$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa File: cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa (raw, json) Hash identifier: f+L5Yudjaf0+muDyPiezvGo4LX+kd32hStZ/rGUlNoY= Subject key identifier: F0:1F:43:99:E2:F1:16:AE:02:CF:EF:67:90:70:F1:53:B0:BA:A7:48 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 799BD2F220505818ECB57E67AF7ECC822B09DB9B Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa Signing time: Tue 19 May 2026 04:00:06 +0000 ROA not before: Tue 19 May 2026 04:00:06 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9b:d2:f2:20:50:58:18:ec:b5:7e:67:af:7e:cc:82:2b:09:db:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 19 04:00:06 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=cc8107e32e5209d936f9bcab52df8f498c843060f027d0ef45c4fa09748e449c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:39:30:94:84:d1:2c:b3:b7:24:f9:72:09:d9: f9:a1:1b:b8:2a:7f:43:a2:40:3e:97:93:6e:9c:81: d0:05:2f:10:6b:50:48:6a:a7:c0:f8:34:77:b7:bc: 1e:ad:f4:96:63:51:cf:1f:bb:89:7e:e6:4e:93:dd: 9a:e1:72:02:0c:f1:26:9c:23:54:7c:1b:1d:93:36: de:bd:f6:7e:ad:3c:f1:5b:9d:13:c1:60:20:d4:76: 19:8c:f7:88:7a:44:81:2e:ba:f0:f8:36:87:43:69: a1:2f:8b:82:8d:fc:fa:65:5d:16:8f:64:9a:22:f8: ed:76:48:72:2e:a2:2f:16:b4:77:02:24:8f:99:87: a3:f8:a0:17:87:15:f5:35:d1:2f:59:c0:3d:a4:65: e9:cb:40:cb:68:3b:38:fb:86:ad:3e:b6:a2:4e:8f: 4f:05:64:99:30:36:7d:c8:51:90:f2:1d:70:f0:7b: e3:d0:8c:3c:a0:3a:ec:d0:57:8a:c9:08:ef:c1:04: 8b:db:b7:49:c6:6d:a4:c6:60:01:05:0a:81:9b:68: 92:f6:3e:2f:68:72:59:84:b4:df:fd:60:46:10:66: 6c:07:7b:6f:f6:a3:cb:34:bf:d6:5f:44:13:a5:64: e3:a8:ea:71:69:89:8d:84:01:f1:f9:3c:85:79:d7: ba:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:1F:43:99:E2:F1:16:AE:02:CF:EF:67:90:70:F1:53:B0:BA:A7:48 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.9.0/24 Signature Algorithm: sha256WithRSAEncryption 06:0a:0d:72:f7:ec:a9:9a:4a:1c:1c:08:aa:70:0e:fb:5b:3e: a9:ef:42:9e:21:39:da:ad:e9:f8:2a:c2:d1:49:8b:ac:9b:3b: 6c:7a:be:d8:c3:69:24:a5:75:57:fb:06:7e:d0:ca:76:3f:73: 08:a8:a0:59:91:07:7a:df:b0:77:ee:29:0b:22:10:67:ec:d0: db:5f:a1:c9:6d:94:e4:3d:e7:d4:a6:8a:c0:ff:3e:c5:62:6c: f9:b3:89:e2:98:67:78:3f:89:a3:6b:78:c8:64:98:a7:c8:ab: 6b:ff:59:9c:f4:63:d7:35:3d:4a:60:60:33:64:03:2e:b2:c6: 35:a7:93:ec:ec:14:ab:e1:41:86:28:26:2c:44:8d:b0:d7:db: 5e:18:3c:2a:83:c3:c6:c2:93:5d:d7:7a:79:2d:e7:9b:94:2a: 0c:fe:3a:89:d5:fd:20:22:b7:49:70:98:ae:fd:55:63:ad:bd: 5e:5b:03:ff:76:35:d3:fe:26:ea:04:5e:09:e6:34:a3:fd:59: 74:29:3c:4a:17:26:a7:1f:5f:19:88:cf:8c:b4:86:82:d2:fc: ee:25:fc:ab:bf:52:95:c9:78:13:b4:5d:13:e9:24:87:71:79: 8d:a8:1b:74:ed:3e:be:22:7e:5d:17:81:32:9f:4f:fc:ee:a4: 1d:12:aa:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeZvS8iBQWBjstX5nr37MgisJ25swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE5MDQwMDA2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzgxMDdlMzJlNTIwOWQ5MzZmOWJjYWI1MmRmOGY0OThj ODQzMDYwZjAyN2QwZWY0NWM0ZmEwOTc0OGU0NDljMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCROTCUhNEss7ck+XIJ2fmhG7gqf0OiQD6Xk26cgdAFLxBr UEhqp8D4NHe3vB6t9JZjUc8fu4l+5k6T3ZrhcgIM8SacI1R8Gx2TNt699n6tPPFb nRPBYCDUdhmM94h6RIEuuvD4NodDaaEvi4KN/PplXRaPZJoi+O12SHIuoi8WtHcC JI+Zh6P4oBeHFfU10S9ZwD2kZenLQMtoOzj7hq0+tqJOj08FZJkwNn3IUZDyHXDw e+PQjDygOuzQV4rJCO/BBIvbt0nGbaTGYAEFCoGbaJL2Pi9oclmEtN/9YEYQZmwH e2/2o8s0v9ZfRBOlZOOo6nFpiY2EAfH5PIV517qJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8B9DmeLxFq4Cz+9nkHDxU7C6p0gwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NmN2M4ZjRhLTA4MjctNDQ0Yi1iNmU0LTlhNDVjYTY5ZjYwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAkwDQYJKoZIhvcNAQELBQADggEBAAYKDXL37KmaShwcCKpwDvtbPqnv Qp4hOdqt6fgqwtFJi6ybO2x6vtjDaSSldVf7Bn7QynY/cwiooFmRB3rfsHfuKQsi EGfs0NtfocltlOQ959SmisD/PsVibPmzieKYZ3g/iaNreMhkmKfIq2v/WZz0Y9c1 PUpgYDNkAy6yxjWnk+zsFKvhQYYoJixEjbDX214YPCqDw8bCk13Xenkt55uUKgz+ OonV/SAit0lwmK79VWOtvV5bA/92NdP+JuoEXgnmNKP9WXQpPEoXJqcfXxmIz4y0 hoLS/O4l/Ku/UpXJeBO0XRPpJIdxeY2oG3TtPr4ifl0XgTKfT/zupB0Sqvk= -----END CERTIFICATE-----Generated at Sat Jun 13 08:14:41 2026 by rpki-client