$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3071de4a-9676-4f21-87c4-d3c4653444d8.roa File: 3071de4a-9676-4f21-87c4-d3c4653444d8.roa (raw, json) Hash identifier: M1eHjXESYFtYR8BZbkSN05JW0ZEMi1sxXhQV5U8358c= Subject key identifier: 54:8D:43:87:37:3B:6A:45:AB:F7:04:7C:23:11:D2:77:9B:72:C6:50 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 128FD56A703182643FFECDB11D5B060D6B863EDF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3071de4a-9676-4f21-87c4-d3c4653444d8.roa Signing time: Mon 11 May 2026 00:40:07 +0000 ROA not before: Mon 11 May 2026 00:40:07 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:8f:d5:6a:70:31:82:64:3f:fe:cd:b1:1d:5b:06:0d:6b:86:3e:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 11 00:40:07 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=68abda3ddd76aeebee88cfe390d503e602eaa05e7c8abf4ef7db0ddf698dca08, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:2c:77:b7:70:eb:57:9c:61:ad:59:3a:78: ec:7f:62:38:a8:a2:e9:7a:65:f7:55:c3:dc:72:15: d0:b6:6e:7c:68:e9:d8:1b:d6:84:15:36:fc:df:e1: ee:bc:4b:33:3b:df:2c:03:5b:df:82:f3:f3:e2:ea: 01:49:18:91:d6:0a:81:b6:62:d8:b7:12:a8:e4:61: 02:da:36:e0:b0:ff:7c:a5:0c:6f:a1:e0:07:8f:98: ed:3a:19:e2:28:cb:19:2a:46:fa:b1:3d:df:7e:7a: 24:52:4f:d9:fa:5d:cf:e1:12:1b:51:6c:68:84:81: 2a:1b:ea:00:26:1d:0e:dc:ff:a0:dd:d6:2a:a4:32: 79:42:b5:e6:c8:75:c9:45:8e:c1:a8:d8:0e:b1:66: 8e:08:4e:c1:77:c7:75:5c:81:6d:50:20:a2:a2:68: 31:e0:73:45:af:78:92:0e:6d:c4:99:eb:7a:53:a5: 6e:f6:59:2a:e3:60:42:a6:d0:76:e1:9a:76:91:68: 9b:64:53:e4:95:ba:d5:b5:a4:97:64:18:49:ff:d9: 57:ef:15:88:f7:37:79:58:e9:fe:57:c6:94:04:50: 1b:4f:e4:1b:6d:78:3a:62:15:b4:c2:92:e3:f4:b4: 61:fd:a9:f3:29:17:76:93:68:94:8a:ad:83:5d:06: b4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:8D:43:87:37:3B:6A:45:AB:F7:04:7C:23:11:D2:77:9B:72:C6:50 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3071de4a-9676-4f21-87c4-d3c4653444d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.250.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:ec:60:39:a5:b4:69:bc:b2:e3:3b:56:7b:bb:a2:97:a1:8a: db:20:0f:36:de:3a:63:6d:5d:cb:57:a9:d3:a1:3d:ec:64:58: 31:38:33:f2:fb:72:31:de:6c:d2:9d:61:c8:07:99:7e:b3:48: b9:64:ed:7d:e9:ef:19:44:a4:d3:b9:c0:bc:93:73:19:98:34: 31:3a:bc:03:db:06:02:90:0b:04:37:5a:99:70:a0:15:ef:eb: df:e7:c6:6a:81:05:db:72:df:7a:37:c4:35:5e:a5:52:dc:3f: 57:09:3e:fe:73:48:85:98:84:8d:49:e9:73:62:8d:80:48:e1: bf:5d:39:fb:64:42:7d:3e:5f:90:8e:1f:33:0b:f6:e4:dc:8b: e4:53:a4:2b:99:e0:40:de:2e:96:10:e8:1b:cd:2e:dc:b6:34: 72:5b:74:8c:9e:27:91:f9:79:55:ec:8d:d7:81:22:42:42:e9: f6:30:22:f3:1c:f1:3e:3e:a8:49:d5:9b:d6:3b:e1:64:79:97: 0c:3f:64:6f:0b:fc:f3:a8:55:7e:28:7c:e8:d8:28:90:78:90: e5:cd:e1:e1:bb:11:22:51:c7:a8:eb:d0:01:32:1e:45:d1:ef: 67:08:74:4d:07:2e:01:f3:a0:d4:3f:94:5c:35:c6:21:f1:7b: cf:30:6d:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEo/VanAxgmQ//s2xHVsGDWuGPt8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTExMDA0MDA3WhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGFiZGEzZGRkNzZhZWViZWU4OGNmZTM5MGQ1MDNlNjAy ZWFhMDVlN2M4YWJmNGVmN2RiMGRkZjY5OGRjYTA4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7jix3t3DrV5xhrVk6eOx/Yjiooul6ZfdVw9xyFdC2bnxo 6dgb1oQVNvzf4e68SzM73ywDW9+C8/Pi6gFJGJHWCoG2Yti3EqjkYQLaNuCw/3yl DG+h4AePmO06GeIoyxkqRvqxPd9+eiRST9n6Xc/hEhtRbGiEgSob6gAmHQ7c/6Dd 1iqkMnlCtebIdclFjsGo2A6xZo4ITsF3x3VcgW1QIKKiaDHgc0WveJIObcSZ63pT pW72WSrjYEKm0HbhmnaRaJtkU+SVutW1pJdkGEn/2VfvFYj3N3lY6f5XxpQEUBtP 5BtteDpiFbTCkuP0tGH9qfMpF3aTaJSKrYNdBrQHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVI1Dhzc7akWr9wR8IxHSd5tyxlAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMwNzFkZTRhLTk2NzYtNGYyMS04N2M0LWQzYzQ2NTM0NDRkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHN+/owDQYJKoZIhvcNAQELBQADggEBAEvsYDmltGm8suM7Vnu7opehitsg DzbeOmNtXctXqdOhPexkWDE4M/L7cjHebNKdYcgHmX6zSLlk7X3p7xlEpNO5wLyT cxmYNDE6vAPbBgKQCwQ3WplwoBXv69/nxmqBBdty33o3xDVepVLcP1cJPv5zSIWY hI1J6XNijYBI4b9dOftkQn0+X5COHzML9uTci+RTpCuZ4EDeLpYQ6BvNLty2NHJb dIyeJ5H5eVXsjdeBIkJC6fYwIvMc8T4+qEnVm9Y74WR5lww/ZG8L/POoVX4ofOjY KJB4kOXN4eG7ESJRx6jr0AEyHkXR72cIdE0HLgHzoNQ/lFw1xiHxe88wbYw= -----END CERTIFICATE-----Generated at Wed May 13 01:03:22 2026 by rpki-client