$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa File: 06068fda-8886-4835-9c88-81ea15fda48e.roa (raw, json) Hash identifier: UDx6wKHmerf/56E3/qpv4pRvfH4Cmlyq/pZc6ihjg1M= Subject key identifier: C0:38:50:B2:DE:1C:B0:D7:C3:54:E6:C1:8E:67:05:60:CC:E2:F3:5E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 61B063A401E83E00F8327DCB24F3CF1AB292048B Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa Signing time: Sat 28 Feb 2026 01:00:07 +0000 ROA not before: Sat 28 Feb 2026 01:00:07 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b0:63:a4:01:e8:3e:00:f8:32:7d:cb:24:f3:cf:1a:b2:92:04:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 28 01:00:07 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=81d4e516b1ce15b495f073765a52222982fde7f9406d57c7dc805145ced53f52, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:11:bc:df:f1:e6:82:28:f0:d4:af:1d:20:bd: 0e:67:d4:2d:41:cf:ce:42:ac:54:3b:df:9d:fb:9b: 9d:0c:be:67:33:fb:e3:09:59:4d:d2:39:c7:1f:9b: 97:0f:84:77:0c:56:d3:8f:85:ea:6d:54:ba:dd:0f: 38:78:91:b5:40:d1:87:4c:bd:22:64:7d:fc:68:46: f8:37:05:82:24:1d:b0:64:c6:aa:f7:d9:70:4e:c9: a4:c4:d2:f2:e7:c8:b7:be:17:6d:0d:aa:e4:8c:57: a5:ac:f0:b0:1e:6a:52:96:f3:ee:1a:39:4b:da:43: ce:96:7b:f5:3d:ba:68:13:3b:5c:98:95:94:50:67: 87:c2:df:8e:75:1e:43:4d:91:b2:b1:f6:28:04:8a: 6b:1a:08:f2:67:fb:e3:bf:6f:ca:b9:42:87:0a:b2: 35:bf:c6:be:20:0f:f2:ed:8f:09:85:6d:e8:d8:be: bb:17:95:a6:7d:96:a7:71:00:ca:88:06:e0:08:26: 82:04:00:7c:e5:44:ee:3e:d4:78:0b:5e:da:97:b1: 1f:12:64:90:ac:66:2f:97:4d:05:90:b6:b7:af:2e: 29:6f:f1:61:1a:cf:54:17:4f:7e:63:25:17:88:c0: b0:45:c9:8a:b2:a8:fd:3b:da:58:08:97:bb:bf:47: 25:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:38:50:B2:DE:1C:B0:D7:C3:54:E6:C1:8E:67:05:60:CC:E2:F3:5E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/06068fda-8886-4835-9c88-81ea15fda48e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.47.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:3d:73:77:5f:bd:a2:4d:30:e7:13:7a:b1:ae:95:7e:a1:6b: 4d:95:a0:03:1a:24:d4:54:27:56:ae:bf:6e:3f:03:83:46:e0: e5:e8:45:0c:72:58:41:73:b9:a0:1c:02:da:68:0d:45:78:0e: 98:94:15:3c:28:0e:75:f3:6b:42:48:2d:c9:87:4a:92:bb:b3: d6:60:bf:37:0c:b3:74:a2:73:f7:e1:b5:c8:07:bd:e9:a4:5c: b7:35:9f:b5:56:ea:b2:de:fc:c7:ea:96:0f:5a:29:a0:cb:52: 74:0d:71:d0:5f:81:80:ea:24:fe:76:73:19:dd:0e:50:cd:f7: c3:16:09:f9:cf:9a:94:77:34:f6:51:a2:d9:cf:31:9d:fc:9e: e1:5e:00:18:13:c5:08:13:72:e1:28:63:98:a1:11:0a:03:7f: 43:30:16:24:89:b1:0f:81:58:dd:b0:ed:2e:ab:d0:0c:61:a1: 07:40:8c:6e:71:db:96:1b:4a:bf:a0:18:ca:13:e7:73:dc:3a: 16:0c:bf:08:0b:1a:44:ae:42:f3:ac:f0:bd:a2:41:b9:51:cc: 3a:12:60:f7:7d:b1:18:bf:57:16:54:b2:cf:51:ae:54:b5:38: a7:51:14:ba:8a:58:27:6a:df:59:9e:e3:f6:b7:3d:d2:31:9d: 0e:f7:f4:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYbBjpAHoPgD4Mn3LJPPPGrKSBIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI4MDEwMDA3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWQ0ZTUxNmIxY2UxNWI0OTVmMDczNzY1YTUyMjIyOTgy ZmRlN2Y5NDA2ZDU3YzdkYzgwNTE0NWNlZDUzZjUyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD2Ebzf8eaCKPDUrx0gvQ5n1C1Bz85CrFQ73537m50Mvmcz ++MJWU3SOccfm5cPhHcMVtOPheptVLrdDzh4kbVA0YdMvSJkffxoRvg3BYIkHbBk xqr32XBOyaTE0vLnyLe+F20NquSMV6Ws8LAealKW8+4aOUvaQ86We/U9umgTO1yY lZRQZ4fC3451HkNNkbKx9igEimsaCPJn++O/b8q5QocKsjW/xr4gD/LtjwmFbejY vrsXlaZ9lqdxAMqIBuAIJoIEAHzlRO4+1HgLXtqXsR8SZJCsZi+XTQWQtrevLilv 8WEaz1QXT35jJReIwLBFyYqyqP072lgIl7u/RyWfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwDhQst4csNfDVObBjmcFYMzi814wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA2MDY4ZmRhLTg4ODYtNDgzNS05Yzg4LTgxZWExNWZkYTQ4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYC8wDQYJKoZIhvcNAQELBQADggEBABo9c3dfvaJNMOcTerGulX6ha02V oAMaJNRUJ1auv24/A4NG4OXoRQxyWEFzuaAcAtpoDUV4DpiUFTwoDnXza0JILcmH SpK7s9ZgvzcMs3Sic/fhtcgHvemkXLc1n7VW6rLe/Mfqlg9aKaDLUnQNcdBfgYDq JP52cxndDlDN98MWCfnPmpR3NPZRotnPMZ38nuFeABgTxQgTcuEoY5ihEQoDf0Mw FiSJsQ+BWN2w7S6r0AxhoQdAjG5x25YbSr+gGMoT53PcOhYMvwgLGkSuQvOs8L2i QblRzDoSYPd9sRi/VxZUss9RrlS1OKdRFLqKWCdq31me4/a3PdIxnQ739Fk= -----END CERTIFICATE-----Generated at Mon Mar 2 04:28:48 2026 by rpki-client