$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1f43f90d-b562-4965-b670-203c9110724e.roa File: 1f43f90d-b562-4965-b670-203c9110724e.roa (raw, json) Hash identifier: NVNM1b5inI4eWUvfrNuD6V9Oxb4kBCQvktArMGCf0nY= Subject key identifier: AF:74:3B:FE:9A:5E:AF:DF:3D:A2:74:F6:E4:91:FF:EC:35:60:5E:8D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2CEA7C1FE1C9671FADFC697729DB9CB40F131F8A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1f43f90d-b562-4965-b670-203c9110724e.roa Signing time: Mon 04 May 2026 06:11:49 +0000 ROA not before: Mon 04 May 2026 06:11:49 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3a5c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ea:7c:1f:e1:c9:67:1f:ad:fc:69:77:29:db:9c:b4:0f:13:1f:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 06:11:49 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=37792d25a17423413611727ba4174f1fa9b3c8958ab12813ac9c3f17071f0723, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bc:a9:e1:6e:66:3a:55:ed:50:7b:05:25:bf: 35:67:88:5c:d3:a8:6c:63:fe:59:c4:5c:d9:86:23: f2:74:4a:40:fe:15:3c:c5:da:7c:fa:0b:bd:79:01: 50:d0:30:80:0d:e1:c8:eb:ca:6a:d3:df:72:7e:cf: 38:51:1e:df:1e:dd:ec:4d:24:7c:3f:9b:ce:26:10: 85:80:a3:c1:34:af:e3:d4:fb:4e:1c:69:27:84:25: ef:45:a0:9f:59:5b:04:d9:6a:bc:66:05:56:dd:22: 21:50:0f:1b:62:f6:00:4b:8e:1f:8e:61:60:82:71: 08:2d:ea:8a:6b:47:63:ff:c5:6b:4e:6c:6a:7f:6c: 4f:d7:5a:d3:59:22:1e:7e:3b:46:ef:72:18:37:5b: 50:d4:f7:39:72:00:6d:2e:28:db:e6:77:61:a1:ee: 1f:80:4d:75:ff:f8:e1:4e:e3:4f:0a:b8:a2:56:10: 3d:55:27:b9:4d:cb:ca:6f:8f:27:78:6f:c2:0a:c2: 75:c1:72:74:bc:00:75:28:3b:d0:90:d7:a6:ac:d9: 77:23:79:a4:23:4c:3a:ce:25:b6:d4:8b:ec:c3:ab: 31:b0:57:c7:b0:ba:ef:40:b9:14:b3:90:09:cb:55: e4:31:ea:5f:71:dd:8c:8a:8b:67:86:1e:d8:6c:b1: 0a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:74:3B:FE:9A:5E:AF:DF:3D:A2:74:F6:E4:91:FF:EC:35:60:5E:8D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1f43f90d-b562-4965-b670-203c9110724e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3a5c::/47 Signature Algorithm: sha256WithRSAEncryption 35:e6:4c:c1:5e:3d:db:82:2f:04:3b:db:e2:d4:5f:e0:15:32: 73:08:ca:8e:32:39:dc:9d:aa:5d:85:24:ce:98:2e:3d:48:17: be:60:ba:b3:2c:f0:5a:95:9a:a3:27:ec:15:68:41:87:94:6d: af:e4:d6:ef:c8:90:9e:aa:ef:b5:9c:56:fa:8e:00:4b:a4:73: 95:a6:f3:f5:70:82:53:0c:8c:23:e8:7c:21:65:a2:0a:d4:89: 9c:44:ac:f5:01:1d:29:ac:29:7e:40:57:7e:d6:46:ed:09:35: 83:2c:33:a5:d2:0d:74:53:be:89:67:2b:be:cd:af:8e:d7:aa: 11:00:9b:64:20:08:45:b2:87:5c:30:50:ae:24:d2:bd:eb:39: 89:a1:db:98:5c:73:e3:3a:78:67:ab:a6:1d:a1:04:84:7d:88: ae:fd:0f:3a:83:3a:8f:5e:b0:05:54:69:a2:0a:32:f7:22:bf: 44:cd:9c:81:f6:7b:bd:90:d2:14:70:14:73:01:34:00:da:e2: ca:ea:80:cd:b0:bd:9a:b7:27:b4:3a:7c:41:a3:1f:37:a7:f7: 0f:ec:9a:2c:30:7f:24:ac:45:0c:9e:c5:f9:0b:cc:f1:fb:ec: 2c:05:a9:31:7e:5d:f8:ec:f4:95:60:d4:04:d8:c1:9a:ca:f3: 49:d7:78:0b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULOp8H+HJZx+t/Gl3KductA8TH4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDYxMTQ5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzc5MmQyNWExNzQyMzQxMzYxMTcyN2JhNDE3NGYxZmE5 YjNjODk1OGFiMTI4MTNhYzljM2YxNzA3MWYwNzIzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8vKnhbmY6Ve1QewUlvzVniFzTqGxj/lnEXNmGI/J0SkD+ FTzF2nz6C715AVDQMIAN4cjrymrT33J+zzhRHt8e3exNJHw/m84mEIWAo8E0r+PU +04caSeEJe9FoJ9ZWwTZarxmBVbdIiFQDxti9gBLjh+OYWCCcQgt6oprR2P/xWtO bGp/bE/XWtNZIh5+O0bvchg3W1DU9zlyAG0uKNvmd2Gh7h+ATXX/+OFO408KuKJW ED1VJ7lNy8pvjyd4b8IKwnXBcnS8AHUoO9CQ16as2XcjeaQjTDrOJbbUi+zDqzGw V8ewuu9AuRSzkAnLVeQx6l9x3YyKi2eGHthssQrBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUr3Q7/pper989onT25JH/7DVgXo0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFmNDNmOTBkLWI1NjItNDk2NS1iNjcwLTIwM2M5MTEwNzI0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOlwwDQYJKoZIhvcNAQELBQADggEBADXmTMFePduCLwQ72+LUX+AV MnMIyo4yOdydql2FJM6YLj1IF75gurMs8FqVmqMn7BVoQYeUba/k1u/IkJ6q77Wc VvqOAEukc5Wm8/VwglMMjCPofCFlogrUiZxErPUBHSmsKX5AV37WRu0JNYMsM6XS DXRTvolnK77Nr47XqhEAm2QgCEWyh1wwUK4k0r3rOYmh25hcc+M6eGerph2hBIR9 iK79DzqDOo9esAVUaaIKMvciv0TNnIH2e72Q0hRwFHMBNADa4srqgM2wvZq3J7Q6 fEGjHzen9w/smiwwfySsRQyexfkLzPH77CwFqTF+Xfjs9JVg1ATYwZrK80nXeAs= -----END CERTIFICATE-----Generated at Wed May 13 03:38:58 2026 by rpki-client