$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa File: 1fecfeb1-6716-4dba-8f93-41774a220829.roa (raw, json) Hash identifier: ztZ+fXNHAIE/S151Y/71eFpIDae0AIsElA9CzgWW7Jo= Subject key identifier: 0D:29:2D:01:85:11:64:09:66:A0:68:C3:5D:6F:B5:FC:CC:95:16:EC Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 2173E4CE0611404B0BFF99D27D8DB03743E8CC74 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa Signing time: Tue 19 May 2026 00:50:30 +0000 ROA not before: Tue 19 May 2026 00:50:30 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.127.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:73:e4:ce:06:11:40:4b:0b:ff:99:d2:7d:8d:b0:37:43:e8:cc:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 19 00:50:30 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=48f04b59a1d6039d05aeebf35dc711b1493d7d69f7ace3586e1d99b443744541, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:90:b7:3b:1e:9c:f2:d0:ed:54:a3:30:87:50: 24:bc:8d:e2:9c:56:82:e7:40:ee:5f:e8:11:e5:95: 91:62:2e:5b:29:f1:8b:33:f0:a7:1a:c4:5a:71:b0: c4:0b:6c:60:3a:72:69:d6:0c:35:01:88:64:99:d4: 04:fa:4c:7f:03:4f:16:5a:2b:14:4b:49:4f:5a:27: a8:68:09:7a:12:98:f1:76:97:df:24:dd:36:eb:d8: 05:01:13:5a:4c:84:7f:95:db:05:c0:a1:fb:81:16: d4:1e:8d:8d:92:23:a6:b0:e1:ef:56:13:c3:94:c8: 42:2b:3d:e9:e8:18:79:f3:7f:e4:76:a3:e2:9b:80: d0:ce:b6:cb:42:15:56:5e:d6:8b:bd:3c:2b:b4:32: 9f:d6:f8:ab:fe:9c:7a:c2:10:82:81:88:dc:36:3b: 69:80:65:28:19:f9:9e:d5:07:85:2f:7b:d1:ea:fb: 01:58:70:36:ab:48:b3:ce:46:ac:a0:b2:ab:18:35: 69:11:1b:5e:b4:ff:ef:da:49:78:87:68:52:c8:aa: 98:3e:81:18:d2:25:b3:2a:72:05:6b:2d:ee:a3:f1: fd:4e:83:cf:32:70:6a:8c:87:8b:88:ee:dc:a4:1f: 15:90:d6:d0:28:78:2d:3d:0e:39:b3:9e:11:70:89: e2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:29:2D:01:85:11:64:09:66:A0:68:C3:5D:6F:B5:FC:CC:95:16:EC X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/1fecfeb1-6716-4dba-8f93-41774a220829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/21 Signature Algorithm: sha256WithRSAEncryption 63:bc:74:a7:f1:41:00:f3:b4:a3:31:09:9a:9b:7c:36:16:61: b7:ae:6d:11:fc:6c:da:37:fa:2b:de:14:ed:29:7c:7b:d0:25: ca:50:70:36:83:84:ba:50:64:21:c7:f0:46:e4:8d:0e:1f:2f: dc:dd:87:17:8a:5c:ad:af:ba:20:b1:87:19:ce:5b:bf:c3:b9: ef:8d:9b:38:52:bb:c2:9a:48:51:1d:af:7e:10:f6:2a:ca:47: 40:bc:27:fe:39:17:60:03:0e:07:c9:53:fa:85:11:48:da:f1: 3a:d7:75:56:75:cf:8f:11:4b:2e:02:65:f3:0b:42:29:7a:01: 1e:aa:b4:79:c3:7a:9c:62:e3:aa:28:61:fb:35:52:ca:63:0c: 79:47:eb:5f:d6:32:bf:ec:7d:37:eb:9e:5d:8e:89:64:1f:20: 23:f7:d8:d0:cd:ce:d1:87:2e:9b:1c:d1:b2:66:9b:5d:ad:48: fa:e5:35:4f:c3:0e:1c:20:00:93:7c:1b:4d:3a:b8:d9:d7:53: 13:a9:88:34:a5:51:f2:12:b8:7a:6f:b8:df:96:28:ba:73:ff: 11:0b:d9:20:aa:54:42:e9:dc:e7:ac:6c:8a:7d:99:0a:38:3b: 88:7d:23:16:2f:c0:94:b8:71:e2:c3:00:75:05:4d:6f:ec:74: 47:e3:f5:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIXPkzgYRQEsL/5nSfY2wN0PozHQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwNTE5MDA1MDMwWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGYwNGI1OWExZDYwMzlkMDVhZWViZjM1ZGM3MTFiMTQ5 M2Q3ZDY5ZjdhY2UzNTg2ZTFkOTliNDQzNzQ0NTQxMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjkLc7Hpzy0O1UozCHUCS8jeKcVoLnQO5f6BHllZFiLlsp 8Ysz8KcaxFpxsMQLbGA6cmnWDDUBiGSZ1AT6TH8DTxZaKxRLSU9aJ6hoCXoSmPF2 l98k3Tbr2AUBE1pMhH+V2wXAofuBFtQejY2SI6aw4e9WE8OUyEIrPenoGHnzf+R2 o+KbgNDOtstCFVZe1ou9PCu0Mp/W+Kv+nHrCEIKBiNw2O2mAZSgZ+Z7VB4Uve9Hq +wFYcDarSLPORqygsqsYNWkRG160/+/aSXiHaFLIqpg+gRjSJbMqcgVrLe6j8f1O g88ycGqMh4uI7tykHxWQ1tAoeC09DjmznhFwieKRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDSktAYURZAlmoGjDXW+1/MyVFuwwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzFmZWNmZWIxLTY3MTYtNGRiYS04ZjkzLTQxNzc0YTIyMDgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwAwDQYJKoZIhvcNAQELBQADggEBAGO8dKfxQQDztKMxCZqbfDYWYbeu bRH8bNo3+iveFO0pfHvQJcpQcDaDhLpQZCHH8EbkjQ4fL9zdhxeKXK2vuiCxhxnO W7/Due+NmzhSu8KaSFEdr34Q9irKR0C8J/45F2ADDgfJU/qFEUja8TrXdVZ1z48R Sy4CZfMLQil6AR6qtHnDepxi46ooYfs1UspjDHlH61/WMr/sfTfrnl2OiWQfICP3 2NDNztGHLpsc0bJmm12tSPrlNU/DDhwgAJN8G006uNnXUxOpiDSlUfISuHpvuN+W KLpz/xEL2SCqVELp3OesbIp9mQo4O4h9IxYvwJS4ceLDAHUFTW/sdEfj9cE= -----END CERTIFICATE-----Generated at Fri May 22 13:55:58 2026 by rpki-client