$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1aab309d-d77a-41e6-adae-163d0354f837.roa File: 1aab309d-d77a-41e6-adae-163d0354f837.roa (raw, json) Hash identifier: LjhenOKjQUKaD36RjBBkfGCUSGzeY7ITNa+ZEmUxbmM= Subject key identifier: 8B:C4:33:7C:4F:29:E4:2B:B6:36:8E:A0:57:77:4E:2C:EC:10:CE:81 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4D34240F1502CB6FA6D389B58E205A8A222FCA2A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1aab309d-d77a-41e6-adae-163d0354f837.roa Signing time: Mon 04 May 2026 11:31:34 +0000 ROA not before: Mon 04 May 2026 11:31:34 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:38b8::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:34:24:0f:15:02:cb:6f:a6:d3:89:b5:8e:20:5a:8a:22:2f:ca:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 11:31:34 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=1b01fc3bb6047d73689dd8de7708866435e59a3af4d4140e31f3cee2cd2d5854, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:88:40:e6:9a:3e:81:39:50:60:1b:03:fb:12: c3:fe:af:81:bf:e3:ff:3b:6b:e1:c8:6b:ed:42:b9: 5b:12:02:ed:1c:83:8f:82:b6:8c:2f:58:7f:d2:b7: 66:db:ba:fd:81:05:fb:fd:2e:55:1f:c7:65:77:05: 7e:0c:02:c4:19:b9:1c:cc:be:fa:34:fa:ba:22:9e: 47:b9:64:9b:69:11:a3:82:09:96:46:d9:33:c8:a5: 18:c0:42:57:e4:f8:46:04:da:18:9d:f6:25:f0:4a: fa:c6:65:6c:35:00:94:e1:72:24:84:8b:06:58:8a: 9a:8d:42:68:ad:fc:97:fa:4f:d7:11:43:8f:c0:70: 4b:e6:11:bb:08:98:fa:08:69:d3:87:48:9b:88:ad: 6a:e3:da:25:39:aa:e5:f4:78:0f:43:f2:74:10:78: 35:c4:12:40:2c:2f:ed:92:8d:f4:97:26:d7:24:80: 67:ab:d0:d6:f2:c7:74:9d:dc:c3:0a:7c:01:ce:ad: 83:63:34:0b:4e:21:5d:bd:57:48:15:01:df:d3:bd: 0e:a5:32:22:b3:f7:ff:f8:65:72:16:fd:f7:48:f9: 54:d0:71:df:d9:59:d8:9e:c5:b6:eb:6e:7c:d1:ac: 2b:70:6c:e0:6b:75:60:a0:47:1f:97:0e:bd:f5:0d: 64:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C4:33:7C:4F:29:E4:2B:B6:36:8E:A0:57:77:4E:2C:EC:10:CE:81 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1aab309d-d77a-41e6-adae-163d0354f837.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:38b8::/47 Signature Algorithm: sha256WithRSAEncryption 3e:41:4f:91:67:d4:42:f1:be:2f:e2:4e:96:66:99:e7:1c:03: d3:1e:29:66:fc:a9:67:10:57:7f:29:17:33:9c:af:f7:0c:7e: 49:92:30:58:42:1a:c2:a1:72:49:74:5f:a8:69:b2:ca:4a:ab: 70:30:cb:f4:78:49:0c:69:97:36:19:76:ad:ad:8b:1f:9c:f6: 61:69:a2:9c:7b:54:79:2b:a5:0e:4f:eb:d9:49:9c:5d:15:c1: 39:d1:0b:8b:d3:2d:e8:08:79:23:22:86:b4:e5:65:5b:34:1b: 6a:ae:0b:2d:36:f6:fe:59:f9:a2:2c:d6:a7:c5:a1:a3:74:65: 29:eb:53:5d:01:57:a3:df:93:31:7d:47:c8:61:a9:f7:aa:27: 5a:82:05:65:5e:9f:c2:4d:f7:44:80:f4:bc:07:ab:53:fd:62: 43:a8:a9:8e:1b:3a:fd:2d:db:34:1f:aa:65:6f:30:b0:e2:1a: b5:5e:77:1f:f7:fc:a5:f3:2e:54:61:9c:85:a1:f3:ec:7a:df: be:6e:ce:4c:05:f4:4e:f7:5f:c0:d2:15:43:46:85:98:f5:aa: 8b:62:df:f7:f5:58:14:f0:03:62:91:52:32:55:a7:10:c9:f8: a4:45:6f:06:12:58:f8:a6:a0:c9:f5:06:78:21:66:31:dd:32: c7:d5:42:32 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTTQkDxUCy2+m04m1jiBaiiIvyiowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MTEzMTM0WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjAxZmMzYmI2MDQ3ZDczNjg5ZGQ4ZGU3NzA4ODY2NDM1 ZTU5YTNhZjRkNDE0MGUzMWYzY2VlMmNkMmQ1ODU0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5iEDmmj6BOVBgGwP7EsP+r4G/4/87a+HIa+1CuVsSAu0c g4+CtowvWH/St2bbuv2BBfv9LlUfx2V3BX4MAsQZuRzMvvo0+roinke5ZJtpEaOC CZZG2TPIpRjAQlfk+EYE2hid9iXwSvrGZWw1AJThciSEiwZYipqNQmit/Jf6T9cR Q4/AcEvmEbsImPoIadOHSJuIrWrj2iU5quX0eA9D8nQQeDXEEkAsL+2SjfSXJtck gGer0Nbyx3Sd3MMKfAHOrYNjNAtOIV29V0gVAd/TvQ6lMiKz9//4ZXIW/fdI+VTQ cd/ZWdiexbbrbnzRrCtwbOBrdWCgRx+XDr31DWSvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUi8QzfE8p5Cu2No6gV3dOLOwQzoEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFhYWIzMDlkLWQ3N2EtNDFlNi1hZGFlLTE2M2QwMzU0ZjgzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOLgwDQYJKoZIhvcNAQELBQADggEBAD5BT5Fn1ELxvi/iTpZmmecc A9MeKWb8qWcQV38pFzOcr/cMfkmSMFhCGsKhckl0X6hpsspKq3Awy/R4SQxplzYZ dq2tix+c9mFpopx7VHkrpQ5P69lJnF0VwTnRC4vTLegIeSMihrTlZVs0G2quCy02 9v5Z+aIs1qfFoaN0ZSnrU10BV6PfkzF9R8hhqfeqJ1qCBWVen8JN90SA9LwHq1P9 YkOoqY4bOv0t2zQfqmVvMLDiGrVedx/3/KXzLlRhnIWh8+x6375uzkwF9E73X8DS FUNGhZj1qoti3/f1WBTwA2KRUjJVpxDJ+KRFbwYSWPimoMn1BnghZjHdMsfVQjI= -----END CERTIFICATE-----Generated at Wed May 13 00:59:46 2026 by rpki-client