$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0001cb33-47b8-4eb2-8e68-746effca9784.roa File: 0001cb33-47b8-4eb2-8e68-746effca9784.roa (raw, json) Hash identifier: aQOIz6H7C6SN6JP7kCJKVfL1dtDaIlBFJFjfCzTP8UY= Subject key identifier: 49:9C:9A:A3:F1:BF:C6:54:9A:14:21:F4:49:40:31:98:1E:33:43:A8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 148DA3685AD2FE4D90D07E062673409513D9152A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0001cb33-47b8-4eb2-8e68-746effca9784.roa Signing time: Tue 19 May 2026 02:00:36 +0000 ROA not before: Tue 19 May 2026 02:00:36 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 167.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 06 Jun 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:8d:a3:68:5a:d2:fe:4d:90:d0:7e:06:26:73:40:95:13:d9:15:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 19 02:00:36 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=cfc0fa65d1f21fe1e3594938d57acdbcbd608de0f230cd4e991accb7bf17c2bb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:af:1c:50:91:2f:fc:4d:d4:58:7e:a8:a0:33: 63:72:38:ec:74:b3:c0:e9:f1:ad:08:ec:47:52:6b: 7d:cd:b6:d4:b8:66:cf:d1:95:3d:3e:cd:a4:d6:30: b7:1d:8a:06:b6:75:42:ce:4d:a3:5c:ff:9c:b9:a0: e7:75:4e:a6:22:ef:4c:ef:ca:c4:3d:68:1c:0b:ab: 3d:9e:c1:26:2b:50:34:cc:79:82:0a:33:eb:98:70: e4:72:44:04:40:33:3c:d9:8a:79:d9:74:bb:a1:55: 7d:0e:7c:cd:64:d6:b7:eb:d6:e0:21:a5:4f:46:1d: 50:dc:71:8a:d5:2e:8c:fa:f3:d8:91:df:88:18:98: 26:c2:67:d3:8c:39:8f:6d:68:25:b5:9a:c6:b5:a9: b6:62:5a:f7:01:43:a7:db:a7:99:bb:39:64:9a:f2: 89:c9:06:84:5b:99:1f:f3:eb:cf:30:3f:43:d1:81: 71:78:f1:0c:a5:ff:08:9f:41:d0:4e:a2:35:de:8f: c9:7c:2f:f7:5d:88:dd:cd:bf:7e:21:2d:29:dc:80: d1:3c:45:b2:48:91:c5:ce:d2:7e:1f:06:70:56:34: 85:01:6c:3b:7c:5e:29:00:c1:e1:3a:b9:0b:c3:1b: 0f:f5:20:9b:94:b1:1a:dc:6c:6f:31:66:fe:8b:dc: 91:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9C:9A:A3:F1:BF:C6:54:9A:14:21:F4:49:40:31:98:1E:33:43:A8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0001cb33-47b8-4eb2-8e68-746effca9784.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 86:77:e0:63:fb:a2:27:b7:a5:03:45:f7:8a:27:ec:9f:a5:b0: 5b:b2:68:e5:9a:4b:a7:af:7b:a3:95:c8:af:83:9c:35:3e:5d: a0:32:32:f5:23:91:82:1e:3f:23:8b:7d:ba:ac:45:8b:ab:f3: 5e:a1:2b:35:4e:bc:5f:1a:bc:99:f6:5f:f2:34:05:f7:dd:f9: 38:65:50:c7:77:db:98:9a:66:69:45:47:06:43:27:83:d3:27: cb:7c:a6:0e:07:65:a5:43:52:e2:4c:15:db:1e:41:44:54:df: 20:2b:25:e4:d2:eb:4a:17:bd:c3:d9:0e:20:bb:d8:32:2b:35: db:6b:6e:5d:c1:5c:50:4b:43:f8:db:e7:9e:a6:e8:74:b1:32: 17:c9:fc:1f:51:e8:75:1d:93:97:67:76:1a:a3:ae:42:fa:0c: b2:1b:13:1b:81:27:fa:38:52:ee:d3:c2:17:66:6b:8b:da:22: b2:24:da:92:b2:93:d9:1b:10:b1:8c:ac:e1:be:5c:e8:4d:34: c3:01:fe:71:0a:fe:61:ae:c1:45:36:21:47:71:d0:a2:e5:2f: 73:93:21:96:19:8d:60:5e:35:9f:a2:49:58:76:1d:84:20:76: 82:1d:b5:7f:8e:b4:82:1f:24:8a:0a:55:d9:42:d1:56:b4:67: d0:a3:ed:0c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFI2jaFrS/k2Q0H4GJnNAlRPZFSowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE5MDIwMDM2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmMwZmE2NWQxZjIxZmUxZTM1OTQ5MzhkNTdhY2RiY2Jk NjA4ZGUwZjIzMGNkNGU5OTFhY2NiN2JmMTdjMmJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUrxxQkS/8TdRYfqigM2NyOOx0s8Dp8a0I7EdSa33NttS4 Zs/RlT0+zaTWMLcdiga2dULOTaNc/5y5oOd1TqYi70zvysQ9aBwLqz2ewSYrUDTM eYIKM+uYcORyRARAMzzZinnZdLuhVX0OfM1k1rfr1uAhpU9GHVDccYrVLoz689iR 34gYmCbCZ9OMOY9taCW1msa1qbZiWvcBQ6fbp5m7OWSa8onJBoRbmR/z688wP0PR gXF48Qyl/wifQdBOojXej8l8L/ddiN3Nv34hLSncgNE8RbJIkcXO0n4fBnBWNIUB bDt8XikAweE6uQvDGw/1IJuUsRrcbG8xZv6L3JELAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSZyao/G/xlSaFCH0SUAxmB4zQ6gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwMDFjYjMzLTQ3YjgtNGViMi04ZTY4LTc0NmVmZmNhOTc4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnpjANBgkqhkiG9w0BAQsFAAOCAQEAhnfgY/uiJ7elA0X3iifsn6WwW7Jo 5ZpLp697o5XIr4OcNT5doDIy9SORgh4/I4t9uqxFi6vzXqErNU68Xxq8mfZf8jQF 9935OGVQx3fbmJpmaUVHBkMng9Mny3ymDgdlpUNS4kwV2x5BRFTfICsl5NLrShe9 w9kOILvYMis122tuXcFcUEtD+NvnnqbodLEyF8n8H1HodR2Tl2d2GqOuQvoMshsT G4En+jhS7tPCF2Zri9oisiTakrKT2RsQsYys4b5c6E00wwH+cQr+Ya7BRTYhR3HQ ouUvc5MhlhmNYF41n6JJWHYdhCB2gh21f460gh8kigpV2ULRVrRn0KPtDA== -----END CERTIFICATE-----Generated at Thu Jun 4 14:30:36 2026 by rpki-client