$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa File: a831197c-8b82-49b5-9fa5-fb2277e6850c.roa (raw, json) Hash identifier: LurKrGQeCFtSN8YyE8ZwRhjWn0ykiWoBxuvYTzI1OQE= Subject key identifier: 93:1C:70:F3:51:05:FB:68:F1:43:36:A1:31:8F:A2:EE:5B:D7:49:B5 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 48A596DEC07453870DB73D43D29482E1B13EC48D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa Signing time: Thu 26 Feb 2026 01:50:03 +0000 ROA not before: Thu 26 Feb 2026 01:50:03 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a5:96:de:c0:74:53:87:0d:b7:3d:43:d2:94:82:e1:b1:3e:c4:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 26 01:50:03 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=ee33b20d3bbac4319c5b545b8886ed4d4a7b010d94dec5694c239a611bfa4fc2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e8:19:0f:a3:73:6e:e2:50:e7:aa:08:15:72: 88:0c:a2:95:f8:99:c8:25:59:12:7a:65:55:45:bc: a6:06:b4:dd:b3:e4:c7:67:e9:d6:79:2c:0d:b0:25: 0a:ac:8d:1b:cd:32:1e:34:17:99:92:99:0a:de:2f: bd:58:72:23:95:55:bf:7b:ac:76:36:ba:df:2c:51: 1b:c8:dc:08:90:83:ce:d4:a2:ac:37:b1:37:a7:41: ef:7d:20:b4:d5:21:b7:34:24:4e:d0:65:13:86:29: 8a:13:83:2a:30:a1:f7:35:47:63:7f:90:ec:ee:89: 1d:6d:ae:a0:82:44:86:61:65:43:89:e7:d2:3f:9c: cf:36:de:c0:03:07:14:26:78:62:34:f2:e0:0b:03: 54:c3:e3:9d:69:aa:3e:e4:b0:e1:9e:52:e0:40:20: d6:36:b8:24:1e:3b:d8:94:59:6e:a9:b4:84:a3:1a: 26:cf:e9:1b:3e:06:b5:82:c2:18:31:36:3d:07:6d: 9b:5f:2a:7a:eb:d0:f8:f1:68:12:0b:08:0b:5e:ac: 71:e7:a7:3a:f4:7d:a4:d9:a5:d9:02:8f:cc:59:df: aa:fb:dc:48:d0:54:e7:16:65:22:af:9f:2d:00:df: ab:9a:74:2d:95:c9:42:cb:50:20:8f:35:69:cc:8f: fa:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:1C:70:F3:51:05:FB:68:F1:43:36:A1:31:8F:A2:EE:5B:D7:49:B5 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.38.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:01:4d:d5:fd:57:2d:3f:5a:98:d0:ed:5b:4e:71:57:de:3d: 4b:1e:d5:9e:49:11:dd:e3:f0:b9:0d:d9:6b:02:df:1c:02:69: 2a:ab:34:df:d7:cc:02:9b:41:9e:b5:31:29:b1:78:42:28:aa: b3:80:d3:2d:53:23:0b:45:c0:c8:d5:4d:22:d0:e8:3b:c2:32: 34:fb:e1:a8:82:bc:4c:1c:4c:a1:b1:68:5d:1b:dd:4a:9a:ac: e3:89:66:a4:7c:9d:ab:9f:5d:f2:99:16:12:ee:89:dc:54:fb: a0:52:9f:61:f0:c7:63:98:8b:9e:63:2f:5e:5c:9e:8e:1e:d4: b3:de:c7:7c:9a:00:23:ed:81:4f:19:b0:26:c5:a1:28:45:ac: f9:ab:b2:12:79:29:65:74:0a:bd:4d:a3:40:81:7b:65:0a:1d: 25:06:bb:db:4b:a0:9b:2d:2e:eb:a6:21:a4:bf:f7:af:f7:a3: 9b:99:d2:71:ea:1f:4a:9b:ff:e5:45:37:38:7e:ff:b8:e8:73: 7a:b3:2d:ec:62:b9:d6:be:59:f8:d9:e3:03:50:b0:84:10:7b: 75:54:46:92:5d:fc:46:ad:16:c9:7c:bb:1a:5f:43:f2:aa:66: 90:59:bd:b0:c2:90:36:2f:e9:28:d2:24:b5:f7:c4:fa:94:0f: 25:30:c0:7d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSKWW3sB0U4cNtz1D0pSC4bE+xI0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI2MDE1MDAzWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTMzYjIwZDNiYmFjNDMxOWM1YjU0NWI4ODg2ZWQ0ZDRh N2IwMTBkOTRkZWM1Njk0YzIzOWE2MTFiZmE0ZmMyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC36BkPo3Nu4lDnqggVcogMopX4mcglWRJ6ZVVFvKYGtN2z 5Mdn6dZ5LA2wJQqsjRvNMh40F5mSmQreL71YciOVVb97rHY2ut8sURvI3AiQg87U oqw3sTenQe99ILTVIbc0JE7QZROGKYoTgyowofc1R2N/kOzuiR1trqCCRIZhZUOJ 59I/nM823sADBxQmeGI08uALA1TD451pqj7ksOGeUuBAINY2uCQeO9iUWW6ptISj GibP6Rs+BrWCwhgxNj0HbZtfKnrr0PjxaBILCAterHHnpzr0faTZpdkCj8xZ36r7 3EjQVOcWZSKvny0A36uadC2VyULLUCCPNWnMj/oVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkxxw81EF+2jxQzahMY+i7lvXSbUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E4MzExOTdjLThiODItNDliNS05ZmE1LWZiMjI3N2U2ODUwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCYwDQYJKoZIhvcNAQELBQADggEBAE8BTdX9Vy0/WpjQ7VtOcVfePUse 1Z5JEd3j8LkN2WsC3xwCaSqrNN/XzAKbQZ61MSmxeEIoqrOA0y1TIwtFwMjVTSLQ 6DvCMjT74aiCvEwcTKGxaF0b3UqarOOJZqR8naufXfKZFhLuidxU+6BSn2Hwx2OY i55jL15cno4e1LPex3yaACPtgU8ZsCbFoShFrPmrshJ5KWV0Cr1No0CBe2UKHSUG u9tLoJstLuumIaS/96/3o5uZ0nHqH0qb/+VFNzh+/7joc3qzLexiuda+WfjZ4wNQ sIQQe3VURpJd/EatFsl8uxpfQ/KqZpBZvbDCkDYv6SjSJLX3xPqUDyUwwH0= -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:19 2026 by rpki-client