$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/935254fe-b211-45c6-874b-2d53615f83ed.roa File: 935254fe-b211-45c6-874b-2d53615f83ed.roa (raw, json) Hash identifier: zClJVreqWaV5TZqkFJEMDWhShyS1PqnoRlLEut7TOOY= Subject key identifier: E5:D3:00:F0:20:D2:D6:DF:A2:05:0E:81:A9:F2:C3:CA:A4:EC:70:4C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0D304E1F616729731EB5CCCDA7BC62664EE3A030 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/935254fe-b211-45c6-874b-2d53615f83ed.roa Signing time: Sun 03 May 2026 00:21:43 +0000 ROA not before: Sun 03 May 2026 00:21:43 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c64::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:30:4e:1f:61:67:29:73:1e:b5:cc:cd:a7:bc:62:66:4e:e3:a0:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 00:21:43 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=470a635739f595b6a92123e23969f1b2d757299efcb83390bd67a9bec61548cb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:39:80:25:ce:ff:49:29:8c:23:6f:74:6c:e1: 28:ae:68:5a:39:6f:fb:b6:4d:f4:da:0c:84:23:74: fa:67:c0:e2:c9:f4:bc:29:03:a3:6c:6b:17:2d:ba: e6:0b:fe:7f:74:ba:d5:5d:6e:41:0a:65:ad:bf:31: 49:c6:cf:69:9e:c6:3a:28:5b:cc:04:d2:1d:f3:e3: 8f:ac:b9:33:fd:17:72:de:fa:53:1e:8e:51:a1:58: e5:1d:2b:d7:b2:ea:3e:69:3f:ed:46:94:96:56:89: 09:69:66:ff:28:59:b2:26:26:b6:17:9b:63:b9:cd: f3:05:fe:e6:34:96:52:2f:97:b6:30:07:c4:ac:40: 96:e1:c7:0b:d2:6b:de:b7:1b:b4:86:46:3b:5f:b2: 43:d8:8c:b2:40:cb:3a:00:ab:d1:cf:f7:70:98:65: 2b:9a:77:25:11:d7:28:5e:7c:44:f9:62:b9:1a:42: ca:13:37:db:bf:02:2e:fa:5b:e2:d1:d0:0f:99:d4: 81:c6:e0:21:20:5e:05:bb:b2:ee:f5:94:d7:49:b6: 24:e0:3c:a4:02:a0:34:32:c5:49:85:30:b6:f1:c2: e4:95:03:d6:d6:d0:2c:76:34:94:4f:ed:c7:80:19: f5:79:4f:c0:3a:c4:55:b5:88:52:d1:8e:0e:c8:4e: db:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:D3:00:F0:20:D2:D6:DF:A2:05:0E:81:A9:F2:C3:CA:A4:EC:70:4C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/935254fe-b211-45c6-874b-2d53615f83ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c64::/47 Signature Algorithm: sha256WithRSAEncryption a9:4d:80:c2:59:f6:e1:5d:19:01:d3:c1:dd:82:44:0f:41:aa: 74:44:f2:da:5f:36:79:da:3f:b9:8e:9f:6a:73:59:1d:82:b2: ad:c5:14:78:6e:c4:a1:72:aa:f4:87:ea:88:18:ad:d6:76:6d: ce:ba:7d:a6:ed:0b:7e:3b:f4:bf:ba:2e:6f:69:d2:32:39:65: 1f:ed:22:b0:63:e5:04:10:67:f7:f7:7b:53:1a:f5:0f:25:b1: ae:44:00:b2:be:4f:90:0a:bb:4b:61:13:64:a8:01:a4:e5:57: 62:e4:f5:c0:69:18:b2:bb:d3:b9:91:a5:97:3c:cc:a8:59:5e: d5:cd:83:fe:62:6d:97:81:7f:dc:81:3d:41:9f:4e:e1:4f:74: 30:f6:a9:f1:95:a3:e3:a5:45:08:a7:80:55:92:19:d1:0a:8a: 19:9d:09:7d:af:2f:d6:52:ab:28:a9:91:f9:03:4d:42:f3:02: 4a:59:e3:7b:15:5a:fc:6b:be:af:03:b5:e1:13:8b:99:a4:8d: c6:e6:2a:cf:04:ea:eb:33:ae:28:11:54:80:4c:21:f8:51:33: e6:ee:c5:29:6b:74:ea:8e:7b:4b:1f:b8:8f:70:09:d3:0d:3e: b1:fe:80:98:91:66:4d:65:93:fa:55:3b:f7:71:19:15:10:50: f1:5a:0e:f5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDTBOH2FnKXMetczNp7xiZk7joDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDAyMTQzWhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzBhNjM1NzM5ZjU5NWI2YTkyMTIzZTIzOTY5ZjFiMmQ3 NTcyOTllZmNiODMzOTBiZDY3YTliZWM2MTU0OGNiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUOYAlzv9JKYwjb3Rs4SiuaFo5b/u2TfTaDIQjdPpnwOLJ 9LwpA6NsaxctuuYL/n90utVdbkEKZa2/MUnGz2mexjooW8wE0h3z44+suTP9F3Le +lMejlGhWOUdK9ey6j5pP+1GlJZWiQlpZv8oWbImJrYXm2O5zfMF/uY0llIvl7Yw B8SsQJbhxwvSa963G7SGRjtfskPYjLJAyzoAq9HP93CYZSuadyUR1yhefET5Yrka QsoTN9u/Ai76W+LR0A+Z1IHG4CEgXgW7su71lNdJtiTgPKQCoDQyxUmFMLbxwuSV A9bW0Cx2NJRP7ceAGfV5T8A6xFW1iFLRjg7ITts/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5dMA8CDS1t+iBQ6BqfLDyqTscEwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzkzNTI1NGZlLWIyMTEtNDVjNi04NzRiLTJkNTM2MTVmODNlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALGQwDQYJKoZIhvcNAQELBQADggEBAKlNgMJZ9uFdGQHTwd2CRA9B qnRE8tpfNnnaP7mOn2pzWR2Csq3FFHhuxKFyqvSH6ogYrdZ2bc66fabtC3479L+6 Lm9p0jI5ZR/tIrBj5QQQZ/f3e1Ma9Q8lsa5EALK+T5AKu0thE2SoAaTlV2Lk9cBp GLK707mRpZc8zKhZXtXNg/5ibZeBf9yBPUGfTuFPdDD2qfGVo+OlRQingFWSGdEK ihmdCX2vL9ZSqyipkfkDTULzAkpZ43sVWvxrvq8DteETi5mkjcbmKs8E6uszrigR VIBMIfhRM+buxSlrdOqOe0sfuI9wCdMNPrH+gJiRZk1lk/pVO/dxGRUQUPFaDvU= -----END CERTIFICATE-----Generated at Sun May 3 16:13:46 2026 by rpki-client