$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9fcd9d6a-7272-4c1e-b46c-cc94e58322e4.roa File: 9fcd9d6a-7272-4c1e-b46c-cc94e58322e4.roa (raw, json) Hash identifier: i+7Ghxzevn8AN3O4rXxjgZBTPR5skLxNbq9gkv0PRSw= Subject key identifier: 8F:7B:31:4E:F8:B5:AA:13:6F:DF:45:78:2B:40:95:8B:7B:30:9C:2E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4A2CAB886C4BE8A630249B8B6473C3D62129674C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9fcd9d6a-7272-4c1e-b46c-cc94e58322e4.roa Signing time: Fri 08 May 2026 03:10:08 +0000 ROA not before: Fri 08 May 2026 03:10:08 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:2c:ab:88:6c:4b:e8:a6:30:24:9b:8b:64:73:c3:d6:21:29:67:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 8 03:10:08 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=d7351acf18e7f835c9d3e168e8c1cdea9345449e538ef4b07291525b555acb82, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:61:23:aa:0e:02:2b:bb:fd:4b:ce:0d:fb:72: 7e:fe:d8:9d:bf:41:3f:2d:77:53:00:20:df:1b:79: 17:c5:d4:e0:cb:bc:96:80:04:de:9b:6f:9b:40:ff: f3:87:bc:64:20:b7:db:d9:b4:31:3b:d4:2a:dd:09: c6:d1:76:22:b7:65:30:41:76:f8:86:f5:3d:07:15: 6a:4d:74:39:99:78:34:5e:3c:a8:08:fa:66:a0:fd: ec:86:d3:38:a1:71:a2:6e:f9:b6:a0:bf:19:47:4c: ae:e7:65:2e:32:e3:de:a9:d4:e8:c4:d3:5f:13:b6: 66:2b:23:dc:f1:96:c6:d0:78:55:e4:aa:ad:60:84: 1f:ae:c5:c9:30:3e:75:93:aa:a1:28:62:70:86:a3: 71:c4:f0:31:94:17:c7:4f:c0:cf:a3:93:0d:27:69: 2d:48:6e:e3:a8:cf:f9:b1:4e:ab:5b:6f:84:17:39: fb:56:98:ef:06:5d:4d:21:9a:26:0a:fb:30:04:f0: 05:59:7c:3a:ff:ce:ff:68:60:4d:5b:d8:57:01:e2: 31:26:19:e3:95:83:f9:6b:22:5d:59:9d:ba:22:80: dd:c8:d8:2b:27:50:17:1a:41:82:8c:3a:1e:8a:b3: 07:1b:b4:d2:33:7e:c7:b7:5a:b4:b5:95:10:06:b5: 56:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7B:31:4E:F8:B5:AA:13:6F:DF:45:78:2B:40:95:8B:7B:30:9C:2E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9fcd9d6a-7272-4c1e-b46c-cc94e58322e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.12.0/24 Signature Algorithm: sha256WithRSAEncryption 80:f3:65:0c:30:2a:4b:f2:67:40:75:a6:f6:b0:53:55:9a:7c: c5:a8:06:fe:54:cd:bd:f4:f0:5f:7a:71:b1:32:88:aa:07:02: fb:73:e8:0b:da:f7:a1:9e:8e:90:9c:87:ca:46:b1:3d:f0:fa: b9:0d:9a:bb:82:63:e0:19:6a:1d:00:7e:e1:bf:2c:59:a1:ae: 4f:73:df:43:80:b1:56:c7:ad:f9:6f:d3:6b:90:0c:83:08:12: a8:34:d1:0d:a5:6e:b2:1b:37:ed:1c:2f:3c:81:db:75:8a:6c: 5d:bc:a0:b9:75:40:82:0d:36:3e:7d:92:1b:78:7d:7a:1f:af: f5:17:27:8c:60:f1:0f:4c:e0:fe:bb:e6:14:81:f0:14:53:d4: 66:f6:9e:7b:61:c0:14:b9:e1:26:84:0d:78:c0:f8:46:13:4e: 7a:d3:6a:4b:2a:80:bd:ea:50:b6:88:f0:fa:0b:c2:3f:b9:4d: 07:50:bd:1c:6c:61:cb:84:b2:4a:b8:db:b6:e7:9a:eb:ca:a0: 9d:a9:52:8e:83:ca:94:d0:3e:46:bb:53:90:3b:c9:5f:b2:c0: 8a:4b:28:75:ea:8b:d3:5d:e9:e7:66:f2:61:b5:fc:4d:16:55: 14:7c:3f:d9:07:b1:12:92:ad:b3:30:46:db:6f:05:a0:04:5a: 55:a7:d3:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSiyriGxL6KYwJJuLZHPD1iEpZ0wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA4MDMxMDA4WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzM1MWFjZjE4ZTdmODM1YzlkM2UxNjhlOGMxY2RlYTkz NDU0NDllNTM4ZWY0YjA3MjkxNTI1YjU1NWFjYjgyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjYSOqDgIru/1Lzg37cn7+2J2/QT8td1MAIN8beRfF1ODL vJaABN6bb5tA//OHvGQgt9vZtDE71CrdCcbRdiK3ZTBBdviG9T0HFWpNdDmZeDRe PKgI+mag/eyG0zihcaJu+bagvxlHTK7nZS4y496p1OjE018TtmYrI9zxlsbQeFXk qq1ghB+uxckwPnWTqqEoYnCGo3HE8DGUF8dPwM+jkw0naS1IbuOoz/mxTqtbb4QX OftWmO8GXU0hmiYK+zAE8AVZfDr/zv9oYE1b2FcB4jEmGeOVg/lrIl1ZnboigN3I 2CsnUBcaQYKMOh6KswcbtNIzfse3WrS1lRAGtVYbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj3sxTvi1qhNv30V4K0CVi3swnC4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzlmY2Q5ZDZhLTcyNzItNGMxZS1iNDZjLWNjOTRlNTgzMjJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAwwDQYJKoZIhvcNAQELBQADggEBAIDzZQwwKkvyZ0B1pvawU1WafMWo Bv5Uzb308F96cbEyiKoHAvtz6Ava96GejpCch8pGsT3w+rkNmruCY+AZah0AfuG/ LFmhrk9z30OAsVbHrflv02uQDIMIEqg00Q2lbrIbN+0cLzyB23WKbF28oLl1QIIN Nj59kht4fXofr/UXJ4xg8Q9M4P675hSB8BRT1Gb2nnthwBS54SaEDXjA+EYTTnrT aksqgL3qULaI8PoLwj+5TQdQvRxsYcuEskq427bnmuvKoJ2pUo6DypTQPka7U5A7 yV+ywIpLKHXqi9Nd6edm8mG1/E0WVRR8P9kHsRKSrbMwRttvBaAEWlWn09Y= -----END CERTIFICATE-----Generated at Wed May 13 02:41:51 2026 by rpki-client