$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38ef086d-089c-4650-ba7a-5433898a48a4.roa File: 38ef086d-089c-4650-ba7a-5433898a48a4.roa (raw, json) Hash identifier: ykSPsgmt6m8zxxcgFy8DhxAIy3PSIUg2UNcCo770gXw= Subject key identifier: 16:E6:EA:7E:6B:6B:EC:A1:E7:CB:28:88:82:86:0A:C7:C1:C7:6C:03 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4237E0572505ABE8BA1887428BBF010937E3F7F4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38ef086d-089c-4650-ba7a-5433898a48a4.roa Signing time: Sun 03 May 2026 00:40:13 +0000 ROA not before: Sun 03 May 2026 00:40:13 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2e96::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:37:e0:57:25:05:ab:e8:ba:18:87:42:8b:bf:01:09:37:e3:f7:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 00:40:13 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=62d683f16b1ea15d59d3a3a4d45ec18b1c739fb36bed0d4b83e57476398da59b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:61:b8:4b:f4:20:f7:d2:3d:ec:a0:93:da:44: 83:20:e2:c4:92:1a:3f:94:57:c4:a1:80:72:bc:27: 1f:73:5c:1a:3c:a2:9c:7b:d1:05:84:a9:44:97:fd: c4:56:d3:80:9b:cd:e7:3c:2a:a3:5a:23:bd:82:28: 19:0e:dc:56:7a:8a:37:87:59:8a:60:47:4b:4d:cf: d3:fa:72:e6:c2:b0:10:f1:5b:57:5f:87:27:c0:4c: 2a:29:5f:fa:94:2c:45:e2:be:a9:1a:6e:77:4e:58: ee:4b:68:36:60:43:9e:39:a0:ee:8c:d8:01:23:12: bc:22:b6:cd:7d:5e:09:75:82:8a:ca:ad:c9:a8:ee: 16:7a:cc:84:00:4b:69:c2:91:16:c3:b4:c4:d2:d7: 0a:99:f6:89:9f:18:4c:6a:04:ea:1f:c8:44:64:c8: af:a7:45:0b:6a:5a:18:89:b0:8e:2d:ab:65:d5:93: 41:3f:91:f6:66:39:d4:ca:fa:dd:bf:dd:b6:c9:12: b3:fe:1e:3a:08:6f:53:71:49:a7:59:f7:f2:cb:1b: d8:3d:2b:4a:75:17:11:f6:9f:24:e4:09:93:cf:2a: f9:bc:d5:18:c0:8d:6d:e2:ca:c0:84:b8:8a:be:7b: 00:df:b3:ba:a6:64:f5:c4:55:fe:23:0b:02:08:9c: 46:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E6:EA:7E:6B:6B:EC:A1:E7:CB:28:88:82:86:0A:C7:C1:C7:6C:03 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38ef086d-089c-4650-ba7a-5433898a48a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2e96::/47 Signature Algorithm: sha256WithRSAEncryption 7e:60:3a:07:c6:d9:08:45:f7:6a:ff:e2:6c:c2:fc:42:17:28: ba:f9:cb:0b:8e:d9:09:c0:68:20:b8:3b:6c:57:56:7b:9b:63: 27:55:3f:a5:25:88:0c:6e:16:ae:bb:33:20:e0:af:61:9e:7e: a1:41:e1:e1:f1:23:08:31:b5:17:63:23:86:f3:a2:77:ce:26: 56:cb:97:95:4b:85:d1:3a:78:df:83:68:0a:bb:71:5a:0b:bf: 0b:4d:d0:df:e5:ce:d2:fa:25:38:06:2c:24:74:c1:41:52:0b: 31:48:d0:45:3a:04:dc:2a:ce:e0:2e:e9:57:03:6c:c1:3c:a6: 7b:ce:0d:3c:c8:db:b1:08:d2:ac:bd:72:d2:05:cf:59:f6:22: f3:86:d8:c0:ea:e7:af:a2:5a:09:3f:53:e9:08:ae:8c:ed:e6: 13:06:77:f4:40:79:66:86:67:bd:2b:2d:88:5e:16:d3:43:cd: 68:c9:ea:91:89:8f:cb:00:21:93:a2:4c:14:94:00:4b:26:4b: cc:1e:0c:5f:37:a1:c2:92:3f:db:65:2c:d1:47:fe:7a:7b:15: ae:98:c9:c8:0d:bd:b6:f8:4b:81:d1:97:40:53:e3:59:70:dd: e7:73:af:d1:b7:9b:a3:fd:bd:3c:16:52:99:4e:5c:74:21:8e: 47:03:44:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQjfgVyUFq+i6GIdCi78BCTfj9/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDA0MDEzWhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmQ2ODNmMTZiMWVhMTVkNTlkM2EzYTRkNDVlYzE4YjFj NzM5ZmIzNmJlZDBkNGI4M2U1NzQ3NjM5OGRhNTliMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBYbhL9CD30j3soJPaRIMg4sSSGj+UV8ShgHK8Jx9zXBo8 opx70QWEqUSX/cRW04Cbzec8KqNaI72CKBkO3FZ6ijeHWYpgR0tNz9P6cubCsBDx W1dfhyfATCopX/qULEXivqkabndOWO5LaDZgQ545oO6M2AEjErwits19Xgl1gorK rcmo7hZ6zIQAS2nCkRbDtMTS1wqZ9omfGExqBOofyERkyK+nRQtqWhiJsI4tq2XV k0E/kfZmOdTK+t2/3bbJErP+HjoIb1NxSadZ9/LLG9g9K0p1FxH2nyTkCZPPKvm8 1RjAjW3iysCEuIq+ewDfs7qmZPXEVf4jCwIInEbnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFubqfmtr7KHnyyiIgoYKx8HHbAMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM4ZWYwODZkLTA4OWMtNDY1MC1iYTdhLTU0MzM4OThhNDhhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALpYwDQYJKoZIhvcNAQELBQADggEBAH5gOgfG2QhF92r/4mzC/EIX KLr5ywuO2QnAaCC4O2xXVnubYydVP6UliAxuFq67MyDgr2GefqFB4eHxIwgxtRdj I4bzonfOJlbLl5VLhdE6eN+DaAq7cVoLvwtN0N/lztL6JTgGLCR0wUFSCzFI0EU6 BNwqzuAu6VcDbME8pnvODTzI27EI0qy9ctIFz1n2IvOG2MDq56+iWgk/U+kIrozt 5hMGd/RAeWaGZ70rLYheFtNDzWjJ6pGJj8sAIZOiTBSUAEsmS8weDF83ocKSP9tl LNFH/np7Fa6YycgNvbb4S4HRl0BT41lw3edzr9G3m6P9vTwWUplOXHQhjkcDRBg= -----END CERTIFICATE-----Generated at Sun May 3 17:05:22 2026 by rpki-client