$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa File: dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa (raw, json) Hash identifier: WSRCY88VK+3OlgO40KL+sFUnfcKBJLqUppYN+nAInBE= Subject key identifier: CE:93:36:D8:91:F7:9C:DA:D0:D3:BA:E8:90:AA:BD:8A:E3:C1:49:85 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 421E97480106BA810F339DB5A27038183B9E3CBD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa Signing time: Sat 28 Feb 2026 01:10:04 +0000 ROA not before: Sat 28 Feb 2026 01:10:04 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:1e:97:48:01:06:ba:81:0f:33:9d:b5:a2:70:38:18:3b:9e:3c:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 28 01:10:04 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=32072c51e6e0bc489542f5ce5150f229288913c22095378e1fba1925a3ee518e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8f:ad:b1:01:ab:8d:75:66:71:03:82:db:76: fc:e7:e9:53:1d:ec:3e:d3:ff:a8:43:45:3b:d7:9e: 6b:61:22:3d:81:9c:4b:0a:06:63:f5:2a:47:7c:95: 28:65:de:7c:c2:10:54:cd:b4:51:8d:e2:e3:8a:8c: f3:94:69:34:be:85:4c:16:02:ac:00:2f:41:81:42: 05:ae:55:2b:7c:3f:9d:97:35:09:e1:44:99:89:d8: 1a:8a:f3:83:95:ee:39:54:6e:70:ae:20:c1:d1:02: 29:17:ba:c5:bb:92:7a:27:6f:46:78:ce:11:37:d8: 1d:ab:f7:3e:6d:a0:10:72:06:07:5b:95:57:47:56: 42:4a:f2:fa:77:e2:39:5c:23:a7:1f:c4:85:30:6d: 90:3e:31:83:a2:76:62:e7:f7:69:b8:44:ba:af:54: 8d:fd:8d:34:20:e1:e7:14:d3:d0:29:77:24:75:b5: 6a:c4:df:ac:4d:cc:1c:81:a7:39:92:3a:15:af:14: 85:d0:0e:8b:57:98:37:cb:85:bd:00:30:ee:72:c9: 85:ef:15:f5:df:d7:72:d1:04:27:88:b7:3f:03:98: 82:48:a7:1a:aa:05:7f:bf:1d:1a:bf:63:f4:19:ad: 00:ff:5f:43:a7:b2:0e:ab:42:02:93:47:00:9e:6a: 64:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:93:36:D8:91:F7:9C:DA:D0:D3:BA:E8:90:AA:BD:8A:E3:C1:49:85 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.14.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:56:eb:d9:75:dd:ea:e5:af:9c:08:47:15:a6:7c:13:37:bc: 61:f1:e8:fd:89:bf:03:1c:bd:5f:02:63:52:d0:fc:7e:b1:97: 7e:bf:5f:e2:ce:ff:6e:28:82:26:40:9b:f2:74:7a:67:3a:18: 23:0d:b1:94:aa:a3:6c:97:d9:33:63:80:7a:94:84:39:5a:50: 32:3f:4f:b9:cd:ad:a1:b7:aa:61:01:15:ab:8a:82:34:a0:07: 85:69:cd:37:61:3d:38:b3:e1:90:ed:ca:44:62:8f:c6:a4:61: f2:3a:b2:01:a2:a1:57:ad:ac:87:da:f9:01:74:e1:30:86:7c: e2:b6:26:d2:d9:61:b3:a5:ea:e2:61:fa:33:39:da:6f:73:16: 63:6f:8e:e4:16:a6:f3:09:ed:52:55:cf:bf:01:50:01:11:3c: 8c:cf:b0:21:1e:1a:21:e7:2d:e5:4a:69:71:34:1c:b0:5f:9a: f9:08:c3:9a:68:16:d4:1a:ea:24:6c:b9:b6:e8:d8:a7:6c:1e: cd:ef:f1:27:2d:ef:14:5c:83:06:0c:28:f9:03:1e:ea:06:1b: d6:a6:72:d7:cf:8c:56:2c:12:4f:0d:0d:3a:d2:aa:fe:bf:47: 48:95:c5:61:99:5d:cc:6e:1c:eb:44:f0:ec:8e:54:9b:5b:36: 13:18:b8:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQh6XSAEGuoEPM521onA4GDuePL0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI4MDExMDA0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjA3MmM1MWU2ZTBiYzQ4OTU0MmY1Y2U1MTUwZjIyOTI4 ODkxM2MyMjA5NTM3OGUxZmJhMTkyNWEzZWU1MThlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwj62xAauNdWZxA4Lbdvzn6VMd7D7T/6hDRTvXnmthIj2B nEsKBmP1Kkd8lShl3nzCEFTNtFGN4uOKjPOUaTS+hUwWAqwAL0GBQgWuVSt8P52X NQnhRJmJ2BqK84OV7jlUbnCuIMHRAikXusW7knonb0Z4zhE32B2r9z5toBByBgdb lVdHVkJK8vp34jlcI6cfxIUwbZA+MYOidmLn92m4RLqvVI39jTQg4ecU09ApdyR1 tWrE36xNzByBpzmSOhWvFIXQDotXmDfLhb0AMO5yyYXvFfXf13LRBCeItz8DmIJI pxqqBX+/HRq/Y/QZrQD/X0Onsg6rQgKTRwCeamQXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzpM22JH3nNrQ07rokKq9iuPBSYUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RkNzJiMWIzLWJmYzktNDViZi04N2RjLWIwZTkwOTM3ZjE5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYA4wDQYJKoZIhvcNAQELBQADggEBAH5W69l13erlr5wIRxWmfBM3vGHx 6P2JvwMcvV8CY1LQ/H6xl36/X+LO/24ogiZAm/J0emc6GCMNsZSqo2yX2TNjgHqU hDlaUDI/T7nNraG3qmEBFauKgjSgB4VpzTdhPTiz4ZDtykRij8akYfI6sgGioVet rIfa+QF04TCGfOK2JtLZYbOl6uJh+jM52m9zFmNvjuQWpvMJ7VJVz78BUAERPIzP sCEeGiHnLeVKaXE0HLBfmvkIw5poFtQa6iRsubbo2KdsHs3v8Sct7xRcgwYMKPkD HuoGG9amctfPjFYsEk8NDTrSqv6/R0iVxWGZXcxuHOtE8OyOVJtbNhMYuCI= -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:18 2026 by rpki-client