$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1b6f8851-c590-4ef1-b754-db347c5cefa1.roa File: 1b6f8851-c590-4ef1-b754-db347c5cefa1.roa (raw, json) Hash identifier: LOQw6I0Vapxx8WePfAnGKxRBs/7kWL5XxOSKw7G0mUQ= Subject key identifier: 2A:81:75:AF:15:BA:6E:58:7A:DE:12:C2:0B:A1:26:76:57:E0:48:48 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2964E187C66B5B3BF8018EDCFD54764C9D5D830F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1b6f8851-c590-4ef1-b754-db347c5cefa1.roa Signing time: Sun 03 May 2026 02:11:55 +0000 ROA not before: Sun 03 May 2026 02:11:55 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2aa0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:64:e1:87:c6:6b:5b:3b:f8:01:8e:dc:fd:54:76:4c:9d:5d:83:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 02:11:55 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=abae41f45fe219c192ab259c4e3c840fc320b284d8302d24f28a741c80188b04, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d6:31:85:c3:8d:d1:1e:22:99:73:c8:48:1f: bd:9c:e3:46:10:4e:03:66:c2:27:78:b2:6a:d7:79: 81:5e:a4:5f:6f:7e:dd:4a:ea:af:bb:4e:8c:0d:3d: b5:78:ba:57:3d:13:55:9f:8f:41:c5:eb:e0:74:eb: 63:9d:8a:a0:1a:15:f8:ab:9e:b8:be:d1:f0:08:9a: a6:9b:6f:a8:40:a2:0e:77:1d:e3:46:2c:ff:bb:88: 11:ca:d9:f2:7f:95:03:99:24:ba:f2:af:a2:a9:d9: 42:b6:ff:b8:ba:0f:ac:68:bd:fd:0f:27:81:75:68: d7:c0:24:53:31:d0:bd:30:9c:dd:b6:0f:11:4e:36: 5c:41:7d:ea:61:39:ee:ce:fb:c4:23:60:bc:28:53: 65:69:26:b6:e3:18:0f:c3:d8:3b:04:86:9b:5d:0c: 84:82:b7:4d:b0:32:2c:f2:f6:d2:fb:a7:d7:aa:47: 95:2e:8b:3b:9e:c0:3d:6c:03:66:10:f7:da:dd:aa: 58:1a:42:a6:ea:fd:87:c9:3a:1a:db:65:a2:72:93: c9:1a:13:6f:31:3e:9b:5d:ac:54:6c:0c:e1:f4:88: 87:ab:94:43:60:38:39:0b:c5:23:e2:90:d2:6d:78: 75:c9:42:a1:54:e4:08:50:44:66:8b:03:0a:65:07: 0a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:81:75:AF:15:BA:6E:58:7A:DE:12:C2:0B:A1:26:76:57:E0:48:48 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1b6f8851-c590-4ef1-b754-db347c5cefa1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2aa0::/47 Signature Algorithm: sha256WithRSAEncryption 58:d0:02:89:26:c9:bb:da:50:72:51:36:19:b4:2e:14:62:a8: 79:b3:f3:09:84:e0:56:23:b9:b8:d4:75:88:cd:44:4f:ee:79: a6:d3:9e:b2:75:06:46:9a:34:5c:8e:19:86:48:9a:31:61:5e: d2:93:7c:b5:6c:15:92:b9:e7:e3:46:c7:2e:55:af:d0:ae:d8: 66:c4:c4:ba:c1:0b:59:f1:b8:17:fc:df:72:9c:68:39:2c:9a: e5:d5:76:70:c3:af:e6:1c:08:01:5e:6d:77:e1:76:27:35:0a: 03:69:11:9f:73:94:b1:a0:2c:69:4e:5f:a1:16:0b:db:03:b3: f1:5f:25:82:73:a2:4e:c8:d3:62:fb:e0:ba:72:79:9e:ea:83: df:cb:95:11:45:7f:cc:4d:40:68:d9:f1:04:1a:02:14:29:47: e5:54:b2:cf:1c:4e:8f:51:a7:11:9b:96:fd:e3:31:72:b5:ee: 53:1f:ba:93:5d:9b:e7:0c:94:e6:c8:02:06:38:e8:1c:0a:be: a5:2c:2b:ac:94:a9:6d:f1:5a:4f:29:d6:20:b0:de:fa:c9:79: 72:31:d8:99:2c:67:5d:7e:e9:99:4b:d4:f9:de:58:b7:55:64: b2:aa:75:6d:42:3f:d2:3c:b9:02:48:ed:39:44:88:88:66:0d: 8e:a7:ac:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKWThh8ZrWzv4AY7c/VR2TJ1dgw8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDIxMTU1WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmFlNDFmNDVmZTIxOWMxOTJhYjI1OWM0ZTNjODQwZmMz MjBiMjg0ZDgzMDJkMjRmMjhhNzQxYzgwMTg4YjA0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy1jGFw43RHiKZc8hIH72c40YQTgNmwid4smrXeYFepF9v ft1K6q+7TowNPbV4ulc9E1Wfj0HF6+B062OdiqAaFfirnri+0fAImqabb6hAog53 HeNGLP+7iBHK2fJ/lQOZJLryr6Kp2UK2/7i6D6xovf0PJ4F1aNfAJFMx0L0wnN22 DxFONlxBfephOe7O+8QjYLwoU2VpJrbjGA/D2DsEhptdDISCt02wMizy9tL7p9eq R5UuizuewD1sA2YQ99rdqlgaQqbq/YfJOhrbZaJyk8kaE28xPptdrFRsDOH0iIer lENgODkLxSPikNJteHXJQqFU5AhQRGaLAwplBwqvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKoF1rxW6blh63hLCC6EmdlfgSEgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFiNmY4ODUxLWM1OTAtNGVmMS1iNzU0LWRiMzQ3YzVjZWZhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKqAwDQYJKoZIhvcNAQELBQADggEBAFjQAokmybvaUHJRNhm0LhRi qHmz8wmE4FYjubjUdYjNRE/ueabTnrJ1BkaaNFyOGYZImjFhXtKTfLVsFZK55+NG xy5Vr9Cu2GbExLrBC1nxuBf833KcaDksmuXVdnDDr+YcCAFebXfhdic1CgNpEZ9z lLGgLGlOX6EWC9sDs/FfJYJzok7I02L74LpyeZ7qg9/LlRFFf8xNQGjZ8QQaAhQp R+VUss8cTo9RpxGblv3jMXK17lMfupNdm+cMlObIAgY46BwKvqUsK6yUqW3xWk8p 1iCw3vrJeXIx2JksZ11+6ZlL1PneWLdVZLKqdW1CP9I8uQJI7TlEiIhmDY6nrOU= -----END CERTIFICATE-----Generated at Sun May 3 17:04:37 2026 by rpki-client