$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa File: 3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa (raw, json) Hash identifier: b2LUOu8HycWp7Ee0MFJdHCGc9c3t3+i0qvjLgws9aC4= Subject key identifier: 42:3E:9D:34:6D:90:73:6C:1A:17:F0:80:22:76:32:8C:93:71:8E:06 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 45924E7A6616AC108D395F52124E864C2B0D7A0A Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa Signing time: Tue 19 May 2026 00:50:28 +0000 ROA not before: Tue 19 May 2026 00:50:28 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:92:4e:7a:66:16:ac:10:8d:39:5f:52:12:4e:86:4c:2b:0d:7a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 19 00:50:28 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=87b1541f2fccafad3cdb1d3f26d8186c06470d2489ce3f1d80c44880fbc6c09c, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:65:b0:98:7a:b8:c5:fc:fe:30:d4:9a:21:be: af:0e:44:80:b2:6f:e9:a8:0c:87:22:85:3f:75:4f: 30:67:aa:e3:77:4b:34:9f:ae:e7:2b:b5:c3:fa:68: f5:f2:c8:ec:38:64:61:bf:ba:75:b1:a6:a8:21:e7: 23:2d:79:c9:aa:3f:8f:bf:2f:7b:55:ef:5c:cf:c6: 34:4e:3e:db:e3:c0:6b:c6:63:d8:2c:ba:cc:1c:07: 9d:6b:34:02:ee:5a:69:49:8d:7c:a4:39:25:26:c6: 73:fb:11:c4:c1:33:3b:68:42:80:69:db:b2:94:3d: f5:48:ee:34:30:66:ef:3a:36:f0:cb:77:00:ce:2c: 19:2c:92:62:ff:f5:2c:ac:27:29:68:2f:66:50:27: a4:dc:a5:c5:8e:bd:92:12:86:9a:e6:ad:48:ad:de: 98:3c:43:50:2c:88:36:2f:e5:b2:cd:10:8f:77:56: cb:9f:35:6e:51:79:55:8f:04:a8:7c:8a:ff:79:7b: f4:e7:db:a5:dd:76:d5:9b:ed:ed:c2:71:17:fd:c3: 63:aa:c9:b8:c8:59:14:4b:e2:83:c0:28:c8:60:29: ca:6c:64:ff:12:fc:2e:de:6a:d0:ca:68:b5:0a:31: ce:2a:20:fe:58:92:9a:14:db:60:b6:41:bb:7e:84: 80:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3E:9D:34:6D:90:73:6C:1A:17:F0:80:22:76:32:8C:93:71:8E:06 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/3fd6117b-5f6b-43fe-bf0a-b66f8d35e456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.32.0/19 Signature Algorithm: sha256WithRSAEncryption 65:8b:a2:be:bc:6c:a4:ba:7d:e6:9d:4a:55:26:fd:4b:02:3d: 23:72:d1:d2:af:a2:7f:dd:44:4c:2b:5f:8e:0b:e1:7a:e0:b0: 10:59:6c:c5:f6:bc:a7:53:65:fc:0a:a5:9c:b3:07:c9:11:88: 4f:a5:d2:79:08:31:61:48:59:53:1f:2a:5f:6d:7f:43:63:df: 51:64:fa:2a:c8:a4:0e:29:01:55:13:70:87:2b:b1:7c:7b:9e: d4:de:76:71:c5:7b:7b:e8:6e:fc:f0:06:18:0b:aa:89:50:82: 02:b4:83:70:48:b1:b1:e7:6e:7f:47:3c:3e:c2:36:09:0c:3f: 39:59:05:e1:0c:86:9c:f2:1a:0f:0d:54:90:6f:cc:c7:c6:02: b8:f7:6b:51:4b:67:3a:98:62:ca:eb:39:6a:d9:48:cd:30:79: a9:fe:75:92:9a:c4:44:80:43:b7:fc:74:e0:76:23:6e:b3:1a: 0a:ae:fa:5a:2d:bb:51:7e:5d:94:cf:39:2a:ae:b6:86:fb:26: 3e:a8:e0:34:55:4c:ca:af:ca:5c:09:94:54:b2:03:35:12:38: 17:c7:7b:d7:90:e2:f5:d6:89:f5:94:0d:3f:d0:34:bb:33:10: 4c:f6:6b:83:e7:63:36:7a:95:19:a0:c4:7d:99:cc:7b:c1:5b: 32:c4:80:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURZJOemYWrBCNOV9SEk6GTCsNegowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwNTE5MDA1MDI4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2IxNTQxZjJmY2NhZmFkM2NkYjFkM2YyNmQ4MTg2YzA2 NDcwZDI0ODljZTNmMWQ4MGM0NDg4MGZiYzZjMDljMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyZbCYerjF/P4w1Johvq8ORICyb+moDIcihT91TzBnquN3 SzSfrucrtcP6aPXyyOw4ZGG/unWxpqgh5yMtecmqP4+/L3tV71zPxjROPtvjwGvG Y9gsuswcB51rNALuWmlJjXykOSUmxnP7EcTBMztoQoBp27KUPfVI7jQwZu86NvDL dwDOLBkskmL/9SysJyloL2ZQJ6TcpcWOvZIShprmrUit3pg8Q1AsiDYv5bLNEI93 VsufNW5ReVWPBKh8iv95e/Tn26XddtWb7e3CcRf9w2OqybjIWRRL4oPAKMhgKcps ZP8S/C7eatDKaLUKMc4qIP5YkpoU22C2Qbt+hIBVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQj6dNG2Qc2waF/CAInYyjJNxjgYwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzNmZDYxMTdiLTVmNmItNDNmZS1iZjBhLWI2NmY4ZDM1ZTQ1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVgfyAwDQYJKoZIhvcNAQELBQADggEBAGWLor68bKS6feadSlUm/UsCPSNy 0dKvon/dREwrX44L4XrgsBBZbMX2vKdTZfwKpZyzB8kRiE+l0nkIMWFIWVMfKl9t f0Nj31Fk+irIpA4pAVUTcIcrsXx7ntTednHFe3vobvzwBhgLqolQggK0g3BIsbHn bn9HPD7CNgkMPzlZBeEMhpzyGg8NVJBvzMfGArj3a1FLZzqYYsrrOWrZSM0wean+ dZKaxESAQ7f8dOB2I26zGgqu+lotu1F+XZTPOSqutob7Jj6o4DRVTMqvylwJlFSy AzUSOBfHe9eQ4vXWifWUDT/QNLszEEz2a4PnYzZ6lRmgxH2ZzHvBWzLEgLE= -----END CERTIFICATE-----Generated at Fri May 22 12:22:36 2026 by rpki-client