$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/922a3874-8342-4845-ab4b-6167b39013a9.roa File: 922a3874-8342-4845-ab4b-6167b39013a9.roa (raw, json) Hash identifier: V+F87GEzDeE5QIn1wyTykMC/yeMJrBAly/Ehah9CX6Q= Subject key identifier: E9:F2:1D:7E:F6:D5:91:2A:26:88:17:12:27:47:3A:51:81:10:AC:10 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 28C0C93D7ACC80E70C20EC670C5422FE934C098D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/922a3874-8342-4845-ab4b-6167b39013a9.roa Signing time: Sun 03 May 2026 02:40:27 +0000 ROA not before: Sun 03 May 2026 02:40:27 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2600::/42 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c0:c9:3d:7a:cc:80:e7:0c:20:ec:67:0c:54:22:fe:93:4c:09:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 02:40:27 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=b8886263a045195c8df67fd31354b4e3c4165b8d1f7f89b0536e22f98b3d3615, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1b:49:4f:ab:bc:65:a6:5b:9c:49:9d:87:07: 24:d9:f0:48:e0:74:af:63:8a:bb:7a:a5:03:da:90: 95:1a:46:d2:79:2e:2c:31:0e:5d:e7:0d:7d:8c:ba: 1d:75:02:bc:53:84:bf:08:8f:cd:17:04:4e:3c:a4: 9a:76:a2:b9:cd:94:21:02:20:e8:1b:e1:9e:55:a0: 58:7e:4f:28:29:ee:90:65:99:f0:38:b7:8e:90:a1: fc:a5:b9:23:c4:7b:b3:05:21:2f:23:75:56:98:98: cd:c9:35:24:e3:79:9d:82:13:25:22:ff:09:a5:63: f5:8e:99:b7:f9:c1:80:e4:86:49:16:5e:c8:89:f6: 6e:af:ca:08:8e:b8:90:2e:42:f6:c5:50:b2:ec:b9: aa:1d:36:48:e1:e1:b7:dc:8e:3e:80:ef:87:ba:4f: 83:c0:7e:9c:0d:14:a9:04:5a:d4:d1:44:cd:5a:e9: c2:53:d3:6c:4c:b8:4b:a3:0d:e1:08:85:af:25:26: 24:cd:f2:0b:c2:92:0a:9b:29:ba:b9:79:f1:87:62: 35:82:ce:71:a3:bb:59:ac:34:9c:bc:2c:29:1a:e8: 73:a0:95:98:d3:8a:c1:99:41:94:f2:45:7c:b6:a3: 3a:29:4b:0b:65:a7:c0:8c:4f:5a:21:e9:3b:01:73: c3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F2:1D:7E:F6:D5:91:2A:26:88:17:12:27:47:3A:51:81:10:AC:10 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/922a3874-8342-4845-ab4b-6167b39013a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2600::/42 Signature Algorithm: sha256WithRSAEncryption 96:ed:ea:82:5d:3a:58:77:90:6b:fa:2e:3e:40:e9:c9:6b:58: c9:94:29:d0:ab:19:96:4c:a3:0a:18:ed:ba:d7:b9:6f:dd:1d: 9a:60:77:07:99:85:26:a4:81:39:3c:f8:68:99:3c:8e:c3:3b: cb:c3:92:bd:5a:69:3f:a0:4a:85:77:de:77:b6:56:2d:55:07: ed:75:fb:c8:f7:cd:7e:26:b5:e9:2f:de:38:79:89:70:f7:7a: e4:07:12:87:fb:cf:0a:89:57:07:f8:d8:d4:9c:a3:6c:ad:8d: 0f:76:35:ac:c0:70:f5:50:11:53:b5:d5:7a:49:ec:0b:01:ab: 73:fc:ff:6d:d2:40:26:76:74:8a:53:4b:80:09:11:08:bd:a4: 27:0f:a7:8d:7e:57:e2:df:69:3d:9a:31:01:c6:fe:7a:5b:f9: 79:e4:a0:51:71:d8:89:49:b4:be:dd:86:3d:60:7b:5b:81:e2: 5f:ce:5f:29:8d:c5:c5:fa:df:8c:d5:59:67:5c:b7:b8:60:19: 36:fd:36:d7:fb:16:ea:8d:69:60:11:54:77:a0:b8:7a:5d:46: df:c0:7a:5c:65:a7:82:3d:bf:c7:25:f3:21:67:ab:98:ad:a6: 25:64:c1:0a:e3:f2:08:5b:c4:8c:96:08:fc:a4:20:ae:26:1e: f9:45:dc:07 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKMDJPXrMgOcMIOxnDFQi/pNMCY0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDI0MDI3WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiODg4NjI2M2EwNDUxOTVjOGRmNjdmZDMxMzU0YjRlM2M0 MTY1YjhkMWY3Zjg5YjA1MzZlMjJmOThiM2QzNjE1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaG0lPq7xlplucSZ2HByTZ8EjgdK9jirt6pQPakJUaRtJ5 LiwxDl3nDX2Muh11ArxThL8Ij80XBE48pJp2ornNlCECIOgb4Z5VoFh+Tygp7pBl mfA4t46QofyluSPEe7MFIS8jdVaYmM3JNSTjeZ2CEyUi/wmlY/WOmbf5wYDkhkkW XsiJ9m6vygiOuJAuQvbFULLsuaodNkjh4bfcjj6A74e6T4PAfpwNFKkEWtTRRM1a 6cJT02xMuEujDeEIha8lJiTN8gvCkgqbKbq5efGHYjWCznGju1msNJy8LCka6HOg lZjTisGZQZTyRXy2ozopSwtlp8CMT1oh6TsBc8M7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6fIdfvbVkSomiBcSJ0c6UYEQrBAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzkyMmEzODc0LTgzNDItNDg0NS1hYjRiLTYxNjdiMzkwMTNhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAJAAJgAwDQYJKoZIhvcNAQELBQADggEBAJbt6oJdOlh3kGv6Lj5A6clr WMmUKdCrGZZMowoY7brXuW/dHZpgdweZhSakgTk8+GiZPI7DO8vDkr1aaT+gSoV3 3ne2Vi1VB+11+8j3zX4mtekv3jh5iXD3euQHEof7zwqJVwf42NSco2ytjQ92NazA cPVQEVO11XpJ7AsBq3P8/23SQCZ2dIpTS4AJEQi9pCcPp41+V+LfaT2aMQHG/npb +XnkoFFx2IlJtL7dhj1ge1uB4l/OXymNxcX634zVWWdct7hgGTb9Ntf7FuqNaWAR VHeguHpdRt/Aelxlp4I9v8cl8yFnq5itpiVkwQrj8ghbxIyWCPykIK4mHvlF3Ac= -----END CERTIFICATE-----Generated at Sun May 3 16:15:11 2026 by rpki-client