$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa File: ef566134-dc37-415a-a1e3-05f23305a92b.roa (raw, json) Hash identifier: rrySw2BnFjCji5RbVfxDNIOQIGr4I47ULwm0X228cYQ= Subject key identifier: C6:E7:59:D6:77:D8:1A:93:CD:16:B4:00:E3:48:C1:A4:3B:2A:0A:55 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 06040B72E4E7F75F070489086187B5450F2F4133 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa Signing time: Fri 08 May 2026 00:10:09 +0000 ROA not before: Fri 08 May 2026 00:10:09 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:04:0b:72:e4:e7:f7:5f:07:04:89:08:61:87:b5:45:0f:2f:41:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: May 8 00:10:09 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=68c729c577e8ac74ad4e28e5fcfe95c00fc90e1447e45c4218103f9758f6e3f2, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:be:72:59:a1:09:80:24:6b:8b:75:49:9d:c2: 2b:11:29:fe:e2:36:f2:42:b8:6e:8b:bc:88:9d:60: 04:f9:c2:4e:d6:c6:4f:2a:aa:3f:a6:e1:83:c7:27: ff:8f:c4:0d:57:49:19:21:78:5a:a3:98:d4:9a:f6: a3:b7:03:c7:a8:40:7e:fb:f0:55:59:8a:c9:0b:cf: 24:ba:67:83:61:8c:42:d7:9a:1f:2b:62:34:f1:b9: 7f:92:94:db:00:97:af:8d:5a:34:48:fe:c2:c5:f3: 55:74:47:11:df:fa:fc:7b:68:ec:f0:2b:ab:5e:f9: 20:71:26:79:1e:fd:22:2d:f0:db:8b:3e:fb:90:e9: 7b:ae:f2:db:39:56:05:32:25:db:db:bd:3d:59:99: 6e:08:9a:bf:53:3a:92:4c:23:3c:c8:72:ea:d2:57: 14:4a:cd:08:6f:8c:80:36:f5:70:0a:83:c4:c2:68: c9:33:29:37:9b:0b:9b:da:75:99:96:d0:99:d0:ae: 73:98:fc:44:46:f3:f8:03:f0:a0:6c:05:5c:47:ea: 9d:a3:22:dd:03:12:2a:d0:39:8e:30:86:5b:21:16: db:cc:37:c8:11:81:dd:c5:89:7e:cd:cf:98:10:d7: 05:fb:64:43:83:67:3b:35:6b:9a:ca:24:f8:9f:56: 79:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E7:59:D6:77:D8:1A:93:CD:16:B4:00:E3:48:C1:A4:3B:2A:0A:55 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 20:54:30:69:fa:a2:e3:ec:4e:f0:b5:f7:62:f5:aa:10:57:c3: 4c:a6:e8:5f:70:8a:b4:06:83:85:93:b3:41:2f:2f:ce:96:1a: 50:de:d4:e3:e0:b4:c9:f7:fa:88:fd:d8:a7:c8:c2:c0:46:db: d8:4d:42:8c:65:50:1e:f6:c3:9a:15:ef:87:d4:0d:e3:32:58: 70:90:ec:04:bc:cf:71:1b:d5:24:73:5e:26:af:3f:04:9a:95: 18:6e:79:23:96:97:f3:1e:49:b2:eb:97:de:eb:62:64:e6:72: a4:d6:ae:e4:4a:a9:34:dd:9d:0c:3d:cd:3f:20:53:59:db:1e: 01:19:7c:f1:42:53:ec:4f:a0:66:08:37:c1:43:65:95:92:55: 9a:d7:e6:fe:48:c3:74:8f:8e:0e:1a:82:4d:5e:30:36:63:b0: 17:0f:14:c9:58:5b:27:80:f9:22:c4:0f:a1:2c:e6:5b:c6:cc: d5:ff:6a:15:bb:be:27:c6:cc:1a:59:eb:23:46:96:37:5c:f6: b0:2d:62:b7:61:bf:4a:df:ff:7a:5d:72:79:9e:0a:8a:2d:a8: ed:37:97:db:61:08:f2:f4:e1:ae:e6:2e:ed:e3:9d:45:53:c7: 87:3a:2c:c6:9f:66:1c:b7:da:a9:49:e1:b2:4e:06:bf:85:8b: 7a:02:35:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBgQLcuTn918HBIkIYYe1RQ8vQTMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjYwNTA4MDAxMDA5WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGM3MjljNTc3ZThhYzc0YWQ0ZTI4ZTVmY2ZlOTVjMDBm YzkwZTE0NDdlNDVjNDIxODEwM2Y5NzU4ZjZlM2YyMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTvnJZoQmAJGuLdUmdwisRKf7iNvJCuG6LvIidYAT5wk7W xk8qqj+m4YPHJ/+PxA1XSRkheFqjmNSa9qO3A8eoQH778FVZiskLzyS6Z4NhjELX mh8rYjTxuX+SlNsAl6+NWjRI/sLF81V0RxHf+vx7aOzwK6te+SBxJnke/SIt8NuL PvuQ6Xuu8ts5VgUyJdvbvT1ZmW4Imr9TOpJMIzzIcurSVxRKzQhvjIA29XAKg8TC aMkzKTebC5vadZmW0JnQrnOY/ERG8/gD8KBsBVxH6p2jIt0DEirQOY4whlshFtvM N8gRgd3FiX7Nz5gQ1wX7ZEODZzs1a5rKJPifVnkHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxudZ1nfYGpPNFrQA40jBpDsqClUwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2VmNTY2MTM0LWRjMzctNDE1YS1hMWUzLTA1ZjIzMzA1YTkyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBACBUMGn6ouPsTvC192L1qhBXw0ym 6F9wirQGg4WTs0EvL86WGlDe1OPgtMn3+oj92KfIwsBG29hNQoxlUB72w5oV74fU DeMyWHCQ7AS8z3Eb1SRzXiavPwSalRhueSOWl/MeSbLrl97rYmTmcqTWruRKqTTd nQw9zT8gU1nbHgEZfPFCU+xPoGYIN8FDZZWSVZrX5v5Iw3SPjg4agk1eMDZjsBcP FMlYWyeA+SLED6Es5lvGzNX/ahW7vifGzBpZ6yNGljdc9rAtYrdhv0rf/3pdcnme CootqO03l9thCPL04a7mLu3jnUVTx4c6LMafZhy32qlJ4bJOBr+Fi3oCNU0= -----END CERTIFICATE-----Generated at Tue May 12 23:38:39 2026 by rpki-client