1bynxL1JH/DosP0nTp+aQiL5NyyIXZE78PZhikc8U3A5xXvC2ka9Ctu1E= -----END CERTIFICATE-----Generated at Wed May 13 02:42:17 2026 by rpki-client