$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa File: 0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa (raw, json) Hash identifier: ttwAqp9W8mjjMZpBEIRryMkWam24085GzWsJKLw4aQM= Subject key identifier: 4B:8A:C8:C1:EF:A9:2C:2C:14:B3:EB:5B:F5:76:B4:DC:1A:59:89:45 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 31B5463393E440DC264270CD7F410323FC91CECF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa Signing time: Tue 19 May 2026 04:00:26 +0000 ROA not before: Tue 19 May 2026 04:00:26 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:b5:46:33:93:e4:40:dc:26:42:70:cd:7f:41:03:23:fc:91:ce:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 19 04:00:26 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=cc67abc82a57bd626cbb2616110d01e9eb76a111ba2b33304388725fe9dc601f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bd:11:5f:0d:c9:3a:93:ed:30:1a:b2:fd:ad: 8a:c3:78:6e:a0:e6:c1:6b:1c:8d:89:d0:ac:7a:b0: 1b:f2:62:4d:09:c7:ad:dc:52:40:e7:5e:01:62:3a: 3d:75:dc:9b:fc:d4:62:8d:a4:59:af:1f:12:e4:cb: 6e:e5:d8:ae:90:d8:77:69:a8:56:9e:45:bb:11:6f: b8:0c:00:a9:7c:35:9d:0d:3e:53:48:fc:58:7e:65: 1e:72:20:9a:24:74:48:5c:12:ae:ec:d9:d1:29:9f: d6:fd:70:ca:00:70:18:bf:06:7a:d5:99:71:86:f8: bd:03:5e:97:30:e5:71:bc:36:1c:ee:80:65:93:c6: 10:0b:92:06:83:6f:0a:54:0a:a5:a0:1f:d9:2a:a9: 11:03:3c:fa:b5:22:e5:2e:fb:af:30:9d:0b:79:9c: 27:40:ec:fa:cb:4a:08:b5:44:ce:4b:4f:03:75:13: 8d:48:20:4a:81:f2:a2:51:a7:e1:d8:6a:0b:a9:3c: 9d:ac:22:3d:6d:4a:66:16:3a:71:a2:2a:ee:13:97: d3:27:31:1e:10:0c:f6:c5:6f:28:b1:50:a3:e5:16: 12:40:dd:fa:e9:2b:ed:cc:e2:03:0b:8a:2d:b6:b0: 72:07:7c:fb:08:c5:7b:88:8f:32:1c:1d:98:2d:7d: 4f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:8A:C8:C1:EF:A9:2C:2C:14:B3:EB:5B:F5:76:B4:DC:1A:59:89:45 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.2.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:72:d5:59:53:1a:fb:63:f0:5d:32:da:6e:c2:61:5f:6c:ec: 59:0f:f2:7c:4a:43:29:ba:c6:8b:22:59:bc:e1:f7:c8:b4:e4: 96:0c:8e:0f:27:6a:8c:af:89:19:33:a3:97:9f:6c:28:9c:73: 70:ea:0a:9a:31:66:0a:95:9f:a5:f7:41:5a:e2:ff:a8:34:fb: c0:8e:56:75:e4:11:91:46:69:ec:15:9b:84:43:52:bd:9c:f8: 29:5b:a3:90:1d:c2:26:46:bd:14:61:cd:53:66:11:a3:54:74: 86:79:ec:bd:21:68:d7:3d:62:1b:64:bf:52:ce:2b:4c:c7:82: ed:b4:d7:bb:eb:4c:d5:7e:07:b7:8e:66:a6:8c:09:f8:3b:0a: 81:18:f4:ae:1c:9e:cc:25:3a:6d:85:2c:c8:25:9d:94:cb:6a: b5:c5:2d:70:24:98:0f:a4:11:29:d0:1a:11:bf:c8:99:25:70: 1c:f1:70:d4:ff:3c:8b:1a:ed:67:ee:30:47:f1:cc:db:88:26: 26:31:46:11:70:e5:50:2f:de:78:1b:b2:dd:16:7a:ab:8e:56: 4d:7a:07:8f:4a:e4:6c:a8:d8:aa:2d:dc:d6:7b:7f:90:f8:6e: 71:ac:29:0c:02:86:1c:23:79:ee:19:7b:a4:8f:06:69:53:ba: b5:01:74:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMbVGM5PkQNwmQnDNf0EDI/yRzs8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE5MDQwMDI2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzY3YWJjODJhNTdiZDYyNmNiYjI2MTYxMTBkMDFlOWVi NzZhMTExYmEyYjMzMzA0Mzg4NzI1ZmU5ZGM2MDFmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCvRFfDck6k+0wGrL9rYrDeG6g5sFrHI2J0Kx6sBvyYk0J x63cUkDnXgFiOj113Jv81GKNpFmvHxLky27l2K6Q2HdpqFaeRbsRb7gMAKl8NZ0N PlNI/Fh+ZR5yIJokdEhcEq7s2dEpn9b9cMoAcBi/BnrVmXGG+L0DXpcw5XG8Nhzu gGWTxhALkgaDbwpUCqWgH9kqqREDPPq1IuUu+68wnQt5nCdA7PrLSgi1RM5LTwN1 E41IIEqB8qJRp+HYagupPJ2sIj1tSmYWOnGiKu4Tl9MnMR4QDPbFbyixUKPlFhJA 3frpK+3M4gMLii22sHIHfPsIxXuIjzIcHZgtfU+JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS4rIwe+pLCwUs+tb9Xa03BpZiUUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBlODE0ZjJjLTYxMDAtNDAzNy05ZGNjLWNkYWYzZTIwZDg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAIwDQYJKoZIhvcNAQELBQADggEBACty1VlTGvtj8F0y2m7CYV9s7FkP 8nxKQym6xosiWbzh98i05JYMjg8naoyviRkzo5efbCicc3DqCpoxZgqVn6X3QVri /6g0+8COVnXkEZFGaewVm4RDUr2c+Clbo5AdwiZGvRRhzVNmEaNUdIZ57L0haNc9 Yhtkv1LOK0zHgu2017vrTNV+B7eOZqaMCfg7CoEY9K4cnswlOm2FLMglnZTLarXF LXAkmA+kESnQGhG/yJklcBzxcNT/PIsa7WfuMEfxzNuIJiYxRhFw5VAv3ngbst0W equOVk16B49K5Gyo2Kot3NZ7f5D4bnGsKQwChhwjee4Ze6SPBmlTurUBdEw= -----END CERTIFICATE-----Generated at Sat Jun 13 08:14:33 2026 by rpki-client