$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa File: d4483609-fc6a-4bef-acf0-d2cead48822d.roa (raw, json) Hash identifier: 7xDvjqvv/TCZlMgPDFwbO/3Z7LCE3vCGwZcP81U7PZk= Subject key identifier: 98:A1:52:7D:44:A8:A2:F3:65:3B:48:13:D8:94:C6:26:2D:B2:E0:CF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 45A081B3244556BB6311F3F11C80E370D2E2FBE9 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa Signing time: Sun 17 May 2026 02:00:05 +0000 ROA not before: Sun 17 May 2026 02:00:05 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a0:81:b3:24:45:56:bb:63:11:f3:f1:1c:80:e3:70:d2:e2:fb:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 17 02:00:05 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=f30e1cf7d0ba9f2272d756cc6eb0e418a2c0acf6b0f725e0faa1e245cfd5ccc2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:0a:30:d3:06:64:16:13:1e:bf:63:46:5c: c5:f7:24:4c:fc:51:ba:82:f6:92:03:67:5a:0e:97: 3a:18:1a:ba:9b:7c:43:7f:df:b7:b1:cb:9b:40:10: a5:cc:b3:42:a8:dc:ce:bc:8d:81:75:b0:9d:24:81: 7d:b0:b2:50:8d:fc:3a:cb:c3:40:03:ea:c1:b7:86: d4:c5:ef:ad:29:2e:e2:e1:ea:ad:4f:ca:0c:a4:e8: be:61:a7:66:b4:13:cf:51:f5:e3:2b:c5:d1:8b:14: b7:e6:5c:69:d2:30:f0:e3:ff:87:b2:d0:d6:b3:a8: 73:80:d4:80:79:ab:f0:78:fe:93:55:82:7c:02:f1: 88:4d:b3:50:8e:0f:15:98:db:3e:72:d2:db:26:4f: b3:ae:4a:76:95:b9:91:6b:a3:ba:14:10:44:7b:6b: 47:e4:06:5e:94:80:72:d5:82:bf:a9:2c:78:f7:7f: 36:65:b9:e9:71:b0:66:ed:6d:fe:ad:05:e4:a6:d9: c8:89:a5:09:3f:8f:86:58:90:71:21:ff:99:e9:58: 34:16:ae:2e:2f:29:3a:d1:20:c6:e8:a9:8f:5c:79: 17:a5:79:bd:06:cb:e8:f1:02:b8:d3:08:0f:12:65: 54:4f:e8:ee:91:60:1f:f9:af:0d:31:be:8c:e1:bf: 6d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A1:52:7D:44:A8:A2:F3:65:3B:48:13:D8:94:C6:26:2D:B2:E0:CF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.39.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:3d:8a:78:5b:4e:6a:89:90:6c:c2:c5:aa:35:fa:fe:45:b6: 2a:29:c8:bb:42:42:d1:04:7c:ab:8e:ff:29:5a:3f:a3:bb:7c: ec:46:da:9b:9b:99:e6:44:5c:c9:2a:de:5c:77:c3:71:db:17: 83:5a:f1:0a:96:52:af:4d:fb:65:ad:86:5e:9c:f3:a2:ee:cb: b9:20:f6:ef:36:21:c6:8c:93:e7:67:50:9e:1e:b3:90:3f:66: 45:b5:93:19:98:88:c6:ba:a4:a9:de:4f:6e:fa:9c:9e:db:70: 50:75:57:e1:23:14:51:24:47:bc:1e:99:3e:8e:0a:c1:21:f0: 0d:ea:bc:32:6e:49:aa:a9:81:5b:64:98:43:d7:b0:fc:8b:9d: 34:6d:5d:a9:11:36:d1:81:7c:7d:07:9b:c8:52:67:59:57:cb: 0c:26:b3:5d:d9:d0:7b:3e:c8:f4:81:4c:25:34:5f:6e:54:e1: 3e:0f:95:d3:ad:ef:3d:65:b9:a4:76:b2:df:5e:8f:3b:9d:8a: 1a:08:31:ef:3f:19:81:a5:5c:bb:d0:4b:2d:99:02:1a:56:5e: 25:7b:a0:79:5e:f3:60:c2:23:a5:ca:7f:c7:3c:2e:31:c4:13: 85:dc:ff:f4:71:dc:38:a9:a7:23:8a:d6:51:9f:94:75:fe:93: b9:cb:e3:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURaCBsyRFVrtjEfPxHIDjcNLi++kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE3MDIwMDA1WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzBlMWNmN2QwYmE5ZjIyNzJkNzU2Y2M2ZWIwZTQxOGEy YzBhY2Y2YjBmNzI1ZTBmYWExZTI0NWNmZDVjY2MyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4HAow0wZkFhMev2NGXMX3JEz8UbqC9pIDZ1oOlzoYGrqb fEN/37exy5tAEKXMs0Ko3M68jYF1sJ0kgX2wslCN/DrLw0AD6sG3htTF760pLuLh 6q1Pygyk6L5hp2a0E89R9eMrxdGLFLfmXGnSMPDj/4ey0NazqHOA1IB5q/B4/pNV gnwC8YhNs1CODxWY2z5y0tsmT7OuSnaVuZFro7oUEER7a0fkBl6UgHLVgr+pLHj3 fzZluelxsGbtbf6tBeSm2ciJpQk/j4ZYkHEh/5npWDQWri4vKTrRIMboqY9ceRel eb0Gy+jxArjTCA8SZVRP6O6RYB/5rw0xvozhv20rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmKFSfUSoovNlO0gT2JTGJi2y4M8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Q0NDgzNjA5LWZjNmEtNGJlZi1hY2YwLWQyY2VhZDQ4ODIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCcwDQYJKoZIhvcNAQELBQADggEBAI09inhbTmqJkGzCxao1+v5Ftiop yLtCQtEEfKuO/ylaP6O7fOxG2pubmeZEXMkq3lx3w3HbF4Na8QqWUq9N+2Wthl6c 86Luy7kg9u82IcaMk+dnUJ4es5A/ZkW1kxmYiMa6pKneT276nJ7bcFB1V+EjFFEk R7wemT6OCsEh8A3qvDJuSaqpgVtkmEPXsPyLnTRtXakRNtGBfH0Hm8hSZ1lXywwm s13Z0Hs+yPSBTCU0X25U4T4PldOt7z1luaR2st9ejzudihoIMe8/GYGlXLvQSy2Z AhpWXiV7oHle82DCI6XKf8c8LjHEE4Xc//Rx3DippyOK1lGflHX+k7nL44U= -----END CERTIFICATE-----Generated at Sat Jun 13 08:19:07 2026 by rpki-client