$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa File: 35dd8080-5375-4755-bea9-982f40526ea4.roa (raw, json) Hash identifier: GVUs03xgv+8UpIu3WE1zyCCIoGR/HjxeJhDzyb8dxBI= Subject key identifier: 50:93:14:35:5C:83:BD:7D:0D:F6:FF:DA:93:95:0D:17:7C:D0:4B:53 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 033976F91A78DC1C75EF78F849FDAC760406E76A Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa Signing time: Tue 17 Feb 2026 00:10:08 +0000 ROA not before: Tue 17 Feb 2026 00:10:08 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:39:76:f9:1a:78:dc:1c:75:ef:78:f8:49:fd:ac:76:04:06:e7:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Feb 17 00:10:08 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=0213887ee8074661823318ecaf3950ef8048220cb91cedc707d467f7f01ce969, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9c:54:84:5f:e2:6d:21:b0:28:e7:69:5e:af: 50:fb:23:b7:2f:74:5b:62:96:82:c3:61:35:8a:cb: 3e:34:16:87:75:9c:53:c3:bb:e2:41:ce:25:21:ea: b9:e6:11:18:56:52:40:0a:92:73:72:c4:c7:e7:d2: 0a:e8:1f:b6:ea:a6:76:85:4f:e4:71:cb:9a:91:0e: f1:f1:97:7e:1d:65:f4:9c:af:3b:1c:97:c8:09:5a: 0f:50:67:9d:63:6c:f8:57:7c:19:9e:a1:7a:b4:e5: ec:33:c7:59:f3:b4:a9:4e:95:c5:18:2d:c7:02:39: 1e:ae:f3:8d:1c:d6:12:85:b6:c9:b3:ac:81:14:e5: 04:6c:a8:ce:c4:6c:34:f1:c7:b9:b4:11:16:ca:4b: 16:69:e1:b0:d5:d4:c2:fa:af:84:25:bb:bb:28:6e: d5:2a:02:c3:42:df:4c:83:5e:2c:41:de:10:03:ba: 70:43:3d:be:9f:7d:7f:93:0f:97:67:bd:82:8d:8d: 20:c1:0a:a4:16:4c:1a:b4:f9:e4:00:41:f5:8b:66: ff:80:39:a2:de:95:3b:86:57:d4:54:b7:2e:cc:2b: 2f:e5:53:7c:86:b1:0f:40:59:46:f1:fd:4e:11:7c: 5d:a5:6a:b8:4a:5c:4f:cf:4f:a5:07:3e:d7:74:ea: e3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:93:14:35:5C:83:BD:7D:0D:F6:FF:DA:93:95:0D:17:7C:D0:4B:53 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 3a:5b:90:1b:71:6b:0d:b4:72:44:1f:ee:d6:93:60:e7:fa:0a: 86:53:11:5c:8b:75:a7:4d:3b:2a:6e:ad:2f:f7:3d:a7:b7:26: a7:2b:ad:e2:41:b0:1f:d2:a1:2f:21:4c:bf:5a:c4:94:33:21: a2:06:fa:64:e0:0b:89:23:a3:ef:f8:e7:c5:65:d5:fb:3b:89: 57:78:ef:86:f9:0b:aa:b6:de:fb:83:e1:34:c2:30:b8:3d:ca: cf:9a:49:48:6a:4b:ff:dd:ee:66:98:bd:60:3a:8c:34:c3:8c: 36:23:4b:bf:ba:ff:98:54:22:c4:a6:c0:06:79:28:94:15:2e: c6:b3:9c:eb:3c:53:28:b1:01:72:1a:4d:c2:3b:44:40:ac:4c: 5e:b8:3c:38:5f:9c:29:b0:4e:2c:8c:69:0c:d2:5e:c7:6f:87: 0d:cb:e0:fb:63:fc:1e:cc:ce:fc:53:08:50:6d:95:11:9e:06: 87:0c:66:81:2e:3f:d1:79:e4:ac:6b:33:be:3b:01:52:e7:a4: 42:86:a6:ac:20:8d:17:a1:b1:79:15:e9:e2:b0:a2:9f:b7:4b: d8:2e:6c:92:48:05:a7:2b:f6:16:34:93:73:7a:40:1c:36:4e: a7:80:ee:0e:a3:ef:5a:f5:87:83:3e:01:cb:30:c9:12:84:9b: 53:fc:35:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAzl2+Rp43Bx173j4Sf2sdgQG52owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjYwMjE3MDAxMDA4WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjEzODg3ZWU4MDc0NjYxODIzMzE4ZWNhZjM5NTBlZjgw NDgyMjBjYjkxY2VkYzcwN2Q0NjdmN2YwMWNlOTY5MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcnFSEX+JtIbAo52ler1D7I7cvdFtiloLDYTWKyz40Fod1 nFPDu+JBziUh6rnmERhWUkAKknNyxMfn0groH7bqpnaFT+Rxy5qRDvHxl34dZfSc rzscl8gJWg9QZ51jbPhXfBmeoXq05ewzx1nztKlOlcUYLccCOR6u840c1hKFtsmz rIEU5QRsqM7EbDTxx7m0ERbKSxZp4bDV1ML6r4Qlu7sobtUqAsNC30yDXixB3hAD unBDPb6ffX+TD5dnvYKNjSDBCqQWTBq0+eQAQfWLZv+AOaLelTuGV9RUty7MKy/l U3yGsQ9AWUbx/U4RfF2larhKXE/PT6UHPtd06uPvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUJMUNVyDvX0N9v/ak5UNF3zQS1MwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzM1ZGQ4MDgwLTUzNzUtNDc1NS1iZWE5LTk4MmY0MDUyNmVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBADpbkBtxaw20ckQf7taTYOf6CoZT EVyLdadNOypurS/3Pae3JqcrreJBsB/SoS8hTL9axJQzIaIG+mTgC4kjo+/458Vl 1fs7iVd474b5C6q23vuD4TTCMLg9ys+aSUhqS//d7maYvWA6jDTDjDYjS7+6/5hU IsSmwAZ5KJQVLsaznOs8UyixAXIaTcI7RECsTF64PDhfnCmwTiyMaQzSXsdvhw3L 4Ptj/B7MzvxTCFBtlRGeBocMZoEuP9F55KxrM747AVLnpEKGpqwgjRehsXkV6eKw op+3S9gubJJIBacr9hY0k3N6QBw2TqeA7g6j71r1h4M+AcswyRKEm1P8Ndc= -----END CERTIFICATE-----Generated at Mon Mar 2 01:07:53 2026 by rpki-client