$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa File: 8b1249ac-b74a-4544-80b2-2b577af731f1.roa (raw, json) Hash identifier: B/4brEeNW53CUOSOh7AY4b9AbS1Y44wk+vpdx0oWWn4= Subject key identifier: F4:BF:35:5B:AC:CE:4C:91:A9:39:B2:E6:78:61:79:33:AE:56:CD:2F Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 75E38A8EE5AFCA3D6F2B4B6AB044A5237C6B2D0C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa Signing time: Mon 04 May 2026 15:00:07 +0000 ROA not before: Mon 04 May 2026 15:00:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:e3:8a:8e:e5:af:ca:3d:6f:2b:4b:6a:b0:44:a5:23:7c:6b:2d:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=4332323bc626b7c0c00ea46e213d4f8925791d6e222578df210cd43874a1c23a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:25:0c:71:dc:1f:29:58:b0:58:da:ef:cd:43: 31:cf:b0:b5:71:f1:d7:78:f6:0e:64:3b:09:63:3c: 53:c9:7a:c9:b0:bb:f7:06:5b:bf:39:06:1c:25:29: 79:4f:61:37:2c:cb:47:ff:f7:46:e8:86:86:a0:ab: 3b:2e:ac:fa:61:6e:fe:d6:82:17:49:bd:30:2c:1a: 06:00:17:c3:05:65:95:22:04:08:dc:18:97:32:a7: e2:fe:fd:d2:a0:8e:7d:38:68:d2:43:38:a5:2f:52: 4d:bf:87:f9:3f:80:45:6d:f5:ff:14:1a:a8:4d:37: b1:30:3b:da:3a:84:6c:ad:3c:e8:51:f1:79:bf:70: 2d:55:d1:0c:7b:40:06:4a:08:6c:08:51:b0:73:d1: 20:50:b5:fd:cb:66:9a:10:04:c4:98:36:a5:17:38: d7:3f:df:0c:b1:3d:d2:c1:56:33:e1:95:59:4e:c2: 74:ac:f1:d7:15:38:a8:d2:28:28:2a:9b:e3:e5:92: b4:8b:41:38:96:57:70:fd:16:35:9c:5d:8f:17:71: e6:eb:c1:79:6c:ea:61:19:fc:d0:2b:9a:2b:17:08: 42:94:5b:bb:6d:c0:9f:00:e0:1a:ef:06:58:7e:e1: cc:3a:b0:a0:bf:d0:77:e9:9b:2b:e9:56:f2:84:2b: ba:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BF:35:5B:AC:CE:4C:91:A9:39:B2:E6:78:61:79:33:AE:56:CD:2F X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.20.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:2b:b8:9e:65:81:82:ba:cf:cd:ec:ea:dd:05:fa:ed:38:b1: 06:3c:fb:59:bd:e8:1a:b4:8d:72:11:9b:08:47:95:3d:16:80: 19:c1:c9:f6:0b:22:05:81:7f:87:ab:f7:98:ae:1d:72:4f:07: c3:54:2d:10:3b:4d:e1:f8:2e:7d:e6:1c:06:ed:3f:d1:fe:2e: 96:4d:74:29:52:1e:b7:aa:b1:88:05:25:ff:9e:2b:cd:b0:93: 36:b8:16:6b:ec:7a:64:47:94:6d:4b:8b:99:a1:f4:f5:4d:f7: 8b:ef:81:97:56:27:03:56:9e:d8:b2:1c:d3:d9:36:b0:c0:90: 3a:56:e3:01:e9:d2:2b:45:4b:be:18:52:fd:03:61:73:96:a7: 49:c3:b9:33:b2:8f:2b:a7:6e:b2:7b:74:4e:80:e0:e1:ae:5e: ef:31:67:1c:37:be:c8:16:78:df:6d:28:f1:4e:e1:25:5e:17: 62:06:e4:17:02:79:fa:a4:1b:8c:18:29:de:40:dc:9d:87:f1: cd:0d:79:86:81:8b:5b:2e:46:f2:57:c7:0b:71:7e:ff:1e:75: 4f:e7:82:38:62:fd:3d:db:fc:04:8b:bd:19:2c:0f:15:30:0c: 1a:28:77:0c:16:ee:3e:e3:6e:0a:70:bb:84:29:32:08:c7:49: da:45:02:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdeOKjuWvyj1vK0tqsESlI3xrLQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzMyMzIzYmM2MjZiN2MwYzAwZWE0NmUyMTNkNGY4OTI1 NzkxZDZlMjIyNTc4ZGYyMTBjZDQzODc0YTFjMjNhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqJQxx3B8pWLBY2u/NQzHPsLVx8dd49g5kOwljPFPJesmw u/cGW785BhwlKXlPYTcsy0f/90bohoagqzsurPphbv7WghdJvTAsGgYAF8MFZZUi BAjcGJcyp+L+/dKgjn04aNJDOKUvUk2/h/k/gEVt9f8UGqhNN7EwO9o6hGytPOhR 8Xm/cC1V0Qx7QAZKCGwIUbBz0SBQtf3LZpoQBMSYNqUXONc/3wyxPdLBVjPhlVlO wnSs8dcVOKjSKCgqm+PlkrSLQTiWV3D9FjWcXY8XcebrwXls6mEZ/NArmisXCEKU W7ttwJ8A4BrvBlh+4cw6sKC/0HfpmyvpVvKEK7oxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9L81W6zOTJGpObLmeGF5M65WzS8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiMTI0OWFjLWI3NGEtNDU0NC04MGIyLTJiNTc3YWY3MzFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBQwDQYJKoZIhvcNAQELBQADggEBAGoruJ5lgYK6z83s6t0F+u04sQY8 +1m96Bq0jXIRmwhHlT0WgBnByfYLIgWBf4er95iuHXJPB8NULRA7TeH4Ln3mHAbt P9H+LpZNdClSHreqsYgFJf+eK82wkza4FmvsemRHlG1Li5mh9PVN94vvgZdWJwNW ntiyHNPZNrDAkDpW4wHp0itFS74YUv0DYXOWp0nDuTOyjyunbrJ7dE6A4OGuXu8x Zxw3vsgWeN9tKPFO4SVeF2IG5BcCefqkG4wYKd5A3J2H8c0NeYaBi1suRvJXxwtx fv8edU/ngjhi/T3b/ASLvRksDxUwDBoodwwW7j7jbgpwu4QpMgjHSdpFAtA= -----END CERTIFICATE-----Generated at Wed May 13 00:01:34 2026 by rpki-client