$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04e16734-ed91-4e33-bc95-9463473f20b1.roa File: 04e16734-ed91-4e33-bc95-9463473f20b1.roa (raw, json) Hash identifier: 2VsiKhOiAH5rlGhNsnZ/shP60SWrRuaRkVcwSQ17S1E= Subject key identifier: 1E:7F:F9:B8:57:CB:34:1A:CA:A9:71:26:FF:E4:38:D7:3B:5E:C7:42 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 70D32D4DC4F493034C5B0B97EC533519A07DDAD3 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04e16734-ed91-4e33-bc95-9463473f20b1.roa Signing time: Mon 04 May 2026 02:20:07 +0000 ROA not before: Mon 04 May 2026 02:20:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3858::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d3:2d:4d:c4:f4:93:03:4c:5b:0b:97:ec:53:35:19:a0:7d:da:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 02:20:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=8a28e4a7c398f8db1ecadbddf596f8f577ba307f9cade5cfe65931d60a5f1ca2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d8:a3:b4:1a:09:1a:91:d4:55:12:b8:2e:81: 9c:85:43:b5:11:76:60:7e:2e:8c:e7:2a:c6:06:38: d2:ac:36:7f:17:5e:39:a3:79:cd:6e:2c:fd:a3:5f: ad:d2:dd:9c:23:5e:c5:ec:92:23:2a:5e:ca:9b:fe: d0:fd:e2:63:67:91:bb:48:7e:a7:a6:8e:db:47:4b: 18:b4:0e:da:8d:dd:8f:be:a8:dd:58:d4:24:4b:25: 5e:e8:8f:16:24:87:79:91:57:62:1b:cb:ab:17:5e: de:09:9a:2a:a5:ab:e7:1b:ff:fc:5e:f8:96:9f:bd: c5:85:f5:73:ba:7c:8e:8f:5f:81:51:f3:b9:5a:34: 21:4b:82:e9:78:eb:18:5e:eb:84:c7:7a:d3:9b:1b: b9:39:75:e4:fd:b9:82:49:fb:92:84:30:cf:14:89: f0:04:87:43:a6:9f:23:d8:cd:88:d1:d3:97:62:f9: 80:59:70:6d:87:1f:75:82:c9:ec:30:69:2c:89:64: 58:cc:97:8f:17:67:57:79:13:2f:a8:d2:20:66:48: 4e:8e:7d:5c:2b:fb:25:d5:54:24:6f:cc:79:5b:71: ea:b2:9b:4e:c0:7d:de:d4:b4:05:0f:92:2a:c4:96: 7c:a5:56:4d:bd:94:9d:7a:c3:55:2e:e8:e2:96:4c: 53:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:7F:F9:B8:57:CB:34:1A:CA:A9:71:26:FF:E4:38:D7:3B:5E:C7:42 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04e16734-ed91-4e33-bc95-9463473f20b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3858::/47 Signature Algorithm: sha256WithRSAEncryption 3e:0d:f9:0f:53:a3:f2:bd:05:6a:d9:db:49:d0:05:9c:37:35: 8d:53:e9:ee:ba:9c:b3:33:fa:01:41:6e:e7:31:a6:36:65:97: 65:c9:bf:0c:e1:60:02:9a:fd:b8:68:d5:33:ac:5b:db:59:bc: 28:1d:a4:3f:e8:c1:51:7b:01:00:2f:f6:47:5b:56:51:97:6a: ca:6c:30:a9:15:60:10:4d:84:c8:28:58:09:e5:47:4e:5a:94: 11:53:aa:fa:f7:3f:08:eb:d2:a9:3d:40:74:fa:78:5d:aa:fe: 75:3e:d9:e1:15:76:ae:5f:a1:f8:a0:66:86:30:82:54:03:08: 2d:70:c1:a7:c0:59:9c:94:dc:98:14:8e:1c:89:52:3c:c2:98: 69:d3:ac:99:a8:f8:32:a5:fd:67:d4:99:94:4e:87:fe:66:a8: 33:0c:0c:5b:07:f8:92:98:29:90:e3:a7:3e:aa:1e:88:cd:60: b5:ea:0f:45:da:9c:a0:4f:bd:20:f3:25:c9:d1:fd:5f:09:22: 4f:21:23:f9:18:08:c8:75:24:fd:2f:54:d0:c2:42:01:97:56: 87:4a:c8:d1:88:46:c8:a5:35:87:aa:2c:3a:7a:af:d2:29:a1: d5:12:8b:77:0b:12:23:4a:dc:29:02:bc:ab:9a:99:d4:7a:a8: 05:dd:6c:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcNMtTcT0kwNMWwuX7FM1GaB92tMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDIyMDA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTI4ZTRhN2MzOThmOGRiMWVjYWRiZGRmNTk2ZjhmNTc3 YmEzMDdmOWNhZGU1Y2ZlNjU5MzFkNjBhNWYxY2EyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW2KO0GgkakdRVErgugZyFQ7URdmB+LoznKsYGONKsNn8X Xjmjec1uLP2jX63S3ZwjXsXskiMqXsqb/tD94mNnkbtIfqemjttHSxi0DtqN3Y++ qN1Y1CRLJV7ojxYkh3mRV2Iby6sXXt4Jmiqlq+cb//xe+JafvcWF9XO6fI6PX4FR 87laNCFLgul46xhe64THetObG7k5deT9uYJJ+5KEMM8UifAEh0OmnyPYzYjR05di +YBZcG2HH3WCyewwaSyJZFjMl48XZ1d5Ey+o0iBmSE6OfVwr+yXVVCRvzHlbceqy m07Afd7UtAUPkirElnylVk29lJ16w1Uu6OKWTFOxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHn/5uFfLNBrKqXEm/+Q41ztex0IwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA0ZTE2NzM0LWVkOTEtNGUzMy1iYzk1LTk0NjM0NzNmMjBiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOFgwDQYJKoZIhvcNAQELBQADggEBAD4N+Q9To/K9BWrZ20nQBZw3 NY1T6e66nLMz+gFBbucxpjZll2XJvwzhYAKa/bho1TOsW9tZvCgdpD/owVF7AQAv 9kdbVlGXaspsMKkVYBBNhMgoWAnlR05alBFTqvr3Pwjr0qk9QHT6eF2q/nU+2eEV dq5fofigZoYwglQDCC1wwafAWZyU3JgUjhyJUjzCmGnTrJmo+DKl/WfUmZROh/5m qDMMDFsH+JKYKZDjpz6qHojNYLXqD0XanKBPvSDzJcnR/V8JIk8hI/kYCMh1JP0v VNDCQgGXVodKyNGIRsilNYeqLDp6r9IpodUSi3cLEiNK3CkCvKuamdR6qAXdbEo= -----END CERTIFICATE-----Generated at Wed May 13 00:59:20 2026 by rpki-client