$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1bf10c6a-787c-416a-a28b-69525ad8b29d.roa File: 1bf10c6a-787c-416a-a28b-69525ad8b29d.roa (raw, json) Hash identifier: tznR7LT2D+W2WTwQsCfTNONv6R85BAPjRBZj0ZqJY3Q= Subject key identifier: 33:FC:36:D4:20:F7:0D:E8:14:22:02:62:A1:75:31:A1:D2:44:9D:20 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4A1FD5757B437871076FF0262C3B1512EABC2C41 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1bf10c6a-787c-416a-a28b-69525ad8b29d.roa Signing time: Mon 04 May 2026 10:41:40 +0000 ROA not before: Mon 04 May 2026 10:41:40 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:33c2::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:1f:d5:75:7b:43:78:71:07:6f:f0:26:2c:3b:15:12:ea:bc:2c:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 10:41:40 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=3192671aa4090645784550b60abedee4777749566627e2f6c6b6b25e42ca90a6, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5c:f6:be:38:16:63:76:5d:8b:b1:06:13:c8: 01:e0:e5:de:15:e4:51:80:9a:a4:ef:11:c3:e2:56: b2:f4:0a:b8:56:6a:df:22:3c:07:56:a0:ff:7a:46: 53:7e:fc:22:3f:6a:5f:c0:2a:b2:8b:ef:ee:2c:42: 94:be:83:8d:e7:83:ee:21:be:49:2e:2d:9d:6e:74: eb:0b:7c:2f:52:22:b4:6b:43:07:bb:09:88:1c:25: 5d:bb:fb:cf:36:fc:bb:f9:53:2d:9d:5d:74:6b:ce: 6b:e4:07:5b:fe:83:75:bf:15:d2:a0:52:f2:b7:34: 07:d1:31:b0:ad:b4:72:da:6c:60:2e:1d:c5:97:90: a9:e4:0c:04:f1:2e:ba:46:e3:1d:0b:a0:18:56:0d: dd:0c:b0:5e:62:3a:62:9a:e1:73:cd:13:17:7e:4a: d1:24:87:d0:be:43:23:39:bf:be:03:e7:e9:21:d1: 1f:96:c1:6b:28:ab:96:91:d5:c1:7e:f0:93:f3:07: 0b:34:68:e0:a8:3e:44:ca:25:a0:10:40:04:0a:7b: 56:5d:0a:4a:1e:f3:b1:15:82:ef:05:be:da:9a:51: 2a:8b:b6:a2:f3:2d:49:81:89:28:ab:97:3c:73:24: b7:f9:b3:04:55:c8:56:82:3d:3e:15:fa:e1:ee:20: 7d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:FC:36:D4:20:F7:0D:E8:14:22:02:62:A1:75:31:A1:D2:44:9D:20 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1bf10c6a-787c-416a-a28b-69525ad8b29d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:33c2::/47 Signature Algorithm: sha256WithRSAEncryption 78:71:aa:02:28:ae:6c:7f:5f:ba:24:f0:15:29:c5:ef:77:b2: 98:58:df:b1:77:84:2b:27:67:ab:80:15:11:b4:75:4e:1f:ad: d6:ee:e5:1d:20:4b:90:92:81:1f:1e:e6:15:93:44:b7:cb:c8: ad:39:99:10:7f:1a:e7:e3:ff:a2:a7:63:6e:83:f4:db:3c:f6: 23:6b:2c:45:89:f7:2e:65:50:fd:0b:b5:10:79:fe:1a:d1:55: 2c:c6:72:24:f6:69:41:ad:7a:34:35:f1:a5:12:98:2d:62:bb: 07:ce:f6:25:ba:b7:bf:64:1c:e4:65:fd:5c:22:d0:73:60:d2: 1a:48:f0:fe:6c:79:5e:f9:e4:a4:c5:a9:f9:9f:51:9a:57:23: aa:3f:08:2c:ad:08:8e:c8:f3:2d:3f:37:b0:16:4f:de:87:37: 63:8a:63:bb:b5:78:75:4d:2e:b7:13:4b:f6:24:61:52:63:a9: 11:ec:78:88:48:e3:90:56:72:21:18:4c:29:62:4e:2a:f9:62: 7b:30:67:74:3a:88:0b:6a:a7:45:d1:fe:ac:76:8c:3c:7a:75: b4:c1:d2:fa:b9:fd:4f:c2:fb:d3:88:fb:40:af:ae:5c:27:5f: 32:d7:9e:8d:c2:77:bf:9f:79:c5:2c:04:00:cc:93:8b:21:44: 5b:c9:9f:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSh/VdXtDeHEHb/AmLDsVEuq8LEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MTA0MTQwWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTkyNjcxYWE0MDkwNjQ1Nzg0NTUwYjYwYWJlZGVlNDc3 Nzc0OTU2NjYyN2UyZjZjNmI2YjI1ZTQyY2E5MGE2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRXPa+OBZjdl2LsQYTyAHg5d4V5FGAmqTvEcPiVrL0CrhW at8iPAdWoP96RlN+/CI/al/AKrKL7+4sQpS+g43ng+4hvkkuLZ1udOsLfC9SIrRr Qwe7CYgcJV27+882/Lv5Uy2dXXRrzmvkB1v+g3W/FdKgUvK3NAfRMbCttHLabGAu HcWXkKnkDATxLrpG4x0LoBhWDd0MsF5iOmKa4XPNExd+StEkh9C+QyM5v74D5+kh 0R+WwWsoq5aR1cF+8JPzBws0aOCoPkTKJaAQQAQKe1ZdCkoe87EVgu8FvtqaUSqL tqLzLUmBiSirlzxzJLf5swRVyFaCPT4V+uHuIH1PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUM/w21CD3DegUIgJioXUxodJEnSAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFiZjEwYzZhLTc4N2MtNDE2YS1hMjhiLTY5NTI1YWQ4YjI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAM8IwDQYJKoZIhvcNAQELBQADggEBAHhxqgIormx/X7ok8BUpxe93 sphY37F3hCsnZ6uAFRG0dU4frdbu5R0gS5CSgR8e5hWTRLfLyK05mRB/Gufj/6Kn Y26D9Ns89iNrLEWJ9y5lUP0LtRB5/hrRVSzGciT2aUGtejQ18aUSmC1iuwfO9iW6 t79kHORl/Vwi0HNg0hpI8P5seV755KTFqfmfUZpXI6o/CCytCI7I8y0/N7AWT96H N2OKY7u1eHVNLrcTS/YkYVJjqRHseIhI45BWciEYTCliTir5YnswZ3Q6iAtqp0XR /qx2jDx6dbTB0vq5/U/C+9OI+0CvrlwnXzLXno3Cd7+fecUsBADMk4shRFvJnyw= -----END CERTIFICATE-----Generated at Wed May 13 01:03:37 2026 by rpki-client