$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d54267b6-b91c-4863-91d5-2f98503e5d0f.roa File: d54267b6-b91c-4863-91d5-2f98503e5d0f.roa (raw, json) Hash identifier: xwdeJY0ZJKGpBfzbhkFa6zvi2a4VCL0U1L5ZOl/GuyA= Subject key identifier: B3:58:9B:8C:27:6C:16:E6:0E:DD:64:DC:C2:B5:23:39:86:F8:82:0E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2E2E19EDFFB708C12A50C67F9E1ABAAC05290C6F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d54267b6-b91c-4863-91d5-2f98503e5d0f.roa Signing time: Sun 03 May 2026 03:01:04 +0000 ROA not before: Sun 03 May 2026 03:01:04 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a22::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:2e:19:ed:ff:b7:08:c1:2a:50:c6:7f:9e:1a:ba:ac:05:29:0c:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 03:01:04 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=c8b7fe24576c68c39d0f73860bcd6844e69e8c6e3b98b921767b827bd02e3308, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5e:33:de:c6:ef:5b:16:0c:9a:4a:16:4a:c2: 14:46:3b:87:aa:4a:5b:69:90:c6:d1:3c:79:fd:26: c9:cf:b7:b3:99:0e:2e:36:0d:6c:80:79:19:cc:13: 26:5c:e1:03:78:d7:6b:31:06:69:a4:7c:f9:76:9f: 20:02:6b:dc:f4:6c:d7:c7:dd:41:6d:7e:17:84:3d: a3:f5:89:2d:0b:f2:3a:f4:e6:bf:23:d7:3b:57:5f: 7f:d6:11:25:78:97:60:57:95:ee:53:09:5e:bb:6e: 7a:6a:32:6b:d8:9e:93:8f:84:8a:c7:b4:4b:a4:af: ff:45:db:69:a5:db:a3:54:0c:89:c6:a7:4d:09:51: 14:72:b6:5b:c8:78:f4:59:65:67:87:ef:77:2c:b2: c2:c4:4c:ef:e3:88:a7:53:9b:00:e1:7a:59:14:6c: 3b:83:48:61:b2:3c:a1:3c:4a:bf:40:f9:a4:80:ef: 08:4f:5b:5d:f9:bd:50:1c:b6:38:f0:c2:5f:67:fd: 68:ad:6d:7a:c7:cc:da:93:6a:36:33:a8:e1:bf:94: e0:9a:0b:59:ad:4a:6d:43:b4:1e:f9:d9:97:0b:48: 09:21:9a:1b:70:ac:0c:3a:03:62:a0:9e:82:0a:eb: 8d:80:4c:63:7d:d4:66:a7:25:bc:f9:04:bd:fd:df: 9e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:58:9B:8C:27:6C:16:E6:0E:DD:64:DC:C2:B5:23:39:86:F8:82:0E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d54267b6-b91c-4863-91d5-2f98503e5d0f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a22::/47 Signature Algorithm: sha256WithRSAEncryption b7:3e:49:a6:60:f8:03:43:2a:3b:68:b2:19:e7:e2:7d:d6:f5: b0:fb:57:33:dd:69:dc:95:5a:62:cd:c0:49:73:b9:64:1d:17: 20:12:16:68:d4:9d:c3:6d:fe:6b:6d:d6:8e:56:f0:0d:a2:74: 19:2e:a8:59:15:57:4a:9c:35:cf:63:37:a4:e0:84:b8:42:72: dd:61:1b:2e:d0:12:06:ec:ae:7c:99:be:29:2a:ec:ce:83:7b: 12:11:9d:80:f9:18:06:31:97:14:8e:0e:5e:d4:93:07:79:60: 46:32:46:68:02:31:cd:39:f0:a9:de:ae:2d:05:69:e3:c9:b2: 67:55:06:c8:c1:3d:3c:9e:34:54:17:24:68:41:cd:ef:29:7b: 62:0e:ca:64:72:bf:63:c3:14:28:a1:5d:67:a5:b5:95:73:4c: 9a:35:24:26:5b:5c:58:3c:5b:f6:e6:49:35:af:f1:d5:8c:28: a9:08:83:e7:5f:1b:59:90:93:a1:50:fd:03:50:83:05:d4:24: 6d:75:97:c1:1d:71:50:1a:84:2f:3e:bc:2d:00:04:49:fd:04: 9a:e5:2a:fd:34:ff:91:8f:ea:70:60:36:2f:3c:23:43:b4:7b: 7d:3c:d3:b7:6e:10:34:7a:f9:08:57:8a:5d:4a:db:45:ac:d1: c9:2e:9a:19 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULi4Z7f+3CMEqUMZ/nhq6rAUpDG8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDMwMTA0WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOGI3ZmUyNDU3NmM2OGMzOWQwZjczODYwYmNkNjg0NGU2 OWU4YzZlM2I5OGI5MjE3NjdiODI3YmQwMmUzMzA4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjXjPexu9bFgyaShZKwhRGO4eqSltpkMbRPHn9JsnPt7OZ Di42DWyAeRnMEyZc4QN412sxBmmkfPl2nyACa9z0bNfH3UFtfheEPaP1iS0L8jr0 5r8j1ztXX3/WESV4l2BXle5TCV67bnpqMmvYnpOPhIrHtEukr/9F22ml26NUDInG p00JURRytlvIePRZZWeH73csssLETO/jiKdTmwDhelkUbDuDSGGyPKE8Sr9A+aSA 7whPW135vVActjjwwl9n/WitbXrHzNqTajYzqOG/lOCaC1mtSm1DtB752ZcLSAkh mhtwrAw6A2KgnoIK642ATGN91GanJbz5BL39357fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUs1ibjCdsFuYO3WTcwrUjOYb4gg4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Q1NDI2N2I2LWI5MWMtNDg2My05MWQ1LTJmOTg1MDNlNWQwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKiIwDQYJKoZIhvcNAQELBQADggEBALc+SaZg+ANDKjtoshnn4n3W 9bD7VzPdadyVWmLNwElzuWQdFyASFmjUncNt/mtt1o5W8A2idBkuqFkVV0qcNc9j N6TghLhCct1hGy7QEgbsrnyZvikq7M6DexIRnYD5GAYxlxSODl7Ukwd5YEYyRmgC Mc058Kneri0FaePJsmdVBsjBPTyeNFQXJGhBze8pe2IOymRyv2PDFCihXWeltZVz TJo1JCZbXFg8W/bmSTWv8dWMKKkIg+dfG1mQk6FQ/QNQgwXUJG11l8EdcVAahC8+ vC0ABEn9BJrlKv00/5GP6nBgNi88I0O0e30807duEDR6+QhXil1K20Ws0ckumhk= -----END CERTIFICATE-----Generated at Sun May 3 16:59:15 2026 by rpki-client