$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ab4215a6-743f-4255-989b-f539208e94f7.roa File: ab4215a6-743f-4255-989b-f539208e94f7.roa (raw, json) Hash identifier: YqahwcpuRB/MbqJugsZ8PljJBffoJDp0/iy/+AT5xaM= Subject key identifier: 00:2F:5E:A3:21:B6:13:83:E1:E5:2B:A3:C8:05:9A:67:26:C3:E8:78 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 192811777C5AC90059E0D792A67063909DE466F0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ab4215a6-743f-4255-989b-f539208e94f7.roa Signing time: Sun 03 May 2026 00:31:05 +0000 ROA not before: Sun 03 May 2026 00:31:05 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2150::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:28:11:77:7c:5a:c9:00:59:e0:d7:92:a6:70:63:90:9d:e4:66:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 00:31:05 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=db0ddfc6e055486dcdaf78bf5f169c00ad8604c34a118dc045b5e5eb85d969c6, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:54:5d:55:8e:8c:6a:e5:08:cd:1c:05:9c:e1: 3e:f1:ce:56:2c:be:3f:e7:19:02:f9:00:89:3c:8e: a9:82:24:40:33:28:fe:1e:ab:b0:68:40:25:ec:e1: 40:e5:37:d7:d0:f5:e4:73:79:b8:85:5f:44:01:bc: eb:ed:10:7d:da:3d:bd:cc:f7:b4:c1:94:44:2d:fe: 22:77:23:cd:90:03:97:52:4d:c4:8f:d4:61:88:05: 3a:6d:b8:5d:7c:82:c8:2c:1b:b0:d0:a0:63:3c:0c: 32:24:6d:83:6d:28:40:50:34:3d:c4:3d:64:cb:7c: aa:dd:14:33:6c:4a:ba:0c:11:44:ac:4b:58:da:89: a2:2a:71:17:d6:92:d5:29:e0:e0:43:49:74:84:cc: 0d:86:9e:50:4b:55:64:f9:4a:cb:4d:57:22:4c:78: 83:c6:58:c9:ac:9e:c0:40:8d:36:33:4d:d1:d2:fa: 71:6a:8a:79:77:37:1a:fa:f8:fb:39:88:0b:e0:76: 7b:bf:26:72:80:92:85:e4:60:76:c4:0b:ea:48:ff: 42:24:85:75:6d:a6:bf:b8:d7:14:78:9c:18:3c:c7: fb:fd:a4:e6:1c:31:64:e3:38:6c:d9:a7:f7:e3:0e: 3a:9f:59:9c:f8:f8:ae:1d:05:e7:1d:ba:79:f1:fe: 3e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2F:5E:A3:21:B6:13:83:E1:E5:2B:A3:C8:05:9A:67:26:C3:E8:78 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ab4215a6-743f-4255-989b-f539208e94f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2150::/46 Signature Algorithm: sha256WithRSAEncryption 52:b0:e1:c7:94:4b:f5:01:3a:5b:a0:92:cc:39:9e:30:02:6f: 80:cc:45:e9:c7:56:fb:4a:65:bc:3e:7e:bc:2b:e1:2d:08:1f: d7:28:d2:c9:5e:f9:81:4f:31:91:31:7b:60:1a:7a:11:c3:b2: c4:7a:5f:8c:f2:98:9f:e5:40:72:c3:bc:b8:c1:6a:79:07:bf: 76:0c:8a:a8:0f:1d:73:d3:2e:4b:69:0a:51:c7:c1:29:ef:dd: 43:bc:5e:01:ad:ba:c4:7f:13:08:80:ef:35:52:85:63:c5:b0: 92:bb:40:df:f3:2e:ec:15:ad:f0:ed:0b:98:7d:c7:52:12:47: 28:ca:35:28:14:5c:9a:1d:b4:d7:ea:4d:fe:10:dc:3b:ad:da: e9:c9:57:5a:e6:a6:ca:fa:b9:f4:80:8b:76:5f:0b:8b:8c:89: ac:3f:70:88:a4:95:37:6c:30:9c:25:c2:db:8c:7f:d6:fc:9d: fa:c1:83:1d:70:15:02:d9:98:d4:d4:3c:1a:cb:a1:09:8c:95: b6:77:e5:95:be:7d:d9:21:bb:bd:b3:49:b8:1b:9a:f8:73:3f: 67:ad:5e:dc:e4:16:c7:16:43:15:55:97:db:0d:69:17:99:3f: 13:50:e4:1a:e4:eb:e4:9e:f9:df:38:21:28:30:94:c9:80:87: 50:29:e5:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGSgRd3xayQBZ4NeSpnBjkJ3kZvAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDAzMTA1WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjBkZGZjNmUwNTU0ODZkY2RhZjc4YmY1ZjE2OWMwMGFk ODYwNGMzNGExMThkYzA0NWI1ZTVlYjg1ZDk2OWM2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1VF1Vjoxq5QjNHAWc4T7xzlYsvj/nGQL5AIk8jqmCJEAz KP4eq7BoQCXs4UDlN9fQ9eRzebiFX0QBvOvtEH3aPb3M97TBlEQt/iJ3I82QA5dS TcSP1GGIBTptuF18gsgsG7DQoGM8DDIkbYNtKEBQND3EPWTLfKrdFDNsSroMEUSs S1jaiaIqcRfWktUp4OBDSXSEzA2GnlBLVWT5SstNVyJMeIPGWMmsnsBAjTYzTdHS +nFqinl3Nxr6+Ps5iAvgdnu/JnKAkoXkYHbEC+pI/0IkhXVtpr+41xR4nBg8x/v9 pOYcMWTjOGzZp/fjDjqfWZz4+K4dBecdunnx/j4pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAC9eoyG2E4Ph5SujyAWaZybD6HgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FiNDIxNWE2LTc0M2YtNDI1NS05ODliLWY1MzkyMDhlOTRmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAIVAwDQYJKoZIhvcNAQELBQADggEBAFKw4ceUS/UBOlugksw5njAC b4DMRenHVvtKZbw+frwr4S0IH9co0sle+YFPMZExe2AaehHDssR6X4zymJ/lQHLD vLjBankHv3YMiqgPHXPTLktpClHHwSnv3UO8XgGtusR/EwiA7zVShWPFsJK7QN/z LuwVrfDtC5h9x1ISRyjKNSgUXJodtNfqTf4Q3Dut2unJV1rmpsr6ufSAi3ZfC4uM iaw/cIiklTdsMJwlwtuMf9b8nfrBgx1wFQLZmNTUPBrLoQmMlbZ35ZW+fdkhu72z SbgbmvhzP2etXtzkFscWQxVVl9sNaReZPxNQ5Brk6+Se+d84ISgwlMmAh1Ap5bw= -----END CERTIFICATE-----Generated at Sun May 3 14:50:35 2026 by rpki-client