$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa File: 06068fda-8886-4835-9c88-81ea15fda48e.roa (raw, json) Hash identifier: C/an7gQK6p49zNRfNDvlVWGu7cUYCa4wVbOC8vRgMXM= Subject key identifier: 1E:D5:B6:84:22:30:EF:EE:96:EB:11:81:0F:E3:0F:DD:AF:FE:73:71 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 50D1275436093E8C91ADEBC6103B5FC13A457248 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa Signing time: Tue 19 May 2026 04:00:08 +0000 ROA not before: Tue 19 May 2026 04:00:08 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d1:27:54:36:09:3e:8c:91:ad:eb:c6:10:3b:5f:c1:3a:45:72:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 19 04:00:08 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=1f1c43cda1077016239c7ef539120b9bd3da83dc457e2da00f2307bfb65339ff, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ae:54:d8:01:36:cc:af:68:28:4c:00:90:fc: 7b:51:d4:95:d2:56:e9:90:94:2c:51:ec:ac:66:16: 1f:db:da:d8:26:82:57:27:35:25:80:0e:ee:06:38: 8a:ed:d0:a4:b3:53:b6:14:b8:dd:3b:4f:98:a4:35: 39:da:7f:ee:0c:46:b1:a0:6b:bc:18:1b:d9:ba:04: 90:13:6f:05:4b:26:a2:05:a7:69:16:82:33:ce:e2: 29:7f:f1:f5:1c:bb:40:03:92:1b:7f:3a:d6:77:5a: f4:99:71:dc:12:86:83:90:cf:7a:7e:85:5b:4a:2c: ab:14:f6:a2:f4:a5:52:11:60:03:4a:fb:fe:d9:17: 66:38:16:c4:be:a9:11:ad:56:99:88:59:52:45:6d: e5:f5:3e:a0:ad:67:5d:d3:42:99:f5:da:64:8a:6e: 4c:03:54:21:dc:47:a1:c3:4f:60:de:aa:86:4e:88: 94:8e:b5:40:1a:05:85:89:4d:df:77:44:cd:f6:59: 72:69:91:52:5a:c0:54:49:02:44:3e:e7:4b:87:c4: c5:0f:2c:80:b9:21:41:bf:85:35:e5:38:51:f3:d7: 1c:a0:5b:05:56:b2:9b:ec:50:35:59:8d:94:45:9d: 8a:0c:ea:41:fe:25:8a:ad:44:04:d3:fe:9f:99:b3: 77:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D5:B6:84:22:30:EF:EE:96:EB:11:81:0F:E3:0F:DD:AF:FE:73:71 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.47.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:5d:a7:ae:97:c5:c0:82:5d:62:64:29:c8:2e:25:99:64:f7: 53:a2:a1:3e:26:0e:b6:cf:0c:95:e0:cf:6e:e2:9e:0f:2e:f5: 8c:ed:6b:fe:32:16:05:c7:e6:42:b0:62:82:02:01:fc:fc:d6: 38:46:27:73:59:3d:e1:95:76:06:91:86:18:ff:61:89:4c:d7: 7f:89:3b:39:1a:7e:06:8a:43:2c:a8:22:c9:20:d3:f3:d1:ec: 74:5c:8d:32:cd:53:fc:15:f0:9d:63:75:38:d7:75:be:cc:54: 99:c2:6b:ea:65:ef:24:74:21:03:d3:6b:36:50:fb:89:2a:71: 84:97:fe:ee:d2:04:07:2d:dc:14:53:9a:51:3f:d7:ab:9d:63: 74:73:c1:06:95:aa:b7:58:29:be:b4:82:80:4b:e7:b3:f4:0f: 81:48:19:01:26:06:f9:4d:7f:73:ac:71:a8:2c:03:5c:e0:d7: d4:96:33:d2:d6:17:53:78:bc:88:1a:dd:6b:ef:43:d4:ee:ec: a6:66:76:0d:ce:cb:7b:cf:10:67:97:f6:4c:00:4e:e8:01:f1: 49:a3:2f:f0:a2:b4:c7:66:f8:bf:b9:1f:b1:af:c9:68:7b:2b: 27:04:c3:d3:71:6a:6d:13:59:0e:6d:33:7b:72:5d:83:2e:a9: 65:c2:fc:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUNEnVDYJPoyRrevGEDtfwTpFckgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE5MDQwMDA4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjFjNDNjZGExMDc3MDE2MjM5YzdlZjUzOTEyMGI5YmQz ZGE4M2RjNDU3ZTJkYTAwZjIzMDdiZmI2NTMzOWZmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCirlTYATbMr2goTACQ/HtR1JXSVumQlCxR7KxmFh/b2tgm glcnNSWADu4GOIrt0KSzU7YUuN07T5ikNTnaf+4MRrGga7wYG9m6BJATbwVLJqIF p2kWgjPO4il/8fUcu0ADkht/OtZ3WvSZcdwShoOQz3p+hVtKLKsU9qL0pVIRYANK +/7ZF2Y4FsS+qRGtVpmIWVJFbeX1PqCtZ13TQpn12mSKbkwDVCHcR6HDT2DeqoZO iJSOtUAaBYWJTd93RM32WXJpkVJawFRJAkQ+50uHxMUPLIC5IUG/hTXlOFHz1xyg WwVWspvsUDVZjZRFnYoM6kH+JYqtRATT/p+Zs3fLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHtW2hCIw7+6W6xGBD+MP3a/+c3EwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA2MDY4ZmRhLTg4ODYtNDgzNS05Yzg4LTgxZWExNWZkYTQ4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYC8wDQYJKoZIhvcNAQELBQADggEBACtdp66XxcCCXWJkKcguJZlk91Oi oT4mDrbPDJXgz27ing8u9Yzta/4yFgXH5kKwYoICAfz81jhGJ3NZPeGVdgaRhhj/ YYlM13+JOzkafgaKQyyoIskg0/PR7HRcjTLNU/wV8J1jdTjXdb7MVJnCa+pl7yR0 IQPTazZQ+4kqcYSX/u7SBAct3BRTmlE/16udY3RzwQaVqrdYKb60goBL57P0D4FI GQEmBvlNf3OscagsA1zg19SWM9LWF1N4vIga3WvvQ9Tu7KZmdg3Oy3vPEGeX9kwA TugB8UmjL/CitMdm+L+5H7GvyWh7KycEw9Nxam0TWQ5tM3tyXYMuqWXC/FU= -----END CERTIFICATE-----Generated at Sat Jun 13 10:48:12 2026 by rpki-client