$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa File: a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa (raw, json) Hash identifier: 4lpAUwtVUBVgUFwEAKGbtOdzkJm+4ONOt6ZFKi6JPcs= Subject key identifier: 17:22:AC:31:54:34:07:75:1D:DD:F3:D7:21:FB:31:8C:75:CD:DF:33 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 25014CB50EB265B4ED16068EAD4D6DF531FEDAEA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa Signing time: Mon 04 May 2026 15:00:45 +0000 ROA not before: Mon 04 May 2026 15:00:45 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:01:4c:b5:0e:b2:65:b4:ed:16:06:8e:ad:4d:6d:f5:31:fe:da:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:45 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=c44359611e387d8eed995bc39fcb848924f05b343f1b403e08c8e2fb2f21d6c3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:08:6d:24:8d:56:2c:85:ae:ff:c1:ea:c3:22: fd:e2:1b:65:46:dc:98:63:b9:31:79:15:18:64:f4: 63:a3:0c:e5:f8:69:e6:96:62:c6:04:c0:8f:77:65: 20:c8:e6:4f:7a:a9:b9:a3:32:c8:bb:de:a5:e6:33: d8:3a:99:b0:27:ca:28:9e:23:9e:b6:f2:de:e8:d8: 63:a6:a1:73:a3:77:2d:9a:fb:7d:62:b8:0d:99:da: fa:0b:27:88:a4:72:93:bb:65:65:f8:ee:79:73:54: 96:72:71:9d:f9:86:fd:fa:21:6e:fe:ba:e7:6a:10: 58:7a:39:b1:5a:b0:43:ee:c9:0f:26:60:9a:77:27: 5c:55:d9:e7:85:10:51:bb:16:3f:56:82:68:72:04: c0:81:0f:f8:fd:94:d6:0b:8c:b8:5d:f6:8f:d5:0b: 5b:85:14:cb:81:cd:75:7f:18:7b:de:58:14:ed:e7: 30:0f:24:68:61:8c:0a:5b:72:08:1f:24:70:05:01: 90:49:eb:a8:5e:30:a4:4d:58:c0:7e:19:b5:a7:79: 09:d2:77:be:2e:ad:2b:06:09:8f:bc:58:a1:da:64: 43:84:e5:35:6e:d7:54:b6:d1:1b:4f:02:97:90:8b: bf:54:db:8d:33:21:51:65:5e:ba:bd:18:bc:80:4b: cb:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:22:AC:31:54:34:07:75:1D:DD:F3:D7:21:FB:31:8C:75:CD:DF:33 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 23:b6:b6:b1:de:80:e6:02:fd:df:5b:cf:e8:a8:bb:30:ac:13: ab:d7:b4:4a:92:57:4f:9f:a5:d2:85:b7:7f:75:30:5c:98:8f: 41:62:ac:c2:1b:b9:55:13:1e:b1:3c:9e:32:11:11:da:62:4e: 20:d1:22:9c:6a:ab:77:31:2e:20:9e:e3:af:ba:a4:6c:a2:ce: eb:5e:36:dc:b4:8b:11:8a:68:d0:74:a7:72:9b:a6:0a:57:b0: 13:6c:a5:88:1e:3b:ad:5a:1c:05:fe:61:31:8f:a8:ed:dd:93: ef:13:35:af:83:ac:a0:30:15:d1:dc:b3:ed:cf:93:e5:8d:d7: 42:f0:6b:83:02:6d:19:a7:71:9e:53:07:83:f3:74:6e:87:b6: 29:d4:54:e6:91:78:a2:66:a5:f6:7f:1b:72:d7:ad:cf:ce:10: 35:6a:be:60:2b:16:d7:af:91:a0:4b:41:3b:37:a7:a8:aa:ec: 81:30:bd:90:07:a3:75:50:d8:78:7b:d2:25:91:5a:fe:61:13: 74:b8:c2:b1:83:08:57:42:92:d7:75:9d:0e:7e:4f:13:89:8d: 2d:db:25:d7:8d:9e:01:27:e1:a0:19:1e:37:23:db:8d:47:c6: 4f:54:d3:64:98:70:b8:74:e9:19:63:11:08:a9:c2:c4:b0:d6: c3:f0:e0:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJQFMtQ6yZbTtFgaOrU1t9TH+2uowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDQ1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDQzNTk2MTFlMzg3ZDhlZWQ5OTViYzM5ZmNiODQ4OTI0 ZjA1YjM0M2YxYjQwM2UwOGM4ZTJmYjJmMjFkNmMzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/CG0kjVYsha7/werDIv3iG2VG3JhjuTF5FRhk9GOjDOX4 aeaWYsYEwI93ZSDI5k96qbmjMsi73qXmM9g6mbAnyiieI5628t7o2GOmoXOjdy2a +31iuA2Z2voLJ4ikcpO7ZWX47nlzVJZycZ35hv36IW7+uudqEFh6ObFasEPuyQ8m YJp3J1xV2eeFEFG7Fj9WgmhyBMCBD/j9lNYLjLhd9o/VC1uFFMuBzXV/GHveWBTt 5zAPJGhhjApbcggfJHAFAZBJ66heMKRNWMB+GbWneQnSd74urSsGCY+8WKHaZEOE 5TVu11S20RtPApeQi79U240zIVFlXrq9GLyAS8sfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFyKsMVQ0B3Ud3fPXIfsxjHXN3zMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2EyN2NkMTQwLTFkMmItNGU3ZC1hNmMwLTdlM2M4NjE1MGMzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBACO2trHegOYC/d9bz+iouzCsE6vX tEqSV0+fpdKFt391MFyYj0FirMIbuVUTHrE8njIREdpiTiDRIpxqq3cxLiCe46+6 pGyizuteNty0ixGKaNB0p3KbpgpXsBNspYgeO61aHAX+YTGPqO3dk+8TNa+DrKAw FdHcs+3Pk+WN10Lwa4MCbRmncZ5TB4PzdG6HtinUVOaReKJmpfZ/G3LXrc/OEDVq vmArFtevkaBLQTs3p6iq7IEwvZAHo3VQ2Hh70iWRWv5hE3S4wrGDCFdCktd1nQ5+ TxOJjS3bJdeNngEn4aAZHjcj241Hxk9U02SYcLh06RljEQipwsSw1sPw4BU= -----END CERTIFICATE-----Generated at Wed May 13 02:42:29 2026 by rpki-client