$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa File: bfd96660-29cf-4054-a14e-cd48975d08b4.roa (raw, json) Hash identifier: Kzi6V/kYGzsSnwZpSzTe+XElZryf9bqBxU5hURXyYuE= Subject key identifier: 34:0F:21:DA:FF:50:B6:85:27:F3:0D:2F:B2:DC:F8:B0:D3:98:81:48 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 15BE7E38ADA3BA34E79F2B4CD4E9852F51AD12F3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa Signing time: Mon 04 May 2026 15:00:43 +0000 ROA not before: Mon 04 May 2026 15:00:43 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:be:7e:38:ad:a3:ba:34:e7:9f:2b:4c:d4:e9:85:2f:51:ad:12:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:43 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=bd08d703999293458299e8c423070d2e4448e5d0b0a1e9bbc0be258a51a89014, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:35:7b:57:22:5d:7b:30:81:5d:f8:24:f9:5c: a9:52:40:4b:e4:07:f7:7a:80:a7:24:81:ff:67:cc: 5f:03:6e:16:5d:c3:eb:9b:a4:ee:3a:d2:65:e1:c6: 39:f2:06:48:ed:56:aa:47:27:89:9d:78:01:68:60: ec:07:31:c6:ce:50:31:0f:73:2c:d3:b7:29:91:ca: 18:46:39:2e:17:5c:71:5f:c3:65:a4:23:73:d4:cc: 4f:27:9e:4b:c2:84:59:1d:50:f0:7e:5a:d0:63:e2: 80:cc:80:08:ca:83:5a:ab:53:19:99:8a:33:61:64: 4c:5a:8b:4f:b2:b4:48:66:3e:c7:48:63:35:1c:f5: b8:a6:12:77:30:7b:26:58:9f:4d:f4:be:12:66:22: 27:54:47:53:ba:8e:eb:39:cc:a1:b8:8d:92:7b:74: 0c:ef:cd:89:d6:96:e3:19:b8:0b:0b:66:97:45:3a: 73:27:03:7d:4c:00:14:fd:d2:7a:be:87:7e:cd:2b: be:0d:c4:bb:9a:29:67:ad:7b:77:61:ee:cf:ad:a6: c2:a5:2e:fe:da:81:b7:5f:32:fe:14:b5:40:72:43: 3f:69:3b:7f:fc:69:78:63:58:e2:08:dd:1e:31:d5: 8b:d0:fb:8a:d7:31:a7:56:46:c4:09:5d:7b:a3:b5: 98:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0F:21:DA:FF:50:B6:85:27:F3:0D:2F:B2:DC:F8:B0:D3:98:81:48 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 47:b2:ac:42:25:c4:d6:9c:69:e6:4a:39:4b:a4:49:f7:ef:a3: cf:12:af:60:91:49:c7:fe:12:fb:25:00:57:ec:ca:91:c3:d1: 8a:2c:b7:65:22:54:0f:ed:6b:2b:9c:ff:2c:5c:4e:1e:9f:cb: af:63:b6:de:88:70:26:6f:d7:29:b3:b2:9c:43:83:bb:32:a2: 2d:98:bf:c4:68:70:50:60:6e:19:3a:72:4c:e5:05:c5:21:f3: 73:0b:3d:3e:f4:0e:ff:0e:ba:72:5d:5f:fb:c6:d8:7d:09:eb: 2c:1b:88:ae:37:b1:7b:e9:17:bd:79:e0:04:dd:4b:9e:9a:55: 85:00:4d:73:99:02:57:78:cb:c0:bc:74:38:74:d4:bf:54:50: b0:7e:a5:ff:00:de:0d:ff:84:80:ef:89:d5:38:55:51:a6:eb: 89:a3:ec:0b:20:d4:c4:17:8e:bb:73:27:12:77:88:bd:c1:1c: c9:f8:23:09:a8:f8:ae:c3:1d:88:0b:3a:61:6d:e7:70:52:b0: d1:a0:85:ee:82:d8:b3:76:64:59:74:5f:b1:24:37:70:ba:2b: 57:b4:0b:8a:39:a8:79:c8:e6:71:fd:13:c1:b9:a0:41:c1:84: c2:7e:e9:23:76:95:3f:a2:d2:f5:03:6e:5e:40:18:82:89:02: 19:98:0a:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFb5+OK2jujTnnytM1OmFL1GtEvMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDQzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDA4ZDcwMzk5OTI5MzQ1ODI5OWU4YzQyMzA3MGQyZTQ0 NDhlNWQwYjBhMWU5YmJjMGJlMjU4YTUxYTg5MDE0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrNXtXIl17MIFd+CT5XKlSQEvkB/d6gKckgf9nzF8DbhZd w+ubpO460mXhxjnyBkjtVqpHJ4mdeAFoYOwHMcbOUDEPcyzTtymRyhhGOS4XXHFf w2WkI3PUzE8nnkvChFkdUPB+WtBj4oDMgAjKg1qrUxmZijNhZExai0+ytEhmPsdI YzUc9bimEncweyZYn030vhJmIidUR1O6jus5zKG4jZJ7dAzvzYnWluMZuAsLZpdF OnMnA31MABT90nq+h37NK74NxLuaKWete3dh7s+tpsKlLv7agbdfMv4UtUByQz9p O3/8aXhjWOII3R4x1YvQ+4rXMadWRsQJXXujtZhHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNA8h2v9QtoUn8w0vstz4sNOYgUgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JmZDk2NjYwLTI5Y2YtNDA1NC1hMTRlLWNkNDg5NzVkMDhiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBAEeyrEIlxNacaeZKOUukSffvo88S r2CRScf+EvslAFfsypHD0Yost2UiVA/tayuc/yxcTh6fy69jtt6IcCZv1ymzspxD g7syoi2Yv8RocFBgbhk6ckzlBcUh83MLPT70Dv8OunJdX/vG2H0J6ywbiK43sXvp F7154ATdS56aVYUATXOZAld4y8C8dDh01L9UULB+pf8A3g3/hIDvidU4VVGm64mj 7Asg1MQXjrtzJxJ3iL3BHMn4Iwmo+K7DHYgLOmFt53BSsNGghe6C2LN2ZFl0X7Ek N3C6K1e0C4o5qHnI5nH9E8G5oEHBhMJ+6SN2lT+i0vUDbl5AGIKJAhmYCrs= -----END CERTIFICATE-----Generated at Wed May 13 02:41:46 2026 by rpki-client