$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e4dfa680-e138-4cd2-9f92-4de31145aeb6.roa File: e4dfa680-e138-4cd2-9f92-4de31145aeb6.roa (raw, json) Hash identifier: 6V8CfyL+GtNLeYRtbkj9n/Mgy2y0ube4llgKgQbTIRo= Subject key identifier: 6C:08:A9:05:3D:EA:16:62:2E:E9:22:FA:63:48:B0:86:7F:6D:9E:AA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 58947BB010B3400B5FF44804D90C8195C58CA70F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e4dfa680-e138-4cd2-9f92-4de31145aeb6.roa Signing time: Tue 24 Feb 2026 00:10:29 +0000 ROA not before: Tue 24 Feb 2026 00:10:29 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:94:7b:b0:10:b3:40:0b:5f:f4:48:04:d9:0c:81:95:c5:8c:a7:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 24 00:10:29 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=8d4232604c9f341ee1e0ef99f1545fdd2b3ed792249e51b1801a95cd2c208ab1, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3f:f7:e1:7b:66:eb:db:2a:b9:3c:19:dd:67: e3:71:11:90:f3:8b:4d:63:08:23:ef:25:e8:02:e3: 73:f3:a2:b5:fc:c6:b2:0b:68:96:47:eb:ee:fe:75: c8:53:0f:15:65:8d:2d:5e:50:26:c0:09:8f:fc:59: e5:ad:49:34:ab:bf:96:07:28:4f:c9:06:10:88:41: c6:be:40:b2:32:02:32:2d:a5:c6:c2:ad:1b:77:6e: 9a:17:cf:7d:43:5c:63:2d:73:f5:31:ef:4e:ce:30: 25:c7:d0:9c:13:45:f8:74:7f:aa:b3:7a:23:da:9d: 13:95:e0:cd:f8:41:a8:50:be:c5:1d:f3:5f:59:7b: 3c:26:a3:97:d1:fe:52:0e:94:40:4e:6a:2e:b9:10: 0f:b9:ba:0e:92:7d:69:a9:ee:2f:29:02:b7:eb:f5: 00:8b:76:9f:db:df:f7:32:a6:8a:c2:97:a5:64:3c: 75:b5:56:2c:77:65:06:49:fd:b3:2b:07:79:8d:f1: 5a:22:34:c9:0a:4a:57:ed:8c:64:5c:2f:c0:9a:8d: 2f:c5:7d:c6:86:0e:dd:38:27:a8:a7:a3:97:13:97: 1f:12:17:f9:1f:84:b6:0d:65:c7:3e:61:64:53:1e: c2:0b:62:90:8c:fb:57:24:f6:a8:55:68:27:56:9c: 4f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:08:A9:05:3D:EA:16:62:2E:E9:22:FA:63:48:B0:86:7F:6D:9E:AA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e4dfa680-e138-4cd2-9f92-4de31145aeb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.18.0/23 Signature Algorithm: sha256WithRSAEncryption 08:cc:0f:68:76:e0:78:78:e8:46:1f:3a:d3:fe:ff:4b:f8:f8: 8c:99:cf:41:54:be:59:03:2f:ba:45:ea:df:cf:3a:cd:19:79: 4d:fa:c9:69:67:ee:29:f0:ae:76:d7:4a:db:ac:d5:77:19:f7: db:28:42:0b:34:88:9f:4e:aa:de:a7:bd:7f:70:e7:95:b9:5d: 8a:86:24:ab:a8:61:0c:eb:e2:da:0d:53:29:3a:1e:9b:8d:75: c3:d0:04:76:60:99:59:03:3e:9c:31:81:8f:c5:ef:8d:3e:55: 4c:13:73:fc:e7:f6:83:1a:5a:f5:ad:a1:28:51:5a:53:30:99: 5a:bf:a4:fe:b5:e4:73:61:4f:a1:73:a4:35:0e:c1:f2:2d:fa: f3:46:d0:73:67:c7:44:29:85:94:e7:94:ea:37:eb:f8:3d:69: 74:a2:86:4a:ef:ab:a4:00:80:52:46:c7:f8:2f:6f:6a:c9:f8: e3:bb:17:6f:fe:53:17:e6:73:ce:77:a0:db:5e:0a:1f:6a:03: 09:fa:8e:3c:82:16:71:52:62:d9:37:db:af:b3:40:4d:e2:df: 95:7f:40:a5:2c:7c:72:ee:f3:0e:36:76:5f:3a:dc:02:47:e5: 5a:62:b5:1a:d4:31:e5:97:f7:d1:db:6a:e2:95:3a:d5:8c:6c: aa:ca:b0:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWJR7sBCzQAtf9EgE2QyBlcWMpw8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjI0MDAxMDI5WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDQyMzI2MDRjOWYzNDFlZTFlMGVmOTlmMTU0NWZkZDJi M2VkNzkyMjQ5ZTUxYjE4MDFhOTVjZDJjMjA4YWIxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyP/fhe2br2yq5PBndZ+NxEZDzi01jCCPvJegC43PzorX8 xrILaJZH6+7+dchTDxVljS1eUCbACY/8WeWtSTSrv5YHKE/JBhCIQca+QLIyAjIt pcbCrRt3bpoXz31DXGMtc/Ux707OMCXH0JwTRfh0f6qzeiPanROV4M34QahQvsUd 819Zezwmo5fR/lIOlEBOai65EA+5ug6SfWmp7i8pArfr9QCLdp/b3/cyporCl6Vk PHW1Vix3ZQZJ/bMrB3mN8VoiNMkKSlftjGRcL8CajS/FfcaGDt04J6ino5cTlx8S F/kfhLYNZcc+YWRTHsILYpCM+1ck9qhVaCdWnE9hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbAipBT3qFmIu6SL6Y0iwhn9tnqowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U0ZGZhNjgwLWUxMzgtNGNkMi05ZjkyLTRkZTMxMTQ1YWViNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBIwDQYJKoZIhvcNAQELBQADggEBAAjMD2h24Hh46EYfOtP+/0v4+IyZ z0FUvlkDL7pF6t/POs0ZeU36yWln7inwrnbXStus1XcZ99soQgs0iJ9Oqt6nvX9w 55W5XYqGJKuoYQzr4toNUyk6HpuNdcPQBHZgmVkDPpwxgY/F740+VUwTc/zn9oMa WvWtoShRWlMwmVq/pP615HNhT6FzpDUOwfIt+vNG0HNnx0QphZTnlOo36/g9aXSi hkrvq6QAgFJGx/gvb2rJ+OO7F2/+Uxfmc853oNteCh9qAwn6jjyCFnFSYtk326+z QE3i35V/QKUsfHLu8w42dl863AJH5VpitRrUMeWX99HbauKVOtWMbKrKsO4= -----END CERTIFICATE-----Generated at Sun Mar 1 23:34:37 2026 by rpki-client