$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa File: f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa (raw, json) Hash identifier: /nQASDTuAnXWSokGIRk3IIBxrcVfofGB9kjv1/x+yK4= Subject key identifier: 11:46:5B:81:7D:EB:75:95:C7:7A:87:48:29:7E:6D:1E:19:C2:5F:CA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4620310C8F5D000C67FCF160C2D271D57928976C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa Signing time: Tue 19 May 2026 02:41:21 +0000 ROA not before: Tue 19 May 2026 02:41:21 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 3.4.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:20:31:0c:8f:5d:00:0c:67:fc:f1:60:c2:d2:71:d5:79:28:97:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 19 02:41:21 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=74a7cef98c7a11c0aacf6b9cad31e3c74526eaa73a06e68acc5e11df9849a489, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:21:8e:bf:b0:8d:91:eb:40:56:7d:6a:75:d2: a9:f4:21:2f:6e:73:bf:63:e2:e2:14:95:34:8a:2c: 8e:a8:7d:33:d7:1b:f6:7a:a2:b7:33:06:39:7d:4b: 16:fd:3e:1a:18:a2:b0:cd:e1:61:95:43:65:9e:63: 31:96:cc:5b:f4:67:d3:ad:21:52:87:82:39:a7:46: f3:b1:45:d1:3e:76:d8:8f:d2:1b:4f:67:93:91:6f: ad:38:90:47:76:d5:0d:79:ee:58:a7:50:c3:5b:b1: cf:26:ab:97:8e:6c:fa:0a:7c:77:82:92:ed:23:e8: 2e:78:7d:02:7e:86:5b:02:84:df:34:45:30:e4:ba: 2d:ca:c9:28:b9:50:23:63:6d:c2:6a:f5:d9:f3:67: 95:90:42:eb:40:fc:76:58:3f:57:81:b0:f0:a5:0f: 63:cd:cc:13:26:55:11:b6:ef:99:25:87:e2:97:fa: 7d:8e:29:72:8d:95:72:1a:76:85:d6:cf:b8:26:de: 9c:f7:a7:b1:e2:a3:14:4b:52:8d:9e:41:28:b5:4f: a2:29:d6:54:63:fc:d5:0d:1e:e2:06:1f:05:54:20: 75:a2:3d:c2:39:89:86:67:df:7d:b7:ed:bd:91:98: 7a:12:70:dd:a0:81:ef:bb:4f:2b:94:50:c4:70:c9: cc:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:46:5B:81:7D:EB:75:95:C7:7A:87:48:29:7E:6D:1E:19:C2:5F:CA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.4.10.0/24 Signature Algorithm: sha256WithRSAEncryption 57:d6:36:ae:ea:2a:de:52:68:1a:b2:ee:26:17:61:42:0f:f9: 96:4e:e8:49:81:ba:ea:da:68:a6:27:12:95:82:1c:82:cd:0c: 07:8b:81:b4:76:ac:ea:50:06:01:4f:d2:49:98:a0:5d:e1:04: 64:27:25:2c:ab:2b:c4:e5:ae:09:55:a5:9d:49:93:6a:b3:ea: d9:d9:d8:0e:90:37:f2:57:1b:fb:6c:2c:11:72:5f:1b:2e:f8: f2:f5:b1:04:04:df:04:f7:1b:e0:4d:f6:36:11:d7:df:43:56: 4d:a4:50:53:6a:40:7f:d9:12:f7:14:d4:aa:a9:2e:fb:69:41: 41:06:49:1b:77:67:a0:94:c8:6c:cc:61:de:4e:3f:88:ba:af: 98:7a:a0:32:96:8e:3d:8e:6b:32:67:78:7b:54:9a:83:f8:88: 40:54:47:60:ca:22:26:06:08:44:c8:a8:02:16:f1:4b:db:d5: 7a:35:e3:a4:d2:b1:56:73:e3:5b:90:04:5d:46:61:f7:82:6e: ec:08:99:bc:7e:d4:fd:90:dc:3d:f9:28:63:a3:ee:4d:89:f5: d9:f4:7a:64:77:8d:a5:2b:cc:77:00:cc:5f:13:fe:1d:00:22: 5f:9b:5c:b2:f5:fd:35:b2:71:c8:d7:b8:be:12:9a:8e:90:33: 1a:8c:de:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURiAxDI9dAAxn/PFgwtJx1Xkol2wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE5MDI0MTIxWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGE3Y2VmOThjN2ExMWMwYWFjZjZiOWNhZDMxZTNjNzQ1 MjZlYWE3M2EwNmU2OGFjYzVlMTFkZjk4NDlhNDg5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD4IY6/sI2R60BWfWp10qn0IS9uc79j4uIUlTSKLI6ofTPX G/Z6orczBjl9Sxb9PhoYorDN4WGVQ2WeYzGWzFv0Z9OtIVKHgjmnRvOxRdE+dtiP 0htPZ5ORb604kEd21Q157linUMNbsc8mq5eObPoKfHeCku0j6C54fQJ+hlsChN80 RTDkui3KySi5UCNjbcJq9dnzZ5WQQutA/HZYP1eBsPClD2PNzBMmVRG275klh+KX +n2OKXKNlXIadoXWz7gm3pz3p7HioxRLUo2eQSi1T6Ip1lRj/NUNHuIGHwVUIHWi PcI5iYZn33237b2RmHoScN2gge+7TyuUUMRwyczDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEUZbgX3rdZXHeodIKX5tHhnCX8owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyNTBjNzJhLTViZjYtNGRhMi05YWQ4LWZmODUwZDVhYTIxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADBAowDQYJKoZIhvcNAQELBQADggEBAFfWNq7qKt5SaBqy7iYXYUIP+ZZO 6EmBuuraaKYnEpWCHILNDAeLgbR2rOpQBgFP0kmYoF3hBGQnJSyrK8TlrglVpZ1J k2qz6tnZ2A6QN/JXG/tsLBFyXxsu+PL1sQQE3wT3G+BN9jYR199DVk2kUFNqQH/Z EvcU1KqpLvtpQUEGSRt3Z6CUyGzMYd5OP4i6r5h6oDKWjj2OazJneHtUmoP4iEBU R2DKIiYGCETIqAIW8Uvb1Xo146TSsVZz41uQBF1GYfeCbuwImbx+1P2Q3D35KGOj 7k2J9dn0emR3jaUrzHcAzF8T/h0AIl+bXLL1/TWyccjXuL4Smo6QMxqM3nI= -----END CERTIFICATE-----Generated at Sat Jun 13 04:47:08 2026 by rpki-client