$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa File: 9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa (raw, json) Hash identifier: nS0mTYtfr8mf8WjUWQTiF0wbpVud83vcq2Y0G4tZIZc= Subject key identifier: 5F:6E:C0:CC:B6:02:0B:67:68:6C:E5:40:89:45:33:4D:05:45:88:AA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4F1F5E8A790D56357ED301A80776F2707B2D655F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa Signing time: Thu 26 Feb 2026 01:50:29 +0000 ROA not before: Thu 26 Feb 2026 01:50:29 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:1f:5e:8a:79:0d:56:35:7e:d3:01:a8:07:76:f2:70:7b:2d:65:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 26 01:50:29 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=3a05460d4a89eff95881d8a88f7d867ce0608b6cb9c420a03dfb256e022d2502, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:28:43:02:b8:20:12:a2:ad:9f:87:48:e8:a6: 1b:90:3d:47:51:22:72:4f:4c:07:ab:18:74:0b:59: 52:12:39:fe:e6:82:8d:13:a3:45:cf:a3:8e:7e:a6: c0:e8:e3:9e:a7:12:b2:53:67:74:bd:bd:4e:27:ea: cb:7d:02:78:a2:51:7e:5b:3b:96:ad:12:6d:50:8a: b5:72:22:ad:4a:be:9a:e3:ff:e4:95:6a:a9:30:22: 20:93:14:4f:e0:ed:40:2e:4f:8f:cf:2b:60:0c:07: de:ec:31:c4:44:2f:d9:dc:68:ca:07:10:44:e4:b7: 73:0d:64:7c:c3:3b:08:74:0a:e0:ae:a0:d8:dc:23: d7:9f:7f:b6:97:96:5d:98:06:31:23:d3:79:85:39: 0b:e1:3c:95:e0:4f:0e:2b:8b:d3:f4:cc:5b:d6:b3: 41:30:fa:e5:37:05:39:33:5e:16:2f:9f:bc:8e:65: 67:a3:7d:34:14:4f:8b:c4:e2:4f:df:95:4b:e9:5e: b3:2c:68:0b:11:78:de:66:8e:55:fd:15:ea:09:82: 03:c1:76:b8:72:91:71:3b:74:ad:e4:6e:29:44:8a: 89:c9:df:0e:94:09:5d:75:40:aa:d2:36:fb:9d:1f: 97:65:a0:97:af:26:ff:f0:34:b6:ba:fe:ba:26:84: 1f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:6E:C0:CC:B6:02:0B:67:68:6C:E5:40:89:45:33:4D:05:45:88:AA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.44.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:45:7c:9b:18:ad:55:b3:1d:cf:d0:47:25:1a:4d:72:99:24: 5d:53:af:97:bb:cf:58:53:d1:de:3d:3b:e1:85:6c:13:7a:06: ef:23:7b:9d:08:bd:22:2f:a1:b2:70:16:14:31:bc:95:22:7f: 91:77:07:33:07:3a:86:e7:fc:be:91:98:48:22:61:1c:59:76: f1:a1:8e:17:29:4a:78:92:6a:f6:95:a2:45:c1:12:da:47:d1: 45:f4:95:2b:79:50:41:dd:1d:2d:c8:13:99:48:5b:fa:aa:b3: fb:94:32:ff:67:01:a6:7f:11:8e:7b:19:ce:57:56:5b:6c:c9: 49:13:6c:2d:17:bd:34:81:9d:53:e3:e3:46:b9:50:0e:f7:4d: ae:88:71:66:cb:c1:7d:2b:2c:4e:0d:45:69:6a:b0:2e:44:87: b8:e9:25:13:6b:72:ad:c7:ee:b4:5c:da:4b:61:b4:0c:79:06: 13:f7:04:7d:06:fb:ef:57:11:78:a6:5f:6a:e1:b2:68:50:20: 79:d2:80:80:a9:23:24:d2:26:60:5c:5e:0a:10:a1:51:89:6a: 3c:c4:35:d7:7b:5f:1f:ff:5d:2f:26:d9:5e:16:a4:9e:3a:cc: 67:9c:2a:24:04:f1:df:1d:c3:87:1e:d0:91:78:cb:28:23:3e: d3:df:de:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTx9einkNVjV+0wGoB3bycHstZV8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI2MDE1MDI5WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTA1NDYwZDRhODllZmY5NTg4MWQ4YTg4ZjdkODY3Y2Uw NjA4YjZjYjljNDIwYTAzZGZiMjU2ZTAyMmQyNTAyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYKEMCuCASoq2fh0jophuQPUdRInJPTAerGHQLWVISOf7m go0To0XPo45+psDo456nErJTZ3S9vU4n6st9AniiUX5bO5atEm1QirVyIq1Kvprj /+SVaqkwIiCTFE/g7UAuT4/PK2AMB97sMcREL9ncaMoHEETkt3MNZHzDOwh0CuCu oNjcI9eff7aXll2YBjEj03mFOQvhPJXgTw4ri9P0zFvWs0Ew+uU3BTkzXhYvn7yO ZWejfTQUT4vE4k/flUvpXrMsaAsReN5mjlX9FeoJggPBdrhykXE7dK3kbilEionJ 3w6UCV11QKrSNvudH5dloJevJv/wNLa6/romhB+zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX27AzLYCC2dobOVAiUUzTQVFiKowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzljYTU5N2Q1LWUyZDctNGZmMi05NmE5LTNjZWFiYTAxOTA2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCwwDQYJKoZIhvcNAQELBQADggEBAFxFfJsYrVWzHc/QRyUaTXKZJF1T r5e7z1hT0d49O+GFbBN6Bu8je50IvSIvobJwFhQxvJUif5F3BzMHOobn/L6RmEgi YRxZdvGhjhcpSniSavaVokXBEtpH0UX0lSt5UEHdHS3IE5lIW/qqs/uUMv9nAaZ/ EY57Gc5XVltsyUkTbC0XvTSBnVPj40a5UA73Ta6IcWbLwX0rLE4NRWlqsC5Eh7jp JRNrcq3H7rRc2kthtAx5BhP3BH0G++9XEXimX2rhsmhQIHnSgICpIyTSJmBcXgoQ oVGJajzENdd7Xx//XS8m2V4WpJ46zGecKiQE8d8dw4ce0JF4yygjPtPf3ug= -----END CERTIFICATE-----Generated at Mon Mar 2 06:29:58 2026 by rpki-client