$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa File: decfa8a2-ad50-432e-96a7-cba83d9032f9.roa (raw, json) Hash identifier: L6XjrDS5V326rb/vJYHdR8A5xln8RU+dUUGeTXy9/WE= Subject key identifier: DA:7C:A8:7F:DB:98:85:AF:F9:2F:DE:55:6A:EA:D5:89:65:78:F4:10 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 058302D12359ECDB8B78E32BC8D89C97621889C8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa Signing time: Tue 19 May 2026 04:00:06 +0000 ROA not before: Tue 19 May 2026 04:00:06 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:83:02:d1:23:59:ec:db:8b:78:e3:2b:c8:d8:9c:97:62:18:89:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 19 04:00:06 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=c03652e3aa04ad2a172ba63b0defa6149369d717b8c489e451a11b5c10ab3281, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:09:c4:04:21:9e:85:43:35:03:e4:f0:73:53: 72:d0:bd:2a:ce:4b:24:f3:a1:76:20:27:ec:8b:2a: 19:9c:1e:fd:53:2c:fe:f9:44:23:c9:ac:8f:bf:a9: a7:5c:e7:17:bd:8e:07:f6:52:a7:4a:cd:25:28:99: 36:1a:fc:fa:61:00:b6:d1:af:0e:fa:34:12:81:1b: e9:f0:35:26:24:6b:01:2b:b8:4d:ae:c4:3e:17:a3: f6:01:9a:1a:32:87:22:7a:96:3f:61:de:eb:ba:5d: 1a:cd:34:7d:bc:68:16:ad:7e:66:ad:e9:4c:a1:ed: 7f:81:76:70:b4:69:cc:d6:59:b2:20:4d:14:62:10: bb:a1:e5:b8:91:4d:ea:5e:f8:cb:ba:a7:7f:98:a3: 88:de:75:b4:b4:66:6f:a2:54:6a:56:a3:ef:69:f8: 48:07:52:c2:e5:73:92:68:6a:21:6e:ef:92:5a:91: ca:2a:4e:4f:ea:a0:e8:ce:fb:e6:c4:7d:78:71:3f: 55:fa:9d:06:f5:69:f1:7a:94:c9:33:e3:b6:91:9b: 44:2e:9d:8c:d3:48:0e:c4:d0:dd:ab:8f:92:5b:91: 6e:9f:65:65:36:87:8e:94:8f:b8:ba:72:8b:0d:c7: c5:c7:82:4e:e9:23:ab:31:c4:cc:35:9a:57:3d:f3: cc:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7C:A8:7F:DB:98:85:AF:F9:2F:DE:55:6A:EA:D5:89:65:78:F4:10 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.9.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:a5:1e:79:39:5a:25:f8:29:09:60:e0:31:21:66:65:73:74: b3:15:69:b1:59:5c:96:7c:73:eb:7a:b5:9c:38:6b:45:a5:56: 95:85:12:ff:49:b2:65:63:cc:02:da:4d:21:94:9c:a1:5d:86: d7:4b:33:01:8f:54:c8:3e:e8:9d:67:c7:0c:86:44:35:37:e1: c0:a8:33:80:6f:75:2d:0d:77:e7:72:8b:2d:ea:fc:d3:4d:78: 62:c7:d6:91:5d:06:1d:51:f1:b3:03:18:7c:53:33:7c:9e:8d: d9:2c:6d:ce:5d:ee:4a:cb:26:ff:15:0a:dc:81:48:47:59:e2: 5f:99:18:9d:62:a0:ab:84:cf:e4:c9:aa:f0:61:b0:cd:a5:07: 66:6c:d0:7d:d8:73:13:81:77:9e:c7:e4:2b:fe:5e:26:58:c0: da:30:a6:99:e1:2d:fa:7c:af:67:87:7c:ec:e9:bc:bb:0b:5b: de:79:37:6c:53:63:e9:ed:15:2b:a7:15:b2:01:63:4e:01:8b: e8:c2:3b:3f:4f:fd:33:35:d0:14:22:4f:2a:22:2a:35:37:98: af:d7:fd:bd:89:bc:8e:ff:c9:a1:6f:cf:54:2d:33:d6:61:e5: 90:7b:3d:9f:4e:c9:8c:00:89:e7:b5:2c:f6:f5:4e:31:a8:79: ec:d5:a8:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBYMC0SNZ7NuLeOMryNicl2IYicgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE5MDQwMDA2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDM2NTJlM2FhMDRhZDJhMTcyYmE2M2IwZGVmYTYxNDkz NjlkNzE3YjhjNDg5ZTQ1MWExMWI1YzEwYWIzMjgxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjCcQEIZ6FQzUD5PBzU3LQvSrOSyTzoXYgJ+yLKhmcHv1T LP75RCPJrI+/qadc5xe9jgf2UqdKzSUomTYa/PphALbRrw76NBKBG+nwNSYkawEr uE2uxD4Xo/YBmhoyhyJ6lj9h3uu6XRrNNH28aBatfmat6Uyh7X+BdnC0aczWWbIg TRRiELuh5biRTepe+Mu6p3+Yo4jedbS0Zm+iVGpWo+9p+EgHUsLlc5JoaiFu75Ja kcoqTk/qoOjO++bEfXhxP1X6nQb1afF6lMkz47aRm0QunYzTSA7E0N2rj5JbkW6f ZWU2h46Uj7i6cosNx8XHgk7pI6sxxMw1mlc988wRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2nyof9uYha/5L95VaurViWV49BAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RlY2ZhOGEyLWFkNTAtNDMyZS05NmE3LWNiYTgzZDkwMzJmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAkwDQYJKoZIhvcNAQELBQADggEBAGqlHnk5WiX4KQlg4DEhZmVzdLMV abFZXJZ8c+t6tZw4a0WlVpWFEv9JsmVjzALaTSGUnKFdhtdLMwGPVMg+6J1nxwyG RDU34cCoM4BvdS0Nd+dyiy3q/NNNeGLH1pFdBh1R8bMDGHxTM3yejdksbc5d7krL Jv8VCtyBSEdZ4l+ZGJ1ioKuEz+TJqvBhsM2lB2Zs0H3YcxOBd57H5Cv+XiZYwNow ppnhLfp8r2eHfOzpvLsLW955N2xTY+ntFSunFbIBY04Bi+jCOz9P/TM10BQiTyoi KjU3mK/X/b2JvI7/yaFvz1QtM9Zh5ZB7PZ9OyYwAiee1LPb1TjGoeezVqKY= -----END CERTIFICATE-----Generated at Sat Jun 13 06:53:14 2026 by rpki-client