$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa File: 4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa (raw, json) Hash identifier: k0HVpCT1EMkT4Ku1/G5xlNHP4Opr31FTtTaCgxLootI= Subject key identifier: 54:E4:7F:BD:BE:E3:D1:73:70:7E:6B:A6:46:1B:EE:4D:C7:BD:AF:49 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 6E63F653825C78633C58B0BC5B56AB1B04990671 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa Signing time: Mon 04 May 2026 00:30:10 +0000 ROA not before: Mon 04 May 2026 00:30:10 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:63:f6:53:82:5c:78:63:3c:58:b0:bc:5b:56:ab:1b:04:99:06:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: May 4 00:30:10 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=3fad3adbf5193d009433e886b33cfb5c42e1b851cb0cba9060bf37bbe3608a20, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0e:d5:1e:95:72:5a:26:7e:59:26:f7:fa:12: 76:93:4c:b3:ec:64:7d:32:45:f8:49:f0:3f:9c:7e: 44:f2:7b:d3:d6:ce:ce:9c:05:42:24:d6:4f:bd:be: c9:bc:80:82:02:46:ae:d1:e0:d8:c0:fa:51:1e:a3: 6b:60:ed:8c:a8:78:02:e8:47:0e:bd:8b:eb:d1:b1: bc:b5:81:93:c1:13:27:53:c2:35:4c:22:fd:ef:95: 55:78:4f:7a:a6:57:4f:88:e0:38:b4:fb:0e:04:e7: e0:46:e2:2d:f7:cb:6c:68:c4:65:6a:b6:64:27:5a: a7:04:ff:64:61:80:08:e8:87:6c:4f:60:c5:02:25: 4a:97:a1:d9:37:7e:4f:7a:d1:07:e5:b2:6e:b7:d9: c6:0c:53:a1:af:3f:aa:e7:b8:ba:2b:9d:3d:06:f7: 62:31:ec:64:bc:0a:df:f5:f7:f9:9c:6f:44:ea:b9: 21:38:c5:f9:ab:b3:36:4c:6f:a1:f1:27:94:3b:44: f9:41:f9:d1:a8:62:6e:fd:5b:3f:60:ef:f9:45:e3: d7:2c:f1:69:9d:ce:9c:1c:e9:8c:0f:70:96:83:41: 7c:ba:08:bc:ae:4b:e2:77:4c:40:c0:ec:cb:9c:3e: 99:6c:54:da:2a:50:d2:67:7f:cc:3d:e4:ce:c3:e0: 2c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E4:7F:BD:BE:E3:D1:73:70:7E:6B:A6:46:1B:EE:4D:C7:BD:AF:49 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffc::/48 Signature Algorithm: sha256WithRSAEncryption c3:5f:84:d0:ff:b4:79:10:92:a0:77:4d:37:18:87:50:7a:c6: 38:48:63:d9:6b:3b:ef:d0:53:ad:f1:83:7b:79:93:53:48:95: 79:f9:f5:d3:89:18:ba:b1:57:a2:9a:41:79:b7:98:93:49:5f: 18:13:d8:56:f3:9f:8b:d7:68:25:5f:45:49:56:e4:8f:70:76: 1b:16:2c:9f:6d:d7:6d:ca:58:ce:34:a4:0e:71:98:41:7a:37: 98:db:09:10:51:68:e8:d5:df:23:ce:67:bd:dc:25:c6:9b:c0: 06:f4:21:6c:53:cf:86:d3:09:10:5c:b4:98:f3:31:41:90:36: c9:b3:ba:0c:e2:5a:f8:43:b4:b4:32:29:bf:7f:b4:71:f6:6c: 33:97:14:5d:7e:22:19:c0:00:42:b4:62:a4:60:d8:9a:d6:dd: 26:74:64:af:0f:38:13:60:da:79:3b:4c:b1:05:41:41:f3:8d: ad:58:74:82:48:40:a9:5d:3d:cc:36:7f:b7:58:75:b3:78:77: c5:7f:63:74:be:a9:f9:55:b1:4d:4d:0c:e7:08:c9:2f:ac:42: 8d:86:6f:2b:48:da:2d:44:67:c3:18:68:3f:af:4d:14:f9:bc: 71:ac:10:51:f1:07:b8:15:d6:77:d3:1a:f7:bb:ab:0e:fb:73: 82:07:d2:39 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbmP2U4JceGM8WLC8W1arGwSZBnEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjYwNTA0MDAzMDEwWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmFkM2FkYmY1MTkzZDAwOTQzM2U4ODZiMzNjZmI1YzQy ZTFiODUxY2IwY2JhOTA2MGJmMzdiYmUzNjA4YTIwMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUDtUelXJaJn5ZJvf6EnaTTLPsZH0yRfhJ8D+cfkTye9PW zs6cBUIk1k+9vsm8gIICRq7R4NjA+lEeo2tg7YyoeALoRw69i+vRsby1gZPBEydT wjVMIv3vlVV4T3qmV0+I4Di0+w4E5+BG4i33y2xoxGVqtmQnWqcE/2RhgAjoh2xP YMUCJUqXodk3fk960Qflsm632cYMU6GvP6rnuLornT0G92Ix7GS8Ct/19/mcb0Tq uSE4xfmrszZMb6HxJ5Q7RPlB+dGoYm79Wz9g7/lF49cs8Wmdzpwc6YwPcJaDQXy6 CLyuS+J3TEDA7MucPplsVNoqUNJnf8w95M7D4CyXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVOR/vb7j0XNwfmumRhvuTce9r0kwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzRhZWY3NWY0LTg3ZWYtNDZkMy05NmQ3LWRjNTNiZTE3OGViZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//wwDQYJKoZIhvcNAQELBQADggEBAMNfhND/tHkQkqB3TTcYh1B6 xjhIY9lrO+/QU63xg3t5k1NIlXn59dOJGLqxV6KaQXm3mJNJXxgT2Fbzn4vXaCVf RUlW5I9wdhsWLJ9t123KWM40pA5xmEF6N5jbCRBRaOjV3yPOZ73cJcabwAb0IWxT z4bTCRBctJjzMUGQNsmzugziWvhDtLQyKb9/tHH2bDOXFF1+IhnAAEK0YqRg2JrW 3SZ0ZK8POBNg2nk7TLEFQUHzja1YdIJIQKldPcw2f7dYdbN4d8V/Y3S+qflVsU1N DOcIyS+sQo2GbytI2i1EZ8MYaD+vTRT5vHGsEFHxB7gV1nfTGve7qw77c4IH0jk= -----END CERTIFICATE-----Generated at Wed May 13 03:05:13 2026 by rpki-client