$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa File: 9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa (raw, json) Hash identifier: XfpdzCqd4xnWnlwyqNeVXo+1L+2ssUnDtS908S3fu0M= Subject key identifier: 8C:CB:1B:86:AB:B4:81:59:4F:4F:23:ED:34:1F:56:45:14:E4:C3:02 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1644A0B6AC870B4620BD97E3EAC8183A5BED6382 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa Signing time: Tue 17 Feb 2026 02:50:15 +0000 ROA not before: Tue 17 Feb 2026 02:50:15 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 24 Feb 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:44:a0:b6:ac:87:0b:46:20:bd:97:e3:ea:c8:18:3a:5b:ed:63:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Feb 17 02:50:15 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=c9abe5bd684ef58f56b2e36c38ec9a901003fde13dea8d50ea7941541140eb46, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:94:54:c2:51:0f:aa:06:5b:13:65:5e:81: 07:c3:a3:68:91:98:64:2b:b6:85:4f:9d:aa:6f:6b: 0a:0d:d0:26:3c:4d:de:90:36:7f:4a:4f:15:1e:17: 68:89:85:be:56:11:0b:50:e7:5f:13:c9:2b:40:18: 03:06:c5:c6:16:0b:f7:93:3c:af:3a:9e:2c:03:b6: 2a:08:47:28:ec:2d:59:27:5f:5b:05:9e:c0:c2:7f: 86:72:78:f4:60:22:0b:33:40:ce:05:33:43:95:9a: 77:62:e9:67:59:95:e3:f8:41:29:b9:d6:53:8e:85: e0:d5:16:0d:3c:83:e3:7d:8e:f1:9c:ee:66:49:54: f9:a3:c1:b8:38:dd:40:e6:64:05:fe:9d:55:ef:54: 48:d5:5e:43:e1:91:56:d8:06:a1:6e:cb:55:09:48: ab:43:b7:82:3a:5b:e2:c0:7a:14:66:c0:97:c7:cd: 01:6f:60:55:38:a8:f3:a4:81:16:6b:5e:8e:e7:5b: 66:e3:c9:51:08:53:2b:f5:21:ef:01:2b:40:6a:82: 79:9f:74:3a:ee:ee:73:45:66:f7:8a:2e:dc:f6:17: 29:17:cb:39:0d:40:c6:91:6a:83:4f:81:3c:f0:2a: e8:95:45:e8:b6:79:49:4a:77:38:f7:b0:3f:f7:80: da:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CB:1B:86:AB:B4:81:59:4F:4F:23:ED:34:1F:56:45:14:E4:C3:02 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 67:72:07:c5:44:9e:8d:3d:a6:38:d9:ef:9d:ad:5a:55:3b:f3: 20:55:22:fc:4e:7b:97:8b:1f:39:1f:46:c6:89:11:e9:00:87: 44:3f:d4:2b:c3:49:9b:4e:a5:97:a3:2c:06:83:10:13:86:2d: ad:fa:76:f5:86:9f:82:b6:01:97:c9:00:d3:57:8a:a4:a7:1a: 5e:af:78:2d:f2:7e:26:1a:7f:77:c9:91:b9:f9:67:0c:a6:00: 15:09:99:77:e2:92:d5:a2:99:38:12:32:f4:72:cc:1d:5d:5f: ea:6c:cc:e7:4e:b3:03:56:e0:30:3e:31:21:55:0b:aa:ad:32: ec:74:e2:96:d9:5e:a1:59:99:a3:fa:7f:33:a6:41:e0:d5:23: 4c:27:32:b1:10:9e:4f:e0:5e:3d:f4:78:71:b2:b1:15:7d:76: 7a:29:85:2a:9b:61:77:d4:83:5f:4a:55:70:d8:ac:33:4a:32: f4:82:b1:c3:36:2e:2c:88:43:de:a6:83:30:cf:eb:e3:6b:e3: fc:86:c1:40:93:ef:bc:64:cf:98:a5:bc:ed:89:27:0c:db:dc: d2:59:dd:b2:90:6a:c0:ee:c5:89:06:18:40:26:cc:74:eb:ad: b1:fa:52:5d:df:7b:15:c1:1d:83:25:b2:0d:e2:78:ca:21:a5: 4d:62:73:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFkSgtqyHC0YgvZfj6sgYOlvtY4IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjYwMjE3MDI1MDE1WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWFiZTViZDY4NGVmNThmNTZiMmUzNmMzOGVjOWE5MDEw MDNmZGUxM2RlYThkNTBlYTc5NDE1NDExNDBlYjQ2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7tpRUwlEPqgZbE2VegQfDo2iRmGQrtoVPnapvawoN0CY8 Td6QNn9KTxUeF2iJhb5WEQtQ518TyStAGAMGxcYWC/eTPK86niwDtioIRyjsLVkn X1sFnsDCf4ZyePRgIgszQM4FM0OVmndi6WdZleP4QSm51lOOheDVFg08g+N9jvGc 7mZJVPmjwbg43UDmZAX+nVXvVEjVXkPhkVbYBqFuy1UJSKtDt4I6W+LAehRmwJfH zQFvYFU4qPOkgRZrXo7nW2bjyVEIUyv1Ie8BK0BqgnmfdDru7nNFZveKLtz2FykX yzkNQMaRaoNPgTzwKuiVRei2eUlKdzj3sD/3gNoDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjMsbhqu0gVlPTyPtNB9WRRTkwwIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzliODA0ZmEwLWY3MjctNGZhYi1hNzFhLTljNWY4NDg2ZWE3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAGdyB8VEno09pjjZ752tWlU78yBV IvxOe5eLHzkfRsaJEekAh0Q/1CvDSZtOpZejLAaDEBOGLa36dvWGn4K2AZfJANNX iqSnGl6veC3yfiYaf3fJkbn5ZwymABUJmXfiktWimTgSMvRyzB1dX+pszOdOswNW 4DA+MSFVC6qtMux04pbZXqFZmaP6fzOmQeDVI0wnMrEQnk/gXj30eHGysRV9dnop hSqbYXfUg19KVXDYrDNKMvSCscM2LiyIQ96mgzDP6+Nr4/yGwUCT77xkz5ilvO2J Jwzb3NJZ3bKQasDuxYkGGEAmzHTrrbH6Ul3fexXBHYMlsg3ieMohpU1ic2U= -----END CERTIFICATE-----Generated at Mon Feb 23 05:15:33 2026 by rpki-client