$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa File: 254b4192-a38e-41eb-a28b-d01a7ee37964.roa (raw, json) Hash identifier: TzOoapOR/4fMmv1s3SfSN4ISTPjHAcMPP6wHHWu8CK8= Subject key identifier: 77:A2:6B:29:D0:E4:A6:68:5F:E2:4C:00:69:37:EA:1F:51:3E:B4:64 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 68CCF3900B2CDAB2864C64585FA6A038D88BFBDB Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa Signing time: Wed 06 May 2026 00:00:08 +0000 ROA not before: Wed 06 May 2026 00:00:08 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:d000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 15 May 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:cc:f3:90:0b:2c:da:b2:86:4c:64:58:5f:a6:a0:38:d8:8b:fb:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: May 6 00:00:08 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=36a40d5bc70ba72764851f7dacaac946b852fa545090fe04963fba99c0abf14f, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7c:bc:11:e2:6d:72:b8:32:96:7d:dc:ab:9a: 0d:80:b0:59:66:9c:1a:9f:be:3f:b7:d2:d2:ab:1b: 17:d6:03:1a:07:09:6c:35:e9:b5:d5:09:49:dd:0c: 45:0d:e2:5e:9a:c1:c7:61:27:c7:8a:64:19:11:3f: 49:07:c6:a7:0b:e4:68:19:f2:ae:f7:b8:10:e3:99: bc:5a:52:de:66:80:d2:f7:2e:9c:05:3f:df:fd:3c: a2:6b:e0:c8:03:b8:9f:96:3b:a8:89:dd:4f:bd:01: 62:46:d5:5a:c4:9c:9e:38:7b:6d:a0:a8:53:93:59: 03:58:6a:a1:30:4d:a2:c3:52:47:33:1f:5a:f6:aa: 6e:10:a0:e7:49:6f:6b:d7:bf:65:10:6d:ab:e1:7a: 35:2a:03:19:c6:03:3e:51:be:e2:7d:57:7d:61:f3: b6:7c:16:f5:c9:12:07:e2:b6:6c:23:9a:d3:e1:40: f4:ad:5f:d8:1a:d2:f0:4c:5c:cc:60:72:4b:97:4c: ea:b2:4e:18:04:36:59:37:6b:41:48:c7:c7:4d:15: 92:c9:32:9e:f6:a1:32:75:e7:79:70:70:71:38:63: 4e:36:d9:fd:77:d5:6d:39:36:04:84:de:69:38:2e: 6b:ef:f2:a5:5c:1b:f3:40:3d:1d:de:7c:72:07:90: 4d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A2:6B:29:D0:E4:A6:68:5F:E2:4C:00:69:37:EA:1F:51:3E:B4:64 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:d000::/44 Signature Algorithm: sha256WithRSAEncryption 59:e1:c7:01:1d:2b:d3:e6:12:fd:0c:78:b7:4a:6a:18:72:d5: 6d:1b:21:51:7b:1c:34:8c:26:75:60:61:a7:ca:50:73:56:d1: 69:01:07:5f:de:0e:7d:93:b1:0e:9a:55:12:36:86:d4:a2:b8: 10:c9:ff:b1:48:74:d7:90:fb:d8:37:21:44:0e:71:ac:8e:56: b6:32:1c:95:94:ff:59:f1:d5:87:d4:31:45:b8:80:58:ec:71: 96:2f:56:ea:b4:33:64:0f:d3:96:06:d6:f1:c9:22:fa:6d:1b: e9:ec:1c:90:84:19:30:44:48:94:c0:15:16:2f:54:de:0c:a9: fe:fc:72:7f:b0:96:89:fd:64:13:57:a3:d4:b8:24:44:e8:0f: a5:c3:8c:b8:9c:60:61:10:0b:55:e8:49:4e:af:05:fc:8e:39: 11:e5:6c:de:3f:de:ff:a9:9f:15:05:00:ea:35:ef:ff:44:b2: de:75:85:eb:19:40:37:94:ac:ab:82:16:40:80:1b:07:33:cd: db:68:21:42:44:cc:f5:51:97:3f:8f:dd:22:c2:4f:d1:74:64: 56:5a:cf:92:af:06:f4:b8:c5:61:ba:74:23:0d:45:19:c4:8b: d5:f3:51:93:11:5e:cb:9d:2c:93:66:31:1e:5e:ec:d3:88:e6: b2:4b:28:49 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaMzzkAss2rKGTGRYX6agONiL+9swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjYwNTA2MDAwMDA4WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmE0MGQ1YmM3MGJhNzI3NjQ4NTFmN2RhY2FhYzk0NmI4 NTJmYTU0NTA5MGZlMDQ5NjNmYmE5OWMwYWJmMTRmMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpfLwR4m1yuDKWfdyrmg2AsFlmnBqfvj+30tKrGxfWAxoH CWw16bXVCUndDEUN4l6awcdhJ8eKZBkRP0kHxqcL5GgZ8q73uBDjmbxaUt5mgNL3 LpwFP9/9PKJr4MgDuJ+WO6iJ3U+9AWJG1VrEnJ44e22gqFOTWQNYaqEwTaLDUkcz H1r2qm4QoOdJb2vXv2UQbavhejUqAxnGAz5RvuJ9V31h87Z8FvXJEgfitmwjmtPh QPStX9ga0vBMXMxgckuXTOqyThgENlk3a0FIx8dNFZLJMp72oTJ153lwcHE4Y042 2f131W05NgSE3mk4Lmvv8qVcG/NAPR3efHIHkE2tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUd6JrKdDkpmhf4kwAaTfqH1E+tGQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzI1NGI0MTkyLWEzOGUtNDFlYi1hMjhiLWQwMWE3ZWUzNzk2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEI0AAwDQYJKoZIhvcNAQELBQADggEBAFnhxwEdK9PmEv0MeLdKahhy 1W0bIVF7HDSMJnVgYafKUHNW0WkBB1/eDn2TsQ6aVRI2htSiuBDJ/7FIdNeQ+9g3 IUQOcayOVrYyHJWU/1nx1YfUMUW4gFjscZYvVuq0M2QP05YG1vHJIvptG+nsHJCE GTBESJTAFRYvVN4Mqf78cn+wlon9ZBNXo9S4JEToD6XDjLicYGEQC1XoSU6vBfyO ORHlbN4/3v+pnxUFAOo17/9Est51hesZQDeUrKuCFkCAGwczzdtoIUJEzPVRlz+P 3SLCT9F0ZFZaz5KvBvS4xWG6dCMNRRnEi9XzUZMRXsudLJNmMR5e7NOI5rJLKEk= -----END CERTIFICATE-----Generated at Wed May 13 00:38:51 2026 by rpki-client