$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa File: c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa (raw, json) Hash identifier: CpULEUcnt+MpV1ZLX28UH/MyrbWVl4EyZHV54DfX6Eg= Subject key identifier: FF:EB:5E:A6:DD:B4:7C:9F:B8:80:08:69:46:82:44:87:22:15:6A:12 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 167B2FF4B5A340756DF3325198E72981A01E0E5A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa Signing time: Thu 26 Feb 2026 01:50:24 +0000 ROA not before: Thu 26 Feb 2026 01:50:24 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:7b:2f:f4:b5:a3:40:75:6d:f3:32:51:98:e7:29:81:a0:1e:0e:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 26 01:50:24 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=86588d8f48f40e835ef04d8c7f8639609aae4d17bb616d763538a3ad06b92a92, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e0:2c:97:b2:71:94:06:ee:76:3e:99:1f:46: 11:cb:d6:66:b5:dd:c9:d0:ab:af:25:d2:cb:22:9c: 4d:e3:95:3e:52:6d:1d:04:bb:8f:2c:48:a5:c4:02: 71:c2:af:40:47:00:0b:57:54:da:28:09:47:4b:1a: 81:e2:6a:30:de:43:d8:7d:a4:59:e2:a4:68:60:75: 0c:60:cc:4a:69:3d:65:b5:21:f1:bf:d2:a8:e9:c1: 15:9b:bb:0d:8a:6b:41:15:d8:b5:78:68:3d:bc:67: cd:5e:b0:24:44:70:c7:48:5e:9b:42:9f:bf:ee:f7: 79:b0:35:8d:cd:a5:85:21:40:2c:b7:02:a8:30:d6: e1:95:7a:fa:9b:7b:30:b0:d9:a9:2c:2b:34:47:bf: 2c:18:e1:0d:c9:f5:55:26:68:65:7c:23:3d:db:5d: df:ab:9d:b5:1d:68:17:8b:aa:64:84:83:02:88:6b: 0c:54:94:61:56:08:3e:4a:7b:a0:e8:38:d0:13:7b: 20:ed:f9:11:1d:cb:8f:95:e5:6c:74:58:7a:6b:41: b4:27:67:5f:c4:84:3d:7d:4a:5c:15:a6:d4:b0:68: 38:8b:09:75:56:8d:06:13:44:40:58:06:cd:74:65: bb:2f:44:39:0b:61:b1:74:56:41:e0:ec:69:53:88: 53:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EB:5E:A6:DD:B4:7C:9F:B8:80:08:69:46:82:44:87:22:15:6A:12 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.43.0/24 Signature Algorithm: sha256WithRSAEncryption 52:9e:a3:ec:f7:77:11:38:8e:19:f0:80:ea:2d:98:fd:42:16: 15:ba:e8:a6:b8:35:6c:e9:48:47:b7:11:05:d9:92:ef:3c:76: 84:8e:98:85:10:cf:4f:88:c7:1b:b0:9c:c2:fc:5a:7a:d9:7f: 2e:72:65:9b:6d:da:ea:83:c6:5e:3e:17:ef:42:13:65:37:c4: 87:20:cc:af:2a:cc:bf:0d:93:42:c2:a5:09:51:9a:af:95:12: 95:ed:67:42:5e:16:c5:7e:13:84:67:b6:6e:61:1c:21:48:ca: 2c:13:e0:43:eb:33:c1:30:8f:70:b0:8f:8b:47:66:f5:5b:1f: 15:1c:92:cc:ff:17:9f:ac:f3:e1:6c:44:0d:98:1c:a1:a8:aa: e3:42:c5:0d:4d:e4:53:2e:b1:b3:9a:b9:c6:98:8b:96:e6:f0: 51:38:6e:9e:d1:d3:3f:a7:3b:f3:cf:6f:b0:ca:81:09:c1:81: e0:a1:45:36:e6:2e:ce:b2:4b:a5:b0:90:c8:55:d3:ba:e4:5d: db:15:cd:b0:41:ee:c4:0f:8b:d6:56:f3:1a:e9:eb:b0:c8:ac: bb:6c:f7:0b:f0:49:dc:d6:62:bb:3f:f0:e5:3e:8d:39:8f:68: 2d:9d:d9:a2:7d:f2:e0:26:dc:d0:a6:09:4b:2c:d4:48:c1:ab: 3f:ac:e1:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFnsv9LWjQHVt8zJRmOcpgaAeDlowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI2MDE1MDI0WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjU4OGQ4ZjQ4ZjQwZTgzNWVmMDRkOGM3Zjg2Mzk2MDlh YWU0ZDE3YmI2MTZkNzYzNTM4YTNhZDA2YjkyYTkyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc4CyXsnGUBu52PpkfRhHL1ma13cnQq68l0ssinE3jlT5S bR0Eu48sSKXEAnHCr0BHAAtXVNooCUdLGoHiajDeQ9h9pFnipGhgdQxgzEppPWW1 IfG/0qjpwRWbuw2Ka0EV2LV4aD28Z81esCREcMdIXptCn7/u93mwNY3NpYUhQCy3 Aqgw1uGVevqbezCw2aksKzRHvywY4Q3J9VUmaGV8Iz3bXd+rnbUdaBeLqmSEgwKI awxUlGFWCD5Ke6DoONATeyDt+REdy4+V5Wx0WHprQbQnZ1/EhD19SlwVptSwaDiL CXVWjQYTREBYBs10ZbsvRDkLYbF0VkHg7GlTiFPxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/+tept20fJ+4gAhpRoJEhyIVahIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyMjE3MDhiLTJmYjMtNDBkNy05ZDkxLWEyNzNjNTdiYjNjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCswDQYJKoZIhvcNAQELBQADggEBAFKeo+z3dxE4jhnwgOotmP1CFhW6 6Ka4NWzpSEe3EQXZku88doSOmIUQz0+IxxuwnML8WnrZfy5yZZtt2uqDxl4+F+9C E2U3xIcgzK8qzL8Nk0LCpQlRmq+VEpXtZ0JeFsV+E4Rntm5hHCFIyiwT4EPrM8Ew j3Cwj4tHZvVbHxUcksz/F5+s8+FsRA2YHKGoquNCxQ1N5FMusbOaucaYi5bm8FE4 bp7R0z+nO/PPb7DKgQnBgeChRTbmLs6yS6WwkMhV07rkXdsVzbBB7sQPi9ZW8xrp 67DIrLts9wvwSdzWYrs/8OU+jTmPaC2d2aJ98uAm3NCmCUss1EjBqz+s4Vc= -----END CERTIFICATE-----Generated at Mon Mar 2 09:39:02 2026 by rpki-client