$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2c04510e-c9b0-4eb6-8925-1c17da489c22.roa File: 2c04510e-c9b0-4eb6-8925-1c17da489c22.roa (raw, json) Hash identifier: x/NKVdmeD5IrhBj32k4WJ+OPh7FMJCurXGs0+cmShsg= Subject key identifier: CB:16:B3:70:DD:70:BE:E1:39:DF:7E:2F:DE:25:1E:C5:45:08:22:B1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3172C48ECD06D9C7F5F266DE976370E03D67F45D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2c04510e-c9b0-4eb6-8925-1c17da489c22.roa Signing time: Mon 04 May 2026 09:02:07 +0000 ROA not before: Mon 04 May 2026 09:02:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:20a0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:72:c4:8e:cd:06:d9:c7:f5:f2:66:de:97:63:70:e0:3d:67:f4:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 09:02:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=d8393407adb23f11376418074d15c421d49b7025705c0f8ccc63f76181535a2a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:72:93:4f:1b:35:50:cd:51:d9:5e:35:12:4c: 3b:a1:6d:1d:7e:68:4a:e6:07:48:59:a8:0d:db:fa: fc:a4:dd:5e:d5:13:a5:eb:31:d9:68:78:f5:fa:e9: f0:c6:76:b9:2c:a1:ca:12:50:fa:5a:ae:c2:42:0f: 73:6d:ab:ee:68:f4:93:18:f9:01:34:66:f4:81:bb: 22:19:68:1e:89:cb:ed:44:76:bc:f8:03:2c:6d:88: a8:cb:d3:6e:c1:8c:a9:bf:39:e4:12:bc:3d:67:81: de:4b:bb:69:09:0c:b2:46:05:53:23:78:56:86:02: 92:2b:b3:eb:d1:ec:28:73:48:26:a4:15:d9:4c:e7: 39:16:7e:6d:e4:fa:78:fd:e6:e3:c7:1a:a9:3a:0d: 44:fd:93:98:f7:3b:6f:6f:3c:d1:ed:2a:6e:35:1f: 68:e9:55:21:05:20:20:9c:9d:e6:2d:fa:e2:e1:fd: ca:6e:b1:e7:d6:5a:df:36:bf:f6:b7:16:8e:8f:82: 14:ed:ca:4b:14:32:25:a9:59:e6:82:4d:df:b0:51: e5:99:1e:a1:31:8f:04:dd:83:42:84:83:57:42:f7: bf:fd:6d:fe:e4:43:eb:9e:ec:b6:42:df:30:9f:de: ef:0b:d7:b0:b9:d1:56:b5:4d:2f:5b:f3:80:9b:5f: ce:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:16:B3:70:DD:70:BE:E1:39:DF:7E:2F:DE:25:1E:C5:45:08:22:B1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2c04510e-c9b0-4eb6-8925-1c17da489c22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:20a0::/44 Signature Algorithm: sha256WithRSAEncryption 88:4c:74:60:bc:ae:d0:e7:be:29:ad:a8:8d:dc:a7:65:5b:92: bc:6c:45:fc:79:4c:33:42:94:bf:65:c4:5e:00:6b:d7:81:5e: af:c6:58:9b:51:d0:08:2e:31:a2:7f:aa:50:28:29:14:02:81: cf:82:c7:94:75:91:81:6a:c3:eb:d0:a8:80:df:e2:f6:7c:0b: f8:1e:25:da:65:01:41:22:57:ea:54:20:01:57:6f:86:c1:17: bb:cb:42:d9:a5:68:f1:97:98:35:4f:f4:60:8f:a5:a7:31:a9: b9:dd:06:8f:d4:59:ea:a2:2b:11:08:af:cc:1a:a2:74:b7:78: d5:4e:e0:04:cc:5b:b4:18:13:7e:b5:7f:2f:10:ff:7c:ba:6f: bd:5b:e0:f8:95:79:41:84:3a:75:10:db:36:0d:30:90:96:3b: 0d:36:ac:19:97:47:e2:30:d8:c2:5c:43:6f:f4:51:69:e3:f3: bc:fa:77:c6:f3:31:33:76:27:b3:c6:93:71:8b:05:e4:af:7c: d8:4b:76:e6:32:0f:24:41:94:67:b3:6a:38:c9:41:d6:50:54: 63:33:be:27:c3:88:c7:de:d2:c3:4e:96:9b:a0:ed:95:67:86: 89:ce:16:1d:d7:31:45:de:23:f9:62:a9:ce:6b:ff:30:b9:14: d2:dc:18:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMXLEjs0G2cf18mbel2Nw4D1n9F0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDkwMjA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkODM5MzQwN2FkYjIzZjExMzc2NDE4MDc0ZDE1YzQyMWQ0 OWI3MDI1NzA1YzBmOGNjYzYzZjc2MTgxNTM1YTJhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpcpNPGzVQzVHZXjUSTDuhbR1+aErmB0hZqA3b+vyk3V7V E6XrMdloePX66fDGdrksocoSUPparsJCD3Ntq+5o9JMY+QE0ZvSBuyIZaB6Jy+1E drz4AyxtiKjL027BjKm/OeQSvD1ngd5Lu2kJDLJGBVMjeFaGApIrs+vR7ChzSCak FdlM5zkWfm3k+nj95uPHGqk6DUT9k5j3O29vPNHtKm41H2jpVSEFICCcneYt+uLh /cpusefWWt82v/a3Fo6PghTtyksUMiWpWeaCTd+wUeWZHqExjwTdg0KEg1dC97/9 bf7kQ+ue7LZC3zCf3u8L17C50Va1TS9b84CbX87lAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyxazcN1wvuE5334v3iUexUUIIrEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJjMDQ1MTBlLWM5YjAtNGViNi04OTI1LTFjMTdkYTQ4OWMyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAIKAwDQYJKoZIhvcNAQELBQADggEBAIhMdGC8rtDnvimtqI3cp2Vb krxsRfx5TDNClL9lxF4Aa9eBXq/GWJtR0AguMaJ/qlAoKRQCgc+Cx5R1kYFqw+vQ qIDf4vZ8C/geJdplAUEiV+pUIAFXb4bBF7vLQtmlaPGXmDVP9GCPpacxqbndBo/U WeqiKxEIr8waonS3eNVO4ATMW7QYE361fy8Q/3y6b71b4PiVeUGEOnUQ2zYNMJCW Ow02rBmXR+Iw2MJcQ2/0UWnj87z6d8bzMTN2J7PGk3GLBeSvfNhLduYyDyRBlGez ajjJQdZQVGMzvifDiMfe0sNOlpug7ZVnhonOFh3XMUXeI/liqc5r/zC5FNLcGHI= -----END CERTIFICATE-----Generated at Wed May 13 01:19:04 2026 by rpki-client