$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3278fd19-7c91-4842-8409-64ab8070318d.roa File: 3278fd19-7c91-4842-8409-64ab8070318d.roa (raw, json) Hash identifier: /kEoydjdh/2cqqO75s0wD5jt7WAEZR46vwuENm+Y1Ow= Subject key identifier: 46:8B:82:42:4D:89:29:88:E8:45:83:27:ED:61:64:06:D7:1F:50:C6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 452DFB44134C491489BFB78C637D294FABFB735E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3278fd19-7c91-4842-8409-64ab8070318d.roa Signing time: Wed 22 Apr 2026 19:02:55 +0000 ROA not before: Wed 22 Apr 2026 19:02:55 +0000 ROA not after: Tue 21 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.99.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 28 Apr 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:2d:fb:44:13:4c:49:14:89:bf:b7:8c:63:7d:29:4f:ab:fb:73:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 22 19:02:55 2026 GMT Not After : Jul 21 23:59:59 2026 GMT Subject: serialNumber=5e6cb2eed22b7f77d5ee5ef6d3a67a749501d3d445d9e11037b3a9877497c732, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:71:97:8c:18:92:38:f1:a6:35:d3:59:5a:1c: bf:07:e0:03:5e:cb:ab:08:33:9e:cd:a0:5b:ce:f1: a9:31:f1:f2:a9:37:20:02:e5:bb:a3:b6:ee:64:00: ea:02:be:b4:f1:b5:8f:95:9c:b1:a9:4a:34:cd:b5: 88:c4:bf:a3:97:f5:7a:a9:33:d1:12:f5:1c:6a:37: 19:6f:80:a8:a2:23:0e:ae:6b:fd:de:93:79:8a:48: d4:d5:c6:31:8b:0e:a8:10:6f:2f:2e:fc:79:85:13: b4:61:04:56:40:57:70:b0:72:43:b2:a5:09:af:b9: 8d:e7:8d:3b:ef:33:af:db:51:42:91:d2:aa:2f:ba: b7:4e:c0:97:c7:57:9a:c6:4f:69:cf:a8:ce:08:11: 60:ed:0f:8b:d8:80:ee:22:89:a9:1a:08:4d:75:bb: 95:18:23:d7:36:88:10:80:9b:63:07:b8:34:c5:cf: 40:4b:99:18:c1:d7:bc:86:6a:60:90:c5:63:60:a6: 31:ad:11:bc:75:54:bd:46:39:15:45:40:51:c3:e6: 15:82:0b:4e:e9:bf:c4:bb:ae:ab:77:41:17:5a:2f: f5:32:07:60:1f:08:80:3e:57:c7:62:fe:f6:69:c0: 9d:f2:57:a2:f2:04:a0:62:8f:05:a2:e4:d5:a0:1c: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:8B:82:42:4D:89:29:88:E8:45:83:27:ED:61:64:06:D7:1F:50:C6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3278fd19-7c91-4842-8409-64ab8070318d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.99.0.0/16 Signature Algorithm: sha256WithRSAEncryption 38:17:5a:e1:8a:bb:39:32:f3:51:33:9e:1d:f3:8f:42:ef:1e: 50:f0:3a:4a:2e:27:af:0a:80:6a:11:0a:82:99:b9:53:1a:4c: 5f:44:22:17:45:ab:a3:76:c7:80:9c:fd:95:2e:a3:ab:a5:7a: 8f:12:92:0a:4c:23:d0:a9:fe:b3:54:80:b9:b3:77:ba:ba:73: fa:29:f9:ff:a5:8e:61:33:91:fb:3e:6b:d6:f2:c4:56:81:46: e6:f2:f0:37:a1:fa:a5:41:91:2f:d5:3d:13:33:41:42:53:09: 1e:06:98:60:e7:2c:8e:c7:91:fa:71:c4:e3:fd:09:b8:39:09: ac:bc:f3:02:d2:09:5e:31:79:37:5f:d5:42:8b:63:c4:87:c0: f3:15:67:5d:2f:d9:a0:d4:53:9a:de:1e:25:ea:54:20:18:bf: 22:45:e5:75:14:28:fa:60:81:21:21:72:e6:b3:77:cc:b5:0e: 19:f3:2c:6a:17:c6:39:c9:85:af:aa:7f:8e:6e:61:fc:39:82: fc:dd:33:ee:fb:27:1c:f0:af:00:c6:b3:af:c7:04:cc:ed:0e: d0:7b:87:19:3e:3f:3c:13:65:a9:d9:b3:71:a8:49:1f:22:83: 30:e3:d4:a9:ef:8d:97:81:da:92:ab:91:67:66:dc:43:32:4d: 42:ab:0d:37 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURS37RBNMSRSJv7eMY30pT6v7c14wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwNDIyMTkwMjU1WhcNMjYwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTZjYjJlZWQyMmI3Zjc3ZDVlZTVlZjZkM2E2N2E3NDk1 MDFkM2Q0NDVkOWUxMTAzN2IzYTk4Nzc0OTdjNzMyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCacZeMGJI48aY101laHL8H4ANey6sIM57NoFvO8akx8fKp NyAC5bujtu5kAOoCvrTxtY+VnLGpSjTNtYjEv6OX9XqpM9ES9RxqNxlvgKiiIw6u a/3ek3mKSNTVxjGLDqgQby8u/HmFE7RhBFZAV3CwckOypQmvuY3njTvvM6/bUUKR 0qovurdOwJfHV5rGT2nPqM4IEWDtD4vYgO4iiakaCE11u5UYI9c2iBCAm2MHuDTF z0BLmRjB17yGamCQxWNgpjGtEbx1VL1GORVFQFHD5hWCC07pv8S7rqt3QRdaL/Uy B2AfCIA+V8di/vZpwJ3yV6LyBKBijwWi5NWgHAdHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURouCQk2JKYjoRYMn7WFkBtcfUMYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzMyNzhmZDE5LTdjOTEtNDg0Mi04NDA5LTY0YWI4MDcwMzE4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjYzANBgkqhkiG9w0BAQsFAAOCAQEAOBda4Yq7OTLzUTOeHfOPQu8eUPA6 Si4nrwqAahEKgpm5UxpMX0QiF0Wro3bHgJz9lS6jq6V6jxKSCkwj0Kn+s1SAubN3 urpz+in5/6WOYTOR+z5r1vLEVoFG5vLwN6H6pUGRL9U9EzNBQlMJHgaYYOcsjseR +nHE4/0JuDkJrLzzAtIJXjF5N1/VQotjxIfA8xVnXS/ZoNRTmt4eJepUIBi/IkXl dRQo+mCBISFy5rN3zLUOGfMsahfGOcmFr6p/jm5h/DmC/N0z7vsnHPCvAMazr8cE zO0O0HuHGT4/PBNlqdmzcahJHyKDMOPUqe+Nl4HakquRZ2bcQzJNQqsNNw== -----END CERTIFICATE-----Generated at Mon Apr 27 11:15:53 2026 by rpki-client