$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa File: 6b90b1f9-6b22-4e82-af32-2981da75246a.roa (raw, json) Hash identifier: vsVdKPomqoVQOBbLha985oA3KfDKVp9WZsZp/VbSLtM= Subject key identifier: BC:76:D5:84:8F:30:7B:D2:6A:DF:E2:3F:AA:13:F2:CF:21:97:08:09 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0DFE0614B99A99A77611F225C1E1D3FBB5723544 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa Signing time: Fri 08 May 2026 03:10:05 +0000 ROA not before: Fri 08 May 2026 03:10:05 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:fe:06:14:b9:9a:99:a7:76:11:f2:25:c1:e1:d3:fb:b5:72:35:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 8 03:10:05 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=6442eb1ae6ae363ec339684a2a64e87775a76b78c94e23847beb829381911492, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:72:21:98:ca:1f:31:75:74:b8:a6:a4:13:f9: b8:e4:10:1c:42:f1:b8:d7:d4:09:5e:bc:99:85:57: a2:00:9f:90:ef:93:80:b3:93:ad:d2:34:3e:ae:95: 1f:28:99:c5:85:87:5e:57:e5:3b:2f:23:67:56:28: d7:d2:c9:64:99:26:4c:fc:8b:2d:d0:43:5f:bd:dc: 1e:6a:0c:c9:3c:64:3d:41:c0:3a:02:c2:6a:70:72: 4b:1e:3d:88:6f:35:9f:aa:27:4a:e9:c5:bd:9d:02: 64:58:ed:9c:5b:90:a9:3c:c8:7c:08:76:ee:b8:dd: 26:f4:3f:a7:f6:74:ef:4d:ca:f7:25:f0:ee:41:8a: 2d:28:51:f6:7e:4c:de:c5:fd:5e:24:43:9e:47:40: eb:b6:9e:db:fe:a6:c2:44:34:b4:9b:a7:43:68:93: 9b:20:4e:f9:81:05:a8:ac:fd:8b:3e:0d:ce:e0:f9: 44:7d:37:a8:a7:7d:06:d9:fe:e2:82:64:5a:45:6f: 92:ec:bf:3e:33:af:60:5e:e8:c8:7b:3f:af:9c:9b: de:d6:ca:39:df:77:6f:70:b7:4f:60:34:4f:9c:78: 95:1b:41:b9:27:57:8f:21:2c:18:c9:a2:42:f5:be: a3:5c:0d:ce:59:ec:0a:d5:2a:19:96:e8:ed:e4:4e: cf:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:76:D5:84:8F:30:7B:D2:6A:DF:E2:3F:AA:13:F2:CF:21:97:08:09 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.33.0/24 Signature Algorithm: sha256WithRSAEncryption 46:67:bc:60:45:a9:71:32:5b:ee:46:4b:c3:4a:00:f3:d8:e8: 17:7e:34:b1:74:b5:4c:6e:b6:e3:98:b2:b2:de:82:3e:a8:35: e8:56:7a:da:5e:a9:10:79:da:57:55:9b:a7:e1:64:6f:6a:b6: 91:61:d8:12:43:cb:72:4e:a1:37:4e:71:30:9b:78:6e:53:2f: b4:52:45:d2:f2:79:3a:70:94:2e:4f:10:09:f4:47:cc:1e:bc: a4:ae:f3:ac:f2:17:e3:46:db:3e:75:17:eb:3a:82:32:55:e1: 1d:3c:20:5e:a9:10:36:99:23:97:91:00:27:79:4e:6a:a2:82: 17:f2:1c:9d:c6:f7:ae:ae:65:fc:c3:c3:50:78:92:10:6b:04: 12:18:47:b8:06:8a:2e:bb:d1:1f:20:03:0a:05:c4:71:3d:f3: 74:96:73:d3:1c:72:05:cb:0b:31:fd:1f:2f:17:c7:aa:eb:a1: 33:66:7b:f6:31:5c:69:eb:a1:33:9c:02:94:b4:5b:3a:6e:ba: d3:d2:fe:56:bd:d6:9d:a2:53:44:9d:0a:2e:05:c9:c5:3e:69: e6:85:39:3a:1c:8e:0f:41:76:44:cf:40:da:05:0a:7c:8e:16: 9f:cc:8d:e6:ba:d5:4d:b9:ec:42:f6:e7:91:f9:a9:a8:e7:6a: 7e:d5:e9:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDf4GFLmamad2EfIlweHT+7VyNUQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA4MDMxMDA1WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDQyZWIxYWU2YWUzNjNlYzMzOTY4NGEyYTY0ZTg3Nzc1 YTc2Yjc4Yzk0ZTIzODQ3YmViODI5MzgxOTExNDkyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVciGYyh8xdXS4pqQT+bjkEBxC8bjX1AlevJmFV6IAn5Dv k4Czk63SND6ulR8omcWFh15X5TsvI2dWKNfSyWSZJkz8iy3QQ1+93B5qDMk8ZD1B wDoCwmpwcksePYhvNZ+qJ0rpxb2dAmRY7ZxbkKk8yHwIdu643Sb0P6f2dO9Nyvcl 8O5Bii0oUfZ+TN7F/V4kQ55HQOu2ntv+psJENLSbp0Nok5sgTvmBBais/Ys+Dc7g +UR9N6infQbZ/uKCZFpFb5Lsvz4zr2Be6Mh7P6+cm97Wyjnfd29wt09gNE+ceJUb QbknV48hLBjJokL1vqNcDc5Z7ArVKhmW6O3kTs9FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvHbVhI8we9Jq3+I/qhPyzyGXCAkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZiOTBiMWY5LTZiMjItNGU4Mi1hZjMyLTI5ODFkYTc1MjQ2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCEwDQYJKoZIhvcNAQELBQADggEBAEZnvGBFqXEyW+5GS8NKAPPY6Bd+ NLF0tUxutuOYsrLegj6oNehWetpeqRB52ldVm6fhZG9qtpFh2BJDy3JOoTdOcTCb eG5TL7RSRdLyeTpwlC5PEAn0R8wevKSu86zyF+NG2z51F+s6gjJV4R08IF6pEDaZ I5eRACd5TmqighfyHJ3G966uZfzDw1B4khBrBBIYR7gGii670R8gAwoFxHE983SW c9MccgXLCzH9Hy8Xx6rroTNme/YxXGnroTOcApS0WzpuutPS/la91p2iU0SdCi4F ycU+aeaFOTocjg9BdkTPQNoFCnyOFp/Mjea61U257EL255H5qajnan7V6cU= -----END CERTIFICATE-----Generated at Wed May 13 02:41:48 2026 by rpki-client