$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa File: 0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa (raw, json) Hash identifier: RRgM4vZZDztSBkbX/UTIRrE7/koAFyxl4bLhFyN1PfY= Subject key identifier: BD:6E:39:27:F0:2E:3C:33:FF:23:8D:EC:64:69:6C:EB:40:8C:C9:E7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 57E0FD32EE9A8431FEB2E21A0CF2DD4A98925A88 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa Signing time: Sat 28 Feb 2026 01:10:04 +0000 ROA not before: Sat 28 Feb 2026 01:10:04 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:e0:fd:32:ee:9a:84:31:fe:b2:e2:1a:0c:f2:dd:4a:98:92:5a:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 28 01:10:04 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=960bece74c2dad1c2b5a870fcdf066572f075ae6a5da59bc70801d5afc5142ab, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f7:cc:97:84:a9:eb:1a:92:f8:a1:28:7d:2e: ad:97:bb:f3:33:3c:c6:51:e6:0a:4d:19:e1:fc:0d: 24:36:dd:9a:10:a2:84:f4:70:bd:6d:47:f6:74:4a: b2:fd:40:9e:e3:15:9b:a4:29:26:9a:69:1c:9b:87: 0b:e0:1d:5b:e8:ec:4f:45:39:90:91:64:4c:43:86: 37:62:de:81:61:bd:9f:e3:c5:72:05:77:9e:b1:1f: ac:6d:ba:90:a0:2b:a4:05:0d:0f:93:13:88:89:02: a3:66:cc:1d:9e:dc:4a:97:f7:5c:2a:c4:b5:d8:e6: 3e:48:88:70:25:48:68:60:3f:a6:22:df:7f:b0:d3: 20:dd:f1:31:37:7d:c1:85:b4:be:f4:77:32:f3:04: f2:51:4e:eb:3f:54:81:0c:e8:95:18:0f:a8:50:35: 9b:78:8c:5a:dd:23:d8:22:94:18:15:1b:26:d2:62: c7:7f:45:3e:af:49:b2:26:c7:a1:90:1a:f3:a4:a8: ca:27:77:7b:f9:44:9f:ea:fe:89:c8:f9:e3:9a:5c: fb:d0:b1:fb:08:39:e0:2b:02:bf:0b:05:37:21:62: 23:17:cf:63:37:78:d0:c5:24:f8:67:69:13:90:7d: cf:92:f2:24:58:36:c2:12:8c:21:ba:8c:eb:b4:b2: 91:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6E:39:27:F0:2E:3C:33:FF:23:8D:EC:64:69:6C:EB:40:8C:C9:E7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.2.0/24 Signature Algorithm: sha256WithRSAEncryption 21:a6:1f:e6:de:9b:f3:3e:ae:ec:24:93:14:7d:c6:76:a2:de: 0c:03:0b:a1:8d:a9:32:13:53:e2:84:24:56:e8:49:ae:f0:67: cb:d2:fc:53:2f:0f:ce:79:ff:83:a9:00:97:1f:15:8d:de:59: 4b:a8:6d:81:1b:c4:51:e2:74:3e:29:dc:5e:cb:4e:ca:00:11: b4:56:28:69:7c:5a:bc:41:11:b3:0f:fd:74:ba:5f:f0:e2:ca: ca:92:87:87:00:59:9c:f1:46:a9:8a:dd:2e:1e:60:f8:02:a4: cd:f9:a8:12:c9:fe:99:22:8f:62:1b:4a:fe:76:6c:10:91:ea: 3c:c2:00:b6:41:51:2c:8e:2d:9f:95:1d:e4:40:27:b2:3a:c4: 33:b8:d6:02:36:f2:31:34:87:25:f7:5e:43:3a:e2:39:b1:ab: 9a:30:ce:6b:e8:c1:ba:78:11:1c:44:58:4d:22:63:f0:5f:b8: ee:a4:0d:ac:11:f9:98:80:3a:41:f9:0f:44:51:fb:63:aa:2e: fc:3d:58:86:9e:1a:50:2e:d2:80:12:f4:5e:e7:d4:c1:93:92: 48:30:e1:08:c8:8c:af:22:a3:6b:c1:75:b0:d2:46:bb:b0:ba: 31:8c:40:15:de:a7:52:7b:e8:7a:e7:b7:44:9c:57:99:ce:ef: 66:88:f1:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV+D9Mu6ahDH+suIaDPLdSpiSWogwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI4MDExMDA0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjBiZWNlNzRjMmRhZDFjMmI1YTg3MGZjZGYwNjY1NzJm MDc1YWU2YTVkYTU5YmM3MDgwMWQ1YWZjNTE0MmFiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw98yXhKnrGpL4oSh9Lq2Xu/MzPMZR5gpNGeH8DSQ23ZoQ ooT0cL1tR/Z0SrL9QJ7jFZukKSaaaRybhwvgHVvo7E9FOZCRZExDhjdi3oFhvZ/j xXIFd56xH6xtupCgK6QFDQ+TE4iJAqNmzB2e3EqX91wqxLXY5j5IiHAlSGhgP6Yi 33+w0yDd8TE3fcGFtL70dzLzBPJRTus/VIEM6JUYD6hQNZt4jFrdI9gilBgVGybS Ysd/RT6vSbImx6GQGvOkqMond3v5RJ/q/onI+eOaXPvQsfsIOeArAr8LBTchYiMX z2M3eNDFJPhnaROQfc+S8iRYNsISjCG6jOu0spH3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvW45J/AuPDP/I43sZGls60CMyecwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBlODE0ZjJjLTYxMDAtNDAzNy05ZGNjLWNkYWYzZTIwZDg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAIwDQYJKoZIhvcNAQELBQADggEBACGmH+bem/M+ruwkkxR9xnai3gwD C6GNqTITU+KEJFboSa7wZ8vS/FMvD855/4OpAJcfFY3eWUuobYEbxFHidD4p3F7L TsoAEbRWKGl8WrxBEbMP/XS6X/DiysqSh4cAWZzxRqmK3S4eYPgCpM35qBLJ/pki j2IbSv52bBCR6jzCALZBUSyOLZ+VHeRAJ7I6xDO41gI28jE0hyX3XkM64jmxq5ow zmvowbp4ERxEWE0iY/BfuO6kDawR+ZiAOkH5D0RR+2OqLvw9WIaeGlAu0oAS9F7n 1MGTkkgw4QjIjK8io2vBdbDSRruwujGMQBXep1J76Hrnt0ScV5nO72aI8ac= -----END CERTIFICATE-----Generated at Mon Mar 2 01:02:00 2026 by rpki-client