$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a4dcd67-c4cf-4fe3-b988-a64689a57b02.roa File: 1a4dcd67-c4cf-4fe3-b988-a64689a57b02.roa (raw, json) Hash identifier: YgoZaVZ/5IhUaN/ucnkASrGqHNRfOuPgu+bc6W279xg= Subject key identifier: 68:24:2D:C2:14:52:67:4C:F1:B3:47:FC:E5:00:0B:B9:4A:3F:0E:B5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2A5098ACCBA6D69FCB0033C46275DB9A3FC967C2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a4dcd67-c4cf-4fe3-b988-a64689a57b02.roa Signing time: Sun 03 May 2026 01:32:00 +0000 ROA not before: Sun 03 May 2026 01:32:00 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c88::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:50:98:ac:cb:a6:d6:9f:cb:00:33:c4:62:75:db:9a:3f:c9:67:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 01:32:00 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=cfe2a670ae9286766fb004528c274cf10f872f16c9ae716d8c26c1452c3e7e46, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:e6:3e:fb:35:3c:13:48:a8:ad:e6:40:91:73: c1:61:71:6e:eb:97:2c:7c:ca:8c:05:d4:b0:0c:a1: 8e:b4:cc:e7:d2:38:08:a5:f1:3c:43:cf:17:d8:2a: 52:4a:65:7e:ba:14:c3:b7:74:d3:dd:11:10:1d:e1: 7d:e4:49:13:b8:ea:d3:31:8c:f2:16:21:de:8d:f1: 52:20:7b:8c:44:10:40:35:a1:5b:93:82:4c:36:70: 0b:23:a0:64:c8:95:8b:48:cb:18:c6:36:62:39:70: 04:83:0b:96:ed:50:26:f2:bc:e3:70:f7:93:8b:57: a2:47:32:30:1f:a4:2b:51:a7:d6:b3:0b:b7:b9:7a: e1:5c:2f:b8:3c:44:d7:5c:36:13:7a:2f:5d:7a:f7: 4b:cf:b2:ea:31:53:80:ee:19:9e:90:9f:dc:ab:33: d3:0c:41:56:68:50:43:06:90:4e:37:b9:03:fb:9a: 56:56:0a:4c:ff:eb:33:ed:66:90:77:dc:96:5d:d1: 3f:0c:21:39:7a:3f:ce:79:da:18:28:ae:08:c4:fb: 22:b2:4b:0a:d8:c1:0d:1d:fa:46:15:0c:ef:9f:ea: de:38:87:0c:72:ad:c2:c6:b7:46:5a:0d:2d:c0:01: 8f:c1:28:79:b1:2a:f5:6c:9c:73:6a:96:f8:a2:fb: 06:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:24:2D:C2:14:52:67:4C:F1:B3:47:FC:E5:00:0B:B9:4A:3F:0E:B5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a4dcd67-c4cf-4fe3-b988-a64689a57b02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c88::/47 Signature Algorithm: sha256WithRSAEncryption 51:0c:be:15:cf:2b:08:f6:8d:84:91:dd:20:df:6c:aa:5d:10: ff:6b:9b:f4:20:b7:2e:1d:2b:d1:6b:a6:57:f1:f7:f6:82:eb: 1f:10:92:12:23:d5:10:b7:2a:e7:46:ef:43:2f:aa:97:45:84: 99:57:4b:78:e9:2d:6a:67:19:fc:67:27:81:fb:6f:cb:b0:8f: 39:94:89:3c:67:16:f6:18:c4:23:8f:ad:b9:e2:f1:a5:22:92: 1c:61:ef:c4:d7:dd:dd:6a:d9:1d:2f:15:cd:f3:9c:89:21:ea: 83:0f:90:ad:8f:2b:b6:7d:45:a7:32:9c:c2:8e:53:a7:4d:e6: 38:82:c8:1a:a3:0e:45:aa:64:08:53:90:aa:b1:17:e7:08:64: 22:7c:dc:f7:1f:7f:98:eb:ed:e0:fe:a4:5d:87:73:09:8a:95: af:f1:c3:93:34:b5:a7:17:5e:eb:63:9b:90:63:c1:a1:ee:43: d4:75:3b:89:90:9f:46:c6:a6:e3:b4:26:1e:e4:03:66:fe:6e: 42:34:b4:e8:6b:9b:7d:06:12:d6:25:4a:f0:d1:0d:4b:3c:dc: eb:f1:4d:a9:3d:a6:d5:f2:32:d0:13:ef:57:e1:f4:2c:46:0b: c5:42:41:12:e4:49:f8:11:cf:5a:f3:dc:31:a6:b8:92:dc:48: f1:7d:f6:b0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKlCYrMum1p/LADPEYnXbmj/JZ8IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDEzMjAwWhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmUyYTY3MGFlOTI4Njc2NmZiMDA0NTI4YzI3NGNmMTBm ODcyZjE2YzlhZTcxNmQ4YzI2YzE0NTJjM2U3ZTQ2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCK5j77NTwTSKit5kCRc8FhcW7rlyx8yowF1LAMoY60zOfS OAil8TxDzxfYKlJKZX66FMO3dNPdERAd4X3kSRO46tMxjPIWId6N8VIge4xEEEA1 oVuTgkw2cAsjoGTIlYtIyxjGNmI5cASDC5btUCbyvONw95OLV6JHMjAfpCtRp9az C7e5euFcL7g8RNdcNhN6L11690vPsuoxU4DuGZ6Qn9yrM9MMQVZoUEMGkE43uQP7 mlZWCkz/6zPtZpB33JZd0T8MITl6P8552hgorgjE+yKySwrYwQ0d+kYVDO+f6t44 hwxyrcLGt0ZaDS3AAY/BKHmxKvVsnHNqlvii+wY/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaCQtwhRSZ0zxs0f85QALuUo/DrUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFhNGRjZDY3LWM0Y2YtNGZlMy1iOTg4LWE2NDY4OWE1N2IwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALIgwDQYJKoZIhvcNAQELBQADggEBAFEMvhXPKwj2jYSR3SDfbKpd EP9rm/Qgty4dK9Frplfx9/aC6x8QkhIj1RC3KudG70MvqpdFhJlXS3jpLWpnGfxn J4H7b8uwjzmUiTxnFvYYxCOPrbni8aUikhxh78TX3d1q2R0vFc3znIkh6oMPkK2P K7Z9RacynMKOU6dN5jiCyBqjDkWqZAhTkKqxF+cIZCJ83Pcff5jr7eD+pF2HcwmK la/xw5M0tacXXutjm5BjwaHuQ9R1O4mQn0bGpuO0Jh7kA2b+bkI0tOhrm30GEtYl SvDRDUs83OvxTak9ptXyMtAT71fh9CxGC8VCQRLkSfgRz1rz3DGmuJLcSPF99rA= -----END CERTIFICATE-----Generated at Sun May 3 16:57:20 2026 by rpki-client