$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7121ce9c-2fb0-4be1-827d-847d39695525.roa File: 7121ce9c-2fb0-4be1-827d-847d39695525.roa (raw, json) Hash identifier: E0YYj0HAOoj6OX8CoBEe8Mv6b9tm9Imwq8YGOeCMvKA= Subject key identifier: A8:CC:B6:30:0B:80:5A:D1:CE:46:7C:20:64:68:64:B3:9B:73:8F:5E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4076116361FFB4FA91A6CDF00C22618CBA33123A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7121ce9c-2fb0-4be1-827d-847d39695525.roa Signing time: Sun 03 May 2026 01:40:38 +0000 ROA not before: Sun 03 May 2026 01:40:38 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:29d8::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:76:11:63:61:ff:b4:fa:91:a6:cd:f0:0c:22:61:8c:ba:33:12:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 01:40:38 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=562f68cef6596a6b2e91599198ba032f9cb22101139d89f1db9b34cd843fb9e9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:cd:8d:23:1c:56:50:57:a5:18:1b:04:b6:a9: 19:12:55:39:38:f1:0d:ca:15:1c:21:42:bd:1a:3f: b8:22:5a:07:6d:77:e0:98:a6:af:8f:44:01:1e:fe: ea:7e:2d:63:61:81:45:52:1b:b2:d6:2d:56:49:c4: 6a:06:7f:7f:52:53:ef:32:32:0b:fd:58:e8:b8:30: 5c:55:e9:50:8a:cd:ab:3d:bf:05:3a:7e:7d:c9:fa: 5d:23:b0:08:e2:11:16:e0:f2:a1:32:d4:ad:5d:e5: c9:59:d3:fe:c5:d4:be:3f:69:bf:b1:05:43:e0:2b: 7b:03:03:31:a2:03:19:8f:f9:3e:12:7d:f9:14:41: bd:60:55:8d:f4:c5:e1:4c:d1:2b:9d:d2:9b:d8:43: b7:3e:d6:13:77:bc:97:a3:47:61:fe:f9:0b:20:40: b2:37:ae:94:1c:40:a3:c5:36:c4:56:c6:03:35:ad: 28:c5:ca:a2:0a:46:76:53:73:6c:09:25:9f:b3:ec: 63:93:0b:f2:b8:dd:a7:49:79:d4:70:37:03:cf:22: 1d:a5:61:64:05:73:07:13:88:16:c2:33:a8:b4:f5: bc:04:59:0c:02:74:fe:fd:96:1f:05:4c:cf:cb:d5: a7:bc:e4:86:ce:4c:9f:57:aa:71:ea:49:89:11:34: 40:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:CC:B6:30:0B:80:5A:D1:CE:46:7C:20:64:68:64:B3:9B:73:8F:5E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7121ce9c-2fb0-4be1-827d-847d39695525.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:29d8::/47 Signature Algorithm: sha256WithRSAEncryption 73:74:86:8d:ae:4d:f5:3b:73:ad:66:a3:6b:15:7f:ea:09:32: a7:62:73:22:d6:86:4d:d1:9c:1d:fc:56:34:af:79:f4:38:25: 3e:1e:7a:8a:5e:9e:de:64:00:74:4a:03:44:ff:0b:86:5f:29: cb:a5:9e:18:fe:6d:4a:a7:ab:80:76:fc:84:8c:43:e5:15:df: f6:33:58:30:22:74:58:d2:5f:9f:41:d6:e1:ea:e1:17:67:c4: e5:1e:d4:0c:ba:d2:fe:99:3c:43:d3:04:75:88:66:2f:35:21: 0f:00:32:c7:32:c5:65:da:d2:41:45:59:ea:f1:26:d3:83:3d: 3e:56:2e:0b:f1:1a:5d:23:a4:9a:b7:1d:19:83:c7:55:5b:d5: 0f:4a:14:dc:73:81:9a:03:46:87:cd:ad:0c:79:49:a7:95:c7: 10:c5:15:6d:cd:1a:0d:57:04:e0:21:c9:0b:8e:56:63:4b:8d: 72:69:ca:0e:97:71:61:56:59:73:94:04:a4:fb:4d:9c:4c:9e: 78:b2:13:c4:9c:d6:6e:86:f3:bb:c5:38:37:a9:64:2b:80:48: 38:3f:82:ac:a4:f7:22:70:6b:15:8d:e2:08:58:f9:d5:35:5c: 2a:fb:29:1d:75:3c:e8:92:7d:9b:07:e4:f4:e0:a6:64:9b:0a: b5:d1:68:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQHYRY2H/tPqRps3wDCJhjLozEjowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDE0MDM4WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjJmNjhjZWY2NTk2YTZiMmU5MTU5OTE5OGJhMDMyZjlj YjIyMTAxMTM5ZDg5ZjFkYjliMzRjZDg0M2ZiOWU5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJzY0jHFZQV6UYGwS2qRkSVTk48Q3KFRwhQr0aP7giWgdt d+CYpq+PRAEe/up+LWNhgUVSG7LWLVZJxGoGf39SU+8yMgv9WOi4MFxV6VCKzas9 vwU6fn3J+l0jsAjiERbg8qEy1K1d5clZ0/7F1L4/ab+xBUPgK3sDAzGiAxmP+T4S ffkUQb1gVY30xeFM0Sud0pvYQ7c+1hN3vJejR2H++QsgQLI3rpQcQKPFNsRWxgM1 rSjFyqIKRnZTc2wJJZ+z7GOTC/K43adJedRwNwPPIh2lYWQFcwcTiBbCM6i09bwE WQwCdP79lh8FTM/L1ae85IbOTJ9XqnHqSYkRNEA3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqMy2MAuAWtHORnwgZGhks5tzj14wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcxMjFjZTljLTJmYjAtNGJlMS04MjdkLTg0N2QzOTY5NTUyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKdgwDQYJKoZIhvcNAQELBQADggEBAHN0ho2uTfU7c61mo2sVf+oJ MqdicyLWhk3RnB38VjSvefQ4JT4eeopent5kAHRKA0T/C4ZfKculnhj+bUqnq4B2 /ISMQ+UV3/YzWDAidFjSX59B1uHq4RdnxOUe1Ay60v6ZPEPTBHWIZi81IQ8AMscy xWXa0kFFWerxJtODPT5WLgvxGl0jpJq3HRmDx1Vb1Q9KFNxzgZoDRofNrQx5SaeV xxDFFW3NGg1XBOAhyQuOVmNLjXJpyg6XcWFWWXOUBKT7TZxMnniyE8Sc1m6G87vF ODepZCuASDg/gqyk9yJwaxWN4ghY+dU1XCr7KR11POiSfZsH5PTgpmSbCrXRaHg= -----END CERTIFICATE-----Generated at Sun May 3 15:33:29 2026 by rpki-client