$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e8cadb-dd47-4801-8b62-0fb6aa67bbed.roa File: d3e8cadb-dd47-4801-8b62-0fb6aa67bbed.roa (raw, json) Hash identifier: vPm/2gCnVkvvzWuv2pZr0PwI+Qm1y6657y+sBYM0t8w= Subject key identifier: 5C:9F:89:B4:25:8C:A9:FD:5A:07:7D:06:38:64:47:1D:F1:39:EA:E0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4FB68BA0EEFB38C31255D28EE23CA68243B1FC7D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e8cadb-dd47-4801-8b62-0fb6aa67bbed.roa Signing time: Sat 16 May 2026 02:40:11 +0000 ROA not before: Sat 16 May 2026 02:40:11 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.199.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:b6:8b:a0:ee:fb:38:c3:12:55:d2:8e:e2:3c:a6:82:43:b1:fc:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 16 02:40:11 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=40c02471f1e3deeaedb1d4ab8211d685622c78d72e14653ec33e656b3a85ffca, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:61:9f:a6:f7:c0:d9:e3:eb:45:65:0d:5c:bb: 81:4c:00:43:c7:01:0d:04:3c:f9:fe:61:a8:d2:5d: 48:81:29:e2:9f:90:88:a9:d5:c2:e3:23:d6:10:75: fc:b4:57:8c:f5:46:d4:88:fb:79:5e:d2:df:11:f2: 69:01:87:ec:91:fc:08:fe:54:6b:df:b9:26:58:4b: 24:43:52:90:77:9a:7a:9d:2d:06:74:72:5d:bf:cb: ff:5e:cb:30:2a:0f:34:32:a8:ba:08:9f:0a:63:f7: 81:00:3c:02:bf:9c:14:4d:e7:bc:83:1e:49:2d:6a: 7b:c3:0e:2e:95:bf:8e:1c:f2:f1:e5:bd:59:18:46: 8f:8b:9c:72:8d:33:97:81:de:82:63:b3:6b:31:7e: d9:ce:e5:3f:f6:21:77:48:30:57:2b:a3:8a:04:67: 16:62:dc:39:38:0f:68:57:f0:12:46:02:c8:4d:21: 89:03:d6:f8:64:af:46:8b:ad:84:ef:4f:65:4f:fd: 8e:19:8a:58:d3:f6:47:0f:1f:6a:7f:d5:45:5f:38: 36:63:88:5b:01:04:d3:a6:26:37:dd:a1:b0:c0:32: 8b:e3:a2:85:ae:36:e4:d2:6c:d0:49:a6:22:1d:4b: e0:09:1e:2e:ad:d1:a6:a7:65:1c:0e:af:79:e3:b2: fe:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:9F:89:B4:25:8C:A9:FD:5A:07:7D:06:38:64:47:1D:F1:39:EA:E0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e8cadb-dd47-4801-8b62-0fb6aa67bbed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.199.128.0/17 Signature Algorithm: sha256WithRSAEncryption 6f:11:13:2b:0b:06:14:33:22:7c:b2:64:7f:68:7d:fc:f0:89: ab:95:83:ed:09:75:7a:28:c4:ab:b6:ed:22:28:bb:b5:98:54: 29:a4:cf:eb:fe:8e:4e:00:86:5a:50:20:9e:24:78:e1:40:6f: 59:6d:bd:33:a9:24:ab:7a:03:96:33:5b:ef:bb:9c:66:57:a1: e6:16:f8:a0:5c:b3:12:49:e8:47:fe:95:b0:6b:f7:e0:9d:82: 0b:7c:ae:1f:e2:c6:31:00:e3:ce:52:f1:6f:26:34:d4:fa:4c: 34:1f:7b:19:cc:f0:31:c3:5e:75:4f:68:a9:42:4f:4a:6b:da: 2c:db:2f:84:03:14:72:4b:98:9b:f1:45:19:e5:0f:f8:36:06: 90:99:7b:fc:58:23:5f:59:08:ce:0a:4e:7b:d3:21:18:5b:3f: 02:d2:f9:b4:a9:8f:4b:87:e6:03:4f:5b:87:55:95:ab:54:7a: 5d:a1:ce:c4:3a:6a:ef:63:5b:cd:e1:7f:09:6a:7e:4d:86:48: 7b:15:b5:6b:f7:16:bb:6e:40:63:2d:88:b1:d0:06:b0:ac:84: 6e:a4:71:6d:b5:d6:51:82:b1:9d:2b:05:9c:ab:39:bd:05:72: ff:da:97:bf:99:da:3b:8e:5f:80:81:ed:ea:2d:ac:3a:33:30: b4:30:72:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT7aLoO77OMMSVdKO4jymgkOx/H0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE2MDI0MDExWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGMwMjQ3MWYxZTNkZWVhZWRiMWQ0YWI4MjExZDY4NTYy MmM3OGQ3MmUxNDY1M2VjMzNlNjU2YjNhODVmZmNhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/YZ+m98DZ4+tFZQ1cu4FMAEPHAQ0EPPn+YajSXUiBKeKf kIip1cLjI9YQdfy0V4z1RtSI+3le0t8R8mkBh+yR/Aj+VGvfuSZYSyRDUpB3mnqd LQZ0cl2/y/9eyzAqDzQyqLoInwpj94EAPAK/nBRN57yDHkktanvDDi6Vv44c8vHl vVkYRo+LnHKNM5eB3oJjs2sxftnO5T/2IXdIMFcro4oEZxZi3Dk4D2hX8BJGAshN IYkD1vhkr0aLrYTvT2VP/Y4ZiljT9kcPH2p/1UVfODZjiFsBBNOmJjfdobDAMovj ooWuNuTSbNBJpiIdS+AJHi6t0aanZRwOr3njsv5vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXJ+JtCWMqf1aB30GOGRHHfE56uAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QzZThjYWRiLWRkNDctNDgwMS04YjYyLTBmYjZhYTY3YmJlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2x4AwDQYJKoZIhvcNAQELBQADggEBAG8REysLBhQzInyyZH9offzwiauV g+0JdXooxKu27SIou7WYVCmkz+v+jk4AhlpQIJ4keOFAb1ltvTOpJKt6A5YzW++7 nGZXoeYW+KBcsxJJ6Ef+lbBr9+Cdggt8rh/ixjEA485S8W8mNNT6TDQfexnM8DHD XnVPaKlCT0pr2izbL4QDFHJLmJvxRRnlD/g2BpCZe/xYI19ZCM4KTnvTIRhbPwLS +bSpj0uH5gNPW4dVlatUel2hzsQ6au9jW83hfwlqfk2GSHsVtWv3FrtuQGMtiLHQ BrCshG6kcW211lGCsZ0rBZyrOb0Fcv/al7+Z2juOX4CB7eotrDozMLQwcq4= -----END CERTIFICATE-----Generated at Sat Jun 13 04:50:21 2026 by rpki-client