$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa File: e5892d34-8457-485d-a5bb-33dc03a2e607.roa (raw, json) Hash identifier: UAfHDr99Jw8le223KviloSvQpU7C5kTmkiOfQ5IxZls= Subject key identifier: DA:E5:0A:24:ED:F0:14:B0:D9:12:B6:42:95:0D:78:63:35:7E:D9:74 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5F786251C6AD862BE17DE9D47E215CB6CAB455D1 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa Signing time: Fri 08 May 2026 03:10:07 +0000 ROA not before: Fri 08 May 2026 03:10:07 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:78:62:51:c6:ad:86:2b:e1:7d:e9:d4:7e:21:5c:b6:ca:b4:55:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 8 03:10:07 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=95dafd9eed1ac80e926e7d4cd7c90d8d221fe28c83ab1aeb7dee6f1a19becd6a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ca:b7:4e:cb:d5:ef:dd:79:ce:e0:0b:6e:82: 8f:e4:18:98:97:eb:5a:fe:70:ec:7b:88:b8:ae:be: 67:c2:bb:07:b0:87:48:4a:66:3d:0a:0a:1b:9a:0a: 23:7d:d8:75:35:be:dd:33:ec:ee:82:fa:52:3f:7a: 7d:52:5f:f0:66:7b:40:d9:13:8c:a6:7f:80:07:8b: 2a:a7:56:74:9b:de:d0:c7:d4:69:51:f1:ee:64:3a: 70:c7:d4:5e:02:bd:61:82:d7:4d:c8:ef:a7:00:1e: a3:f6:c4:dc:5a:c5:eb:6c:fe:31:33:e3:d8:db:dd: e6:f7:99:e9:81:7f:19:8d:30:38:d3:c2:36:8b:ea: f6:6a:de:c2:b3:ef:df:62:2d:e4:b9:90:67:37:99: be:63:bd:f8:f3:34:85:df:73:b8:cf:7e:9f:b2:4d: 24:7f:bf:e4:ff:90:0b:fd:b1:70:90:fd:1c:9f:82: 50:82:08:84:bd:ca:a6:ee:99:23:f8:77:02:f4:df: 4d:d7:dc:69:18:97:0c:43:fd:e6:52:e8:7f:2e:4b: 45:e4:c5:5d:f0:a7:ab:8e:0d:51:b7:c2:02:75:90: 5c:44:32:07:26:17:b2:c3:ee:4a:ad:6d:ec:9d:db: 45:80:55:52:e2:3c:6c:9e:88:3e:dc:0a:aa:47:ea: 02:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:E5:0A:24:ED:F0:14:B0:D9:12:B6:42:95:0D:78:63:35:7E:D9:74 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.32.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:32:6b:4b:6d:9d:87:12:92:51:af:cd:77:c6:ac:1d:8b:3e: 7e:9b:3b:dc:9a:05:dc:c9:19:58:a3:aa:a6:1a:00:ac:49:b0: 60:7e:e3:6a:52:f0:69:63:a1:cf:6e:70:79:aa:ca:06:ff:74: b6:c2:4a:02:53:c6:31:5c:92:3e:45:e6:bb:6d:1f:0e:eb:28: fa:df:de:d9:09:77:fe:8b:a7:fa:a1:40:cd:d1:49:d3:f1:cc: ad:6b:97:16:47:1c:51:97:18:fa:9b:d7:56:60:e2:49:97:81: 14:5a:6d:c6:c6:41:71:e4:d5:fe:a3:16:b7:2c:05:72:11:e5: 90:db:53:2e:a2:64:e0:60:94:ab:ce:ce:fc:b1:30:72:1a:48: d7:bb:1a:c5:76:be:de:d3:c7:b8:9d:97:c7:f0:a7:4b:76:cd: 6e:62:b3:5f:ae:7b:dc:e7:d1:c3:99:8b:f1:9c:b0:b5:ae:63: da:c9:12:0f:82:7c:17:ab:19:bb:38:0e:9c:eb:46:0e:27:f3: 5f:12:34:21:82:7b:51:b2:38:56:80:27:61:f1:14:e6:6f:d6: 36:04:4a:bf:5a:9e:64:40:1c:60:50:53:30:bf:b9:67:2f:7b: 25:7d:47:e2:d3:08:8f:d9:a1:7e:8d:ad:f2:21:59:40:26:d5: e2:af:52:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX3hiUcathivhfenUfiFctsq0VdEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA4MDMxMDA3WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWRhZmQ5ZWVkMWFjODBlOTI2ZTdkNGNkN2M5MGQ4ZDIy MWZlMjhjODNhYjFhZWI3ZGVlNmYxYTE5YmVjZDZhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJyrdOy9Xv3XnO4Atugo/kGJiX61r+cOx7iLiuvmfCuwew h0hKZj0KChuaCiN92HU1vt0z7O6C+lI/en1SX/Bme0DZE4ymf4AHiyqnVnSb3tDH 1GlR8e5kOnDH1F4CvWGC103I76cAHqP2xNxaxets/jEz49jb3eb3memBfxmNMDjT wjaL6vZq3sKz799iLeS5kGc3mb5jvfjzNIXfc7jPfp+yTSR/v+T/kAv9sXCQ/Ryf glCCCIS9yqbumSP4dwL0303X3GkYlwxD/eZS6H8uS0XkxV3wp6uODVG3wgJ1kFxE MgcmF7LD7kqtbeyd20WAVVLiPGyeiD7cCqpH6gJJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2uUKJO3wFLDZErZClQ14YzV+2XQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1ODkyZDM0LTg0NTctNDg1ZC1hNWJiLTMzZGMwM2EyZTYwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCAwDQYJKoZIhvcNAQELBQADggEBAJ4ya0ttnYcSklGvzXfGrB2LPn6b O9yaBdzJGVijqqYaAKxJsGB+42pS8Gljoc9ucHmqygb/dLbCSgJTxjFckj5F5rtt Hw7rKPrf3tkJd/6Lp/qhQM3RSdPxzK1rlxZHHFGXGPqb11Zg4kmXgRRabcbGQXHk 1f6jFrcsBXIR5ZDbUy6iZOBglKvOzvyxMHIaSNe7GsV2vt7Tx7idl8fwp0t2zW5i s1+ue9zn0cOZi/GcsLWuY9rJEg+CfBerGbs4DpzrRg4n818SNCGCe1GyOFaAJ2Hx FOZv1jYESr9anmRAHGBQUzC/uWcveyV9R+LTCI/ZoX6NrfIhWUAm1eKvUqk= -----END CERTIFICATE-----Generated at Tue May 12 23:48:08 2026 by rpki-client