$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c40cd14-5143-44b7-89c9-e6dded62e58e.roa File: 3c40cd14-5143-44b7-89c9-e6dded62e58e.roa (raw, json) Hash identifier: oL5bItQrtKqyqRXXH2UMlQuNDO9IcvO6mQMbLIv3/E0= Subject key identifier: 92:ED:46:76:44:D6:89:39:B4:54:0B:08:61:F8:3B:4E:D6:EA:74:91 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 47D4C2D4851502C4DDB34797CE141744A4D85E05 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c40cd14-5143-44b7-89c9-e6dded62e58e.roa Signing time: Thu 14 May 2026 01:20:04 +0000 ROA not before: Thu 14 May 2026 01:20:04 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.124.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d4:c2:d4:85:15:02:c4:dd:b3:47:97:ce:14:17:44:a4:d8:5e:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 14 01:20:04 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=64f4ac1ee183dace37bd9266a703d51af2ddc135bb9828184e9ade380e4c3a05, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a3:88:c7:7d:f7:2f:55:4d:bb:7b:43:5c:f8: 87:df:28:6b:d9:16:06:9c:db:a9:bf:f0:16:71:69: 80:3a:35:d4:17:72:52:ce:57:c0:d0:3f:4d:71:cb: 46:bb:83:e6:8c:f9:42:10:22:a6:74:94:ad:f4:c0: 19:89:f9:0b:81:ef:d6:c5:dd:81:c8:e2:8f:63:3b: c0:b9:f7:29:9b:c7:38:9e:66:7e:0e:14:c4:1c:e4: 6e:f1:33:b5:41:10:5c:fb:35:54:e5:3a:70:40:b1: a5:bc:5c:67:b5:0f:e9:40:fc:55:8c:50:2b:0f:c4: cd:25:fa:e9:82:fb:e4:49:4d:f8:0e:46:7a:e0:dd: b4:ec:2d:bc:16:5b:4f:b7:49:6a:10:52:58:9a:f8: f9:37:3b:fc:49:b2:e5:1a:43:52:c8:ee:c2:20:4c: d4:d6:1a:39:be:e6:4f:ae:0d:36:5d:af:89:9f:9d: 91:68:b8:e7:b9:22:ed:ed:3d:4d:31:8a:ca:bd:b0: 87:fe:11:ed:35:00:42:b3:d9:b0:ad:b9:06:79:11: 0a:07:61:62:00:e9:ea:06:36:e7:5e:d0:0c:de:17: 33:92:4d:e3:1f:5e:45:30:86:2d:0b:25:65:90:81: a8:f0:80:0a:19:43:7e:a3:de:ac:06:08:2a:fa:ed: af:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:ED:46:76:44:D6:89:39:B4:54:0B:08:61:F8:3B:4E:D6:EA:74:91 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c40cd14-5143-44b7-89c9-e6dded62e58e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.124.146.0/24 Signature Algorithm: sha256WithRSAEncryption 49:16:74:c2:ea:39:67:fd:b0:b2:11:1a:23:c8:6b:5d:3f:e8: 16:83:e3:9a:81:cc:49:e7:49:76:11:8b:56:97:68:c8:ab:10: 71:52:24:ea:f5:39:ba:f7:b0:47:45:62:24:86:8e:4d:ca:7f: 59:2d:c2:d2:82:4e:79:ee:9a:21:d3:c7:ef:50:bb:2e:98:f7: 6c:fe:ba:53:d8:2f:48:8c:7c:26:b5:6d:14:00:56:43:de:d2: 2e:f4:bf:db:dc:e2:a0:9b:19:b3:ea:7f:7b:17:a7:e9:16:b7: a8:ae:6a:f4:1f:80:22:5d:7a:28:70:3b:d0:49:c7:d1:0a:52: b3:76:e4:d1:41:30:35:fb:a7:27:9d:b0:f8:d1:7b:d0:ae:b8: e2:cb:21:a5:21:48:aa:fb:00:78:cd:28:37:70:31:a8:1d:8e: 10:d5:07:0b:03:c0:1d:d7:40:5c:6c:99:cc:2f:36:27:bc:2d: 95:97:9b:ac:35:fb:ff:aa:1a:51:7f:75:ce:3e:a0:20:0d:31: 9e:53:07:e9:3f:24:e9:75:64:d7:ef:9b:57:37:60:90:a6:43: 05:0a:f8:5f:27:2f:e4:4f:2f:ba:46:55:cd:15:07:82:a5:d5: fa:f0:df:82:60:d0:a6:b5:fa:5e:4a:a0:b6:40:17:e3:19:f8: 75:b1:02:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR9TC1IUVAsTds0eXzhQXRKTYXgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE0MDEyMDA0WhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGY0YWMxZWUxODNkYWNlMzdiZDkyNjZhNzAzZDUxYWYy ZGRjMTM1YmI5ODI4MTg0ZTlhZGUzODBlNGMzYTA1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCo4jHffcvVU27e0Nc+IffKGvZFgac26m/8BZxaYA6NdQX clLOV8DQP01xy0a7g+aM+UIQIqZ0lK30wBmJ+QuB79bF3YHI4o9jO8C59ymbxzie Zn4OFMQc5G7xM7VBEFz7NVTlOnBAsaW8XGe1D+lA/FWMUCsPxM0l+umC++RJTfgO Rnrg3bTsLbwWW0+3SWoQUlia+Pk3O/xJsuUaQ1LI7sIgTNTWGjm+5k+uDTZdr4mf nZFouOe5Iu3tPU0xisq9sIf+Ee01AEKz2bCtuQZ5EQoHYWIA6eoGNude0AzeFzOS TeMfXkUwhi0LJWWQgajwgAoZQ36j3qwGCCr67a+BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUku1GdkTWiTm0VAsIYfg7TtbqdJEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNjNDBjZDE0LTUxNDMtNDRiNy04OWM5LWU2ZGRlZDYyZTU4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0fJIwDQYJKoZIhvcNAQELBQADggEBAEkWdMLqOWf9sLIRGiPIa10/6BaD 45qBzEnnSXYRi1aXaMirEHFSJOr1Obr3sEdFYiSGjk3Kf1ktwtKCTnnumiHTx+9Q uy6Y92z+ulPYL0iMfCa1bRQAVkPe0i70v9vc4qCbGbPqf3sXp+kWt6iuavQfgCJd eihwO9BJx9EKUrN25NFBMDX7pyedsPjRe9CuuOLLIaUhSKr7AHjNKDdwMagdjhDV BwsDwB3XQFxsmcwvNie8LZWXm6w1+/+qGlF/dc4+oCANMZ5TB+k/JOl1ZNfvm1c3 YJCmQwUK+F8nL+RPL7pGVc0VB4Kl1frw34Jg0Ka1+l5KoLZAF+MZ+HWxAg0= -----END CERTIFICATE-----Generated at Sat Jun 13 04:46:51 2026 by rpki-client