$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dfc522ed-0d32-4ec5-8088-25bb1a641c6e.roa File: dfc522ed-0d32-4ec5-8088-25bb1a641c6e.roa (raw, json) Hash identifier: joSdkoxUtso5dWPn8lbuWrbuexjYgTRf0yVxyg57dIg= Subject key identifier: 19:46:29:BC:F7:56:3E:BF:70:D8:44:29:00:FB:F4:A0:50:A6:51:2C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 11095B15C4F2B23BB2ADE4C74C440CAB744BEEFA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dfc522ed-0d32-4ec5-8088-25bb1a641c6e.roa Signing time: Mon 27 Apr 2026 00:20:09 +0000 ROA not before: Mon 27 Apr 2026 00:20:09 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:09:5b:15:c4:f2:b2:3b:b2:ad:e4:c7:4c:44:0c:ab:74:4b:ee:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 27 00:20:09 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=aa3d763f7965979f3851e24630d470ee5f1d8ce67a9a2716a4f2e0141b6ea3a5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c9:22:cd:a7:ae:15:8c:03:b4:c9:38:76:6a: b3:20:fc:5b:59:d1:1f:dd:e2:e8:49:60:35:68:2c: 3c:47:35:82:b2:9e:d6:dc:0e:3c:1b:25:bf:96:a0: ba:d8:34:3d:8b:e3:9e:ee:8e:94:3b:78:d9:f7:91: 60:b4:63:91:84:44:43:4c:74:d5:5c:0c:03:f3:a5: ea:30:f5:09:7c:02:c4:05:d6:a8:db:1b:54:a4:7d: f3:cf:b4:71:8f:a7:ec:34:1c:e6:38:ce:d8:67:7e: 7e:dc:ad:6c:e0:12:22:41:f3:bf:30:ee:eb:95:6e: 57:4d:30:9d:b3:ec:81:0f:f0:84:b2:d9:5a:61:9f: 8c:2b:3a:db:69:f4:24:9f:94:f0:d0:03:e2:a0:14: 2e:ae:12:b1:34:9f:c2:aa:c3:50:41:55:4b:54:b5: b3:b5:d9:0a:98:e7:e3:17:b1:75:2a:e6:cc:d2:6c: c9:43:c7:6f:5f:04:36:26:cb:b4:92:3d:7b:35:68: 6d:90:05:c3:31:91:c1:f3:bf:e0:cb:52:ca:35:86: 93:06:d2:33:2a:58:81:2d:a2:b1:9b:ee:f3:f4:a7: 74:b1:17:a7:3b:9f:de:0c:25:94:8b:17:df:6f:45: 73:f4:a9:70:72:2e:9e:03:f4:c8:98:07:dd:c9:f7: cb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:46:29:BC:F7:56:3E:BF:70:D8:44:29:00:FB:F4:A0:50:A6:51:2C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dfc522ed-0d32-4ec5-8088-25bb1a641c6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/12 Signature Algorithm: sha256WithRSAEncryption 3b:63:ed:41:cb:d9:35:72:dd:80:de:8c:65:a2:b1:a3:1b:23: 37:40:31:d1:22:86:48:91:b3:08:0e:b5:8c:f1:a3:8a:cb:2b: 92:dd:d2:55:6a:aa:93:4f:70:e9:bb:26:68:e2:4b:63:c2:ac: ca:60:93:f0:65:6d:d8:9e:79:f8:1b:c5:1b:f9:95:98:af:c6: 6e:73:a7:fc:3e:51:3f:1f:25:2b:34:ac:89:11:35:9d:ea:b0: 47:06:ec:ee:19:6d:dd:ef:1d:f6:2e:4d:20:9b:3c:d7:08:3e: 6e:56:1b:f6:e0:03:7b:fb:0f:f1:6b:4a:b8:09:30:e3:13:85: 11:01:0d:d9:cf:94:39:e4:64:45:8d:77:e0:88:db:ed:28:4a: bf:f0:85:a3:d5:01:9c:f9:9c:00:1d:20:62:ad:40:dc:53:35: 40:1d:32:d1:97:be:d7:d8:1f:83:0e:d6:80:46:ef:80:df:c3: 47:e3:75:26:9a:b6:80:b1:c3:26:7e:a2:5f:b3:72:6b:3f:40: d3:4a:16:b4:c8:f7:38:c7:fd:90:d8:4d:b6:e5:5d:b3:f4:42: 19:77:a5:0e:c8:49:25:99:e1:b0:5a:fc:77:4c:b3:24:4e:2a: fc:c6:31:3e:89:61:02:a0:bb:6c:5c:35:c4:b8:61:48:2b:9a: 5d:37:26:0f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEQlbFcTysjuyreTHTEQMq3RL7vowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNDI3MDAyMDA5WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTNkNzYzZjc5NjU5NzlmMzg1MWUyNDYzMGQ0NzBlZTVm MWQ4Y2U2N2E5YTI3MTZhNGYyZTAxNDFiNmVhM2E1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOySLNp64VjAO0yTh2arMg/FtZ0R/d4uhJYDVoLDxHNYKy ntbcDjwbJb+WoLrYND2L457ujpQ7eNn3kWC0Y5GERENMdNVcDAPzpeow9Ql8AsQF 1qjbG1SkffPPtHGPp+w0HOY4zthnfn7crWzgEiJB878w7uuVbldNMJ2z7IEP8ISy 2Vphn4wrOttp9CSflPDQA+KgFC6uErE0n8Kqw1BBVUtUtbO12QqY5+MXsXUq5szS bMlDx29fBDYmy7SSPXs1aG2QBcMxkcHzv+DLUso1hpMG0jMqWIEtorGb7vP0p3Sx F6c7n94MJZSLF99vRXP0qXByLp4D9MiYB93J98snAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGUYpvPdWPr9w2EQpAPv0oFCmUSwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RmYzUyMmVkLTBkMzItNGVjNS04MDg4LTI1YmIxYTY0MWM2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQjYDANBgkqhkiG9w0BAQsFAAOCAQEAO2PtQcvZNXLdgN6MZaKxoxsjN0Ax 0SKGSJGzCA61jPGjissrkt3SVWqqk09w6bsmaOJLY8KsymCT8GVt2J55+BvFG/mV mK/GbnOn/D5RPx8lKzSsiRE1neqwRwbs7hlt3e8d9i5NIJs81wg+blYb9uADe/sP 8WtKuAkw4xOFEQEN2c+UOeRkRY134Ijb7ShKv/CFo9UBnPmcAB0gYq1A3FM1QB0y 0Ze+19gfgw7WgEbvgN/DR+N1Jpq2gLHDJn6iX7Nyaz9A00oWtMj3OMf9kNhNtuVd s/RCGXelDshJJZnhsFr8d0yzJE4q/MYxPolhAqC7bFw1xLhhSCuaXTcmDw== -----END CERTIFICATE-----Generated at Wed May 13 02:41:49 2026 by rpki-client