$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa File: 809b8de9-35a6-4f5e-b327-c96f51b0a969.roa (raw, json) Hash identifier: 9UuEHL6ToxGtuDMRx0r4qabFONIwxnCOsVdV/u4b7os= Subject key identifier: AD:CB:06:3D:6C:EA:0A:1A:B3:12:21:85:C2:53:4B:2F:88:F1:15:A6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2E1325696AFE389A5CBE970703862C0D72BFF628 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa Signing time: Thu 14 May 2026 01:00:58 +0000 ROA not before: Thu 14 May 2026 01:00:58 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 54.157.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:13:25:69:6a:fe:38:9a:5c:be:97:07:03:86:2c:0d:72:bf:f6:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 14 01:00:58 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=281c933d68d8d34fcd6ee033a51da22875e8fcde2c1e0649bd942e25d5f8a8df, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:37:80:6c:5c:77:23:9a:3e:87:33:3f:c2:80: 28:05:f6:a2:52:79:96:a4:ff:29:2c:85:4c:1c:bf: de:62:f2:59:5f:e1:c6:a2:17:52:99:ae:3b:26:f5: a2:39:54:77:05:14:f3:6f:1f:2b:dc:03:83:0b:1d: 6d:b2:26:6d:8a:4b:e7:c0:16:3f:2d:90:6a:45:b3: 26:17:a5:05:08:5f:ea:7b:3e:a5:6e:cc:85:07:e7: bf:c1:58:e4:cd:f4:07:34:23:5d:45:c6:3e:c8:92: 48:cd:24:8c:42:36:f8:46:3b:8f:24:4c:19:fc:91: 9c:27:3a:94:13:31:eb:dc:42:d5:07:1b:c5:95:25: 0d:17:30:0f:c9:af:aa:d9:c8:3e:db:2d:50:26:d2: 2b:38:13:19:a5:1b:a2:13:0e:90:9a:36:28:41:e5: 75:3a:e9:6a:60:96:4e:e6:37:5d:4f:e0:09:27:09: 10:d7:5f:75:a6:ee:a0:cd:f4:40:45:6b:30:ea:c8: 89:11:bc:64:7b:ef:40:b9:bc:4c:b0:fe:31:b4:da: b6:9c:5c:1a:ae:e7:15:b7:c3:49:74:7b:1b:da:fd: cd:df:18:07:30:2b:cc:41:1f:bf:ba:fa:c9:57:f7: 78:5e:72:70:64:d4:58:59:06:22:bf:57:65:ce:49: 74:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CB:06:3D:6C:EA:0A:1A:B3:12:21:85:C2:53:4B:2F:88:F1:15:A6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/809b8de9-35a6-4f5e-b327-c96f51b0a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.157.192.0/18 Signature Algorithm: sha256WithRSAEncryption 23:68:b7:c8:cb:67:50:b1:04:ba:5d:8f:41:2c:aa:3e:41:a2: 97:be:40:06:a0:07:6c:e8:72:23:2e:09:17:d1:fd:d0:6a:bd: fe:45:37:46:fc:34:e9:ab:99:88:f3:1b:41:a3:6d:92:77:14: aa:db:d6:43:ec:48:fb:28:64:e2:32:86:dd:4b:e6:01:b1:03: 0d:da:8b:f3:d0:0d:cf:a3:c2:75:1c:97:7b:75:6a:e6:b8:4d: f5:16:40:10:13:2f:f4:d5:b1:35:75:19:0f:23:c4:a0:24:f5: 74:3d:eb:cc:52:81:92:c4:91:30:63:cb:73:3c:be:c1:f5:18: 1c:ea:c8:57:d0:3b:37:38:e7:8b:f9:a1:9f:58:97:e1:60:78: 50:48:df:a0:86:ab:90:4e:78:b4:b5:c5:49:1a:69:e2:a0:19: 96:4a:e3:2c:f4:16:fc:66:09:8e:ca:09:53:93:20:ea:8b:12: b9:bd:4c:47:35:c2:d4:15:30:e2:2b:46:cd:22:00:88:3f:34: 22:84:6c:b6:fa:7b:b7:3f:3b:b4:14:b7:07:ad:e4:69:c3:36: 35:3e:62:e1:e3:90:b6:82:49:79:8c:ce:bd:db:d0:dd:cb:52: 9c:4b:bd:4a:8a:5c:95:26:20:98:d5:2e:de:0c:46:33:02:06: ae:f6:f8:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULhMlaWr+OJpcvpcHA4YsDXK/9igwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE0MDEwMDU4WhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyODFjOTMzZDY4ZDhkMzRmY2Q2ZWUwMzNhNTFkYTIyODc1 ZThmY2RlMmMxZTA2NDliZDk0MmUyNWQ1ZjhhOGRmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgN4BsXHcjmj6HMz/CgCgF9qJSeZak/ykshUwcv95i8llf 4caiF1KZrjsm9aI5VHcFFPNvHyvcA4MLHW2yJm2KS+fAFj8tkGpFsyYXpQUIX+p7 PqVuzIUH57/BWOTN9Ac0I11Fxj7IkkjNJIxCNvhGO48kTBn8kZwnOpQTMevcQtUH G8WVJQ0XMA/Jr6rZyD7bLVAm0is4ExmlG6ITDpCaNihB5XU66Wpglk7mN11P4Akn CRDXX3Wm7qDN9EBFazDqyIkRvGR770C5vEyw/jG02racXBqu5xW3w0l0exva/c3f GAcwK8xBH7+6+slX93hecnBk1FhZBiK/V2XOSXR/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrcsGPWzqChqzEiGFwlNLL4jxFaYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzgwOWI4ZGU5LTM1YTYtNGY1ZS1iMzI3LWM5NmY1MWIwYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2ncAwDQYJKoZIhvcNAQELBQADggEBACNot8jLZ1CxBLpdj0Esqj5Bope+ QAagB2zociMuCRfR/dBqvf5FN0b8NOmrmYjzG0GjbZJ3FKrb1kPsSPsoZOIyht1L 5gGxAw3ai/PQDc+jwnUcl3t1aua4TfUWQBATL/TVsTV1GQ8jxKAk9XQ968xSgZLE kTBjy3M8vsH1GBzqyFfQOzc454v5oZ9Yl+FgeFBI36CGq5BOeLS1xUkaaeKgGZZK 4yz0FvxmCY7KCVOTIOqLErm9TEc1wtQVMOIrRs0iAIg/NCKEbLb6e7c/O7QUtwet 5GnDNjU+YuHjkLaCSXmMzr3b0N3LUpxLvUqKXJUmIJjVLt4MRjMCBq72+Bc= -----END CERTIFICATE-----Generated at Sat Jun 13 04:49:52 2026 by rpki-client