$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/74abdb75-ce74-4f18-ac4b-2432fc81d1f1.roa File: 74abdb75-ce74-4f18-ac4b-2432fc81d1f1.roa (raw, json) Hash identifier: eFEJS5wPEvdwLK5+CRppSJWwZHdX93WfkVhdjYY4BAs= Subject key identifier: 1B:04:AE:50:0E:EE:44:2B:74:41:43:FF:59:42:B3:C2:A6:9E:AA:4C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 64FE32ADEB8689A90913F02B9824F6A72AADE63F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/74abdb75-ce74-4f18-ac4b-2432fc81d1f1.roa Signing time: Sat 28 Feb 2026 01:00:09 +0000 ROA not before: Sat 28 Feb 2026 01:00:09 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:fe:32:ad:eb:86:89:a9:09:13:f0:2b:98:24:f6:a7:2a:ad:e6:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 28 01:00:09 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=e433932894465e1c35140d833d47b6fa362968f3deb7d1e7956043f97dfcad36, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:81:2b:69:bd:99:1a:35:62:d8:3b:e3:d7:1c: 6e:55:4e:a6:63:b6:fd:e7:a8:db:8d:4a:ac:60:72: f8:bf:d0:34:72:41:8f:0c:7d:4e:aa:47:98:77:cb: 1c:db:2c:c3:f8:80:78:ce:fc:be:91:35:38:4d:5b: f7:05:35:1b:61:3c:ca:5b:a3:c5:71:2f:b8:bd:2a: 1e:f8:ca:21:d8:de:f0:fa:ce:da:64:c6:d5:53:c6: 08:7a:e3:22:a5:b2:f1:f8:d5:c2:87:91:c0:f7:59: 92:64:1d:e0:73:87:00:03:a5:5d:08:db:84:e1:c1: f2:aa:ce:0d:b8:7d:b6:32:69:6a:02:b3:b1:ce:ec: c7:23:02:f4:9b:b1:9d:ed:fd:a8:f2:91:fd:79:8e: 0d:d8:e3:54:79:23:2a:a8:88:78:48:66:32:9f:58: 10:7f:41:de:13:04:94:ca:2b:c8:ce:24:3e:48:67: 89:3f:12:56:e2:22:60:52:01:d6:1a:66:82:7f:43: 9d:d6:25:93:12:3a:21:de:ed:3a:32:5d:f6:a5:9d: a5:43:a2:ea:5f:bf:fc:09:76:5a:35:e3:72:b2:fe: b0:b3:18:9b:d2:ea:bb:fe:60:46:31:62:c2:70:53: 56:e2:8d:99:ef:05:c8:a9:68:44:60:9a:07:30:b4: 5e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:04:AE:50:0E:EE:44:2B:74:41:43:FF:59:42:B3:C2:A6:9E:AA:4C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/74abdb75-ce74-4f18-ac4b-2432fc81d1f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.46.0/24 Signature Algorithm: sha256WithRSAEncryption 64:c3:60:f7:5f:ba:3e:5f:4a:92:25:50:01:4a:ce:e2:ac:f0: d4:6f:0f:4a:7b:65:15:ea:fd:0c:2d:34:c8:b8:3d:32:4c:e0: d8:71:0b:5e:bc:cc:e5:7f:c7:d2:b1:f6:af:6e:97:55:a8:cf: a9:c0:65:fa:94:6c:8a:42:84:b8:d5:5c:0f:f3:6b:4a:87:d2: 85:1d:af:ba:4c:d0:8a:08:ec:b3:a2:b8:9b:8c:f0:12:78:9d: 63:bc:2e:bd:72:9a:b9:40:84:a2:d4:a7:17:44:9c:da:3b:8a: b4:2c:9c:15:61:ea:0a:54:46:67:08:7e:f4:b8:55:52:d6:3c: 02:b4:d9:80:c5:07:77:7c:b4:24:2f:93:51:fa:46:2c:b4:7b: c6:a5:90:71:11:a8:db:55:c2:28:c5:52:2e:05:36:0f:e6:e6: 23:7d:d6:87:be:88:c7:dc:60:a7:c0:f3:bd:3a:0f:e3:e1:ee: d9:d3:78:cc:b2:6b:b0:71:74:4c:3e:2d:63:6e:1a:09:44:b9: 1b:75:b5:22:e0:a2:41:a5:df:5f:bf:8e:a0:bf:62:22:11:c6: d5:56:1c:3f:ea:00:53:66:a0:5d:cb:ee:b8:fb:4f:11:e7:a4: 44:4e:18:dc:61:af:ff:f0:f1:6c:12:39:47:a3:e9:9e:fc:28: bf:99:1d:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZP4yreuGiakJE/ArmCT2pyqt5j8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI4MDEwMDA5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDMzOTMyODk0NDY1ZTFjMzUxNDBkODMzZDQ3YjZmYTM2 Mjk2OGYzZGViN2QxZTc5NTYwNDNmOTdkZmNhZDM2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJgStpvZkaNWLYO+PXHG5VTqZjtv3nqNuNSqxgcvi/0DRy QY8MfU6qR5h3yxzbLMP4gHjO/L6RNThNW/cFNRthPMpbo8VxL7i9Kh74yiHY3vD6 ztpkxtVTxgh64yKlsvH41cKHkcD3WZJkHeBzhwADpV0I24ThwfKqzg24fbYyaWoC s7HO7McjAvSbsZ3t/ajykf15jg3Y41R5IyqoiHhIZjKfWBB/Qd4TBJTKK8jOJD5I Z4k/ElbiImBSAdYaZoJ/Q53WJZMSOiHe7ToyXfalnaVDoupfv/wJdlo143Ky/rCz GJvS6rv+YEYxYsJwU1bijZnvBcipaERgmgcwtF51AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGwSuUA7uRCt0QUP/WUKzwqaeqkwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzc0YWJkYjc1LWNlNzQtNGYxOC1hYzRiLTI0MzJmYzgxZDFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYC4wDQYJKoZIhvcNAQELBQADggEBAGTDYPdfuj5fSpIlUAFKzuKs8NRv D0p7ZRXq/QwtNMi4PTJM4NhxC168zOV/x9Kx9q9ul1Woz6nAZfqUbIpChLjVXA/z a0qH0oUdr7pM0IoI7LOiuJuM8BJ4nWO8Lr1ymrlAhKLUpxdEnNo7irQsnBVh6gpU RmcIfvS4VVLWPAK02YDFB3d8tCQvk1H6Riy0e8alkHERqNtVwijFUi4FNg/m5iN9 1oe+iMfcYKfA8706D+Ph7tnTeMyya7BxdEw+LWNuGglEuRt1tSLgokGl31+/jqC/ YiIRxtVWHD/qAFNmoF3L7rj7TxHnpEROGNxhr//w8WwSOUej6Z78KL+ZHcc= -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:20 2026 by rpki-client