$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04a0c858-e187-4f3a-803e-c75251a7b97f.roa File: 04a0c858-e187-4f3a-803e-c75251a7b97f.roa (raw, json) Hash identifier: 8bGr1doq3aspBYWLJZn0LIjyxXZLxxZCRl9qK/BFQYI= Subject key identifier: 1D:29:D4:99:9D:81:6C:18:42:D4:96:05:70:EF:BF:CB:C8:59:A4:C2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 41971007F15E5119AFA55B701D3A4BFE36D5F7EC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04a0c858-e187-4f3a-803e-c75251a7b97f.roa Signing time: Mon 04 May 2026 03:11:01 +0000 ROA not before: Mon 04 May 2026 03:11:01 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3a90::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:97:10:07:f1:5e:51:19:af:a5:5b:70:1d:3a:4b:fe:36:d5:f7:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 03:11:01 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=4277c591b49e948781c0fcae6411efa9df3cbd624c37cd007fb7aeb0d5174389, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:da:bb:c5:00:de:45:93:d2:6b:fd:fe:05:20: 18:21:b2:fa:18:f5:4d:e2:02:25:47:b0:3b:46:54: 6b:2f:1f:e1:d7:79:42:d6:f3:27:23:fb:77:b5:65: 04:14:c2:e3:eb:36:a2:78:c8:5a:e6:68:32:3a:bd: 7f:67:7a:3f:83:f9:dd:2b:ac:d8:d8:71:8e:74:cf: 41:71:d8:db:b4:00:ea:dd:91:b7:fd:fb:bd:b4:e8: 34:8e:cb:e8:ec:a4:50:1f:6b:c4:b1:d0:f9:ab:0e: 03:4f:1a:2a:ad:19:a2:89:83:3a:f0:f2:f4:ac:4d: 65:70:52:d9:88:26:e6:7d:e3:ca:70:89:4b:7c:1a: d9:47:48:3f:c0:20:c9:b5:79:fb:75:6a:86:34:6f: b6:22:4c:6c:b0:bf:b0:26:5b:3d:34:38:7c:57:67: 56:51:bc:d3:07:f0:df:bf:5f:bd:f6:e1:00:13:c4: d2:be:12:70:4f:bb:61:22:a2:cc:5f:73:2a:42:d7: 84:59:b8:8a:f0:a0:e9:40:27:33:a6:4b:77:ec:da: 51:b6:1a:1e:e4:3d:d1:40:93:2e:bf:a8:ac:eb:80: 80:3a:41:ea:fb:bd:12:f2:07:65:9e:9a:9b:57:4a: 0e:67:9f:62:0d:6e:14:00:44:10:52:0e:03:98:fc: c7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:29:D4:99:9D:81:6C:18:42:D4:96:05:70:EF:BF:CB:C8:59:A4:C2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04a0c858-e187-4f3a-803e-c75251a7b97f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3a90::/44 Signature Algorithm: sha256WithRSAEncryption 01:06:d8:58:af:93:59:98:b2:a6:2f:fe:08:a8:0e:1a:7e:11: 17:e5:0e:51:22:e7:05:08:24:1b:51:cd:47:7d:1d:4f:af:e0: 0e:fb:0f:49:35:85:93:db:60:e0:a6:7d:1c:7e:fc:af:d5:8e: b2:bc:c6:5d:b0:a4:75:86:63:cb:03:05:4e:9c:b4:d4:0a:11: c4:34:ea:73:b2:98:c6:a0:41:62:46:0e:9b:41:36:31:25:1b: 9f:9d:b2:80:49:6b:52:62:e7:74:4c:23:f4:f4:c1:e1:41:de: c5:29:fa:40:c6:ce:12:b1:df:99:31:17:d9:3e:cd:7c:b4:c8: 83:a5:48:c8:b8:9f:d5:b2:bc:73:f5:15:e0:e1:96:31:78:2a: a1:e7:71:94:c9:2d:16:13:b5:c4:6f:31:3f:c4:b8:90:d6:74: 2c:fe:77:dc:17:83:b8:14:d8:5d:28:6f:88:2d:55:72:5c:16: 23:16:72:56:80:bf:36:3b:ca:4e:f6:42:73:0d:49:22:2d:af: de:93:ff:7d:3a:ed:24:4d:92:44:5e:5a:ce:4a:81:89:9e:5b: 5d:7c:5f:47:93:63:0e:93:a4:29:09:10:24:af:2e:37:65:c5: e9:cb:17:d6:5c:d2:c0:6e:f9:44:df:95:2b:63:bd:6b:ab:13: 36:01:e1:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQZcQB/FeURmvpVtwHTpL/jbV9+wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDMxMTAxWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Mjc3YzU5MWI0OWU5NDg3ODFjMGZjYWU2NDExZWZhOWRm M2NiZDYyNGMzN2NkMDA3ZmI3YWViMGQ1MTc0Mzg5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa2rvFAN5Fk9Jr/f4FIBghsvoY9U3iAiVHsDtGVGsvH+HX eULW8ycj+3e1ZQQUwuPrNqJ4yFrmaDI6vX9nej+D+d0rrNjYcY50z0Fx2Nu0AOrd kbf9+7206DSOy+jspFAfa8Sx0PmrDgNPGiqtGaKJgzrw8vSsTWVwUtmIJuZ948pw iUt8GtlHSD/AIMm1eft1aoY0b7YiTGywv7AmWz00OHxXZ1ZRvNMH8N+/X7324QAT xNK+EnBPu2EiosxfcypC14RZuIrwoOlAJzOmS3fs2lG2Gh7kPdFAky6/qKzrgIA6 Qer7vRLyB2WemptXSg5nn2INbhQARBBSDgOY/MeBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHSnUmZ2BbBhC1JYFcO+/y8hZpMIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA0YTBjODU4LWUxODctNGYzYS04MDNlLWM3NTI1MWE3Yjk3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAOpAwDQYJKoZIhvcNAQELBQADggEBAAEG2Fivk1mYsqYv/gioDhp+ ERflDlEi5wUIJBtRzUd9HU+v4A77D0k1hZPbYOCmfRx+/K/VjrK8xl2wpHWGY8sD BU6ctNQKEcQ06nOymMagQWJGDptBNjElG5+dsoBJa1Ji53RMI/T0weFB3sUp+kDG zhKx35kxF9k+zXy0yIOlSMi4n9WyvHP1FeDhljF4KqHncZTJLRYTtcRvMT/EuJDW dCz+d9wXg7gU2F0ob4gtVXJcFiMWclaAvzY7yk72QnMNSSItr96T/3067SRNkkRe Ws5KgYmeW118X0eTYw6TpCkJECSvLjdlxenLF9Zc0sBu+UTflStjvWurEzYB4eU= -----END CERTIFICATE-----Generated at Wed May 13 01:22:13 2026 by rpki-client