$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa File: c2811169-c1c6-4559-b237-580a584aa58a.roa (raw, json) Hash identifier: vVj3oGioOcnVVrpXgRN6xdPRuvoOmVBUDeMU38ZXyMA= Subject key identifier: 4E:84:44:9C:ED:57:09:6D:1C:F6:9B:50:BE:F5:51:32:35:FE:F7:3A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2BC613B5DF7ADA4690B024EC0BA0AB792E633DDB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa Signing time: Sun 17 May 2026 01:50:10 +0000 ROA not before: Sun 17 May 2026 01:50:10 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c6:13:b5:df:7a:da:46:90:b0:24:ec:0b:a0:ab:79:2e:63:3d:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 17 01:50:10 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=02e98a155d629ab771fa022c0c289e5335b267f4606728c7160227a5b5ac9d1f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6c:3e:ba:2a:e7:c1:38:58:19:5a:99:67:58: c2:06:29:ef:ab:ac:98:48:df:5a:96:ad:f8:1c:31: 76:97:17:c6:2b:4e:55:a8:7f:e8:d3:1b:5b:a8:06: 37:82:f4:bb:53:51:14:ac:83:32:6a:15:0e:d7:f8: 56:ef:02:a5:82:58:b2:ff:5a:f4:05:1d:b3:48:51: 31:43:ee:50:97:65:cd:7e:7b:5d:43:8f:aa:de:aa: 6c:91:10:90:d2:48:07:74:20:17:7d:34:7a:6f:d9: 73:6f:1d:0b:a7:83:a6:ba:26:09:b7:ae:67:87:e8: 33:9a:92:9c:91:51:ef:10:6f:84:a2:79:c5:c1:54: 41:61:fd:cd:d5:59:67:bd:23:b6:df:e0:8b:26:82: 36:11:43:e8:a9:c9:52:4f:f9:ef:37:27:7d:ee:85: 94:7c:bb:14:79:32:1e:d8:7d:ab:fb:21:87:ba:f6: 8f:54:5b:ec:fc:8d:68:30:f9:a8:a0:f3:d1:88:9e: 5d:13:b4:ed:03:ce:ea:cc:b9:2d:7a:5b:28:b0:dd: 11:37:bc:32:ea:7d:94:d6:dc:b4:39:ef:e8:f3:81: 21:06:be:4e:03:a6:91:f7:79:63:c7:d7:b7:14:de: 50:b9:23:26:e3:c3:8f:a6:31:a6:d3:04:2b:0b:78: 7c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:84:44:9C:ED:57:09:6D:1C:F6:9B:50:BE:F5:51:32:35:FE:F7:3A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.34.0/24 Signature Algorithm: sha256WithRSAEncryption 80:f9:bc:80:a3:26:36:ef:db:ae:75:ee:9b:47:09:6b:d1:c9: 51:86:07:50:15:b6:c4:6c:b1:dc:30:63:15:d5:a7:42:12:11: dc:ec:10:ea:63:f5:c1:86:e2:70:65:6c:13:2d:85:d9:85:20: 86:4b:aa:b1:25:8e:4a:df:51:de:19:1e:6e:8f:3a:e3:e8:1a: ca:56:72:df:6f:a7:a5:04:2b:03:f0:80:7c:ed:e1:06:32:c7: 47:cc:f1:ec:ce:ea:66:0a:f0:07:45:99:f6:92:ed:c3:8d:61: 92:11:e3:ce:81:db:5b:aa:26:6f:4b:f4:1b:bf:e8:63:cd:91: a3:90:13:62:98:ff:f9:99:a6:e8:1d:a6:94:0d:fd:fb:db:94: 06:64:4b:ed:5c:2a:92:75:7d:30:c0:53:af:f6:5e:7a:59:6c: 99:63:bd:26:78:7c:77:f0:da:6a:d0:2f:fe:b7:33:4f:30:d3: f9:37:bb:17:44:af:f8:36:0d:a7:4e:cf:f1:c5:c2:46:47:08: ac:53:df:c9:8a:76:87:ec:63:dd:b7:12:9e:31:a7:70:13:78: 3b:c2:fa:84:e5:39:d8:c3:39:4e:df:1a:30:06:ed:62:65:8b: ad:11:30:28:49:f7:3c:fc:81:e1:6f:05:2c:1a:89:a5:3b:56: 3c:a6:b1:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK8YTtd962kaQsCTsC6CreS5jPdswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE3MDE1MDEwWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmU5OGExNTVkNjI5YWI3NzFmYTAyMmMwYzI4OWU1MzM1 YjI2N2Y0NjA2NzI4YzcxNjAyMjdhNWI1YWM5ZDFmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDObD66KufBOFgZWplnWMIGKe+rrJhI31qWrfgcMXaXF8Yr TlWof+jTG1uoBjeC9LtTURSsgzJqFQ7X+FbvAqWCWLL/WvQFHbNIUTFD7lCXZc1+ e11Dj6reqmyREJDSSAd0IBd9NHpv2XNvHQung6a6Jgm3rmeH6DOakpyRUe8Qb4Si ecXBVEFh/c3VWWe9I7bf4IsmgjYRQ+ipyVJP+e83J33uhZR8uxR5Mh7Yfav7IYe6 9o9UW+z8jWgw+aig89GInl0TtO0DzurMuS16Wyiw3RE3vDLqfZTW3LQ57+jzgSEG vk4DppH3eWPH17cU3lC5Iybjw4+mMabTBCsLeHxZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUToREnO1XCW0c9ptQvvVRMjX+9zowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyODExMTY5LWMxYzYtNDU1OS1iMjM3LTU4MGE1ODRhYTU4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCIwDQYJKoZIhvcNAQELBQADggEBAID5vICjJjbv26517ptHCWvRyVGG B1AVtsRssdwwYxXVp0ISEdzsEOpj9cGG4nBlbBMthdmFIIZLqrEljkrfUd4ZHm6P OuPoGspWct9vp6UEKwPwgHzt4QYyx0fM8ezO6mYK8AdFmfaS7cONYZIR486B21uq Jm9L9Bu/6GPNkaOQE2KY//mZpugdppQN/fvblAZkS+1cKpJ1fTDAU6/2XnpZbJlj vSZ4fHfw2mrQL/63M08w0/k3uxdEr/g2DadOz/HFwkZHCKxT38mKdofsY923Ep4x p3ATeDvC+oTlOdjDOU7fGjAG7WJli60RMChJ9zz8geFvBSwaiaU7VjymsaY= -----END CERTIFICATE-----Generated at Sat Jun 13 08:15:15 2026 by rpki-client