$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2aca6853-3922-4123-8ae9-b871b4c52076.roa File: 2aca6853-3922-4123-8ae9-b871b4c52076.roa (raw, json) Hash identifier: UsppbSHCq1MlYqIgJAE+wSZmy/LkIc6jdFbWAFI7MZA= Subject key identifier: B3:91:8D:E9:07:06:5C:34:4B:70:06:03:C8:4A:BD:1E:FA:74:BB:36 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 231FF4C03A9BEB25F0ED907F827935A541965897 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2aca6853-3922-4123-8ae9-b871b4c52076.roa Signing time: Mon 11 May 2026 00:50:08 +0000 ROA not before: Mon 11 May 2026 00:50:08 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:1f:f4:c0:3a:9b:eb:25:f0:ed:90:7f:82:79:35:a5:41:96:58:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 11 00:50:08 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=b8ff5536da12db33f56e3deb9ca8870b1e82788a668d4cf2c2083530498f3d82, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e1:83:fe:b3:e4:3a:47:89:86:00:c3:f8:43: 22:71:46:92:73:19:a5:95:44:c2:8f:8a:8f:9b:86: 6a:2e:26:ea:9c:94:40:5a:e1:35:28:3c:d0:d9:57: 32:91:21:ee:39:31:ec:aa:0e:ef:ab:1f:de:fb:2d: 0d:19:c0:5e:55:cc:50:be:80:81:f5:ae:5f:52:34: 77:b6:1a:c5:2d:14:6f:ba:d4:20:16:79:02:87:02: 6f:ca:2b:8e:58:e9:47:14:3a:57:62:a0:06:e3:eb: 58:73:8e:5f:c7:99:70:ec:cc:e3:eb:e6:5a:01:6e: 1c:e1:84:24:6d:60:d9:ef:a1:c5:58:79:0d:83:e9: de:a6:d7:32:e5:85:1e:6a:1a:d0:f7:07:40:3d:23: 85:5c:30:d5:26:28:a8:58:eb:8b:5b:e2:53:53:24: bf:cf:95:ef:0e:b2:e3:84:ae:ca:6c:a0:d0:ca:81: 90:63:38:91:98:9f:d3:0b:23:6d:6c:f0:21:ea:53: a7:a4:e8:69:e6:64:f5:51:7e:e6:29:73:30:d2:c7: b0:2a:55:e9:20:d3:37:7d:fd:88:65:c1:86:6e:7f: 86:8c:d6:5b:15:c7:9b:9b:df:21:69:ad:44:32:30: 26:c6:f0:08:2c:40:f7:92:a3:69:eb:d8:7c:35:21: 1b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:91:8D:E9:07:06:5C:34:4B:70:06:03:C8:4A:BD:1E:FA:74:BB:36 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2aca6853-3922-4123-8ae9-b871b4c52076.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.192.0/18 Signature Algorithm: sha256WithRSAEncryption 21:03:b4:73:ec:ce:85:8b:26:e5:13:0f:ab:c2:e7:a8:99:30: ef:31:e7:05:a8:47:a5:0d:13:29:4f:5f:9a:9b:71:37:68:19: 0a:48:10:ca:4a:91:1a:fc:4e:cf:22:b7:79:36:37:20:fb:2c: 7f:3c:67:ba:89:39:58:42:cb:65:b3:b2:c7:1c:35:70:55:ac: 09:35:a6:5c:83:a5:f5:83:8b:c8:0a:6a:4f:1a:b0:5e:be:42: f7:4b:79:61:f4:31:c6:16:33:01:38:15:cb:40:d6:26:81:a3: d0:90:2f:4a:6b:04:31:1a:bd:1c:20:3b:9d:91:d7:a4:9f:60: a2:43:f7:a7:0f:20:07:0d:41:81:2e:cf:64:bf:a1:35:94:42: 52:c9:8f:1b:5e:31:6a:de:63:2d:f1:2b:d8:a3:be:b9:c9:4c: d5:8e:12:aa:11:71:46:41:cd:c0:40:72:68:c1:1a:dd:ff:3e: ce:76:fe:19:5d:a9:70:03:a1:1f:14:a0:3e:72:82:33:ed:26: 96:92:f5:9d:b1:41:89:66:94:95:fd:08:7a:eb:d6:04:db:dd: 35:63:24:7a:a1:8e:20:20:4b:3d:5b:98:d8:86:65:d7:8f:66: 1a:1a:7c:9d:6c:a0:9d:26:52:b4:b6:45:59:bd:cb:2b:5c:79: eb:91:ce:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIx/0wDqb6yXw7ZB/gnk1pUGWWJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTExMDA1MDA4WhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGZmNTUzNmRhMTJkYjMzZjU2ZTNkZWI5Y2E4ODcwYjFl ODI3ODhhNjY4ZDRjZjJjMjA4MzUzMDQ5OGYzZDgyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK4YP+s+Q6R4mGAMP4QyJxRpJzGaWVRMKPio+bhmouJuqc lEBa4TUoPNDZVzKRIe45MeyqDu+rH977LQ0ZwF5VzFC+gIH1rl9SNHe2GsUtFG+6 1CAWeQKHAm/KK45Y6UcUOldioAbj61hzjl/HmXDszOPr5loBbhzhhCRtYNnvocVY eQ2D6d6m1zLlhR5qGtD3B0A9I4VcMNUmKKhY64tb4lNTJL/Ple8OsuOErspsoNDK gZBjOJGYn9MLI21s8CHqU6ek6GnmZPVRfuYpczDSx7AqVekg0zd9/YhlwYZuf4aM 1lsVx5ub3yFprUQyMCbG8AgsQPeSo2nr2Hw1IRs5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs5GN6QcGXDRLcAYDyEq9Hvp0uzYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJhY2E2ODUzLTM5MjItNDEyMy04YWU5LWI4NzFiNGM1MjA3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbN+8AwDQYJKoZIhvcNAQELBQADggEBACEDtHPszoWLJuUTD6vC56iZMO8x 5wWoR6UNEylPX5qbcTdoGQpIEMpKkRr8Ts8it3k2NyD7LH88Z7qJOVhCy2Wzsscc NXBVrAk1plyDpfWDi8gKak8asF6+QvdLeWH0McYWMwE4FctA1iaBo9CQL0prBDEa vRwgO52R16SfYKJD96cPIAcNQYEuz2S/oTWUQlLJjxteMWreYy3xK9ijvrnJTNWO EqoRcUZBzcBAcmjBGt3/Ps52/hldqXADoR8UoD5ygjPtJpaS9Z2xQYlmlJX9CHrr 1gTb3TVjJHqhjiAgSz1bmNiGZdePZhoafJ1soJ0mUrS2RVm9yytceeuRzrE= -----END CERTIFICATE-----Generated at Wed May 13 01:13:05 2026 by rpki-client