$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/065acdf0-1fed-4d13-8818-ed60be560900.roa File: 065acdf0-1fed-4d13-8818-ed60be560900.roa (raw, json) Hash identifier: 87sz3kS25jXLCvGojNVTObJ4yxwgE9mD3NrcTRwEGVA= Subject key identifier: 7C:D6:DD:88:EB:44:CD:AC:15:4E:1D:D6:77:17:9A:68:A2:3E:2F:66 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 75319FB814059366AE9001CCC66CAA88DDC4EB49 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/065acdf0-1fed-4d13-8818-ed60be560900.roa Signing time: Sun 03 May 2026 01:50:09 +0000 ROA not before: Sun 03 May 2026 01:50:09 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f46::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:31:9f:b8:14:05:93:66:ae:90:01:cc:c6:6c:aa:88:dd:c4:eb:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 01:50:09 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=562a8a93eb018087e627f97f2c1f9b4a16d30edd150d40bbe55795a8f76c5701, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8a:a0:7d:13:09:d5:ba:41:16:bd:f1:b0:71: 15:82:6e:1f:3e:18:0a:35:6f:37:be:b0:a6:e6:b1: 7b:be:ce:54:29:0a:57:64:22:4c:12:96:81:7e:10: 8b:13:63:4d:10:a7:9e:52:54:3c:a8:3d:d3:28:d2: 76:5a:05:6d:8b:2b:91:66:11:74:1c:11:ac:fb:2b: 9b:df:ad:24:7a:14:fc:9c:4e:05:4f:04:01:f9:a2: 1e:27:26:7b:88:0f:37:f7:d2:be:55:30:eb:b2:ea: 7e:1d:3d:52:3c:66:f8:cc:04:87:41:8b:8f:fa:32: ad:f4:a8:df:f0:6a:b8:19:e0:95:71:a0:98:9f:35: 5b:5b:3b:26:6b:4c:0e:0a:d1:85:f9:48:99:ef:8e: 71:dd:f8:be:c5:44:dd:f0:2c:dc:bc:ee:f6:fd:7b: 1b:1b:97:4f:c7:46:c3:27:52:59:5e:83:49:38:d6: b3:ee:f2:c5:24:e0:a3:80:91:fa:b0:42:26:e9:67: 3f:fa:06:e1:2f:8a:77:3e:da:60:2d:b7:cf:12:3c: 1b:2d:a1:d4:34:a3:b7:e7:a9:6c:08:39:3f:fb:f0: aa:10:52:28:64:6e:d7:2c:ab:73:fd:29:04:9e:1b: 05:fb:c7:eb:d1:da:c7:0d:8e:f0:80:7e:87:cd:4a: e1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D6:DD:88:EB:44:CD:AC:15:4E:1D:D6:77:17:9A:68:A2:3E:2F:66 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/065acdf0-1fed-4d13-8818-ed60be560900.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f46::/47 Signature Algorithm: sha256WithRSAEncryption b9:ec:3a:d1:20:60:1c:48:dd:fa:7a:73:ff:0a:7b:07:66:c7: f9:52:f9:95:3e:7b:70:1d:cf:00:b1:c6:82:d4:8a:9c:c4:13: 29:9f:91:85:23:ae:d9:fc:e3:43:93:40:75:8f:a3:05:22:ed: ec:11:b3:83:2a:32:b9:bc:42:6b:ac:28:a9:3d:d5:d3:68:4b: 56:7e:2a:dd:1c:ea:62:4d:0c:e6:45:19:c6:00:d2:45:84:2b: 0c:fa:0c:8a:58:e4:37:a3:4b:42:42:5f:91:36:92:b4:55:9a: f4:e6:30:03:62:d6:fc:a2:3d:d7:b7:39:35:ef:ea:a4:c5:3d: 1a:3a:ac:8f:33:8d:b3:44:40:ac:90:ea:77:c6:ed:76:a8:80: ee:9f:3f:8c:3b:ce:87:00:a7:b2:1a:cc:61:42:12:0a:07:74: 45:09:3a:9c:be:38:75:76:bb:4a:97:ee:49:bd:c8:0b:e4:b4: fe:28:ba:da:c1:55:74:dd:c1:55:17:fb:31:32:0f:ae:7f:70: 3b:06:d2:01:d9:35:c0:3a:c4:a0:d0:98:0f:b3:7d:eb:04:d3: ae:57:6d:79:bf:9a:bb:d2:eb:fa:8d:b1:61:e3:a8:a1:cb:b0: 65:56:9d:bf:06:79:67:f6:ea:ab:36:93:1b:81:e6:f0:bb:a1: d2:7f:ea:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdTGfuBQFk2aukAHMxmyqiN3E60kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDE1MDA5WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjJhOGE5M2ViMDE4MDg3ZTYyN2Y5N2YyYzFmOWI0YTE2 ZDMwZWRkMTUwZDQwYmJlNTU3OTVhOGY3NmM1NzAxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTiqB9EwnVukEWvfGwcRWCbh8+GAo1bze+sKbmsXu+zlQp CldkIkwSloF+EIsTY00Qp55SVDyoPdMo0nZaBW2LK5FmEXQcEaz7K5vfrSR6FPyc TgVPBAH5oh4nJnuIDzf30r5VMOuy6n4dPVI8ZvjMBIdBi4/6Mq30qN/wargZ4JVx oJifNVtbOyZrTA4K0YX5SJnvjnHd+L7FRN3wLNy87vb9exsbl0/HRsMnUlleg0k4 1rPu8sUk4KOAkfqwQibpZz/6BuEvinc+2mAtt88SPBstodQ0o7fnqWwIOT/78KoQ Uihkbtcsq3P9KQSeGwX7x+vR2scNjvCAfofNSuH5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfNbdiOtEzawVTh3WdxeaaKI+L2YwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA2NWFjZGYwLTFmZWQtNGQxMy04ODE4LWVkNjBiZTU2MDkwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAL0YwDQYJKoZIhvcNAQELBQADggEBALnsOtEgYBxI3fp6c/8Kewdm x/lS+ZU+e3AdzwCxxoLUipzEEymfkYUjrtn840OTQHWPowUi7ewRs4MqMrm8Qmus KKk91dNoS1Z+Kt0c6mJNDOZFGcYA0kWEKwz6DIpY5DejS0JCX5E2krRVmvTmMANi 1vyiPde3OTXv6qTFPRo6rI8zjbNEQKyQ6nfG7XaogO6fP4w7zocAp7IazGFCEgoH dEUJOpy+OHV2u0qX7km9yAvktP4outrBVXTdwVUX+zEyD65/cDsG0gHZNcA6xKDQ mA+zfesE065XbXm/mrvS6/qNsWHjqKHLsGVWnb8GeWf26qs2kxuB5vC7odJ/6og= -----END CERTIFICATE-----Generated at Sun May 3 16:14:25 2026 by rpki-client