$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b397a4bc-52af-44ea-92ba-26ce6c10d042.roa File: b397a4bc-52af-44ea-92ba-26ce6c10d042.roa (raw, json) Hash identifier: xnTkSNPSoWayv3NVErkiATNfC+CvaKfMd+mcmFTKYpA= Subject key identifier: 65:AF:34:7E:94:28:4D:32:D7:E4:52:78:96:A9:8E:66:1F:45:B1:96 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 02F0C6F1A2D032455E1F2344763CE9B43AB09D53 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b397a4bc-52af-44ea-92ba-26ce6c10d042.roa Signing time: Sat 21 Feb 2026 01:50:08 +0000 ROA not before: Sat 21 Feb 2026 01:50:08 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f0:c6:f1:a2:d0:32:45:5e:1f:23:44:76:3c:e9:b4:3a:b0:9d:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 21 01:50:08 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=abdbc77c0af156b1603b3de6791fc59cab328d10ced142ab31df42cc27a97544, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:99:a0:67:49:6b:9a:a2:2f:8d:6c:16:7f: e1:f0:b2:ec:40:69:27:84:cb:89:59:76:b9:dc:f7: 32:84:d9:bc:2a:81:6c:48:81:da:6d:03:e7:93:5b: 63:9e:6d:df:0a:1f:3f:24:c0:cd:96:0d:1d:a2:26: d5:24:df:f2:c6:c2:53:e1:98:f1:7e:14:f9:8a:d4: 12:ed:53:63:db:5d:72:97:44:60:47:85:e1:6f:96: b7:d5:66:cc:3b:59:b9:61:f2:82:d9:d0:4a:f3:e9: 73:88:40:e7:13:e7:c2:cc:cc:77:c0:ec:4c:11:27: 5c:de:06:13:14:39:47:b9:ae:07:eb:fe:db:71:4f: 72:24:6a:89:d0:6e:b6:e3:e3:9e:66:35:f8:e4:dc: db:c6:6a:d1:65:b6:db:04:3d:b1:c4:36:cd:b0:5e: fd:23:1a:25:ca:59:34:66:e0:2c:00:02:56:f8:8e: 34:9d:dd:be:82:31:ac:e2:13:c0:3b:04:c1:f5:54: f1:85:b0:d0:04:67:17:ff:71:bd:44:5e:37:80:00: 25:2e:a6:5e:93:8a:ea:82:59:ff:08:f0:c3:b5:c3: 1e:6c:53:92:df:9d:50:c8:3a:89:23:65:56:ca:e8: 4b:64:de:49:f0:ff:57:bc:e3:e6:16:96:ad:27:c4: 4e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:AF:34:7E:94:28:4D:32:D7:E4:52:78:96:A9:8E:66:1F:45:B1:96 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b397a4bc-52af-44ea-92ba-26ce6c10d042.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.50.0/24 Signature Algorithm: sha256WithRSAEncryption 11:34:2f:bf:3d:2a:e9:0d:5d:71:66:ab:6e:5c:e4:b2:a1:6f: f5:6d:33:4e:9c:6c:00:aa:87:8c:85:e9:75:14:21:8b:5f:02: 1f:29:07:2a:b7:11:3e:b5:8d:51:9c:34:69:b6:ba:bc:9a:d7: 13:58:b2:82:84:32:c9:d6:58:63:c5:e8:11:d5:c6:24:21:3a: 1a:60:1f:6a:b9:fa:7e:60:66:ad:77:b5:1c:34:5b:74:b1:84: 90:b5:b0:6a:8d:08:d7:8d:8d:60:f0:56:b9:92:57:45:46:bd: 51:a2:f4:45:00:9b:4e:ef:46:f8:6f:af:82:63:34:d9:06:e1: 7b:c8:aa:3f:0a:c0:b5:7f:52:16:98:43:65:85:df:ea:d0:a4: 69:28:b5:c6:b0:2b:86:5c:72:07:d7:ff:32:cc:8f:c8:27:bd: 48:64:66:50:82:96:79:06:1a:47:e2:73:99:a6:41:cf:cf:d4: 7c:ec:a1:f2:b8:27:83:1f:06:2c:7c:af:05:11:84:b1:40:31: 80:c8:6e:7a:ca:d2:8f:99:f2:13:98:cb:e7:14:1b:1c:d2:55: 73:1a:e2:dd:5b:44:47:54:bf:2d:19:22:a6:07:97:ec:74:56: 25:43:a5:e8:03:7c:63:12:2a:87:68:40:0f:2e:0b:fa:18:f8: 23:7b:42:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAvDG8aLQMkVeHyNEdjzptDqwnVMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjIxMDE1MDA4WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmRiYzc3YzBhZjE1NmIxNjAzYjNkZTY3OTFmYzU5Y2Fi MzI4ZDEwY2VkMTQyYWIzMWRmNDJjYzI3YTk3NTQ0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7tpmgZ0lrmqIvjWwWf+HwsuxAaSeEy4lZdrnc9zKE2bwq gWxIgdptA+eTW2Oebd8KHz8kwM2WDR2iJtUk3/LGwlPhmPF+FPmK1BLtU2PbXXKX RGBHheFvlrfVZsw7Wblh8oLZ0Erz6XOIQOcT58LMzHfA7EwRJ1zeBhMUOUe5rgfr /ttxT3IkaonQbrbj455mNfjk3NvGatFlttsEPbHENs2wXv0jGiXKWTRm4CwAAlb4 jjSd3b6CMaziE8A7BMH1VPGFsNAEZxf/cb1EXjeAACUupl6TiuqCWf8I8MO1wx5s U5LfnVDIOokjZVbK6Etk3knw/1e84+YWlq0nxE6LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZa80fpQoTTLX5FJ4lqmOZh9FsZYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2IzOTdhNGJjLTUyYWYtNDRlYS05MmJhLTI2Y2U2YzEwZDA0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDIwDQYJKoZIhvcNAQELBQADggEBABE0L789KukNXXFmq25c5LKhb/Vt M06cbACqh4yF6XUUIYtfAh8pByq3ET61jVGcNGm2urya1xNYsoKEMsnWWGPF6BHV xiQhOhpgH2q5+n5gZq13tRw0W3SxhJC1sGqNCNeNjWDwVrmSV0VGvVGi9EUAm07v Rvhvr4JjNNkG4XvIqj8KwLV/UhaYQ2WF3+rQpGkotcawK4ZccgfX/zLMj8gnvUhk ZlCClnkGGkfic5mmQc/P1HzsofK4J4MfBix8rwURhLFAMYDIbnrK0o+Z8hOYy+cU GxzSVXMa4t1bREdUvy0ZIqYHl+x0ViVDpegDfGMSKodoQA8uC/oY+CN7QvQ= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:59 2026 by rpki-client