$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa File: a831197c-8b82-49b5-9fa5-fb2277e6850c.roa (raw, json) Hash identifier: BbC8CQRfsIopTAGohYBWDoJsRF5/ftzOPH4oEWf79lY= Subject key identifier: C9:FB:B1:1D:5D:05:1B:C8:D0:9F:D5:4E:75:F9:08:7F:45:96:E8:C2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 31A42CD994C27CE373087DA1FC2CA9BFF07AEF17 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa Signing time: Sun 17 May 2026 01:50:04 +0000 ROA not before: Sun 17 May 2026 01:50:04 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a4:2c:d9:94:c2:7c:e3:73:08:7d:a1:fc:2c:a9:bf:f0:7a:ef:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 17 01:50:04 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=6bdb4f9b86b3f83d01ea1cbebe2084fafb341e515f0de5136f2f0e7854721183, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e5:5a:21:4e:9d:41:4b:12:48:1d:f3:d0:7b: 0e:23:25:2b:45:35:69:e4:2b:4c:c4:ea:63:b8:38: f6:6f:d7:15:6f:f6:1b:50:4f:1f:60:7b:8e:dc:53: 1e:95:81:c0:46:56:28:cd:ac:1e:20:50:76:8e:3f: f9:14:64:c5:a2:77:5b:30:e0:35:dc:69:14:b3:fb: c1:29:46:ee:3f:75:64:a4:48:53:da:e3:4d:41:00: bf:9d:62:4f:d1:0d:83:f9:60:97:24:f0:51:ed:b7: 4e:61:ca:8a:34:61:88:50:c5:7a:78:c9:f2:41:d8: ca:c5:d0:1e:0f:c5:1c:7b:21:78:81:48:b3:2e:74: 8a:eb:3e:0d:cd:92:ad:c9:06:3c:1d:ff:48:e2:d1: 17:a6:e3:e0:11:bc:96:c0:3d:1d:ce:60:18:43:d0: 8f:99:96:63:d0:97:42:b7:80:77:57:4b:ac:fd:69: 9a:25:0d:be:2d:99:d5:08:db:5e:dc:d2:d4:e7:ba: 44:b2:7b:a3:9a:14:e0:ce:72:3d:a0:c0:82:82:20: 77:35:33:7b:60:b8:c0:84:40:97:d9:0e:07:21:b1: 3c:bf:f9:47:c7:fe:b3:9a:83:b1:a5:ff:5f:29:d6: 86:2a:ec:99:47:e1:de:c5:9a:07:f9:a9:17:b0:3a: 35:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:FB:B1:1D:5D:05:1B:C8:D0:9F:D5:4E:75:F9:08:7F:45:96:E8:C2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.38.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:7c:f9:63:f8:00:ee:5c:c9:28:76:c5:10:33:4b:38:c0:6b: cf:26:25:7b:ea:d2:c2:1f:32:63:c7:da:7b:ed:09:e1:c0:37: e6:db:32:f6:fa:1a:d7:e3:51:bc:b8:e9:1a:8b:81:79:cc:6d: 7c:cb:fd:81:2f:ff:54:7c:08:f6:88:22:89:98:0f:01:21:a4: 7b:6a:89:6f:c4:f6:c4:bf:aa:7b:94:dd:2d:52:c2:58:42:b0: da:9b:c4:c0:43:2b:1a:82:4d:31:83:31:de:0a:7b:4f:62:b7: bb:08:35:cd:33:d1:09:31:e1:fe:6d:b1:29:99:4e:54:15:ad: 18:b4:ff:8b:c0:14:28:4e:be:1d:cb:fe:97:02:fe:d1:8b:d1: 94:7c:fc:30:7a:7a:72:1d:a2:02:fd:6c:71:56:37:d3:4a:8b: 1d:2d:19:89:1b:60:eb:71:df:b3:6b:f7:c3:74:bd:2e:16:2e: af:7e:95:df:ee:72:af:31:66:ab:77:00:0c:91:27:49:9a:31: 7d:dd:56:d1:51:6b:df:a6:a0:38:9f:87:17:01:e3:1c:29:1d: 9d:6e:37:8b:7c:0c:c6:53:c3:12:cd:b1:26:af:e8:a1:57:46: 5a:a7:c9:89:12:f0:c6:60:a2:44:fb:a8:9a:e9:52:b2:13:2c: 2a:62:f4:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMaQs2ZTCfONzCH2h/Cypv/B67xcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE3MDE1MDA0WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmRiNGY5Yjg2YjNmODNkMDFlYTFjYmViZTIwODRmYWZi MzQxZTUxNWYwZGU1MTM2ZjJmMGU3ODU0NzIxMTgzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC75VohTp1BSxJIHfPQew4jJStFNWnkK0zE6mO4OPZv1xVv 9htQTx9ge47cUx6VgcBGVijNrB4gUHaOP/kUZMWid1sw4DXcaRSz+8EpRu4/dWSk SFPa401BAL+dYk/RDYP5YJck8FHtt05hyoo0YYhQxXp4yfJB2MrF0B4PxRx7IXiB SLMudIrrPg3Nkq3JBjwd/0ji0Rem4+ARvJbAPR3OYBhD0I+ZlmPQl0K3gHdXS6z9 aZolDb4tmdUI217c0tTnukSye6OaFODOcj2gwIKCIHc1M3tguMCEQJfZDgchsTy/ +UfH/rOag7Gl/18p1oYq7JlH4d7Fmgf5qRewOjXdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyfuxHV0FG8jQn9VOdfkIf0WW6MIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E4MzExOTdjLThiODItNDliNS05ZmE1LWZiMjI3N2U2ODUwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCYwDQYJKoZIhvcNAQELBQADggEBABx8+WP4AO5cySh2xRAzSzjAa88m JXvq0sIfMmPH2nvtCeHAN+bbMvb6GtfjUby46RqLgXnMbXzL/YEv/1R8CPaIIomY DwEhpHtqiW/E9sS/qnuU3S1SwlhCsNqbxMBDKxqCTTGDMd4Ke09it7sINc0z0Qkx 4f5tsSmZTlQVrRi0/4vAFChOvh3L/pcC/tGL0ZR8/DB6enIdogL9bHFWN9NKix0t GYkbYOtx37Nr98N0vS4WLq9+ld/ucq8xZqt3AAyRJ0maMX3dVtFRa9+moDifhxcB 4xwpHZ1uN4t8DMZTwxLNsSav6KFXRlqnyYkS8MZgokT7qJrpUrITLCpi9PA= -----END CERTIFICATE-----Generated at Sat Jun 13 09:27:34 2026 by rpki-client