$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa File: 0c5be2da-ccb4-465a-b0a1-1151979c0998.roa (raw, json) Hash identifier: jJ+2eVbfjW32Hm+jHpH9NxmgJ89G/VY8bBAGEnmZoEE= Subject key identifier: 47:0D:EF:A0:C9:5A:D6:45:05:95:4F:2B:25:E3:42:6C:83:FA:0D:F6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1F245D89D14AF70809C914D9F5D23829D4728EF4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa Signing time: Tue 19 May 2026 01:10:11 +0000 ROA not before: Tue 19 May 2026 01:10:11 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 22394 IP address blocks: 155.146.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 May 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:24:5d:89:d1:4a:f7:08:09:c9:14:d9:f5:d2:38:29:d4:72:8e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 19 01:10:11 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=764244da2e277506e55194ac191334a0abf5d2632d2a00592a0a260b873e23ab, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:c1:68:79:33:35:0b:49:39:ad:a2:66:6a:2c: 38:eb:98:0f:b3:c8:0f:6b:85:6f:35:a2:29:15:7e: 29:f0:d6:93:5d:cf:1a:69:e6:e6:1f:df:87:74:a3: d6:a1:fe:a4:e0:64:6d:6f:8d:ee:75:fa:f2:34:99: b3:94:b0:99:b4:7a:7b:5f:16:aa:1d:fe:ca:77:b4: 45:6a:24:37:74:50:fa:bb:12:18:d7:b0:94:f7:b2: ab:39:e3:6c:6b:15:8e:c6:84:b2:91:84:d9:0b:3c: 7d:9f:eb:df:ef:fa:dc:26:9a:a0:e9:3b:b4:d1:ce: 38:49:be:8d:82:48:52:b3:ae:b2:10:7f:7a:e4:e0: b4:15:23:4a:36:bf:ff:7c:69:86:c3:3c:ac:ce:d5: 14:46:67:ba:04:79:af:44:81:ce:96:09:17:15:bf: c6:a4:6b:2f:ad:39:b8:9d:81:0b:cd:13:e5:11:42: 16:fb:b1:70:6c:d3:d2:3c:f6:0a:9e:13:ed:23:cf: 2e:fe:18:3b:91:cc:75:9e:25:66:98:82:5e:a1:73: bd:22:ac:7a:9d:da:7d:37:33:4d:6d:0a:cf:58:87: 8a:e9:1e:e5:4a:43:50:7b:ea:8f:a6:90:86:dd:df: 4c:1b:02:29:a7:11:d0:ea:31:b8:cd:f4:b8:b6:53: 7f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0D:EF:A0:C9:5A:D6:45:05:95:4F:2B:25:E3:42:6C:83:FA:0D:F6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.146.96.0/20 Signature Algorithm: sha256WithRSAEncryption 06:77:e4:0c:62:13:e9:e0:b2:3a:5b:61:3d:3c:20:73:7c:b7: 0e:24:f2:93:53:03:bd:f3:98:f5:d7:8f:d5:1e:9b:92:e4:5c: 62:45:10:7e:6b:10:d4:b9:d8:f4:35:e2:44:94:80:fd:1a:fd: 31:ee:3b:30:5d:7f:9a:33:9e:81:72:05:63:21:68:2f:20:a2: da:ba:f6:2a:65:c6:c5:f9:27:60:af:91:2e:2a:5b:47:3a:5e: 91:b0:fd:48:57:7d:0b:f1:02:92:a3:ef:cc:72:99:9c:3b:ab: 7d:ec:8c:ee:26:f1:63:df:26:6b:4d:f9:f1:2f:92:b7:9c:87: 95:9b:7b:b0:9c:1d:15:37:68:14:07:12:b9:f6:1a:f5:c3:57: 4f:db:d7:27:8b:92:44:14:24:cb:7f:6d:f6:43:7b:8f:43:31: 46:b8:80:94:d1:a7:7e:c9:c0:aa:cb:17:b6:02:8d:6d:63:61: 0e:60:47:4c:c9:f4:d1:ef:f9:2a:ec:43:6e:cb:9b:72:96:49: b9:87:5d:60:72:79:8f:cb:ca:f4:33:2b:72:f1:32:78:2b:31: 1d:fc:1a:c7:84:73:78:6e:50:ac:64:b8:39:54:a9:aa:67:01: 91:ea:89:c7:06:d5:e6:6c:8f:5a:6a:00:ef:10:dd:bf:9a:fa: e5:ac:b6:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHyRdidFK9wgJyRTZ9dI4KdRyjvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE5MDExMDExWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjQyNDRkYTJlMjc3NTA2ZTU1MTk0YWMxOTEzMzRhMGFi ZjVkMjYzMmQyYTAwNTkyYTBhMjYwYjg3M2UyM2FiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLwWh5MzULSTmtomZqLDjrmA+zyA9rhW81oikVfinw1pNd zxpp5uYf34d0o9ah/qTgZG1vje51+vI0mbOUsJm0entfFqod/sp3tEVqJDd0UPq7 EhjXsJT3sqs542xrFY7GhLKRhNkLPH2f69/v+twmmqDpO7TRzjhJvo2CSFKzrrIQ f3rk4LQVI0o2v/98aYbDPKzO1RRGZ7oEea9Egc6WCRcVv8akay+tObidgQvNE+UR Qhb7sXBs09I89gqeE+0jzy7+GDuRzHWeJWaYgl6hc70irHqd2n03M01tCs9Yh4rp HuVKQ1B76o+mkIbd30wbAimnEdDqMbjN9Li2U3/fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURw3voMla1kUFlU8rJeNCbIP6DfYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBjNWJlMmRhLWNjYjQtNDY1YS1iMGExLTExNTE5NzljMDk5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASbkmAwDQYJKoZIhvcNAQELBQADggEBAAZ35AxiE+ngsjpbYT08IHN8tw4k 8pNTA73zmPXXj9Uem5LkXGJFEH5rENS52PQ14kSUgP0a/THuOzBdf5oznoFyBWMh aC8gotq69iplxsX5J2CvkS4qW0c6XpGw/UhXfQvxApKj78xymZw7q33sjO4m8WPf JmtN+fEvkrech5Wbe7CcHRU3aBQHErn2GvXDV0/b1yeLkkQUJMt/bfZDe49DMUa4 gJTRp37JwKrLF7YCjW1jYQ5gR0zJ9NHv+SrsQ27Lm3KWSbmHXWByeY/LyvQzK3Lx MngrMR38GseEc3huUKxkuDlUqapnAZHqiccG1eZsj1pqAO8Q3b+a+uWstsM= -----END CERTIFICATE-----Generated at Thu May 21 22:45:08 2026 by rpki-client