$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa File: dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa (raw, json) Hash identifier: uzZPWe7ggCUc/pBj72Ywq/8kc4ePFqugkHSRL4d7iWg= Subject key identifier: B6:20:7D:2E:BC:2F:42:4B:97:33:7C:D7:02:39:90:E0:CB:A5:5D:5B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 754C1230327B3755DE627E38C45FB3F4288BCA6C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa Signing time: Tue 19 May 2026 04:00:27 +0000 ROA not before: Tue 19 May 2026 04:00:27 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4c:12:30:32:7b:37:55:de:62:7e:38:c4:5f:b3:f4:28:8b:ca:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 19 04:00:27 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=88228986eade63baed752629628b57f9859d7af3d1d8b9dc27d40ad150b17b59, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:81:16:0b:35:1a:47:f1:16:28:be:87:e5:d9: 56:30:77:40:36:c8:16:5f:ee:f4:7b:1d:59:ab:6d: 4a:fb:33:d6:fa:0f:86:d1:d5:56:6d:e3:d7:45:d2: 5b:7f:8f:88:03:85:69:6d:f0:ae:54:56:cb:ef:7f: be:47:ef:4f:80:28:5d:f4:51:9c:d9:de:62:c6:5b: c2:83:10:71:d1:a0:e5:11:f4:0c:8b:11:8b:d3:93: 2d:97:7e:45:0b:ef:8b:26:cd:da:a3:22:56:a6:d6: 27:8f:97:f2:9f:ce:3d:5e:68:8c:d8:a0:7e:d0:3a: 2d:1a:17:27:26:a8:09:ec:0b:16:ce:b0:60:25:77: 64:89:7f:29:ee:75:22:26:b7:d6:b2:91:88:af:4d: 4c:c4:4b:75:8e:4f:e8:bd:d1:bc:2f:9d:33:05:e9: de:87:9e:8f:bf:7a:2a:28:1f:2e:89:f2:5a:a7:99: 2a:e8:99:b1:6d:89:6b:aa:75:31:0a:e9:c9:1c:00: 72:2f:00:be:38:39:90:8a:1e:4a:bb:9a:4d:98:56: 70:6b:50:5c:19:a2:41:55:a6:a1:84:89:9e:16:b3: d0:f8:7c:1f:3d:15:f4:5c:f5:9e:df:b4:a3:0e:f4: 11:0d:76:56:7b:12:5b:7b:08:9d:91:0f:19:f7:17: a6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:20:7D:2E:BC:2F:42:4B:97:33:7C:D7:02:39:90:E0:CB:A5:5D:5B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.14.0/24 Signature Algorithm: sha256WithRSAEncryption 59:d7:e2:38:03:3c:a1:62:3b:ef:ac:99:ca:c5:1b:00:85:60: 7a:62:cf:f5:27:de:46:f2:f5:d2:95:d0:5c:e1:0e:85:a0:74: 2e:80:3e:34:f1:ec:00:fb:fd:3c:0d:79:20:d1:b8:94:ea:4e: d3:63:53:fe:d0:d3:3d:d3:91:7b:57:91:2e:85:ab:ea:3f:23: cf:6f:1b:2e:1c:ea:b9:90:2c:a9:c5:a8:41:e1:20:e4:ef:29: dc:f9:5f:1a:af:aa:5b:29:f9:92:5c:ba:4a:ef:53:32:64:c3: db:c7:4b:b1:0a:b0:c8:c3:91:32:40:36:1e:22:eb:e7:06:bd: 8a:fc:a3:a6:48:81:85:d6:65:b4:1b:d8:f1:0d:1d:90:b3:7f: 11:da:94:6e:fc:c9:bb:97:aa:3b:c9:27:13:ab:45:48:f3:0b: 5e:1e:b5:51:75:f3:0e:a7:b0:f7:5f:5d:bc:35:e0:95:f9:bd: 42:74:30:e3:9e:cf:d7:60:55:e1:1a:ba:21:e9:cf:63:de:93: 0f:a3:11:c1:eb:85:a8:f5:ab:b4:26:93:72:3f:e7:81:a5:c5: 7b:7c:84:87:80:76:cd:f6:90:b1:33:79:8c:df:44:df:9e:f8: 28:ce:e6:48:af:54:f9:dd:e3:4e:36:2f:37:62:05:f3:67:6b: 69:f8:32:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdUwSMDJ7N1XeYn44xF+z9CiLymwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE5MDQwMDI3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODIyODk4NmVhZGU2M2JhZWQ3NTI2Mjk2MjhiNTdmOTg1 OWQ3YWYzZDFkOGI5ZGMyN2Q0MGFkMTUwYjE3YjU5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4gRYLNRpH8RYovofl2VYwd0A2yBZf7vR7HVmrbUr7M9b6 D4bR1VZt49dF0lt/j4gDhWlt8K5UVsvvf75H70+AKF30UZzZ3mLGW8KDEHHRoOUR 9AyLEYvTky2XfkUL74smzdqjIlam1iePl/Kfzj1eaIzYoH7QOi0aFycmqAnsCxbO sGAld2SJfynudSImt9aykYivTUzES3WOT+i90bwvnTMF6d6Hno+/eiooHy6J8lqn mSrombFtiWuqdTEK6ckcAHIvAL44OZCKHkq7mk2YVnBrUFwZokFVpqGEiZ4Ws9D4 fB89FfRc9Z7ftKMO9BENdlZ7Elt7CJ2RDxn3F6bjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtiB9LrwvQkuXM3zXAjmQ4MulXVswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RkNzJiMWIzLWJmYzktNDViZi04N2RjLWIwZTkwOTM3ZjE5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYA4wDQYJKoZIhvcNAQELBQADggEBAFnX4jgDPKFiO++smcrFGwCFYHpi z/Un3kby9dKV0FzhDoWgdC6APjTx7AD7/TwNeSDRuJTqTtNjU/7Q0z3TkXtXkS6F q+o/I89vGy4c6rmQLKnFqEHhIOTvKdz5Xxqvqlsp+ZJcukrvUzJkw9vHS7EKsMjD kTJANh4i6+cGvYr8o6ZIgYXWZbQb2PENHZCzfxHalG78ybuXqjvJJxOrRUjzC14e tVF18w6nsPdfXbw14JX5vUJ0MOOez9dgVeEauiHpz2Pekw+jEcHrhaj1q7Qmk3I/ 54GlxXt8hIeAds32kLEzeYzfRN+e+CjO5kivVPnd4042LzdiBfNna2n4MjA= -----END CERTIFICATE-----Generated at Sat Jun 13 09:27:33 2026 by rpki-client