$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa File: ff893aad-9ed8-41c3-9b48-507fa414885d.roa (raw, json) Hash identifier: DOda1ASM1fYb/lQHh9IAV68qpZWM3fclCzid+Sf37PY= Subject key identifier: 54:DA:97:C6:E8:E2:14:E3:C4:EB:99:FE:74:23:98:D5:FE:01:16:72 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 254A173DD67B537C5FE8B09BC5AD6B4E8E4C0CCB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa Signing time: Mon 04 May 2026 15:00:45 +0000 ROA not before: Mon 04 May 2026 15:00:45 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4a:17:3d:d6:7b:53:7c:5f:e8:b0:9b:c5:ad:6b:4e:8e:4c:0c:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 4 15:00:45 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=43c1e602508dcdd7544913eff2177547362aac1b23e04f25a7f12b7401951bfb, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ee:4b:b9:58:38:7f:9e:01:0a:d3:59:cc:54: 6f:47:b7:c4:d5:ad:84:38:85:99:bd:bb:a2:ee:bf: c3:be:45:0d:cc:8c:3b:c1:4f:6b:f2:e3:4e:af:7a: 99:76:78:a9:9f:0a:e9:01:40:72:ea:00:1e:c9:b6: 8b:8e:ef:86:b6:c6:3e:1f:80:94:df:3e:d5:95:61: 0c:cf:5b:2e:eb:b0:3d:49:e9:7f:bc:3b:35:a6:3b: 5f:b3:22:b0:c7:90:1e:4a:b6:d1:0d:71:c3:51:eb: 88:0a:26:33:4b:c1:58:65:65:8b:c4:56:57:05:de: a3:09:b4:53:fd:ea:fa:bc:8f:8a:ea:8e:9b:0d:ec: e8:f6:06:15:27:6b:49:f3:46:65:7d:38:e2:cc:ca: b7:25:24:e3:cb:4c:20:5f:ba:f3:b0:30:2b:a5:e3: 9d:85:57:06:05:f4:09:2b:d6:0c:41:d6:ed:90:47: 97:65:ab:fa:ce:ed:98:58:79:f5:e7:fb:60:b1:85: 25:5d:f4:55:c4:b2:ec:d0:53:ba:1c:4f:2c:5c:b4: a2:ff:84:7d:12:88:61:70:04:16:de:60:0d:83:a9: 47:49:58:c6:87:51:84:64:a5:74:ad:f7:b2:df:77: 95:27:08:11:e3:bb:03:fe:df:4e:aa:2e:22:73:07: 2a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DA:97:C6:E8:E2:14:E3:C4:EB:99:FE:74:23:98:D5:FE:01:16:72 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:73:2c:83:6e:6e:31:b6:32:a5:49:1b:40:fc:0f:5b:bc:60: 23:50:66:0b:c9:17:ce:b1:b9:cd:a4:5d:14:13:c3:2f:d3:d9: 95:bc:1e:24:ea:c4:3a:0a:18:37:4e:9b:99:3a:b5:dd:b8:dc: 6f:b3:0a:3d:05:98:10:b0:f5:b0:6a:42:46:34:29:d4:2e:7b: d7:85:40:ed:d4:19:f8:37:fc:6c:bc:0b:94:34:cc:52:3f:a3: 45:23:5d:c4:87:f8:30:27:67:a9:b2:0f:67:37:55:72:a0:9c: fc:91:63:02:d5:3d:15:98:82:0d:ed:31:ff:ad:5d:e0:8c:ac: bd:fb:dc:56:d8:e7:5c:f5:c7:0f:f0:01:22:bf:d2:3c:73:e6: e8:46:b3:60:ac:9f:7e:ba:bf:04:ad:20:08:7e:0b:06:70:ef: 05:b7:3d:d3:bd:dd:51:9b:25:19:74:4c:63:b4:9a:44:0a:45: f8:48:ef:d5:38:83:6f:33:4c:ab:8a:50:fd:5f:f5:28:cf:a0: 80:4c:4e:33:bf:90:3f:8f:e1:a7:87:fb:87:2e:f4:eb:d7:f3: bb:99:9a:fb:6d:02:ac:b1:21:c8:ae:60:9c:e1:6d:8d:1c:04: 1e:73:2a:37:38:9e:81:ca:5a:3e:3e:d8:42:e1:de:7c:91:c2: 17:03:1d:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJUoXPdZ7U3xf6LCbxa1rTo5MDMswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTA0MTUwMDQ1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0M2MxZTYwMjUwOGRjZGQ3NTQ0OTEzZWZmMjE3NzU0NzM2 MmFhYzFiMjNlMDRmMjVhN2YxMmI3NDAxOTUxYmZiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ7ku5WDh/ngEK01nMVG9Ht8TVrYQ4hZm9u6Luv8O+RQ3M jDvBT2vy406vepl2eKmfCukBQHLqAB7JtouO74a2xj4fgJTfPtWVYQzPWy7rsD1J 6X+8OzWmO1+zIrDHkB5KttENccNR64gKJjNLwVhlZYvEVlcF3qMJtFP96vq8j4rq jpsN7Oj2BhUna0nzRmV9OOLMyrclJOPLTCBfuvOwMCul452FVwYF9Akr1gxB1u2Q R5dlq/rO7ZhYefXn+2CxhSVd9FXEsuzQU7ocTyxctKL/hH0SiGFwBBbeYA2DqUdJ WMaHUYRkpXSt97Lfd5UnCBHjuwP+306qLiJzBypJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVNqXxujiFOPE65n+dCOY1f4BFnIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZmODkzYWFkLTllZDgtNDFjMy05YjQ4LTUwN2ZhNDE0ODg1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAA1zLINubjG2MqVJG0D8D1u8YCNQ ZgvJF86xuc2kXRQTwy/T2ZW8HiTqxDoKGDdOm5k6td243G+zCj0FmBCw9bBqQkY0 KdQue9eFQO3UGfg3/Gy8C5Q0zFI/o0UjXcSH+DAnZ6myD2c3VXKgnPyRYwLVPRWY gg3tMf+tXeCMrL373FbY51z1xw/wASK/0jxz5uhGs2Csn366vwStIAh+CwZw7wW3 PdO93VGbJRl0TGO0mkQKRfhI79U4g28zTKuKUP1f9SjPoIBMTjO/kD+P4aeH+4cu 9OvX87uZmvttAqyxIciuYJzhbY0cBB5zKjc4noHKWj4+2ELh3nyRwhcDHfw= -----END CERTIFICATE-----Generated at Tue May 12 22:18:27 2026 by rpki-client