$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df0c9601-11be-4d84-81a9-ae00f03387a8.roa File: df0c9601-11be-4d84-81a9-ae00f03387a8.roa (raw, json) Hash identifier: k22c38zMdm2HPOjVZ/jwt9nUde9jhFmAq5tVaXpr3no= Subject key identifier: 80:EF:7E:F8:FF:AC:40:4B:8C:71:EC:07:B9:2D:DC:1A:89:8D:ED:43 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 608E6D3E829A01915A74B3BC8E04A001A14B21A1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df0c9601-11be-4d84-81a9-ae00f03387a8.roa Signing time: Sun 03 May 2026 03:11:56 +0000 ROA not before: Sun 03 May 2026 03:11:56 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2734::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:8e:6d:3e:82:9a:01:91:5a:74:b3:bc:8e:04:a0:01:a1:4b:21:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 03:11:56 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=9c587486ff687417a4a71e3679e12929ebac7b0bf54b0658e5d4457226856567, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f5:77:aa:d0:59:3e:20:44:cd:e4:2d:8c:a9: 7f:d6:d7:44:2b:ee:b2:34:d3:f3:85:60:cd:cc:8e: 02:c2:c4:ee:ef:82:fd:9b:6b:a1:e3:d1:4d:f1:98: 02:aa:89:09:cb:eb:8a:96:ff:7a:ae:d9:47:8b:ff: 48:d5:f7:b2:1f:d1:81:5a:14:0a:bd:c2:85:f2:c7: e7:4f:67:2c:85:bf:08:10:13:8c:a6:c2:90:0e:d2: e7:d8:df:87:3e:00:3b:d9:9b:10:83:7d:08:3d:c2: 12:4f:b3:d5:1a:3c:6b:aa:5d:e0:98:fe:22:b7:3f: 37:b7:32:e3:29:ea:c4:da:f8:dd:93:af:3a:75:20: 38:4e:47:9d:1f:a0:73:ec:d2:89:ce:f2:56:8f:3f: 7e:be:54:4c:88:6f:e1:e9:14:b9:1a:a6:1a:0f:f9: 30:f1:9f:be:7b:0d:6a:bb:00:70:55:ef:f7:13:ea: 7b:68:af:b3:53:8b:61:74:a8:69:a7:06:be:f1:44: 33:a5:0c:03:3b:af:63:4d:01:86:9d:17:54:a9:e2: 21:0e:65:a8:99:22:8d:4a:1d:50:36:b5:14:49:90: 95:90:60:a7:3c:67:99:95:cf:0e:75:13:57:ef:1b: 6c:68:e6:4b:c2:22:b0:21:67:35:ac:5d:f4:3d:ab: f1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:EF:7E:F8:FF:AC:40:4B:8C:71:EC:07:B9:2D:DC:1A:89:8D:ED:43 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df0c9601-11be-4d84-81a9-ae00f03387a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2734::/47 Signature Algorithm: sha256WithRSAEncryption 4f:19:ff:47:2f:80:54:59:a6:7f:71:7d:ad:01:6d:0b:31:92: 0d:67:c0:09:db:a3:52:29:60:41:01:0e:96:aa:45:b9:8a:ca: 6a:6b:c1:36:9c:53:f3:d5:97:81:87:82:33:d7:c7:07:08:c6: da:e8:3c:4c:cd:99:dd:fc:80:b7:92:54:a6:0e:f5:8d:ac:4f: 3a:5e:a9:46:be:6b:38:cd:6f:65:f6:a0:89:f2:6c:ea:46:82: df:de:f7:e4:9f:b4:1f:6a:10:5a:a4:13:bb:da:b0:64:87:93: 30:5d:e6:fa:57:b7:a0:a7:d3:4e:58:62:59:74:b0:db:ba:aa: 4d:48:61:09:c9:83:30:61:1d:01:cf:3d:d5:e3:bf:ba:17:34: be:b2:1a:c9:68:42:be:f6:a4:46:58:b6:09:29:61:b4:4f:2d: a5:c8:29:f3:79:5a:7f:aa:3d:34:99:06:eb:b2:a0:28:85:c6: 89:42:b4:bd:db:05:79:49:81:45:fc:7d:73:17:da:9b:93:75: b7:f3:e9:f6:c3:9d:a2:52:83:8d:0d:01:b2:d5:81:82:94:75: da:5e:92:c8:15:39:f7:02:e5:0f:bd:0c:95:1e:3b:b4:8f:b4: 3c:d3:6f:ac:37:b3:54:a1:30:79:f9:76:37:25:e0:50:c0:99: d6:b9:6b:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYI5tPoKaAZFadLO8jgSgAaFLIaEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDMxMTU2WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzU4NzQ4NmZmNjg3NDE3YTRhNzFlMzY3OWUxMjkyOWVi YWM3YjBiZjU0YjA2NThlNWQ0NDU3MjI2ODU2NTY3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC49Xeq0Fk+IETN5C2MqX/W10Qr7rI00/OFYM3MjgLCxO7v gv2ba6Hj0U3xmAKqiQnL64qW/3qu2UeL/0jV97If0YFaFAq9woXyx+dPZyyFvwgQ E4ymwpAO0ufY34c+ADvZmxCDfQg9whJPs9UaPGuqXeCY/iK3Pze3MuMp6sTa+N2T rzp1IDhOR50foHPs0onO8laPP36+VEyIb+HpFLkaphoP+TDxn757DWq7AHBV7/cT 6ntor7NTi2F0qGmnBr7xRDOlDAM7r2NNAYadF1Sp4iEOZaiZIo1KHVA2tRRJkJWQ YKc8Z5mVzw51E1fvG2xo5kvCIrAhZzWsXfQ9q/GzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgO9++P+sQEuMcewHuS3cGomN7UMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RmMGM5NjAxLTExYmUtNGQ4NC04MWE5LWFlMDBmMDMzODdhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAJzQwDQYJKoZIhvcNAQELBQADggEBAE8Z/0cvgFRZpn9xfa0BbQsx kg1nwAnbo1IpYEEBDpaqRbmKymprwTacU/PVl4GHgjPXxwcIxtroPEzNmd38gLeS VKYO9Y2sTzpeqUa+azjNb2X2oInybOpGgt/e9+SftB9qEFqkE7vasGSHkzBd5vpX t6Cn005YYll0sNu6qk1IYQnJgzBhHQHPPdXjv7oXNL6yGsloQr72pEZYtgkpYbRP LaXIKfN5Wn+qPTSZBuuyoCiFxolCtL3bBXlJgUX8fXMX2puTdbfz6fbDnaJSg40N AbLVgYKUddpeksgVOfcC5Q+9DJUeO7SPtDzTb6w3s1ShMHn5djcl4FDAmda5a7c= -----END CERTIFICATE-----Generated at Sun May 3 15:30:37 2026 by rpki-client