$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa File: c2811169-c1c6-4559-b237-580a584aa58a.roa (raw, json) Hash identifier: HuFw7LwjzuZV5aS/C7WECLwh0FRXAVCYz/gOcAzx7kk= Subject key identifier: 26:16:67:3E:02:94:4B:AA:41:70:5F:A2:64:5D:64:48:F2:D1:C0:CE Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4D9D6220462F17691AA996A561A7F6B809C9E6CF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa Signing time: Thu 26 Feb 2026 01:50:07 +0000 ROA not before: Thu 26 Feb 2026 01:50:07 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:9d:62:20:46:2f:17:69:1a:a9:96:a5:61:a7:f6:b8:09:c9:e6:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 26 01:50:07 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=94ec3cea8c72b1731557395e825315f61742d23fe3ab63e629fad9d0545e1933, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8c:db:6b:86:24:de:fd:fe:a0:e4:6c:db:3a: 2c:69:a0:47:3f:0c:60:6c:b8:96:4b:bd:69:0c:27: 0f:19:53:81:ca:d3:de:fe:bb:54:43:85:5f:d4:08: 47:c6:1c:84:1e:db:fa:84:11:b7:af:b0:1f:52:14: da:ce:e2:21:e4:68:22:45:13:78:7b:80:1c:1a:d0: 6c:bd:68:38:44:46:af:0e:52:71:d8:89:24:96:e3: 73:f5:49:dc:5b:af:63:5a:e6:a4:1f:d9:42:32:ea: 39:e6:de:68:8c:76:c3:12:34:16:9c:c6:5f:26:65: bb:25:37:25:2a:5e:38:6f:d0:bd:f2:7c:e6:b3:73: 12:4c:aa:fa:a7:8d:f1:cd:6d:69:fb:00:15:b2:0b: 5b:51:ee:b4:6f:fc:6a:79:09:a7:f5:33:2a:6a:57: 81:a8:89:62:c0:7e:55:73:6f:6b:02:77:81:ce:b7: 08:04:10:37:03:dc:cf:9f:ed:b2:ae:72:20:37:45: e5:4f:d1:31:9d:76:e6:b8:37:be:6d:5a:23:08:ad: 52:b6:ed:66:5b:ff:f6:05:21:29:f3:d3:cb:41:3e: ae:dd:8d:c8:3d:6b:1d:15:68:72:69:56:8f:23:04: fc:d0:1a:e4:78:c8:73:a0:b9:25:32:ff:22:a7:1f: f2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:16:67:3E:02:94:4B:AA:41:70:5F:A2:64:5D:64:48:F2:D1:C0:CE X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.34.0/24 Signature Algorithm: sha256WithRSAEncryption 17:31:68:25:f5:a6:8c:53:9d:25:de:a5:39:44:fc:03:7a:fa: 76:9a:9d:60:ad:12:b6:8e:71:71:ae:31:9c:3c:c4:08:0d:42: 7e:bd:08:86:4e:25:f5:7b:63:71:dd:1d:cf:67:32:2f:49:44: 27:34:cc:f1:60:69:44:2a:72:09:db:57:15:ce:be:51:88:bf: c3:6f:3a:ec:54:df:ff:52:58:e4:16:3c:b2:7f:e1:be:06:46: b5:04:03:62:a3:ac:6e:7d:4c:d5:5e:fc:0a:1c:e7:d1:d2:49: f5:ed:36:b5:bf:fb:5b:9d:11:e7:de:e5:cd:9b:7e:be:d6:ce: 78:f6:b7:49:da:9d:fc:cb:e3:73:a8:d3:e5:db:63:a5:45:ac: fb:54:80:85:1a:5d:1f:99:2a:ee:50:8f:5a:9e:1c:6a:81:25: 17:16:d1:a3:49:23:5a:97:e1:2f:f8:0d:60:2b:70:86:56:f9: 15:9c:c6:b4:b0:93:c2:1e:b9:22:b9:ce:ce:a0:45:ad:bc:48: 87:ac:f4:67:b7:93:51:08:07:8a:66:3f:3a:77:6a:12:78:4c: 2a:d1:07:e2:11:eb:44:d7:ba:54:93:47:da:63:7f:d8:ce:73: f9:6c:88:6c:08:4d:f2:40:66:ea:33:31:38:18:47:e6:dd:01: 9a:42:d3:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTZ1iIEYvF2kaqZalYaf2uAnJ5s8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI2MDE1MDA3WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGVjM2NlYThjNzJiMTczMTU1NzM5NWU4MjUzMTVmNjE3 NDJkMjNmZTNhYjYzZTYyOWZhZDlkMDU0NWUxOTMzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDjNtrhiTe/f6g5GzbOixpoEc/DGBsuJZLvWkMJw8ZU4HK 097+u1RDhV/UCEfGHIQe2/qEEbevsB9SFNrO4iHkaCJFE3h7gBwa0Gy9aDhERq8O UnHYiSSW43P1Sdxbr2Na5qQf2UIy6jnm3miMdsMSNBacxl8mZbslNyUqXjhv0L3y fOazcxJMqvqnjfHNbWn7ABWyC1tR7rRv/Gp5Caf1MypqV4GoiWLAflVzb2sCd4HO twgEEDcD3M+f7bKuciA3ReVP0TGddua4N75tWiMIrVK27WZb//YFISnz08tBPq7d jcg9ax0VaHJpVo8jBPzQGuR4yHOguSUy/yKnH/KfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJhZnPgKUS6pBcF+iZF1kSPLRwM4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyODExMTY5LWMxYzYtNDU1OS1iMjM3LTU4MGE1ODRhYTU4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCIwDQYJKoZIhvcNAQELBQADggEBABcxaCX1poxTnSXepTlE/AN6+naa nWCtEraOcXGuMZw8xAgNQn69CIZOJfV7Y3HdHc9nMi9JRCc0zPFgaUQqcgnbVxXO vlGIv8NvOuxU3/9SWOQWPLJ/4b4GRrUEA2KjrG59TNVe/Aoc59HSSfXtNrW/+1ud Eefe5c2bfr7Wznj2t0nanfzL43Oo0+XbY6VFrPtUgIUaXR+ZKu5Qj1qeHGqBJRcW 0aNJI1qX4S/4DWArcIZW+RWcxrSwk8IeuSK5zs6gRa28SIes9Ge3k1EIB4pmPzp3 ahJ4TCrRB+IR60TXulSTR9pjf9jOc/lsiGwITfJAZuozMTgYR+bdAZpC03M= -----END CERTIFICATE-----Generated at Mon Mar 2 02:48:18 2026 by rpki-client