$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa File: 98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa (raw, json) Hash identifier: 0a9zq9epg5RyNmN2SIjoULpTHoGmi+h3Iuk9QAEpSnA= Subject key identifier: A9:C3:C7:85:37:D7:EE:7E:F1:A6:96:13:3B:A9:D8:D3:21:96:F2:31 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 31BBCF50EC0123352B7BB3C1E4F8F234BBB15B4C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa Signing time: Mon 04 May 2026 15:00:44 +0000 ROA not before: Mon 04 May 2026 15:00:44 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:bb:cf:50:ec:01:23:35:2b:7b:b3:c1:e4:f8:f2:34:bb:b1:5b:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:44 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=8ce6302ebf4d055343ca27590dd96d73154cbd93d7f60323a8f09403bb2024b6, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b1:8e:fd:5c:d2:5e:27:c3:c4:6b:bf:84:82: 49:47:01:45:50:68:dc:ac:e3:30:56:5c:ca:80:42: c0:03:97:5b:05:04:6b:9f:da:b8:fc:6a:a7:fd:6d: e4:5a:e7:5f:cd:dc:b3:e2:0d:b8:32:ff:af:8b:75: 8a:07:d3:f6:22:22:3e:ae:3d:d1:48:b0:02:31:ba: 9f:af:ec:eb:83:b9:d9:bc:77:85:2a:02:dd:6d:88: 6d:46:36:bb:16:f1:63:ad:74:dc:d1:cb:4d:22:19: 5d:88:bd:33:cc:1f:24:ff:a2:9a:2e:d3:b3:fd:c3: 39:97:c7:43:dc:7c:e2:55:1e:2d:78:ee:33:e5:e2: 67:af:0b:83:d9:c1:3f:24:d6:37:20:55:0f:4d:db: 11:18:81:4e:c6:e1:eb:ed:e2:97:02:cb:6a:da:ce: 21:85:3d:93:80:7f:08:d8:2f:fc:7d:71:6b:48:a6: 82:c5:0f:8b:f5:60:8b:40:6c:61:1a:7f:88:e4:63: 2e:e1:3b:a4:20:83:cd:12:3f:30:1e:50:4c:88:a9: f5:ac:76:c9:11:31:60:ed:ae:52:66:c6:c0:2a:d8: ce:c4:d9:d4:bf:80:8d:db:7e:d3:6b:8b:16:8e:af: 20:8a:e9:c8:02:c0:f5:d2:e4:3a:3f:ce:92:df:26: 95:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C3:C7:85:37:D7:EE:7E:F1:A6:96:13:3B:A9:D8:D3:21:96:F2:31 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 73:68:d0:1d:86:31:66:0c:f9:28:7f:b3:07:38:83:50:99:13: d4:02:49:2a:0d:fa:2d:23:08:68:2f:ad:79:f1:61:b7:d0:e7: 7f:7b:73:56:7f:b1:56:38:4a:86:f2:47:46:cc:11:eb:bc:0a: 97:d7:b2:0f:41:ef:92:96:85:da:f5:8f:50:4f:a4:05:e8:0d: bf:5d:58:1c:91:ad:bc:45:3c:79:87:69:7c:55:ff:3f:0c:cd: 91:7c:b9:ad:f2:6c:2d:db:77:e1:7b:60:9f:34:15:25:a0:c0: 9f:15:70:32:f2:d9:83:90:60:1e:33:1e:76:58:33:7b:63:86: 28:ce:30:90:f7:85:d5:16:88:a2:3f:a7:69:61:fb:c7:11:d2: a2:1f:1f:61:8e:59:1f:25:69:bd:36:31:2c:a1:d5:63:ea:d3: 7e:da:62:a5:12:3a:e9:cc:25:27:d5:56:6e:3e:ee:54:a1:b2: c0:fd:77:6b:cb:05:3a:8d:2d:a8:92:bc:e7:0b:3d:27:99:ff: 52:76:0b:2d:57:d9:fd:b7:27:03:92:ca:53:6a:74:ca:95:c6: 9f:1d:6f:89:72:97:0e:9c:53:8a:25:ef:54:84:54:9a:6e:3c: 18:b6:af:e3:63:27:c5:4b:cc:81:ab:63:ce:09:02:f3:70:57: a3:ee:d5:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMbvPUOwBIzUre7PB5PjyNLuxW0wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDQ0WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Y2U2MzAyZWJmNGQwNTUzNDNjYTI3NTkwZGQ5NmQ3MzE1 NGNiZDkzZDdmNjAzMjNhOGYwOTQwM2JiMjAyNGI2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDisY79XNJeJ8PEa7+EgklHAUVQaNys4zBWXMqAQsADl1sF BGuf2rj8aqf9beRa51/N3LPiDbgy/6+LdYoH0/YiIj6uPdFIsAIxup+v7OuDudm8 d4UqAt1tiG1GNrsW8WOtdNzRy00iGV2IvTPMHyT/opou07P9wzmXx0PcfOJVHi14 7jPl4mevC4PZwT8k1jcgVQ9N2xEYgU7G4evt4pcCy2raziGFPZOAfwjYL/x9cWtI poLFD4v1YItAbGEaf4jkYy7hO6Qgg80SPzAeUEyIqfWsdskRMWDtrlJmxsAq2M7E 2dS/gI3bftNrixaOryCK6cgCwPXS5Do/zpLfJpUBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqcPHhTfX7n7xppYTO6nY0yGW8jEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk4YjVjODkwLTQ3ZjEtNGY3Zi1hOWRkLTMyMjg5NTU0ZjFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAHNo0B2GMWYM+Sh/swc4g1CZE9QC SSoN+i0jCGgvrXnxYbfQ5397c1Z/sVY4SobyR0bMEeu8CpfXsg9B75KWhdr1j1BP pAXoDb9dWByRrbxFPHmHaXxV/z8MzZF8ua3ybC3bd+F7YJ80FSWgwJ8VcDLy2YOQ YB4zHnZYM3tjhijOMJD3hdUWiKI/p2lh+8cR0qIfH2GOWR8lab02MSyh1WPq037a YqUSOunMJSfVVm4+7lShssD9d2vLBTqNLaiSvOcLPSeZ/1J2Cy1X2f23JwOSylNq dMqVxp8db4lylw6cU4ol71SEVJpuPBi2r+NjJ8VLzIGrY84JAvNwV6Pu1aw= -----END CERTIFICATE-----Generated at Wed May 13 03:47:09 2026 by rpki-client