$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa File: 9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa (raw, json) Hash identifier: pEgQ+I1PFLHI1cx0V26ln65UF05auQQfSBICuuRT0ao= Subject key identifier: 04:88:54:E2:D6:C9:65:09:F2:3E:47:61:87:94:AD:F9:A1:91:3F:F1 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 60CEF82ECAE394BBA23BD233898379AE5BE7D43D Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa Signing time: Tue 19 May 2026 00:50:11 +0000 ROA not before: Tue 19 May 2026 00:50:11 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ce:f8:2e:ca:e3:94:bb:a2:3b:d2:33:89:83:79:ae:5b:e7:d4:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 19 00:50:11 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=bc6d81bc02bf9e876b146e05209995dfd3607b3a4af6b8698ce05e1a051bfea9, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:95:06:42:08:a7:84:77:1d:5f:69:45:7e:d6: 8c:ff:6d:98:6f:cd:1a:b1:d2:ad:f3:77:65:96:f1: cb:05:79:c2:ae:fb:74:27:e6:bc:5d:7a:3a:86:6d: 7a:d7:47:8c:18:03:6d:7e:d4:d2:b1:ae:4e:c4:07: 69:bb:b8:bc:6d:d9:6c:ab:87:b2:fd:fb:1e:b2:ae: 72:09:4f:32:ea:21:71:ec:05:03:fe:6f:24:34:cb: d6:20:f9:4a:a5:6d:79:3c:fc:00:83:02:91:cb:bf: 99:64:65:eb:84:6c:e7:49:da:72:76:59:ff:f5:20: 03:d6:62:59:19:92:59:72:67:2b:91:4a:6c:a5:4a: a7:fe:5f:a8:57:77:52:ae:eb:88:37:45:9f:86:21: 8e:56:71:c1:4d:4e:97:1d:82:1a:14:c5:63:2b:0f: 2f:ec:bf:e4:22:15:c1:6e:c0:92:e4:68:57:f9:e0: 3f:12:a5:e3:65:fe:70:a9:d1:3e:63:56:e2:2d:34: 3a:44:d4:cb:6f:13:19:7d:56:c2:a4:27:37:d5:9d: 4a:e1:af:80:48:4e:9f:45:b1:cf:4c:43:d8:5c:74: 48:72:17:37:61:0d:bb:83:b6:da:51:6c:1d:fd:07: 84:6e:d5:2f:60:83:cc:fc:a8:26:89:8a:06:b2:ba: 67:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:88:54:E2:D6:C9:65:09:F2:3E:47:61:87:94:AD:F9:A1:91:3F:F1 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/9e1e47e0-3b2f-41ac-80ad-9b08d4353fd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.2.0/23 Signature Algorithm: sha256WithRSAEncryption 04:a1:3f:22:a9:4a:15:c5:65:f5:dc:19:f8:9c:d9:18:dc:63: bb:92:e5:0a:18:21:b7:c3:4d:65:18:aa:0b:ac:82:ed:70:11: cb:e3:5e:8c:2c:d0:c1:62:51:c2:a1:bf:e5:4f:23:d0:95:8a: e2:57:73:fa:85:d2:54:b4:74:72:78:f0:42:c1:10:54:84:12: 29:11:1f:5b:2a:0d:2c:38:09:86:8f:c5:bc:10:ab:4c:05:5a: 9b:c9:6e:26:3b:2b:7b:2d:2f:5a:6f:5d:c6:c7:f7:ae:08:da: 5d:10:a9:ac:e8:71:98:cc:43:7f:4d:35:14:0f:24:4b:ee:3f: 26:44:bf:bc:b2:cc:75:13:77:3b:e0:be:b5:47:34:fd:89:52: 45:97:57:fe:fd:a1:11:85:ae:29:29:08:18:94:85:2c:c9:6d: d1:b9:5d:0f:ca:c4:b7:ac:be:38:02:bf:64:f7:44:e7:8c:c1: a8:1f:0b:d7:b3:72:35:f1:28:2b:17:08:0e:da:48:ae:4a:90: 38:66:97:00:6d:df:09:a7:17:09:c0:06:9c:7f:0a:73:e9:21: a5:b4:6e:ba:33:c4:a8:1a:23:8e:37:64:77:eb:86:ac:ed:ea: 56:b8:f9:f9:1f:d6:22:10:a3:5a:14:92:89:e2:95:c2:20:7e: 7a:e4:0c:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYM74LsrjlLuiO9IziYN5rlvn1D0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwNTE5MDA1MDExWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzZkODFiYzAyYmY5ZTg3NmIxNDZlMDUyMDk5OTVkZmQz NjA3YjNhNGFmNmI4Njk4Y2UwNWUxYTA1MWJmZWE5MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQlQZCCKeEdx1faUV+1oz/bZhvzRqx0q3zd2WW8csFecKu +3Qn5rxdejqGbXrXR4wYA21+1NKxrk7EB2m7uLxt2Wyrh7L9+x6yrnIJTzLqIXHs BQP+byQ0y9Yg+UqlbXk8/ACDApHLv5lkZeuEbOdJ2nJ2Wf/1IAPWYlkZkllyZyuR SmylSqf+X6hXd1Ku64g3RZ+GIY5WccFNTpcdghoUxWMrDy/sv+QiFcFuwJLkaFf5 4D8SpeNl/nCp0T5jVuItNDpE1MtvExl9VsKkJzfVnUrhr4BITp9Fsc9MQ9hcdEhy FzdhDbuDttpRbB39B4Ru1S9gg8z8qCaJigayume9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBIhU4tbJZQnyPkdhh5St+aGRP/EwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzllMWU0N2UwLTNiMmYtNDFhYy04MGFkLTliMDhkNDM1M2ZkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgfwIwDQYJKoZIhvcNAQELBQADggEBAAShPyKpShXFZfXcGfic2RjcY7uS 5QoYIbfDTWUYqgusgu1wEcvjXows0MFiUcKhv+VPI9CViuJXc/qF0lS0dHJ48ELB EFSEEikRH1sqDSw4CYaPxbwQq0wFWpvJbiY7K3stL1pvXcbH964I2l0QqazocZjM Q39NNRQPJEvuPyZEv7yyzHUTdzvgvrVHNP2JUkWXV/79oRGFrikpCBiUhSzJbdG5 XQ/KxLesvjgCv2T3ROeMwagfC9ezcjXxKCsXCA7aSK5KkDhmlwBt3wmnFwnABpx/ CnPpIaW0brozxKgaI443ZHfrhqzt6la4+fkf1iIQo1oUkonilcIgfnrkDOM= -----END CERTIFICATE-----Generated at Fri May 22 13:53:40 2026 by rpki-client