$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa File: 5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa (raw, json) Hash identifier: vMxL9DQtvnK7Tqgwt5KCBpXrId52N3CftZeugQMgsV4= Subject key identifier: 5A:E9:51:6E:00:B9:47:20:4F:06:5B:86:F3:57:B1:0C:ED:32:88:9E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 74A43DC7A858B7A2A620C63C78CEF260A00CACF5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa Signing time: Sat 28 Feb 2026 01:10:05 +0000 ROA not before: Sat 28 Feb 2026 01:10:05 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:a4:3d:c7:a8:58:b7:a2:a6:20:c6:3c:78:ce:f2:60:a0:0c:ac:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 28 01:10:05 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=b60b4c1ad79f07abc3729857a766c9d3b3946b1a2114bee1a0c2020bb37ce8d3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7e:d7:db:d2:e9:ba:45:94:fd:e5:c9:dd:80: 86:61:99:0b:b8:6a:ef:71:36:a8:0e:61:de:42:a1: 19:30:6f:3d:79:bb:2a:e7:02:10:e8:20:14:c0:85: 80:29:66:08:54:b8:b2:3e:f6:3e:c3:93:c0:ad:a3: 25:1b:a6:2a:52:bb:34:40:c0:9b:08:62:cf:bc:d8: 02:26:4a:c7:ca:59:0b:d7:ea:7e:52:9a:b5:bb:f2: 93:3d:7e:80:61:3d:c9:b2:0f:54:45:f3:9f:01:58: 5c:84:67:07:6f:a4:30:c4:79:04:e0:39:f5:20:c3: a0:c0:b8:cb:21:7e:4a:9a:0c:1f:64:6e:94:6f:74: c4:19:0a:7d:43:d8:5f:8e:12:b1:be:df:8d:8d:3e: 75:4c:0b:bd:8e:22:f3:b8:0e:87:a4:6f:54:8e:51: b5:9c:8e:0a:cb:16:ba:9b:c6:4e:56:54:ef:7f:f5: e6:1f:d0:2f:d7:25:b0:ce:32:b6:5a:23:bb:82:02: 5d:b5:f0:ca:a9:2e:be:29:a0:e3:b7:81:7f:01:14: ef:68:9a:94:1f:43:f5:bd:69:f3:d8:58:b8:0b:3d: 3b:b6:22:3b:7e:3c:e2:70:26:9c:61:c1:90:dc:ba: 50:27:4f:76:c4:2a:dc:64:5b:6c:e8:fa:34:dc:9e: 62:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E9:51:6E:00:B9:47:20:4F:06:5B:86:F3:57:B1:0C:ED:32:88:9E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.14.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:a4:f0:af:2e:35:88:b6:f9:23:1e:da:1c:33:7e:77:24:5d: 2c:2d:1c:e4:73:ae:4c:5a:f3:df:cc:f7:a3:5f:81:db:87:39: 2d:1b:34:6b:04:2a:4d:59:a2:73:5b:4a:6d:26:00:0f:a9:82: fb:e8:dd:92:bb:68:7d:b1:e4:d6:c7:ee:b3:38:aa:b5:a9:2d: 4c:bd:1e:e6:a7:5e:09:e5:90:6a:67:1c:5d:f0:2e:24:50:8e: 7b:b6:9f:03:4d:39:0a:74:c8:6f:8c:0b:57:41:13:62:44:4f: 6a:93:bd:bc:2a:49:f9:87:62:ae:dc:46:d0:e3:91:00:4e:a2: c4:7a:b3:cd:06:4f:de:4d:fc:02:2b:56:b1:6a:7b:92:fa:3b: 34:02:d7:b6:46:bf:c7:bd:56:37:88:9b:74:ee:a7:d5:38:fd: cd:c6:82:66:c6:71:34:9f:84:34:38:4f:9c:54:93:4a:fb:a7: 9e:16:7c:ab:36:d4:e9:d0:fc:9b:e1:75:73:c7:b8:60:1a:16: fe:65:ff:bc:54:83:fe:2c:4e:1e:3b:a1:ae:e7:bb:c1:32:2a: ad:a0:3a:79:17:25:b8:f0:64:6d:cc:57:44:c8:2e:35:03:28: d9:20:c5:6e:e6:06:5a:34:fd:c4:c6:26:27:c6:f6:f9:d7:13: f6:43:a7:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdKQ9x6hYt6KmIMY8eM7yYKAMrPUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI4MDExMDA1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjBiNGMxYWQ3OWYwN2FiYzM3Mjk4NTdhNzY2YzlkM2Iz OTQ2YjFhMjExNGJlZTFhMGMyMDIwYmIzN2NlOGQzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKftfb0um6RZT95cndgIZhmQu4au9xNqgOYd5CoRkwbz15 uyrnAhDoIBTAhYApZghUuLI+9j7Dk8CtoyUbpipSuzRAwJsIYs+82AImSsfKWQvX 6n5SmrW78pM9foBhPcmyD1RF858BWFyEZwdvpDDEeQTgOfUgw6DAuMshfkqaDB9k bpRvdMQZCn1D2F+OErG+342NPnVMC72OIvO4Doekb1SOUbWcjgrLFrqbxk5WVO9/ 9eYf0C/XJbDOMrZaI7uCAl218MqpLr4poOO3gX8BFO9ompQfQ/W9afPYWLgLPTu2 Ijt+POJwJpxhwZDculAnT3bEKtxkW2zo+jTcnmKPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWulRbgC5RyBPBluG81exDO0yiJ4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkNjUwOGNlLTQ3YTEtNDAwMi1iMDNiLTljZTIxYjE2Y2Y2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYA4wDQYJKoZIhvcNAQELBQADggEBAGuk8K8uNYi2+SMe2hwzfnckXSwt HORzrkxa89/M96NfgduHOS0bNGsEKk1ZonNbSm0mAA+pgvvo3ZK7aH2x5NbH7rM4 qrWpLUy9HuanXgnlkGpnHF3wLiRQjnu2nwNNOQp0yG+MC1dBE2JET2qTvbwqSfmH Yq7cRtDjkQBOosR6s80GT95N/AIrVrFqe5L6OzQC17ZGv8e9VjeIm3Tup9U4/c3G gmbGcTSfhDQ4T5xUk0r7p54WfKs21OnQ/JvhdXPHuGAaFv5l/7xUg/4sTh47oa7n u8EyKq2gOnkXJbjwZG3MV0TILjUDKNkgxW7mBlo0/cTGJifG9vnXE/ZDp6Y= -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:25 2026 by rpki-client