$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/177ca07b-28ab-4e97-9ba0-4005158c7019.roa File: 177ca07b-28ab-4e97-9ba0-4005158c7019.roa (raw, json) Hash identifier: k+Bae8WbkvF8SABX5RFMMigfRlfyLiyblqGQiT+neyk= Subject key identifier: A1:78:7D:6A:90:F6:49:D5:C8:09:26:77:8D:EE:95:36:03:51:CD:31 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 338E1598D4507E49A8A2CF1A9F17343398DEC57A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/177ca07b-28ab-4e97-9ba0-4005158c7019.roa Signing time: Mon 04 May 2026 06:01:38 +0000 ROA not before: Mon 04 May 2026 06:01:38 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3600::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:8e:15:98:d4:50:7e:49:a8:a2:cf:1a:9f:17:34:33:98:de:c5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 06:01:38 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=0476ff0af5de884dae6c0535f6afcf12fef8e99260e1a3cc6fdf90c77a55cd7c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bf:e3:35:88:e1:dd:23:9b:2c:72:bb:dd:69: 8a:c6:83:c8:18:59:0a:2c:43:88:96:66:bc:b6:04: 59:97:e8:8d:65:40:4e:a7:07:53:80:ee:90:a3:d2: ad:2b:7d:42:8a:74:fb:92:d3:e8:c2:08:60:31:d2: e5:4a:67:db:e6:39:f5:68:84:ac:f2:46:70:c5:ab: b4:b4:b5:1a:80:0f:a5:84:39:2a:1a:39:18:4c:cf: cf:b2:5e:92:4c:50:f7:c2:fe:9f:a7:fd:a5:d0:3e: e9:3e:a1:8c:48:8a:5d:84:21:ff:6a:6c:35:2a:36: 60:df:55:6d:2e:0e:a7:a7:3a:aa:a1:77:85:a2:04: 6a:00:0e:a1:22:34:fa:99:a2:0d:b4:9b:9b:28:30: c7:fe:49:ea:ca:c1:ab:1c:74:2b:83:45:f3:93:bc: 3b:93:82:f4:3e:31:2e:4c:03:00:df:7e:95:65:42: a8:15:3f:8d:54:9d:75:d9:89:53:aa:59:4c:3c:de: 5b:54:b5:a7:f0:3f:d4:f3:52:e4:8a:4a:fd:e6:2d: af:2e:d8:b0:86:05:22:bd:38:55:a7:b6:aa:29:1e: d2:e9:a3:69:4d:b2:9c:b0:f8:d2:4d:7b:82:40:44: 99:08:8c:40:76:76:46:26:87:55:99:8e:66:9d:1c: 61:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:78:7D:6A:90:F6:49:D5:C8:09:26:77:8D:EE:95:36:03:51:CD:31 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/177ca07b-28ab-4e97-9ba0-4005158c7019.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3600::/39 Signature Algorithm: sha256WithRSAEncryption 79:04:7c:d0:4e:f4:7e:3c:06:3c:6a:aa:4a:ba:2a:14:8c:57: 48:6d:1e:db:5e:81:9d:06:e2:9e:5a:d7:1d:9f:3a:8a:8b:02: 1d:6a:ec:7c:42:1d:29:42:9f:a3:e8:b4:25:41:be:72:51:68: af:c6:55:34:ed:5c:79:c2:5a:e0:62:18:b5:86:f3:9e:79:83: 86:00:5c:73:2c:cf:91:f6:62:bb:a4:79:d9:3c:5f:bc:bd:c3: b0:c6:1b:21:6b:7e:88:16:1b:c5:58:9e:8d:79:e9:37:12:00: d7:84:d6:91:35:66:e4:1a:55:fb:8a:55:e1:59:4c:77:8a:29: 71:13:da:e4:af:e8:64:40:8b:30:6b:85:95:dc:f6:34:a3:df: e6:cb:a1:21:98:bb:11:da:73:cb:5b:8c:9b:04:3e:dc:89:f9: fb:d4:a4:96:e1:3b:3e:95:a0:e5:01:9d:b4:e8:79:78:83:61: 62:c0:26:f0:13:84:44:ef:0f:02:f1:ec:7c:e4:37:a3:45:7a: 78:93:a8:02:0e:a8:3c:37:af:39:92:e3:90:66:14:37:d1:99: ed:ec:dd:f0:f7:b8:55:c3:da:7d:61:d2:8f:e5:18:fc:9d:44: 59:aa:16:08:8f:ed:01:0f:c4:2d:75:cd:65:b5:38:8b:48:7f: 91:33:a1:08 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM44VmNRQfkmoos8anxc0M5jexXowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDYwMTM4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDc2ZmYwYWY1ZGU4ODRkYWU2YzA1MzVmNmFmY2YxMmZl ZjhlOTkyNjBlMWEzY2M2ZmRmOTBjNzdhNTVjZDdjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBv+M1iOHdI5sscrvdaYrGg8gYWQosQ4iWZry2BFmX6I1l QE6nB1OA7pCj0q0rfUKKdPuS0+jCCGAx0uVKZ9vmOfVohKzyRnDFq7S0tRqAD6WE OSoaORhMz8+yXpJMUPfC/p+n/aXQPuk+oYxIil2EIf9qbDUqNmDfVW0uDqenOqqh d4WiBGoADqEiNPqZog20m5soMMf+SerKwascdCuDRfOTvDuTgvQ+MS5MAwDffpVl QqgVP41UnXXZiVOqWUw83ltUtafwP9TzUuSKSv3mLa8u2LCGBSK9OFWntqopHtLp o2lNspyw+NJNe4JARJkIjEB2dkYmh1WZjmadHGGnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUoXh9apD2SdXICSZ3je6VNgNRzTEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzE3N2NhMDdiLTI4YWItNGU5Ny05YmEwLTQwMDUxNThjNzAxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAJAANjANBgkqhkiG9w0BAQsFAAOCAQEAeQR80E70fjwGPGqqSroqFIxX SG0e216BnQbinlrXHZ86iosCHWrsfEIdKUKfo+i0JUG+clFor8ZVNO1cecJa4GIY tYbznnmDhgBccyzPkfZiu6R52TxfvL3DsMYbIWt+iBYbxViejXnpNxIA14TWkTVm 5BpV+4pV4VlMd4opcRPa5K/oZECLMGuFldz2NKPf5suhIZi7Edpzy1uMmwQ+3In5 +9SkluE7PpWg5QGdtOh5eINhYsAm8BOERO8PAvHsfOQ3o0V6eJOoAg6oPDevOZLj kGYUN9GZ7ezd8Pe4VcPafWHSj+UY/J1EWaoWCI/tAQ/ELXXNZbU4i0h/kTOhCA== -----END CERTIFICATE-----Generated at Wed May 13 00:47:18 2026 by rpki-client