$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa File: dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa (raw, json) Hash identifier: lUG2t3ZjkwvLxjgeA5ULWJzfBtWgZjEjHI/GDZPuRRw= Subject key identifier: E6:3A:92:7D:2A:3A:9D:39:1E:2C:2A:32:5A:0E:E9:A2:18:5F:D8:0C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 70864622693B32FC091AFD946DA96855B29A3592 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa Signing time: Fri 08 May 2026 03:10:09 +0000 ROA not before: Fri 08 May 2026 03:10:09 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:86:46:22:69:3b:32:fc:09:1a:fd:94:6d:a9:68:55:b2:9a:35:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 8 03:10:09 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=b2ea4e24d7cdedd17ea333c57fdd628b62cc01ecc860a1ecf2ef6c7ae1bef4ba, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:eb:59:4e:78:25:c3:10:0e:d1:fc:8b:e6:63: 3f:ae:7a:73:50:25:a9:66:aa:df:45:d9:e5:b2:33: 0c:90:f1:01:cb:20:ab:b9:de:b8:ad:53:b8:cb:2d: 89:cf:8f:2c:db:76:4e:d6:a0:60:07:fa:83:4d:28: 4b:92:6c:da:cf:24:29:72:7e:d5:05:0b:dc:91:0f: cb:dd:c8:bb:ff:39:79:4f:e7:99:df:f7:5c:51:a0: 42:f0:a3:e1:66:fb:23:20:f9:2d:3d:57:c5:7d:1a: ce:0d:5c:2f:5d:11:06:0c:fa:4a:37:bd:c8:61:a2: 5d:72:f2:bc:e9:03:50:48:56:dd:52:80:61:7d:f8: a6:6e:f9:bb:15:b5:80:2b:4d:c3:12:da:ad:dd:67: 8e:ee:fb:02:ba:e9:55:8e:70:ef:ee:d5:b5:ef:46: 99:01:70:ed:59:1f:6d:48:66:c7:41:8b:2a:4e:66: 54:9b:6d:50:b9:60:9f:6a:cd:b0:34:4e:07:85:a6: 1b:2e:85:5b:13:90:62:31:dd:fc:88:01:40:c1:7f: 08:b1:e7:54:94:51:55:20:9c:66:28:a4:37:a7:04: ff:a5:6d:3a:2a:9a:92:83:59:10:c1:15:97:fb:2b: 33:96:88:0e:17:66:a6:df:73:0a:7e:35:5d:9b:d1: 2d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3A:92:7D:2A:3A:9D:39:1E:2C:2A:32:5A:0E:E9:A2:18:5F:D8:0C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 41:c2:5a:78:1e:eb:d2:f7:a4:d1:b1:8c:5f:56:a1:bd:6e:66: 30:7c:f4:de:19:fa:57:16:86:52:b7:3f:1c:9e:f3:a8:dc:d3: d3:b6:ff:66:7d:e1:68:ac:8a:2b:a1:82:6a:be:39:46:9d:0d: f8:98:4c:6a:00:b2:0c:ea:bb:fc:04:25:1b:54:57:7d:4c:0b: 9d:c6:1d:81:41:3e:d1:c9:a0:d4:69:93:49:60:3d:dd:b2:14: 89:00:21:bf:0a:a6:c3:ec:53:8a:ee:20:4b:60:5d:0e:39:6b: 18:5b:9c:86:9a:84:ff:6c:93:a4:68:69:be:7a:ff:1a:14:61: 6e:a7:d2:9d:45:d4:1a:b2:8d:1a:f7:bf:ce:32:a0:4c:91:38: e1:bf:a9:9a:29:42:3e:e1:8e:7f:9c:36:e4:55:71:8f:0a:86: 1d:68:73:12:ca:2f:43:58:5b:20:e5:2e:17:f1:8f:1b:d5:4b: b2:6d:60:b5:53:6d:17:84:cd:85:61:be:f7:14:1e:b4:c7:83: c3:e4:64:3d:52:38:84:76:83:e5:84:d1:9b:f8:6b:95:f7:16: 84:4c:79:80:17:f2:1d:58:91:45:2c:c3:b8:34:4a:b1:71:cc: 72:7f:de:d5:63:19:12:18:ea:39:59:9d:44:72:c3:45:a4:7c: 2a:a9:63:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcIZGImk7MvwJGv2UbaloVbKaNZIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA4MDMxMDA5WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmVhNGUyNGQ3Y2RlZGQxN2VhMzMzYzU3ZmRkNjI4YjYy Y2MwMWVjYzg2MGExZWNmMmVmNmM3YWUxYmVmNGJhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ61lOeCXDEA7R/IvmYz+uenNQJalmqt9F2eWyMwyQ8QHL IKu53ritU7jLLYnPjyzbdk7WoGAH+oNNKEuSbNrPJClyftUFC9yRD8vdyLv/OXlP 55nf91xRoELwo+Fm+yMg+S09V8V9Gs4NXC9dEQYM+ko3vchhol1y8rzpA1BIVt1S gGF9+KZu+bsVtYArTcMS2q3dZ47u+wK66VWOcO/u1bXvRpkBcO1ZH21IZsdBiypO ZlSbbVC5YJ9qzbA0TgeFphsuhVsTkGIx3fyIAUDBfwix51SUUVUgnGYopDenBP+l bToqmpKDWRDBFZf7KzOWiA4XZqbfcwp+NV2b0S2BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5jqSfSo6nTkeLCoyWg7pohhf2AwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RjODIyYzAxLTE3MTctNGU0NS1hNWE4LTNhNWRjOTE2Yzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAEHCWnge69L3pNGxjF9Wob1uZjB8 9N4Z+lcWhlK3Pxye86jc09O2/2Z94Wisiiuhgmq+OUadDfiYTGoAsgzqu/wEJRtU V31MC53GHYFBPtHJoNRpk0lgPd2yFIkAIb8KpsPsU4ruIEtgXQ45axhbnIaahP9s k6Roab56/xoUYW6n0p1F1BqyjRr3v84yoEyROOG/qZopQj7hjn+cNuRVcY8Khh1o cxLKL0NYWyDlLhfxjxvVS7JtYLVTbReEzYVhvvcUHrTHg8PkZD1SOIR2g+WE0Zv4 a5X3FoRMeYAX8h1YkUUsw7g0SrFxzHJ/3tVjGRIY6jlZnURyw0WkfCqpY1U= -----END CERTIFICATE-----Generated at Wed May 13 02:41:56 2026 by rpki-client