$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa File: 5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa (raw, json) Hash identifier: lvtpE6Ef4gKxADMvRp7Xy/ar0WFHJ0rdvofjyhxl13k= Subject key identifier: 3A:74:75:7F:F4:9D:36:9A:D3:AB:C7:EB:21:17:F3:34:A9:6A:5F:0E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7089B4112C288FE2D5DF5AE064B9814381855D4D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa Signing time: Tue 19 May 2026 04:00:28 +0000 ROA not before: Tue 19 May 2026 04:00:28 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:89:b4:11:2c:28:8f:e2:d5:df:5a:e0:64:b9:81:43:81:85:5d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 19 04:00:28 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=30bc400c6614b3e7e2cf32e961e133054b5265bf3ff4e9cd00803ef9ee7ab758, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:36:db:99:b1:13:04:d7:12:76:6e:de:26:24: 9f:49:90:af:7d:75:2f:e5:a0:a2:6b:b8:d9:ee:bf: 1c:c5:df:82:20:f2:67:11:2b:70:2e:68:bb:60:c4: 56:3a:cc:b9:43:d4:2b:09:9e:02:6d:f1:45:e2:2a: 73:31:2c:74:04:53:ff:c9:55:77:4a:80:d4:3f:3d: 92:3a:94:fc:30:a5:7c:b9:bb:7d:0c:66:8a:dc:a7: 4d:d5:f8:2e:6a:42:60:38:3b:90:c3:f3:8c:01:2c: fe:5c:66:ec:ed:22:4c:6d:38:67:58:e6:a3:9f:33: 62:a1:73:4a:c6:d9:22:0d:c4:93:21:88:e9:68:ff: 3c:d0:7e:14:a9:43:55:8e:ef:11:42:7b:67:f0:3f: 08:52:32:05:7d:7c:28:6c:75:8c:a8:d8:d4:c5:29: b8:5c:28:98:4a:ba:a3:29:85:57:0f:f2:6b:18:25: e7:38:09:37:c2:2a:e6:ac:f3:a9:4e:1a:a8:10:0a: b3:70:b6:be:41:a2:e8:8b:b0:ec:39:de:79:18:12: b5:1e:e3:9f:84:f0:42:c8:74:89:69:d9:4d:2b:41: 2f:7d:27:0a:13:fa:62:a0:21:c0:f8:7a:3d:01:0b: a9:33:9a:1d:81:52:fc:92:d1:23:15:a5:84:45:ad: 8b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:74:75:7F:F4:9D:36:9A:D3:AB:C7:EB:21:17:F3:34:A9:6A:5F:0E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.14.0/24 Signature Algorithm: sha256WithRSAEncryption 08:a2:df:ba:06:d5:95:3f:7d:3f:ca:94:66:bf:28:18:d5:52: 77:6e:38:59:6e:cd:94:65:11:9d:ea:0a:fa:5a:3a:43:c3:06: f3:75:01:1f:f3:cf:ea:8a:1e:b6:fa:11:6a:3b:0a:80:47:7d: 0c:a3:89:d8:fb:fa:72:e2:85:54:90:09:c0:c2:49:f5:14:f9: d2:32:53:82:de:2c:4b:35:68:b3:5e:a6:0d:c5:24:3f:46:5b: cd:4f:6e:f2:a8:6e:e4:41:d9:c5:73:c6:ab:b7:b0:f7:19:8f: f4:a9:c4:2c:00:22:de:16:62:99:64:de:fb:92:2d:d8:ca:12: a0:83:4d:c4:77:ba:92:51:ac:e4:41:60:56:e1:9c:08:b9:16: ef:e5:dd:86:98:74:76:a4:1e:8d:c5:4c:61:db:3c:68:4a:a4: 46:6a:23:11:d9:65:40:b1:a2:4d:24:96:89:bf:02:fa:af:c5: f0:4a:bf:e3:96:ec:e9:ad:89:63:cb:0b:58:a1:15:86:73:8e: bc:8a:06:08:3e:c6:c1:01:5b:56:79:39:8c:ab:b9:2e:76:be: e0:bb:0c:a0:8a:92:29:d8:fe:96:6d:5f:99:bc:6b:3d:50:a5: c0:77:cd:73:9f:f0:94:9a:99:28:eb:23:52:8e:ca:84:78:6c: a7:ea:ce:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcIm0ESwoj+LV31rgZLmBQ4GFXU0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE5MDQwMDI4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGJjNDAwYzY2MTRiM2U3ZTJjZjMyZTk2MWUxMzMwNTRi NTI2NWJmM2ZmNGU5Y2QwMDgwM2VmOWVlN2FiNzU4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmNtuZsRME1xJ2bt4mJJ9JkK99dS/loKJruNnuvxzF34Ig 8mcRK3AuaLtgxFY6zLlD1CsJngJt8UXiKnMxLHQEU//JVXdKgNQ/PZI6lPwwpXy5 u30MZorcp03V+C5qQmA4O5DD84wBLP5cZuztIkxtOGdY5qOfM2Khc0rG2SINxJMh iOlo/zzQfhSpQ1WO7xFCe2fwPwhSMgV9fChsdYyo2NTFKbhcKJhKuqMphVcP8msY Jec4CTfCKuas86lOGqgQCrNwtr5BouiLsOw53nkYErUe45+E8ELIdIlp2U0rQS99 JwoT+mKgIcD4ej0BC6kzmh2BUvyS0SMVpYRFrYv9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOnR1f/SdNprTq8frIRfzNKlqXw4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkNjUwOGNlLTQ3YTEtNDAwMi1iMDNiLTljZTIxYjE2Y2Y2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYA4wDQYJKoZIhvcNAQELBQADggEBAAii37oG1ZU/fT/KlGa/KBjVUndu OFluzZRlEZ3qCvpaOkPDBvN1AR/zz+qKHrb6EWo7CoBHfQyjidj7+nLihVSQCcDC SfUU+dIyU4LeLEs1aLNepg3FJD9GW81PbvKobuRB2cVzxqu3sPcZj/SpxCwAIt4W Yplk3vuSLdjKEqCDTcR3upJRrORBYFbhnAi5Fu/l3YaYdHakHo3FTGHbPGhKpEZq IxHZZUCxok0klom/AvqvxfBKv+OW7OmtiWPLC1ihFYZzjryKBgg+xsEBW1Z5OYyr uS52vuC7DKCKkinY/pZtX5m8az1QpcB3zXOf8JSamSjrI1KOyoR4bKfqzqA= -----END CERTIFICATE-----Generated at Sat Jun 13 08:03:13 2026 by rpki-client