$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/89f6527b-adbb-4687-9a24-ace3d28006fb.roa File: 89f6527b-adbb-4687-9a24-ace3d28006fb.roa (raw, json) Hash identifier: jMANoQCLikGpoLJb6mQBD9Vdk0ED1TbfiXCF0cbSM4w= Subject key identifier: 38:39:92:F9:08:56:8A:D1:84:CE:84:8B:A6:A2:BF:BD:7A:07:66:F4 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6A7CA53BC4B257674B5BC080C94E17A54456AA19 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/89f6527b-adbb-4687-9a24-ace3d28006fb.roa Signing time: Fri 13 Feb 2026 15:00:05 +0000 ROA not before: Fri 13 Feb 2026 15:00:05 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 24 Feb 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:7c:a5:3b:c4:b2:57:67:4b:5b:c0:80:c9:4e:17:a5:44:56:aa:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 13 15:00:05 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=b83f4624dd32f8db129186cff5dfc6a378f9760d86a65fba346ee5ecfcaaa89a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:72:24:90:6a:6b:35:ab:cc:f5:d7:38:c2:88: 12:d1:c7:10:cb:6f:d4:f9:ea:6f:2c:20:14:c4:d0: d8:e9:c8:08:08:d5:2c:73:60:06:47:37:bf:bf:a5: e9:7a:ca:ea:3b:8a:f6:53:36:07:e3:a3:81:65:8a: 0e:a3:98:98:cc:ea:15:c4:f9:0c:8e:cf:c0:ef:e2: 27:0b:f2:db:b9:6a:b6:9e:2a:50:75:aa:6c:0e:09: 2b:98:ba:1a:2d:72:b7:c1:6c:05:c3:e2:13:81:30: 6a:e1:d8:00:5d:3c:71:ab:d9:12:f7:db:4d:72:f0: 9c:c1:0e:32:31:cd:a5:d1:08:35:67:af:fa:ac:05: f9:41:d2:b0:3f:21:99:76:62:a1:30:40:48:2b:59: f3:4b:17:dc:71:a9:87:09:b9:48:d3:15:d2:b2:99: 2e:c6:10:ac:81:31:af:c6:69:36:17:a2:63:8c:60: 8b:2b:50:d7:07:ed:e0:13:1d:0f:f0:1c:35:99:e8: c5:56:14:be:e0:ea:40:b2:23:8f:6a:96:66:5e:ea: 6f:82:3e:26:86:1c:12:36:c0:63:ee:b5:45:6a:b0: 3f:30:79:cf:49:ad:ae:fc:1e:18:3f:e2:68:23:bb: 57:55:66:fc:e2:5f:7d:75:08:62:ca:90:e0:2d:f5: 10:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:39:92:F9:08:56:8A:D1:84:CE:84:8B:A6:A2:BF:BD:7A:07:66:F4 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/89f6527b-adbb-4687-9a24-ace3d28006fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.16.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:8b:76:e7:c5:a0:e0:fa:66:04:b0:45:81:33:6b:5a:62:53: 2b:5a:17:9d:e9:52:b5:f3:93:4a:41:e7:01:e8:25:f2:08:d5: cb:0c:ec:30:6e:eb:6d:5e:23:29:b8:26:73:44:39:d6:1d:c4: 53:f4:4b:84:f3:11:2a:71:cf:97:fd:a1:3e:11:ca:95:36:1e: 25:2f:89:f7:60:c4:ee:2f:6e:17:31:e5:76:55:a9:ec:6b:2d: f6:c6:70:94:5a:18:d7:5e:d1:4f:84:e0:6f:7f:55:0e:f9:ed: 61:fa:e6:8b:75:39:e6:2b:98:3e:f4:f9:21:73:c9:3b:07:33: 0b:04:74:10:d8:c2:c7:e6:9d:cf:8b:d3:b3:03:e4:65:b1:26: 20:d0:81:07:2a:68:d6:11:83:46:bc:12:43:5c:9d:bb:9a:5d: 85:30:9f:f0:c6:a1:c0:20:7f:56:39:fc:55:be:16:b6:8e:00: 65:ae:c9:c9:71:31:8e:6f:a6:53:41:b6:f4:ce:78:7d:79:78: 08:bf:8f:ad:9a:ce:61:46:6a:1c:06:06:c4:0b:ef:46:7a:23: bb:3f:40:57:99:87:c0:c6:1c:2c:81:63:30:18:29:25:25:57: 5e:21:be:4d:a1:f0:f6:45:6f:df:1f:93:4e:c7:0e:b5:2c:7b: 83:bb:c3:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUanylO8SyV2dLW8CAyU4XpURWqhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjEzMTUwMDA1WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiODNmNDYyNGRkMzJmOGRiMTI5MTg2Y2ZmNWRmYzZhMzc4 Zjk3NjBkODZhNjVmYmEzNDZlZTVlY2ZjYWFhODlhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJciSQams1q8z11zjCiBLRxxDLb9T56m8sIBTE0NjpyAgI 1SxzYAZHN7+/pel6yuo7ivZTNgfjo4Flig6jmJjM6hXE+QyOz8Dv4icL8tu5arae KlB1qmwOCSuYuhotcrfBbAXD4hOBMGrh2ABdPHGr2RL3201y8JzBDjIxzaXRCDVn r/qsBflB0rA/IZl2YqEwQEgrWfNLF9xxqYcJuUjTFdKymS7GEKyBMa/GaTYXomOM YIsrUNcH7eATHQ/wHDWZ6MVWFL7g6kCyI49qlmZe6m+CPiaGHBI2wGPutUVqsD8w ec9Jra78Hhg/4mgju1dVZvziX311CGLKkOAt9RBXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUODmS+QhWitGEzoSLpqK/vXoHZvQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg5ZjY1MjdiLWFkYmItNDY4Ny05YTI0LWFjZTNkMjgwMDZmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBAwDQYJKoZIhvcNAQELBQADggEBAC6LdufFoOD6ZgSwRYEza1piUyta F53pUrXzk0pB5wHoJfII1csM7DBu621eIym4JnNEOdYdxFP0S4TzESpxz5f9oT4R ypU2HiUvifdgxO4vbhcx5XZVqexrLfbGcJRaGNde0U+E4G9/VQ757WH65ot1OeYr mD70+SFzyTsHMwsEdBDYwsfmnc+L07MD5GWxJiDQgQcqaNYRg0a8EkNcnbuaXYUw n/DGocAgf1Y5/FW+FraOAGWuyclxMY5vplNBtvTOeH15eAi/j62azmFGahwGBsQL 70Z6I7s/QFeZh8DGHCyBYzAYKSUlV14hvk2h8PZFb98fk07HDrUse4O7w2U= -----END CERTIFICATE-----Generated at Mon Feb 23 05:15:28 2026 by rpki-client