$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41aa5604-2dd4-489a-b935-155c1723713b.roa File: 41aa5604-2dd4-489a-b935-155c1723713b.roa (raw, json) Hash identifier: Kdi8lNDoLDfjD9RliOL3C3pqDOmciRdIL4Wi3CJVFpA= Subject key identifier: B3:F4:87:A1:8A:94:25:7F:28:BA:02:F0:07:37:93:E8:EB:D4:13:98 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 61343E8065EB542C4139F33BE934B82044D801A0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41aa5604-2dd4-489a-b935-155c1723713b.roa Signing time: Thu 14 May 2026 00:20:08 +0000 ROA not before: Thu 14 May 2026 00:20:08 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.124.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:34:3e:80:65:eb:54:2c:41:39:f3:3b:e9:34:b8:20:44:d8:01:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 14 00:20:08 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=4a4a204d71fc8dd330bfcd1c7859c8cede34fe2aa388b8eac1262157170f37a2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:8f:12:f7:e4:3d:c2:f2:41:45:0d:9f:0f: b4:9d:8d:29:d8:5a:e1:9d:3d:d2:e9:fd:fc:e2:79: 63:cc:45:ab:84:d2:e9:30:1e:21:0c:ed:4d:47:53: 34:70:50:87:61:a0:cb:bb:56:14:5c:03:85:69:00: 73:61:09:9a:3b:70:0a:05:2b:55:7d:37:2a:54:30: 3b:ce:5b:9f:95:7e:62:23:60:a8:86:c8:16:0c:80: 63:42:a9:2f:9d:31:fb:4b:31:1d:15:b3:65:9a:c6: 04:8c:46:30:21:c7:9e:b3:46:2f:d7:9f:92:cf:ea: 6e:68:13:e1:7d:29:6e:fc:6e:9d:95:cd:85:d3:d1: 9a:1d:ed:12:41:6e:03:70:30:96:16:63:6a:82:03: ae:ca:b9:c5:90:66:c0:13:56:b3:86:f2:10:aa:83: 27:10:d3:f2:74:68:92:93:27:97:80:a7:9f:19:55: 2a:dd:17:23:e4:09:16:9c:04:95:dc:fc:28:4c:c8: c7:90:9f:b6:2c:1b:47:ca:e8:5b:da:7a:ad:b9:f2: 71:aa:ab:15:6d:95:2c:1c:8f:b0:eb:9a:00:d6:fb: 05:3e:33:7d:aa:74:5c:e2:c5:6a:f2:51:79:2f:9a: ff:f6:90:df:72:6f:ab:10:22:58:f0:92:b9:88:00: a6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F4:87:A1:8A:94:25:7F:28:BA:02:F0:07:37:93:E8:EB:D4:13:98 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41aa5604-2dd4-489a-b935-155c1723713b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.124.134.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:ee:81:0a:f3:18:5c:e8:87:c7:02:b5:64:9a:85:5d:3d:fb: 6c:f3:38:bb:fe:4c:ef:e9:90:48:44:a1:f7:a8:06:15:75:fe: 51:09:db:c1:4d:15:33:8c:a3:9b:d6:77:f5:f5:d5:e9:3e:14: 78:42:06:6a:e1:ab:a6:ed:0e:10:a8:f5:f7:95:ed:80:37:45: e0:5d:40:d2:b6:fc:e5:ca:37:6c:ba:16:35:0b:c9:5b:90:16: 58:a7:b4:86:88:c3:f4:2c:12:a9:98:cc:42:54:a7:61:a9:90: 82:56:0d:3d:73:51:7d:72:4f:63:51:60:45:f5:cd:8a:8d:63: 0c:85:78:c3:e8:cc:ea:6a:13:b7:cc:c5:71:a8:01:6d:01:ad: e4:48:13:77:f0:81:27:90:b7:f8:22:dd:f2:45:81:4d:10:29: eb:b4:ca:64:ec:65:98:53:e6:08:5f:53:78:6f:ec:e4:27:c4: eb:3c:d7:0e:ff:19:2c:a1:96:c8:77:71:4f:b0:fa:08:43:f2: 49:08:de:f2:05:f7:69:25:46:eb:ce:ff:bf:e5:b2:52:83:76: b5:fd:25:35:ed:e3:07:52:f8:61:fb:a8:43:e3:db:d5:ad:9c: 76:d7:78:0c:96:d3:20:f3:da:37:31:61:2e:e4:30:fa:50:b3: 86:85:44:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYTQ+gGXrVCxBOfM76TS4IETYAaAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE0MDAyMDA4WhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTRhMjA0ZDcxZmM4ZGQzMzBiZmNkMWM3ODU5YzhjZWRl MzRmZTJhYTM4OGI4ZWFjMTI2MjE1NzE3MGYzN2EyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzA48S9+Q9wvJBRQ2fD7SdjSnYWuGdPdLp/fzieWPMRauE 0ukwHiEM7U1HUzRwUIdhoMu7VhRcA4VpAHNhCZo7cAoFK1V9NypUMDvOW5+VfmIj YKiGyBYMgGNCqS+dMftLMR0Vs2WaxgSMRjAhx56zRi/Xn5LP6m5oE+F9KW78bp2V zYXT0Zod7RJBbgNwMJYWY2qCA67KucWQZsATVrOG8hCqgycQ0/J0aJKTJ5eAp58Z VSrdFyPkCRacBJXc/ChMyMeQn7YsG0fK6Fvaeq258nGqqxVtlSwcj7DrmgDW+wU+ M32qdFzixWryUXkvmv/2kN9yb6sQIljwkrmIAKadAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs/SHoYqUJX8ougLwBzeT6OvUE5gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQxYWE1NjA0LTJkZDQtNDg5YS1iOTM1LTE1NWMxNzIzNzEzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0fIYwDQYJKoZIhvcNAQELBQADggEBABzugQrzGFzoh8cCtWSahV09+2zz OLv+TO/pkEhEofeoBhV1/lEJ28FNFTOMo5vWd/X11ek+FHhCBmrhq6btDhCo9feV 7YA3ReBdQNK2/OXKN2y6FjULyVuQFlintIaIw/QsEqmYzEJUp2GpkIJWDT1zUX1y T2NRYEX1zYqNYwyFeMPozOpqE7fMxXGoAW0BreRIE3fwgSeQt/gi3fJFgU0QKeu0 ymTsZZhT5ghfU3hv7OQnxOs81w7/GSyhlsh3cU+w+ghD8kkI3vIF92klRuvO/7/l slKDdrX9JTXt4wdS+GH7qEPj29WtnHbXeAyW0yDz2jcxYS7kMPpQs4aFRFo= -----END CERTIFICATE-----Generated at Sat Jun 13 04:49:33 2026 by rpki-client