$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa File: cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa (raw, json) Hash identifier: 3KLj/9B3a6fylscMRO2zv+vT7gXrgkEvLHaQvI7Khl0= Subject key identifier: F6:37:C6:D0:E8:0B:1A:4A:C9:56:E0:CC:87:3C:41:0C:73:42:E9:AE Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 790001C8AB9B663C4D21F3F19D49B20423C73678 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa Signing time: Sat 28 Feb 2026 01:00:05 +0000 ROA not before: Sat 28 Feb 2026 01:00:05 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:00:01:c8:ab:9b:66:3c:4d:21:f3:f1:9d:49:b2:04:23:c7:36:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 28 01:00:05 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=d736a46d598e378c44a273c6c4f92ea821b0866faafa03fa5fefff9d294f7ea5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0c:a4:8b:98:95:17:9c:5c:26:16:67:ab:8d: b8:3b:0d:57:bf:77:a5:6c:58:17:c4:74:4c:51:9a: 06:a2:7d:a6:f6:57:85:46:37:d0:17:bc:c3:9a:7e: dd:8d:66:d9:22:6c:d6:42:b4:23:02:af:0f:53:6f: ef:74:35:5d:2e:7a:ac:3d:23:58:fd:ea:c7:64:32: 16:4c:2a:06:2b:5f:84:88:de:ae:1d:21:27:d3:9f: 7e:52:38:d2:3f:e9:07:7d:83:8b:0a:ea:5b:df:21: 21:6f:d0:8f:c5:4a:29:e7:dc:5c:b0:eb:03:5e:1d: 0e:27:9d:ea:a8:5a:85:80:f3:2e:6f:92:fb:c6:98: f4:60:8f:80:a8:01:43:6d:df:f1:7a:3c:f5:01:25: be:99:5a:23:b9:2f:9f:7a:ef:b9:61:68:04:34:a5: 63:8c:7c:30:eb:97:9d:a5:0e:9d:6c:b2:0d:9a:6b: 73:9b:d7:f5:f5:bf:33:8c:fe:2d:9d:d0:86:b7:44: bb:7e:45:c8:24:d2:67:8b:55:ba:87:4b:b1:04:01: 61:05:15:f7:ae:c6:87:2a:73:f9:33:1a:df:ac:ed: 60:a1:8b:32:62:6f:14:a1:96:57:35:42:5c:f4:df: 54:1d:99:ab:7c:6e:c4:b7:8f:2c:7a:84:51:37:fa: 5a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:37:C6:D0:E8:0B:1A:4A:C9:56:E0:CC:87:3C:41:0C:73:42:E9:AE X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cf7c8f4a-0827-444b-b6e4-9a45ca69f600.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.9.0/24 Signature Algorithm: sha256WithRSAEncryption 77:fd:8b:63:21:e0:bc:cc:6c:15:67:bc:63:30:38:ce:3c:db: b0:9e:a3:ab:38:38:1a:4c:46:a6:a9:fd:63:c7:2e:d3:bb:b3: d3:e6:03:64:98:66:ab:ba:a7:00:7c:21:f2:fd:b9:9f:5d:34: 4e:ca:c9:60:b3:e9:88:ee:cb:91:12:b1:a8:7c:e9:23:4b:10: d6:4d:9d:0f:ad:fe:02:08:d3:19:e0:9e:8c:fc:7c:52:62:a6: 3c:de:b9:e5:63:26:cc:d2:ed:65:b2:e6:66:b6:a5:31:5d:64: 9a:4b:2b:84:ca:2a:42:ff:2d:d1:5f:bb:ff:9f:6c:c5:15:03: 44:28:cc:cf:cc:d6:81:f6:14:63:08:c6:a1:96:e0:a5:4b:be: 60:b3:51:c0:44:7f:04:40:0f:bd:c0:1c:40:c0:e1:bd:dd:e5: a2:6f:66:df:3c:e7:98:d7:f6:e9:d1:dd:48:3d:f2:35:92:30: 6a:b7:b2:e8:e2:02:a7:04:77:5e:94:e1:28:0c:cd:35:f2:c8: 72:26:c4:67:db:16:e4:04:01:f6:f4:d6:5b:27:21:0f:09:0f: ba:18:2d:e7:c4:05:96:78:35:5b:d6:ed:9e:ad:6e:2d:46:0c: 61:48:2a:8e:41:08:84:02:61:c7:07:fa:e9:ad:ad:0a:b4:42: 4b:47:f6:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeQAByKubZjxNIfPxnUmyBCPHNngwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI4MDEwMDA1WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzM2YTQ2ZDU5OGUzNzhjNDRhMjczYzZjNGY5MmVhODIx YjA4NjZmYWFmYTAzZmE1ZmVmZmY5ZDI5NGY3ZWE1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIDKSLmJUXnFwmFmerjbg7DVe/d6VsWBfEdExRmgaifab2 V4VGN9AXvMOaft2NZtkibNZCtCMCrw9Tb+90NV0ueqw9I1j96sdkMhZMKgYrX4SI 3q4dISfTn35SONI/6Qd9g4sK6lvfISFv0I/FSinn3Fyw6wNeHQ4nneqoWoWA8y5v kvvGmPRgj4CoAUNt3/F6PPUBJb6ZWiO5L59677lhaAQ0pWOMfDDrl52lDp1ssg2a a3Ob1/X1vzOM/i2d0Ia3RLt+Rcgk0meLVbqHS7EEAWEFFfeuxocqc/kzGt+s7WCh izJibxShllc1Qlz031Qdmat8bsS3jyx6hFE3+lpnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9jfG0OgLGkrJVuDMhzxBDHNC6a4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NmN2M4ZjRhLTA4MjctNDQ0Yi1iNmU0LTlhNDVjYTY5ZjYwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAkwDQYJKoZIhvcNAQELBQADggEBAHf9i2Mh4LzMbBVnvGMwOM4827Ce o6s4OBpMRqap/WPHLtO7s9PmA2SYZqu6pwB8IfL9uZ9dNE7KyWCz6Yjuy5ESsah8 6SNLENZNnQ+t/gII0xngnoz8fFJipjzeueVjJszS7WWy5ma2pTFdZJpLK4TKKkL/ LdFfu/+fbMUVA0QozM/M1oH2FGMIxqGW4KVLvmCzUcBEfwRAD73AHEDA4b3d5aJv Zt8855jX9unR3Ug98jWSMGq3sujiAqcEd16U4SgMzTXyyHImxGfbFuQEAfb01lsn IQ8JD7oYLefEBZZ4NVvW7Z6tbi1GDGFIKo5BCIQCYccH+umtrQq0QktH9os= -----END CERTIFICATE-----Generated at Mon Mar 2 01:02:01 2026 by rpki-client