$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa File: e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa (raw, json) Hash identifier: fIy5jUS1K+x+UAMyxPeZDg3K7VwVYIJm5M7htk+D4Ks= Subject key identifier: 58:9C:B3:6B:AD:BD:47:A3:16:DD:06:93:EE:F1:8D:29:B6:6B:C0:6F Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 036E485040C41C6BC97B220F9B44B103E32E591F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa Signing time: Tue 19 May 2026 04:00:07 +0000 ROA not before: Tue 19 May 2026 04:00:07 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:6e:48:50:40:c4:1c:6b:c9:7b:22:0f:9b:44:b1:03:e3:2e:59:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 19 04:00:07 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=00f604b0c6c739ebc67ed7cfe05f6d613bc9765220415ee581421df0f9c00db1, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:aa:4b:07:ab:89:78:25:c7:0b:fd:06:56:a1: f9:18:c9:ce:d5:4c:6b:20:47:df:fe:13:91:f1:a5: ec:ce:5e:e1:69:1c:fc:1b:a5:88:d9:ec:20:84:f1: 54:77:38:44:03:a4:b1:88:69:78:6b:3f:5d:b5:b8: 51:b9:69:38:b0:01:b6:5f:34:18:33:87:6a:e4:a3: ec:5c:d1:e9:16:8b:c6:2f:26:af:18:c0:5f:08:8d: ab:a5:8f:02:3d:34:54:11:f1:a7:d9:2f:44:ac:08: 81:d0:86:c1:c9:a3:52:de:68:70:8d:ce:3e:ed:1a: d5:8d:b4:34:45:b1:7c:38:c4:9f:2b:31:0d:97:6c: 68:43:5e:ab:b3:30:0b:ae:60:34:65:c9:45:0c:6f: c1:91:33:4c:40:6c:86:8f:73:29:ae:bb:f2:51:89: 12:3e:4b:40:9b:2a:00:e9:12:1e:96:da:84:b4:22: ba:fe:bf:52:e8:3a:ff:8a:67:42:8d:9e:96:e8:aa: 7d:19:82:2a:32:23:3b:65:95:a4:1c:65:ca:f5:33: d9:12:3e:b3:45:7f:ad:cc:72:30:34:bc:7b:26:45: 0b:f4:16:53:91:aa:fb:ed:37:f2:9b:e6:29:bc:1c: 65:83:27:df:bc:ff:e9:a3:2e:37:66:2f:af:f6:5e: 6f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:9C:B3:6B:AD:BD:47:A3:16:DD:06:93:EE:F1:8D:29:B6:6B:C0:6F X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 40:a0:64:5f:23:ae:67:6d:77:c8:7a:63:ec:d4:cd:f2:38:de: 80:6f:d5:6e:d1:8c:d5:07:5c:e9:fd:4d:22:6e:6e:99:b8:61: 1c:eb:60:46:c0:fb:4e:21:54:b0:ec:d4:fc:71:31:cc:8f:6a: 15:9c:d7:d4:48:98:e7:47:37:78:0c:c6:ac:12:7d:37:fa:11: 7f:ea:5f:c7:46:3d:6a:11:e6:9d:6a:39:37:47:91:b5:12:2b: f7:a4:03:7a:84:cc:54:29:c8:d1:2b:9d:1e:bc:31:1d:23:8e: e4:e6:27:b6:b1:3e:23:15:78:4a:a5:f1:fb:d9:0d:9f:09:01: 28:a3:85:8a:2c:b7:72:32:32:51:1e:46:7b:80:58:3c:ae:f8: 73:9c:d5:86:c0:1d:5c:f3:ef:51:3b:cc:b4:4c:56:51:d0:42: cb:29:61:74:27:48:82:a2:a5:33:13:de:76:5d:aa:a9:91:1a: d6:5b:85:f9:b4:4a:b3:a7:6e:37:dd:7e:97:07:63:48:96:31: 95:3b:5f:a9:88:23:26:ac:25:7f:b4:b5:da:85:86:2f:b4:af: 1c:f2:68:a9:22:24:d2:d2:58:47:80:93:c1:9c:3f:32:08:58: 1d:d6:9e:3c:d3:b6:36:3f:60:63:fb:48:34:0c:b6:00:f8:9b: 31:21:5a:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA25IUEDEHGvJeyIPm0SxA+MuWR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNTE5MDQwMDA3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGY2MDRiMGM2YzczOWViYzY3ZWQ3Y2ZlMDVmNmQ2MTNi Yzk3NjUyMjA0MTVlZTU4MTQyMWRmMGY5YzAwZGIxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkqksHq4l4JccL/QZWofkYyc7VTGsgR9/+E5HxpezOXuFp HPwbpYjZ7CCE8VR3OEQDpLGIaXhrP121uFG5aTiwAbZfNBgzh2rko+xc0ekWi8Yv Jq8YwF8IjauljwI9NFQR8afZL0SsCIHQhsHJo1LeaHCNzj7tGtWNtDRFsXw4xJ8r MQ2XbGhDXquzMAuuYDRlyUUMb8GRM0xAbIaPcymuu/JRiRI+S0CbKgDpEh6W2oS0 Irr+v1LoOv+KZ0KNnpboqn0ZgioyIztllaQcZcr1M9kSPrNFf63McjA0vHsmRQv0 FlORqvvtN/Kb5im8HGWDJ9+8/+mjLjdmL6/2Xm8PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWJyza629R6MW3QaT7vGNKbZrwG8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1YzFiOWI4LTk3ZjAtNDRlMC1hNGI1LTJmNmMyYTI1MzFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAECgZF8jrmdtd8h6Y+zUzfI43oBv 1W7RjNUHXOn9TSJubpm4YRzrYEbA+04hVLDs1PxxMcyPahWc19RImOdHN3gMxqwS fTf6EX/qX8dGPWoR5p1qOTdHkbUSK/ekA3qEzFQpyNErnR68MR0jjuTmJ7axPiMV eEql8fvZDZ8JASijhYost3IyMlEeRnuAWDyu+HOc1YbAHVzz71E7zLRMVlHQQssp YXQnSIKipTMT3nZdqqmRGtZbhfm0SrOnbjfdfpcHY0iWMZU7X6mIIyasJX+0tdqF hi+0rxzyaKkiJNLSWEeAk8GcPzIIWB3WnjzTtjY/YGP7SDQMtgD4mzEhWjI= -----END CERTIFICATE-----Generated at Sat Jun 13 10:48:13 2026 by rpki-client