$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa File: 93da312c-9a87-4802-ae6d-e784f74c131d.roa (raw, json) Hash identifier: kH1bDcn/Hnac7xnE6qRJ+8sK03mmNBucfPaya7Hnrzo= Subject key identifier: F6:80:BE:4F:C3:9B:D3:F1:B9:91:ED:4B:66:F1:94:D5:5E:B8:4A:27 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6247177FF72E39C46E9E950CEE50D2E665E7F6AB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa Signing time: Sat 28 Feb 2026 01:00:06 +0000 ROA not before: Sat 28 Feb 2026 01:00:06 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:47:17:7f:f7:2e:39:c4:6e:9e:95:0c:ee:50:d2:e6:65:e7:f6:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 28 01:00:06 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=d58f60e20b089ce6d0a20d0188c960d377e291f5a039b2a015d66178c0e67dd9, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:35:ce:c6:cf:cc:d4:54:d6:be:ba:34:86:9c: ff:2d:da:5b:2e:88:db:9a:8f:96:f0:23:6d:1b:df: 4f:c5:9d:a4:d0:d8:6f:86:6b:db:b4:fb:cf:f7:9e: 59:ba:6b:36:14:8d:b0:27:9a:47:7b:d4:20:ee:f6: 47:74:18:76:f8:b6:ce:53:ae:85:4f:d6:f1:8a:3e: 82:a2:81:8c:cd:82:2d:d0:1b:db:96:26:4d:3f:a4: a1:b1:84:42:e2:56:73:6b:13:b0:09:dc:a4:ba:0d: 1b:bb:c8:93:f3:de:bc:1f:1d:04:20:72:72:ad:dd: 15:de:36:56:98:7f:09:01:00:61:61:90:5d:a8:f9: aa:f1:2e:e1:7a:37:32:42:a9:66:61:d0:50:41:55: 4e:72:3d:f9:17:aa:c2:69:46:98:48:b3:1f:57:a1: d0:47:33:b2:ee:dd:16:74:1e:18:e9:89:78:2b:e6: e5:ba:3c:d5:b0:64:f4:81:3f:f5:cd:99:b3:48:ff: 92:e5:c3:33:59:fe:a8:36:81:ad:e3:87:30:ff:ef: f6:29:2e:40:48:b9:77:29:2e:45:be:2d:66:01:a9: 43:83:9c:bc:ab:e6:28:26:ab:c8:60:20:44:80:6c: c3:7d:74:a3:d3:7e:3f:5b:a6:d0:c2:b6:c7:71:4e: e7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:80:BE:4F:C3:9B:D3:F1:B9:91:ED:4B:66:F1:94:D5:5E:B8:4A:27 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 06:79:9e:59:5e:62:7a:76:13:8d:9a:b4:c8:ad:84:00:b1:4f: f3:31:c0:29:74:62:1c:df:4a:05:69:d7:1d:29:c6:d3:58:ae: a8:af:49:c9:70:c4:65:1d:97:6a:99:cd:02:00:90:78:69:26: 6f:8f:2b:a0:d7:b1:23:7a:be:40:12:5b:a6:cd:b3:c8:52:b5: a5:fa:63:f7:62:bc:49:ba:c3:c8:ad:26:9d:b7:f1:c8:41:b5: a1:05:28:ef:86:a8:4c:85:36:36:d3:45:89:00:89:19:19:e4: 1b:f4:87:20:72:f9:f4:e8:85:db:61:7a:19:f3:f5:b5:da:10: 62:7b:2f:78:5d:b4:8a:c9:36:db:23:eb:3b:a7:ce:57:3c:28: 62:14:17:09:76:5b:8b:0c:b3:90:5f:3a:17:95:fe:16:97:7a: 18:af:52:f0:a8:7f:dc:ec:7e:7c:c7:ee:31:5a:1a:40:09:fe: 40:34:36:d7:4f:92:b7:f1:2f:60:b2:a6:74:9d:68:42:8a:0c: bf:86:e3:d1:ab:a3:ff:41:81:e5:c2:9e:dd:11:d6:be:e7:bc: ce:a3:06:34:7d:7b:de:80:e0:e6:87:4e:d3:eb:fa:37:66:41: e8:30:9b:f8:f2:4c:9c:ca:31:89:b5:c0:16:18:03:94:ee:15: 72:db:2a:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYkcXf/cuOcRunpUM7lDS5mXn9qswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI4MDEwMDA2WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNThmNjBlMjBiMDg5Y2U2ZDBhMjBkMDE4OGM5NjBkMzc3 ZTI5MWY1YTAzOWIyYTAxNWQ2NjE3OGMwZTY3ZGQ5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsNc7Gz8zUVNa+ujSGnP8t2lsuiNuaj5bwI20b30/FnaTQ 2G+Ga9u0+8/3nlm6azYUjbAnmkd71CDu9kd0GHb4ts5TroVP1vGKPoKigYzNgi3Q G9uWJk0/pKGxhELiVnNrE7AJ3KS6DRu7yJPz3rwfHQQgcnKt3RXeNlaYfwkBAGFh kF2o+arxLuF6NzJCqWZh0FBBVU5yPfkXqsJpRphIsx9XodBHM7Lu3RZ0HhjpiXgr 5uW6PNWwZPSBP/XNmbNI/5LlwzNZ/qg2ga3jhzD/7/YpLkBIuXcpLkW+LWYBqUOD nLyr5igmq8hgIESAbMN9dKPTfj9bptDCtsdxTueRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9oC+T8Ob0/G5ke1LZvGU1V64SicwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzkzZGEzMTJjLTlhODctNDgwMi1hZTZkLWU3ODRmNzRjMTMxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAAZ5nlleYnp2E42atMithACxT/Mx wCl0YhzfSgVp1x0pxtNYrqivSclwxGUdl2qZzQIAkHhpJm+PK6DXsSN6vkASW6bN s8hStaX6Y/divEm6w8itJp238chBtaEFKO+GqEyFNjbTRYkAiRkZ5Bv0hyBy+fTo hdthehnz9bXaEGJ7L3hdtIrJNtsj6zunzlc8KGIUFwl2W4sMs5BfOheV/haXehiv UvCof9zsfnzH7jFaGkAJ/kA0NtdPkrfxL2CypnSdaEKKDL+G49Gro/9BgeXCnt0R 1r7nvM6jBjR9e96A4OaHTtPr+jdmQegwm/jyTJzKMYm1wBYYA5TuFXLbKmc= -----END CERTIFICATE-----Generated at Mon Mar 2 01:27:11 2026 by rpki-client