$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa File: 5fa46662-88d2-4fa9-9076-26587048b3d0.roa (raw, json) Hash identifier: ddQjuCCDFFbEulsXxUy9X9XmEfbYjPaUoKjNSpKm04s= Subject key identifier: 1A:0F:B0:B8:A5:93:02:4F:37:B4:F0:60:AE:2E:B3:6C:11:D3:43:F8 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 765CEAC0C009D2C7491547ED3C11AF7118CE6F56 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa Signing time: Tue 19 May 2026 00:50:10 +0000 ROA not before: Tue 19 May 2026 00:50:10 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:5c:ea:c0:c0:09:d2:c7:49:15:47:ed:3c:11:af:71:18:ce:6f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 19 00:50:10 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=aae561cb92507f2a92318e237b37a3cb555850403fdb94c00f06cc9f584c003d, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7b:9b:4d:ea:eb:e9:b2:2e:c9:db:5f:4c:70: 67:fb:42:a5:43:04:bf:50:c6:37:5d:f0:30:b8:76: 9d:12:d0:dc:23:02:ba:e2:a0:32:88:4b:9a:10:3e: 7d:41:ba:fd:79:a7:8f:8e:04:a6:c2:64:50:95:84: a3:dd:85:4b:32:2a:c1:58:3a:18:0b:e7:aa:2e:58: 14:c4:79:29:aa:04:83:1a:e1:e8:0c:bd:21:bd:b3: d6:bb:68:49:ac:3a:f5:2b:82:c1:dd:d1:fe:fe:52: 3c:d6:14:4b:35:17:9c:27:49:e5:b5:7e:35:ed:65: f0:af:7f:33:44:fc:41:53:c0:19:5c:5b:5f:b8:33: 97:90:b7:8d:d0:24:4f:eb:70:68:18:c2:d1:79:f2: 52:96:aa:6a:9c:91:07:d3:f2:7f:cf:c2:8d:6d:d4: 81:f3:e1:b1:6b:ce:3e:05:a4:8e:94:91:b5:7e:63: a2:bb:f3:f2:4a:b4:3c:d8:99:47:68:fa:31:8a:a6: f2:f1:bd:43:5e:22:f4:90:32:57:33:50:b9:a4:ec: c3:89:58:36:0b:26:00:bf:8d:ce:6d:98:27:9d:16: be:c3:d3:2d:1a:e0:05:c8:3b:91:e4:cc:12:f4:7e: 3f:3f:99:fc:dd:7c:df:77:85:09:9a:82:81:af:a7: 0b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:0F:B0:B8:A5:93:02:4F:37:B4:F0:60:AE:2E:B3:6C:11:D3:43:F8 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/5fa46662-88d2-4fa9-9076-26587048b3d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.8.0/21 Signature Algorithm: sha256WithRSAEncryption 24:99:ed:f8:8e:b1:c3:c2:9f:3c:a7:f4:a0:2e:50:79:35:b2: 35:69:e9:2f:20:62:85:e2:ee:1b:7d:c2:1b:67:a3:9e:d0:78: 22:7b:9c:a6:0b:9f:3a:4d:6a:81:0e:16:01:a2:4d:4a:6f:63: 64:77:c0:08:67:f4:09:85:67:2a:e3:4c:d2:a7:75:75:73:60: 1b:32:be:08:ce:d2:79:5c:db:1a:78:67:3a:3f:b0:2e:cf:b5: 31:1a:80:e0:7e:d2:67:76:6d:54:af:28:ae:ea:ee:c9:25:a5: 93:9d:ef:3a:5e:cc:55:c3:89:ac:11:e0:c6:d8:db:f6:d2:bd: 25:7a:4f:25:27:2a:40:4a:77:62:f0:87:2e:d1:ba:d1:9f:83: d6:19:12:dd:86:33:bb:f0:6c:6b:e6:4e:cf:ca:4b:e8:4b:8d: f7:0b:cf:be:57:09:b9:fa:64:2c:2e:26:c8:67:f0:1c:71:fb: b2:00:da:f2:c2:c8:85:ed:bf:4e:5a:ee:41:ac:06:f6:99:13: 23:50:dd:42:d5:4e:3d:ce:73:93:ac:bf:27:ad:05:6a:49:12: be:26:86:5a:f2:cf:00:df:f6:6c:bd:42:56:e2:91:ed:a3:8d: 56:23:de:aa:82:37:0b:dc:5c:3a:fb:43:bf:ff:65:b5:a3:6d: 2e:69:12:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdlzqwMAJ0sdJFUftPBGvcRjOb1YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwNTE5MDA1MDEwWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWU1NjFjYjkyNTA3ZjJhOTIzMThlMjM3YjM3YTNjYjU1 NTg1MDQwM2ZkYjk0YzAwZjA2Y2M5ZjU4NGMwMDNkMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5e5tN6uvpsi7J219McGf7QqVDBL9Qxjdd8DC4dp0S0Nwj ArrioDKIS5oQPn1Buv15p4+OBKbCZFCVhKPdhUsyKsFYOhgL56ouWBTEeSmqBIMa 4egMvSG9s9a7aEmsOvUrgsHd0f7+UjzWFEs1F5wnSeW1fjXtZfCvfzNE/EFTwBlc W1+4M5eQt43QJE/rcGgYwtF58lKWqmqckQfT8n/Pwo1t1IHz4bFrzj4FpI6UkbV+ Y6K78/JKtDzYmUdo+jGKpvLxvUNeIvSQMlczULmk7MOJWDYLJgC/jc5tmCedFr7D 0y0a4AXIO5HkzBL0fj8/mfzdfN93hQmagoGvpwvJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGg+wuKWTAk83tPBgri6zbBHTQ/gwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzVmYTQ2NjYyLTg4ZDItNGZhOS05MDc2LTI2NTg3MDQ4YjNkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgfwgwDQYJKoZIhvcNAQELBQADggEBACSZ7fiOscPCnzyn9KAuUHk1sjVp 6S8gYoXi7ht9whtno57QeCJ7nKYLnzpNaoEOFgGiTUpvY2R3wAhn9AmFZyrjTNKn dXVzYBsyvgjO0nlc2xp4Zzo/sC7PtTEagOB+0md2bVSvKK7q7sklpZOd7zpezFXD iawR4MbY2/bSvSV6TyUnKkBKd2Lwhy7RutGfg9YZEt2GM7vwbGvmTs/KS+hLjfcL z75XCbn6ZCwuJshn8Bxx+7IA2vLCyIXtv05a7kGsBvaZEyNQ3ULVTj3Oc5Osvyet BWpJEr4mhlryzwDf9my9Qlbike2jjVYj3qqCNwvcXDr7Q7//ZbWjbS5pEkI= -----END CERTIFICATE-----Generated at Fri May 22 13:55:13 2026 by rpki-client