$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa File: 8bae045f-365b-43cf-99fc-12cbcbce5f67.roa (raw, json) Hash identifier: +Rs4DvhmnnDcK9q0XdPKiE5K+Q63GAJdZ2s0w2IrICc= Subject key identifier: 3B:AA:C1:6F:09:47:E5:7E:B1:24:58:38:31:A2:7F:1F:04:5E:A5:A9 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 51044DFF39F3DDF333FC2EB7EADD89FB7B16C041 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa Signing time: Fri 08 May 2026 00:10:08 +0000 ROA not before: Fri 08 May 2026 00:10:08 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:04:4d:ff:39:f3:dd:f3:33:fc:2e:b7:ea:dd:89:fb:7b:16:c0:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: May 8 00:10:08 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=5b949f14aa0d2769a881d7f49fd91e0945b7dcae16b8a103f7591e585e3520e7, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0e:a5:31:b2:3f:f6:84:8d:ed:45:92:f3:52: 9d:86:72:24:da:d9:46:bb:ce:ed:f8:37:8b:c8:18: d9:ec:85:6c:80:3d:35:ea:14:55:ba:12:82:de:5e: fa:5b:6c:62:55:51:12:fe:46:ec:bc:33:91:f3:3e: ab:16:c8:d8:43:38:96:40:12:40:54:95:ec:89:41: d1:bd:e4:3b:00:98:9f:07:9f:e0:26:2d:0e:21:4f: 40:ad:c9:6c:e1:46:b9:2c:6f:4f:c7:77:70:2c:2c: 9d:45:67:e3:54:1f:e3:de:01:78:1a:6e:6e:11:eb: ce:69:bc:ef:e7:bd:27:fc:3d:ad:4a:95:70:7e:cf: 8e:dd:26:9c:33:25:5e:c8:b0:d1:2f:7e:65:a9:fa: 86:05:9d:99:4e:00:17:15:cc:68:b0:a8:d7:bf:de: e3:97:ab:52:09:99:e5:0c:e8:20:9e:9e:a8:99:2d: 11:10:81:4a:cf:bc:45:43:b3:d1:fb:ec:e4:d4:57: e0:ee:b6:0b:fb:20:82:51:fe:88:e3:f9:cb:9e:bc: cd:52:94:0f:61:d7:18:6c:03:b3:dc:8f:5d:84:ec: e8:dd:0d:56:62:3a:fe:6e:30:89:12:7f:c1:1c:b6: da:8a:39:75:0d:04:c8:7c:ad:d4:a1:f4:55:c7:33: e5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AA:C1:6F:09:47:E5:7E:B1:24:58:38:31:A2:7F:1F:04:5E:A5:A9 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 9e:99:7e:dd:19:44:b2:0d:70:4e:58:35:9b:62:6f:9f:d3:d1: c5:9c:28:6d:ac:c6:21:dc:96:d1:9a:a5:c4:bd:3c:f2:07:6c: 45:ed:13:55:b3:3c:3d:d2:98:d5:5a:7c:ff:46:45:81:8e:1c: ff:6d:a2:46:50:cd:9d:ae:c0:3b:c3:80:5d:99:d9:7e:c6:07: bc:b2:7b:4a:26:e7:a7:df:26:8e:5d:af:e3:bc:55:9a:39:3b: 22:8b:27:58:76:94:e3:1a:e3:d5:02:a1:09:be:fd:9a:5b:5c: f7:69:ab:a9:35:7a:ac:40:45:c2:9f:d9:a8:be:fb:ea:91:9b: 50:9e:75:4f:ac:b6:25:37:7b:93:d2:93:53:22:ce:f7:57:c9: 20:24:67:b7:8e:74:d7:f9:55:f0:f9:04:bf:cf:83:3f:b9:3f: 4a:d3:79:b9:d5:fd:1c:6c:53:d9:37:d1:1d:84:0d:54:2a:df: 19:af:f1:e2:09:aa:53:3e:1d:15:35:cc:f8:54:0a:9e:22:1a: bd:e3:11:0c:b5:dd:5f:da:d0:f4:63:4c:d4:19:d6:d4:28:82: a1:44:a2:ad:97:19:5e:f7:08:72:50:ef:4f:e4:2c:f5:c8:70: 44:f6:40:be:28:46:69:6e:5e:08:59:c5:9c:95:35:c7:98:25: b5:f5:7d:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUQRN/znz3fMz/C636t2J+3sWwEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjYwNTA4MDAxMDA4WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Yjk0OWYxNGFhMGQyNzY5YTg4MWQ3ZjQ5ZmQ5MWUwOTQ1 YjdkY2FlMTZiOGExMDNmNzU5MWU1ODVlMzUyMGU3MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgDqUxsj/2hI3tRZLzUp2GciTa2Ua7zu34N4vIGNnshWyA PTXqFFW6EoLeXvpbbGJVURL+Ruy8M5HzPqsWyNhDOJZAEkBUleyJQdG95DsAmJ8H n+AmLQ4hT0CtyWzhRrksb0/Hd3AsLJ1FZ+NUH+PeAXgabm4R685pvO/nvSf8Pa1K lXB+z47dJpwzJV7IsNEvfmWp+oYFnZlOABcVzGiwqNe/3uOXq1IJmeUM6CCenqiZ LREQgUrPvEVDs9H77OTUV+Dutgv7IIJR/ojj+cuevM1SlA9h1xhsA7Pcj12E7Ojd DVZiOv5uMIkSf8EcttqKOXUNBMh8rdSh9FXHM+XDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUO6rBbwlH5X6xJFg4MaJ/HwRepakwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzhiYWUwNDVmLTM2NWItNDNjZi05OWZjLTEyY2JjYmNlNWY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAJ6Zft0ZRLINcE5YNZtib5/T0cWc KG2sxiHcltGapcS9PPIHbEXtE1WzPD3SmNVafP9GRYGOHP9tokZQzZ2uwDvDgF2Z 2X7GB7yye0om56ffJo5dr+O8VZo5OyKLJ1h2lOMa49UCoQm+/ZpbXPdpq6k1eqxA RcKf2ai+++qRm1CedU+stiU3e5PSk1MizvdXySAkZ7eOdNf5VfD5BL/Pgz+5P0rT ebnV/RxsU9k30R2EDVQq3xmv8eIJqlM+HRU1zPhUCp4iGr3jEQy13V/a0PRjTNQZ 1tQogqFEoq2XGV73CHJQ70/kLPXIcET2QL4oRmluXghZxZyVNceYJbX1fSc= -----END CERTIFICATE-----Generated at Wed May 13 01:28:47 2026 by rpki-client