$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bdffb411-66a4-449f-a139-b67509e160f8.roa File: bdffb411-66a4-449f-a139-b67509e160f8.roa (raw, json) Hash identifier: PggBh+hS0TB9snLJVromRGtOlln2rMl/m2eNyv2+gPg= Subject key identifier: D4:EC:99:52:0C:81:09:BA:11:A8:22:DA:40:1B:1E:D0:80:9F:8D:25 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 537973E188368ACEB9EB6BEBE39FF69EA4124E29 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bdffb411-66a4-449f-a139-b67509e160f8.roa Signing time: Fri 15 May 2026 03:00:49 +0000 ROA not before: Fri 15 May 2026 03:00:49 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 54.235.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:79:73:e1:88:36:8a:ce:b9:eb:6b:eb:e3:9f:f6:9e:a4:12:4e:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 15 03:00:49 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=0c00a36c019fda60b82e0e3c19c35768d95c9b2da41eec3e2b9c614484810985, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:df:de:37:07:3f:da:16:b2:14:ab:c3:c0:9c: 64:f7:0a:85:a4:ae:38:6d:77:51:24:d2:31:80:64: 4d:9c:36:4b:46:8d:cf:08:24:94:27:8e:c3:5b:85: 1d:ac:c1:2f:39:82:93:75:35:64:7e:36:0f:7a:fc: ff:31:5c:78:ba:d5:00:a8:c1:4d:d5:70:3b:bc:70: 26:45:bf:5e:6b:5c:c5:3b:83:08:d7:98:e4:20:8d: fc:f0:01:1d:b1:9e:61:04:9c:69:6c:eb:b1:b9:0f: 76:30:12:c1:62:ff:3b:7f:b6:65:22:d3:63:65:62: 61:18:d5:6e:c3:e3:32:29:c3:9d:96:da:bf:e7:88: 06:a5:e5:c5:fd:d3:27:ca:fc:ee:6b:95:81:87:c4: bd:2b:fe:7e:e6:53:12:eb:2a:ea:d1:9f:cb:f6:60: 47:0d:ba:bb:39:8b:4f:5f:41:35:87:8d:f9:ba:3d: 30:8f:32:f8:f1:28:7a:9c:00:c9:06:c0:93:eb:96: 69:ad:5b:d8:c4:5b:3a:0c:9c:45:74:56:d0:76:1c: a7:44:bd:a3:4e:dc:64:2f:20:0c:8e:3b:d5:87:06: 1c:d9:4d:b5:bb:1b:c3:f9:e7:e8:bb:15:16:bc:f0: f9:54:c3:2b:6a:33:34:66:e6:56:7e:88:fd:53:98: b2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:EC:99:52:0C:81:09:BA:11:A8:22:DA:40:1B:1E:D0:80:9F:8D:25 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bdffb411-66a4-449f-a139-b67509e160f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.235.237.0/24 Signature Algorithm: sha256WithRSAEncryption 43:25:e2:9a:72:ba:7d:fc:d7:dd:5b:57:0e:c5:ea:98:71:b8: 3d:60:ab:b5:59:88:e5:91:77:80:c4:1f:28:e1:9f:d4:2b:60: 46:bd:63:97:a8:28:d6:76:5f:2e:58:2f:74:df:e5:1c:df:a7: 52:fa:f5:54:e1:af:28:ca:2f:d3:d4:06:70:58:f7:c1:26:70: fe:c6:c0:da:dd:6e:43:ca:31:f3:18:34:c4:f7:94:cf:72:d9: 54:72:ba:a9:a4:34:ee:7b:b3:f0:e8:a7:cf:1e:ba:ec:21:16: e5:c3:0d:f4:91:22:a3:d4:69:2b:d1:26:14:af:f8:8b:07:cc: de:85:4f:42:6f:11:9d:61:5f:85:2b:31:ae:79:0c:1e:88:f5: 32:51:f1:9a:dc:96:d4:d4:7b:4d:83:b7:8e:eb:e8:16:db:4d: 70:5f:dc:68:17:0a:51:5c:9a:1c:83:9d:6d:22:c7:ae:f1:12: 45:73:f1:b1:23:89:97:aa:93:9e:30:d7:24:55:63:a9:91:c4: e7:ed:70:23:91:44:8e:9c:4d:9c:57:5c:0f:df:54:55:3c:cd: a5:6f:1a:67:b8:6c:e0:74:cc:38:da:6e:ec:71:8e:07:61:94: a7:53:be:76:a6:5b:85:e9:03:9b:16:e3:f6:eb:87:78:67:9a: 55:64:6c:13 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU3lz4Yg2is6562vr45/2nqQSTikwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE1MDMwMDQ5WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzAwYTM2YzAxOWZkYTYwYjgyZTBlM2MxOWMzNTc2OGQ5 NWM5YjJkYTQxZWVjM2UyYjljNjE0NDg0ODEwOTg1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw3943Bz/aFrIUq8PAnGT3CoWkrjhtd1Ek0jGAZE2cNktG jc8IJJQnjsNbhR2swS85gpN1NWR+Ng96/P8xXHi61QCowU3VcDu8cCZFv15rXMU7 gwjXmOQgjfzwAR2xnmEEnGls67G5D3YwEsFi/zt/tmUi02NlYmEY1W7D4zIpw52W 2r/niAal5cX90yfK/O5rlYGHxL0r/n7mUxLrKurRn8v2YEcNurs5i09fQTWHjfm6 PTCPMvjxKHqcAMkGwJPrlmmtW9jEWzoMnEV0VtB2HKdEvaNO3GQvIAyOO9WHBhzZ TbW7G8P55+i7FRa88PlUwytqMzRm5lZ+iP1TmLInAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1OyZUgyBCboRqCLaQBse0ICfjSUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JkZmZiNDExLTY2YTQtNDQ5Zi1hMTM5LWI2NzUwOWUxNjBmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA26+0wDQYJKoZIhvcNAQELBQADggEBAEMl4ppyun38191bVw7F6phxuD1g q7VZiOWRd4DEHyjhn9QrYEa9Y5eoKNZ2Xy5YL3Tf5Rzfp1L69VThryjKL9PUBnBY 98EmcP7GwNrdbkPKMfMYNMT3lM9y2VRyuqmkNO57s/Dop88euuwhFuXDDfSRIqPU aSvRJhSv+IsHzN6FT0JvEZ1hX4UrMa55DB6I9TJR8ZrcltTUe02Dt47r6BbbTXBf 3GgXClFcmhyDnW0ix67xEkVz8bEjiZeqk54w1yRVY6mRxOftcCORRI6cTZxXXA/f VFU8zaVvGme4bOB0zDjabuxxjgdhlKdTvnamW4XpA5sW4/brh3hnmlVkbBM= -----END CERTIFICATE-----Generated at Sat Jun 13 04:49:31 2026 by rpki-client