$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa File: dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa (raw, json) Hash identifier: KKPHQbnx5+QykJeWdfdj5YN2nDbeVfHJxlD4CnNlA0k= Subject key identifier: D1:5C:C6:F9:1F:AB:45:FD:F5:DA:05:1A:BA:01:E1:FC:1E:31:90:C9 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 36372F3738D8936A704D0B38A3BD4E96B55E2B01 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa Signing time: Tue 17 Feb 2026 02:50:16 +0000 ROA not before: Tue 17 Feb 2026 02:50:16 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:37:2f:37:38:d8:93:6a:70:4d:0b:38:a3:bd:4e:96:b5:5e:2b:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 17 02:50:16 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=f05a5ea680945fe618a386f665576a5a65b55f581c352f4cf61f9eeffd4a412c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8d:60:e3:d0:27:89:cd:4e:fe:2d:76:b8:d2: 74:80:9a:82:2b:a9:2a:13:a1:b9:80:3d:ce:84:38: 6b:78:c0:f7:be:33:81:0d:b3:ca:70:d0:24:08:5d: 8d:37:e5:c6:a7:25:f5:5d:45:41:fd:d9:bc:27:1a: 8d:24:08:1d:18:cf:64:03:2c:b8:ca:1a:ff:10:8f: b5:12:24:08:5b:36:60:7d:b8:24:bd:2a:ec:59:12: c6:62:10:51:ac:0b:7e:87:e1:46:c2:32:69:54:56: 04:9f:57:01:1c:7e:9f:cf:50:ae:8e:5b:e2:b3:d3: 71:d7:c9:03:85:f5:81:75:0d:73:31:2b:d3:5d:ac: ee:f5:cd:fc:2b:a4:15:e7:e5:b9:cd:04:44:f9:a8: 2c:03:e5:61:5b:b9:46:ec:3e:57:1f:c3:e4:c5:e2: 02:3d:22:f4:81:db:31:47:69:28:1c:9d:7b:c9:3f: 0d:d9:40:4d:c7:51:06:7f:f9:1b:10:85:ea:d2:98: 2c:e6:c1:61:95:94:c6:f4:40:b2:ff:09:38:24:2c: 44:45:0d:42:5d:b3:c6:06:4f:2b:b4:5e:1e:9a:8f: 80:93:f1:b0:84:29:66:00:16:a7:2f:56:1d:3b:b6: a6:78:35:a0:d9:2d:ef:5e:92:c0:e9:9e:3d:23:17: aa:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:5C:C6:F9:1F:AB:45:FD:F5:DA:05:1A:BA:01:E1:FC:1E:31:90:C9 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:ab:9b:5a:bf:55:7e:26:c2:d5:68:11:64:8b:f2:fb:0c:3a: c8:2e:93:40:ab:66:ea:5c:b5:ed:b0:74:86:32:59:49:e4:11: 7c:ee:9c:fb:b7:64:64:c8:03:25:5e:0b:d1:13:cb:d7:8f:f0: a9:bf:54:f8:49:0a:bc:e0:05:f9:a8:06:3c:47:dd:d2:53:cd: 6c:5e:38:55:54:b0:a6:9f:d5:5c:fa:bc:22:97:e3:86:1a:ba: 5e:d5:2b:fa:9e:bb:5b:13:e2:90:ae:7e:50:af:29:35:23:da: 0f:aa:6e:02:be:e5:72:9b:b9:26:a8:00:43:d7:f7:88:b8:54: 84:84:d0:05:7c:49:ba:04:8f:66:a0:97:df:07:36:07:00:6c: 7b:6d:8e:0c:ee:08:b7:f7:c0:82:04:d6:94:25:37:4a:64:0d: 7a:57:52:22:d0:37:7d:b9:ca:4f:58:51:d3:cc:6e:5b:8f:5a: 9f:48:aa:21:f6:e9:92:8c:57:c0:c4:ae:1f:e7:a4:dc:13:15: c6:aa:14:e2:36:a6:8c:1b:45:a6:b7:62:d6:9c:71:69:f2:24: 34:eb:80:69:9e:f8:15:76:84:2a:49:a8:4c:f0:99:0f:b7:a9: 41:cb:e4:1c:e8:e9:3a:55:d9:23:88:55:e6:31:57:62:a7:69: df:e0:e5:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNjcvNzjYk2pwTQs4o71OlrVeKwEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjE3MDI1MDE2WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDVhNWVhNjgwOTQ1ZmU2MThhMzg2ZjY2NTU3NmE1YTY1 YjU1ZjU4MWMzNTJmNGNmNjFmOWVlZmZkNGE0MTJjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXjWDj0CeJzU7+LXa40nSAmoIrqSoTobmAPc6EOGt4wPe+ M4ENs8pw0CQIXY035canJfVdRUH92bwnGo0kCB0Yz2QDLLjKGv8Qj7USJAhbNmB9 uCS9KuxZEsZiEFGsC36H4UbCMmlUVgSfVwEcfp/PUK6OW+Kz03HXyQOF9YF1DXMx K9NdrO71zfwrpBXn5bnNBET5qCwD5WFbuUbsPlcfw+TF4gI9IvSB2zFHaSgcnXvJ Pw3ZQE3HUQZ/+RsQherSmCzmwWGVlMb0QLL/CTgkLERFDUJds8YGTyu0Xh6aj4CT 8bCEKWYAFqcvVh07tqZ4NaDZLe9eksDpnj0jF6oBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0VzG+R+rRf312gUaugHh/B4xkMkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RjODIyYzAxLTE3MTctNGU0NS1hNWE4LTNhNWRjOTE2Yzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAHyrm1q/VX4mwtVoEWSL8vsMOsgu k0CrZupcte2wdIYyWUnkEXzunPu3ZGTIAyVeC9ETy9eP8Km/VPhJCrzgBfmoBjxH 3dJTzWxeOFVUsKaf1Vz6vCKX44Yaul7VK/qeu1sT4pCuflCvKTUj2g+qbgK+5XKb uSaoAEPX94i4VISE0AV8SboEj2agl98HNgcAbHttjgzuCLf3wIIE1pQlN0pkDXpX UiLQN325yk9YUdPMbluPWp9IqiH26ZKMV8DErh/npNwTFcaqFOI2powbRaa3Ytac cWnyJDTrgGme+BV2hCpJqEzwmQ+3qUHL5Bzo6TpV2SOIVeYxV2Knad/g5S0= -----END CERTIFICATE-----Generated at Mon Mar 2 01:02:11 2026 by rpki-client