$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa File: e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa (raw, json) Hash identifier: 17rfYSCU7KECs4VYPlihb+qfEwuH68EyhnBCe91r0bk= Subject key identifier: 08:30:65:AF:57:E4:13:B0:C0:64:34:CB:65:75:23:F1:C9:09:1F:22 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 648540A54409069A20787856D32299435339CABF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa Signing time: Mon 04 May 2026 15:00:45 +0000 ROA not before: Mon 04 May 2026 15:00:45 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:85:40:a5:44:09:06:9a:20:78:78:56:d3:22:99:43:53:39:ca:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:45 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=9a80e416d88ac14057f9f48e291419f199c7343fbe76accae33ea76850915253, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:68:77:4e:91:a3:65:8b:b0:92:4b:a1:aa:a7: 71:0d:4c:58:38:6d:ba:d8:9b:5f:fc:d7:f0:c9:69: 51:9e:7a:71:0c:b0:0f:34:11:ae:c1:3a:7d:c4:2e: 6d:5e:0f:62:74:81:92:04:ff:de:e6:21:1d:6e:af: ba:54:6f:d3:ce:99:41:5b:13:70:90:e3:9c:3a:27: 51:41:7a:05:7b:2c:d7:d7:93:da:66:38:21:64:a9: 86:45:10:50:ed:ae:91:96:98:43:ae:56:d4:15:1b: 46:bb:29:9f:3c:4c:64:fc:2b:54:71:dd:21:ca:85: 3e:ff:22:61:3d:13:08:3d:60:c3:5d:7e:2a:f6:ce: 9a:3c:f6:4e:80:64:ca:e2:9c:67:3e:16:e6:18:e7: 63:48:8f:fc:66:39:d0:23:87:ea:d6:40:12:53:98: 6c:43:5e:84:09:c4:ce:63:46:e9:39:ca:4d:6e:4d: 53:b7:08:fd:42:47:60:5b:3f:8b:9e:e7:ca:40:b7: 55:8f:4a:1c:2c:7a:a8:22:11:c7:74:7c:fa:c7:c1: 18:80:cf:5b:3f:7c:5e:2b:4d:01:c6:b1:e3:cc:b1: 6b:cd:5f:05:b9:52:ab:44:76:68:84:c3:5f:2b:2e: 52:b5:2a:97:dc:35:f8:61:20:08:04:16:f2:d7:75: d4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:30:65:AF:57:E4:13:B0:C0:64:34:CB:65:75:23:F1:C9:09:1F:22 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 52:b3:6f:17:ae:dc:6b:e6:54:29:88:4c:1f:9a:e8:ea:d6:55: 16:3d:92:35:be:80:2b:81:bf:3f:5f:85:64:72:44:24:37:db: 87:8f:ea:ef:5a:e1:cc:f4:c6:fa:49:d3:2e:3a:f6:f6:40:90: 57:4d:04:88:46:ca:f2:8a:9f:1b:a4:a1:08:31:dc:28:8a:b3: 13:53:fa:59:63:ef:80:69:3f:56:66:57:9d:0b:7d:bc:ea:75: 3f:19:3e:a7:b3:36:a2:25:27:c1:a8:d4:24:58:86:28:34:0a: ad:6a:51:11:fd:7d:a8:31:4d:7c:43:3a:ec:83:81:98:22:97: 16:03:b0:f1:52:91:52:21:9b:fe:57:29:88:db:78:1a:29:96: 51:a2:d9:32:ad:59:d7:64:90:17:20:48:57:0c:55:0b:56:b4: bd:15:a4:28:04:bc:4d:05:27:4d:8b:f1:28:15:6a:54:62:c1: 73:cb:08:30:18:40:71:11:f7:09:a9:9c:60:87:b8:8e:15:6a: 80:46:30:dd:a3:8b:43:7d:3a:5c:1b:ba:48:ae:33:14:5a:2d: fe:48:47:1c:ca:6c:c1:52:4e:7c:88:6c:c3:fd:7b:ae:a6:e8: 39:c4:e2:6f:26:5c:ce:3a:d7:ee:fc:84:ab:d2:17:84:0b:c7: a3:09:42:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZIVApUQJBpogeHhW0yKZQ1M5yr8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDQ1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTgwZTQxNmQ4OGFjMTQwNTdmOWY0OGUyOTE0MTlmMTk5 YzczNDNmYmU3NmFjY2FlMzNlYTc2ODUwOTE1MjUzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvaHdOkaNli7CSS6Gqp3ENTFg4bbrYm1/81/DJaVGeenEM sA80Ea7BOn3ELm1eD2J0gZIE/97mIR1ur7pUb9POmUFbE3CQ45w6J1FBegV7LNfX k9pmOCFkqYZFEFDtrpGWmEOuVtQVG0a7KZ88TGT8K1Rx3SHKhT7/ImE9Ewg9YMNd fir2zpo89k6AZMrinGc+FuYY52NIj/xmOdAjh+rWQBJTmGxDXoQJxM5jRuk5yk1u TVO3CP1CR2BbP4ue58pAt1WPShwseqgiEcd0fPrHwRiAz1s/fF4rTQHGsePMsWvN XwW5UqtEdmiEw18rLlK1KpfcNfhhIAgEFvLXddQrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCDBlr1fkE7DAZDTLZXUj8ckJHyIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2UyYjhhNzYzLTgzZTQtNDA4ZS04NTRhLWEyZTlmNjhjYTk5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAFKzbxeu3GvmVCmITB+a6OrWVRY9 kjW+gCuBvz9fhWRyRCQ324eP6u9a4cz0xvpJ0y469vZAkFdNBIhGyvKKnxukoQgx 3CiKsxNT+llj74BpP1ZmV50LfbzqdT8ZPqezNqIlJ8Go1CRYhig0Cq1qURH9fagx TXxDOuyDgZgilxYDsPFSkVIhm/5XKYjbeBopllGi2TKtWddkkBcgSFcMVQtWtL0V pCgEvE0FJ02L8SgValRiwXPLCDAYQHER9wmpnGCHuI4VaoBGMN2ji0N9Olwbukiu MxRaLf5IRxzKbMFSTnyIbMP9e66m6DnE4m8mXM461+78hKvSF4QLx6MJQoE= -----END CERTIFICATE-----Generated at Wed May 13 02:42:50 2026 by rpki-client