$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa File: 5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa (raw, json) Hash identifier: bMgUEsG3ScnhvFTUOFnDViQa3q1WplFWqfYy6JRsGBc= Subject key identifier: 25:CD:A4:F8:EC:B8:44:18:D5:F6:07:4C:FB:CB:8A:D8:33:27:49:B6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6F87B90968FCF8DF2C4B3EA82F72CF4E17F70322 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa Signing time: Mon 04 May 2026 15:00:11 +0000 ROA not before: Mon 04 May 2026 15:00:11 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:87:b9:09:68:fc:f8:df:2c:4b:3e:a8:2f:72:cf:4e:17:f7:03:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:11 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=61c9de8d7a8a3b432fa6513c369578c6343f0e7469bc8cef821f85e1f06bb90c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e9:b4:f3:e2:a2:e8:32:40:b1:36:f3:09:df: a5:31:70:46:8c:c0:6e:15:84:d0:1a:90:65:4f:57: 35:56:ef:46:9a:44:54:3e:12:56:4b:f3:dc:59:b8: 71:73:18:1c:a6:80:f3:01:ec:81:5e:08:3a:20:32: b3:93:e6:12:50:77:11:ae:ae:8a:54:84:1b:be:8c: ec:e4:f3:57:97:9a:14:23:6a:61:77:84:dc:fc:2d: 99:e2:2e:69:af:14:88:2e:fa:07:f3:ea:45:bc:18: e2:ed:5c:94:dd:04:e8:99:eb:9b:8b:f2:83:63:07: f8:b9:20:2a:62:3d:46:08:b3:6f:2b:46:f3:a3:a5: 84:53:33:ba:c7:6d:5c:5e:0b:53:af:49:65:8f:5b: 82:67:be:c6:21:4c:b9:fe:2c:d6:8f:3e:9b:f1:a3: d2:a5:50:b5:b9:5f:ec:ed:5e:55:64:50:3a:41:42: 62:9d:a0:f6:d1:df:2b:4b:12:54:2d:cc:0c:30:3b: 76:fb:f6:b5:6d:63:0a:d5:60:cf:c0:fc:3a:32:6e: 42:cb:b0:e8:8f:c6:bd:c4:2e:18:b2:27:fc:cd:49: 4d:2c:dd:af:b0:c3:68:eb:91:06:f9:1d:d3:e9:fc: d6:a2:93:b6:e4:25:30:59:a4:1b:db:0f:6f:f4:b1: 0e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:CD:A4:F8:EC:B8:44:18:D5:F6:07:4C:FB:CB:8A:D8:33:27:49:B6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.253.0/24 Signature Algorithm: sha256WithRSAEncryption 11:2d:e8:b7:23:ad:e9:50:fe:83:60:48:16:77:8d:51:c3:37: 10:ad:4c:46:05:66:c7:65:15:24:b1:20:fd:21:6d:50:83:f3: 0f:f2:13:a4:01:22:68:25:40:a0:14:be:d6:38:a8:54:1c:87: 8f:0f:1d:eb:53:42:5e:39:9c:d0:07:15:c2:a7:6e:d3:d1:21: d3:45:34:10:33:2c:08:89:90:1a:63:86:29:da:13:9d:56:f6: 5a:26:f4:3e:d4:92:d5:c0:f5:cf:e8:ff:e7:80:2a:53:49:51: 3e:68:8c:a8:1a:4c:30:d6:22:ea:33:4f:9c:b6:dc:e2:6d:a6: 0f:a2:80:ee:cd:8c:69:1c:71:e9:a5:d9:7e:b5:8c:52:38:59: 71:e1:4d:95:f0:c6:e8:d3:e5:f6:92:38:95:53:e1:46:9f:4f: 4e:01:60:46:9b:39:11:41:f5:a5:58:de:24:2c:b2:64:43:56: 02:e0:63:b1:48:b7:6f:01:1e:f6:fa:c4:24:b1:2c:c8:30:68: e2:5f:19:29:b5:91:a4:70:67:d8:d5:32:6b:4f:f9:71:1e:94: 95:77:03:17:06:5f:c5:4c:0d:b2:48:9e:8f:b2:fc:dc:dc:ae: 96:d0:b8:8f:e4:0f:d0:3f:85:7b:75:ff:bb:0c:f5:94:de:0d: f7:6c:5e:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb4e5CWj8+N8sSz6oL3LPThf3AyIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDExWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWM5ZGU4ZDdhOGEzYjQzMmZhNjUxM2MzNjk1NzhjNjM0 M2YwZTc0NjliYzhjZWY4MjFmODVlMWYwNmJiOTBjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDd6bTz4qLoMkCxNvMJ36UxcEaMwG4VhNAakGVPVzVW70aa RFQ+ElZL89xZuHFzGBymgPMB7IFeCDogMrOT5hJQdxGuropUhBu+jOzk81eXmhQj amF3hNz8LZniLmmvFIgu+gfz6kW8GOLtXJTdBOiZ65uL8oNjB/i5ICpiPUYIs28r RvOjpYRTM7rHbVxeC1OvSWWPW4JnvsYhTLn+LNaPPpvxo9KlULW5X+ztXlVkUDpB QmKdoPbR3ytLElQtzAwwO3b79rVtYwrVYM/A/DoybkLLsOiPxr3ELhiyJ/zNSU0s 3a+ww2jrkQb5HdPp/Naik7bkJTBZpBvbD2/0sQ6vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJc2k+Oy4RBjV9gdM+8uK2DMnSbYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkM2E3MWNkLTllMGYtNDdkMS1iZmVmLWJiMjk5MGZhOTk2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP0wDQYJKoZIhvcNAQELBQADggEBABEt6LcjrelQ/oNgSBZ3jVHDNxCt TEYFZsdlFSSxIP0hbVCD8w/yE6QBImglQKAUvtY4qFQch48PHetTQl45nNAHFcKn btPRIdNFNBAzLAiJkBpjhinaE51W9lom9D7UktXA9c/o/+eAKlNJUT5ojKgaTDDW IuozT5y23OJtpg+igO7NjGkcceml2X61jFI4WXHhTZXwxujT5faSOJVT4UafT04B YEabORFB9aVY3iQssmRDVgLgY7FIt28BHvb6xCSxLMgwaOJfGSm1kaRwZ9jVMmtP +XEelJV3AxcGX8VMDbJIno+y/NzcrpbQuI/kD9A/hXt1/7sM9ZTeDfdsXpc= -----END CERTIFICATE-----Generated at Wed May 13 02:42:55 2026 by rpki-client