$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa File: db0b227f-9958-4ebb-9f23-65cc24c5c799.roa (raw, json) Hash identifier: aYT4rtupAIgi0pLRKf7WRxnSp3z2qwnGoLTviSgTB58= Subject key identifier: 39:2B:44:C3:F3:FD:F7:40:48:8C:A5:70:D8:6C:F4:CC:DD:4A:43:D4 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 67D78804609E9C1B6C48711A07FCA19DFFFAAEFE Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa Signing time: Fri 08 May 2026 00:10:08 +0000 ROA not before: Fri 08 May 2026 00:10:08 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d7:88:04:60:9e:9c:1b:6c:48:71:1a:07:fc:a1:9d:ff:fa:ae:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: May 8 00:10:08 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=d39fa56e6cc262b8b7650b12f3166e99c93eb8d0f03d08ea859d28c98560391d, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f9:83:aa:42:00:c4:24:92:dc:40:47:f9:c9: f3:56:95:8b:20:68:92:08:73:dc:46:1e:9d:85:e4: 2e:ae:a8:fe:c2:31:ed:07:d3:d2:53:a7:35:93:7b: 82:45:a0:7b:6a:f1:26:a6:da:3c:f1:07:56:5f:83: d7:29:b0:cc:56:0f:6a:6e:69:61:bf:5b:6b:e1:5d: 4e:6d:18:35:6e:4c:dc:cb:9b:f9:a8:d4:d6:05:43: ca:e8:a8:3f:d2:7b:08:5b:fd:ba:b2:e6:a4:57:43: 23:6f:40:59:a0:c9:09:af:ef:4c:19:f1:58:19:10: 42:56:cf:e5:77:68:95:93:de:ee:4e:45:df:8c:70: 85:1b:17:d0:fa:5d:1d:b6:be:53:21:51:30:c3:40: bc:2b:83:ce:ee:7c:18:b4:22:a2:ad:1a:e3:57:e9: 5e:ac:f0:57:07:d4:6c:e9:91:d8:11:86:3c:ef:fe: 4c:de:e7:50:ed:9d:bc:bf:e3:34:fc:45:ff:38:60: bf:1e:21:0c:da:e5:43:49:c1:fc:ac:07:3b:96:90: 54:54:b7:ec:f1:6c:a6:e2:ca:bf:19:ff:c6:1c:a5: a7:3d:4f:e4:68:ef:83:8a:d0:90:03:7d:79:12:97: e5:45:84:2c:55:0c:85:01:30:b2:63:a2:3e:03:61: 6a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:2B:44:C3:F3:FD:F7:40:48:8C:A5:70:D8:6C:F4:CC:DD:4A:43:D4 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 2e:c1:3f:7a:71:f8:44:a5:3d:33:04:f4:3c:9a:10:6f:d3:c9: cb:47:c2:e5:e3:52:f1:62:da:a5:a7:a0:11:40:cb:5b:11:bb: 91:ef:3a:31:66:ae:3c:24:16:47:61:18:da:14:86:8c:73:dc: 8f:3c:0b:31:73:4f:f0:31:f1:fa:25:79:92:5b:49:9e:2e:6e: 77:de:dd:57:d0:d0:5c:89:16:b0:18:7c:c0:d9:1d:13:bf:41: bc:78:41:c5:0a:50:e6:6a:e2:b6:fa:e0:cf:0e:b9:1f:d3:4f: e5:59:96:31:b7:b5:b7:11:ef:d2:aa:e7:b2:7d:c5:69:c7:1a: d1:b4:e2:c5:9b:7f:94:9a:8e:c6:99:0b:19:24:57:f7:5e:96: c8:de:fb:27:71:61:bc:10:8d:d8:75:62:e0:c9:af:14:a5:7d: c6:95:41:9b:67:9e:d5:b8:bd:6b:b9:1b:95:f9:3a:57:cf:74: 1a:cf:87:d3:b4:0c:a2:9c:d0:c8:d5:c6:84:e8:1e:c1:a5:b6: 70:74:27:41:c7:97:ba:5f:06:a0:e9:fd:63:7c:39:e3:8d:6a: 87:64:9d:3b:11:a6:a5:20:dc:8b:57:38:d9:72:73:35:90:80: af:8e:7f:27:dd:84:ad:b0:67:c7:9a:01:83:64:ba:e0:95:99: 27:15:fb:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ9eIBGCenBtsSHEaB/yhnf/6rv4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjYwNTA4MDAxMDA4WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzlmYTU2ZTZjYzI2MmI4Yjc2NTBiMTJmMzE2NmU5OWM5 M2ViOGQwZjAzZDA4ZWE4NTlkMjhjOTg1NjAzOTFkMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz+YOqQgDEJJLcQEf5yfNWlYsgaJIIc9xGHp2F5C6uqP7C Me0H09JTpzWTe4JFoHtq8Sam2jzxB1Zfg9cpsMxWD2puaWG/W2vhXU5tGDVuTNzL m/mo1NYFQ8roqD/Sewhb/bqy5qRXQyNvQFmgyQmv70wZ8VgZEEJWz+V3aJWT3u5O Rd+McIUbF9D6XR22vlMhUTDDQLwrg87ufBi0IqKtGuNX6V6s8FcH1GzpkdgRhjzv /kze51Dtnby/4zT8Rf84YL8eIQza5UNJwfysBzuWkFRUt+zxbKbiyr8Z/8Ycpac9 T+Ro74OK0JADfXkSl+VFhCxVDIUBMLJjoj4DYWpZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOStEw/P990BIjKVw2Gz0zN1KQ9QwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2RiMGIyMjdmLTk5NTgtNGViYi05ZjIzLTY1Y2MyNGM1Yzc5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBAC7BP3px+ESlPTME9DyaEG/TyctH wuXjUvFi2qWnoBFAy1sRu5HvOjFmrjwkFkdhGNoUhoxz3I88CzFzT/Ax8foleZJb SZ4ubnfe3VfQ0FyJFrAYfMDZHRO/Qbx4QcUKUOZq4rb64M8OuR/TT+VZljG3tbcR 79Kq57J9xWnHGtG04sWbf5SajsaZCxkkV/delsje+ydxYbwQjdh1YuDJrxSlfcaV QZtnntW4vWu5G5X5OlfPdBrPh9O0DKKc0MjVxoToHsGltnB0J0HHl7pfBqDp/WN8 OeONaodknTsRpqUg3ItXONlyczWQgK+OfyfdhK2wZ8eaAYNkuuCVmScV+2w= -----END CERTIFICATE-----Generated at Tue May 12 23:13:25 2026 by rpki-client