$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3bf3f6db-f277-4f3f-b2a4-e25ecc026f86.roa File: 3bf3f6db-f277-4f3f-b2a4-e25ecc026f86.roa (raw, json) Hash identifier: Hyd7iYIujBBD4bn4hP1ZhR4qHDj9vNgY8fpuon6L184= Subject key identifier: 85:5D:53:F2:18:05:83:57:9F:1B:84:BC:25:BF:20:27:23:0C:52:F6 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 47DF2E6E8FA2CA0EEF2E1267E525370446F2D78E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3bf3f6db-f277-4f3f-b2a4-e25ecc026f86.roa Signing time: Mon 04 May 2026 09:41:33 +0000 ROA not before: Mon 04 May 2026 09:41:33 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2900::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:df:2e:6e:8f:a2:ca:0e:ef:2e:12:67:e5:25:37:04:46:f2:d7:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 09:41:33 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=dbe19b406d02848f943aad9fa74db7a84959d10d68400a3e2fdb1cb2ffd71380, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c7:49:98:e7:7b:30:58:9c:67:38:6f:91:dc: 2e:1b:8e:f7:ef:54:0e:db:2e:44:d1:30:bf:52:d4: cb:6e:e8:4e:aa:18:f5:6a:d7:98:8b:21:91:23:7e: f1:8a:06:c7:32:36:bc:d9:6d:e5:b6:43:39:5a:30: 2e:b2:ba:a0:4d:01:5c:1f:e3:4f:ac:e3:41:d5:33: 90:a1:84:21:56:92:d3:2f:9f:11:4f:6f:82:6e:bd: 6a:65:e1:70:d6:10:55:bd:05:53:c8:21:81:3b:d4: d3:3a:3f:66:76:20:56:21:81:eb:06:74:eb:64:54: bf:9f:62:f0:a3:68:f7:2b:3b:ce:da:ff:4a:fb:45: 18:b5:c6:fc:7d:34:22:e9:23:9d:c7:e3:14:3f:9f: c7:8b:9a:0b:2f:04:1a:cd:a3:5a:2e:e5:ce:67:63: d9:f3:fc:07:9d:c6:c6:f2:dc:e0:75:f0:59:4d:b7: ae:8b:9c:4f:6a:b5:a0:83:46:3c:d6:28:41:98:c3: 47:c8:09:a3:7a:26:fd:39:fd:82:e2:13:70:80:82: 3a:f0:7a:f0:c5:3f:36:92:fa:15:cd:fd:66:4a:54: 57:23:06:a1:6a:b9:69:03:99:dc:63:61:56:5c:f1: 91:62:cd:16:9d:41:eb:de:de:ce:97:94:02:4e:8a: cf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5D:53:F2:18:05:83:57:9F:1B:84:BC:25:BF:20:27:23:0C:52:F6 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3bf3f6db-f277-4f3f-b2a4-e25ecc026f86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2900::/44 Signature Algorithm: sha256WithRSAEncryption 38:3a:1a:8f:51:6a:76:70:50:94:a0:ee:60:49:83:3d:a2:e0: 7f:26:f7:8d:49:1a:31:79:89:83:54:a2:3a:63:5e:21:25:4d: 18:e2:6c:9f:04:a2:01:e8:9e:73:9a:6c:0e:ff:dc:ef:4d:dc: 12:97:8b:c3:03:ac:71:59:20:9d:d5:f5:0d:e8:0e:5c:86:46: 38:29:8f:bf:1d:7c:be:a2:aa:78:84:74:10:ab:0a:f8:d5:e9: 01:7d:ca:aa:73:a9:e3:21:1d:94:e0:9d:56:fa:2f:d3:f0:2b: d1:65:b4:48:63:d2:81:30:f9:38:62:5b:1d:77:4f:20:0c:8e: 7b:a4:ce:e5:7c:8f:26:38:f9:7e:a1:c5:eb:b4:22:1a:f7:0d: 46:e6:55:f8:0c:c3:36:3c:c1:6c:f4:fb:5a:20:00:5f:82:03: e6:0a:58:fe:d6:56:cb:35:3d:db:e1:8c:09:9c:6b:45:de:93: f3:aa:45:cc:f2:0f:ef:ed:e3:d4:be:81:70:6a:fe:ef:a0:dc: b1:5d:de:03:66:ed:72:a6:54:99:82:5d:72:8d:d2:e7:74:37: 98:55:92:c6:cf:d0:f8:8e:74:93:75:a5:de:f0:eb:c4:ca:06: 8e:d4:69:44:d2:4b:f6:39:37:78:bc:3c:4e:4f:b1:53:58:f3: ae:33:0e:ae -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR98ubo+iyg7vLhJn5SU3BEby144wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDk0MTMzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmUxOWI0MDZkMDI4NDhmOTQzYWFkOWZhNzRkYjdhODQ5 NTlkMTBkNjg0MDBhM2UyZmRiMWNiMmZmZDcxMzgwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXx0mY53swWJxnOG+R3C4bjvfvVA7bLkTRML9S1Mtu6E6q GPVq15iLIZEjfvGKBscyNrzZbeW2QzlaMC6yuqBNAVwf40+s40HVM5ChhCFWktMv nxFPb4JuvWpl4XDWEFW9BVPIIYE71NM6P2Z2IFYhgesGdOtkVL+fYvCjaPcrO87a /0r7RRi1xvx9NCLpI53H4xQ/n8eLmgsvBBrNo1ou5c5nY9nz/Aedxsby3OB18FlN t66LnE9qtaCDRjzWKEGYw0fICaN6Jv05/YLiE3CAgjrwevDFPzaS+hXN/WZKVFcj BqFquWkDmdxjYVZc8ZFizRadQeve3s6XlAJOis9hAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhV1T8hgFg1efG4S8Jb8gJyMMUvYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNiZjNmNmRiLWYyNzctNGYzZi1iMmE0LWUyNWVjYzAyNmY4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAKQAwDQYJKoZIhvcNAQELBQADggEBADg6Go9RanZwUJSg7mBJgz2i 4H8m941JGjF5iYNUojpjXiElTRjibJ8EogHonnOabA7/3O9N3BKXi8MDrHFZIJ3V 9Q3oDlyGRjgpj78dfL6iqniEdBCrCvjV6QF9yqpzqeMhHZTgnVb6L9PwK9FltEhj 0oEw+ThiWx13TyAMjnukzuV8jyY4+X6hxeu0Ihr3DUbmVfgMwzY8wWz0+1ogAF+C A+YKWP7WVss1PdvhjAmca0Xek/OqRczyD+/t49S+gXBq/u+g3LFd3gNm7XKmVJmC XXKN0ud0N5hVksbP0PiOdJN1pd7w68TKBo7UaUTSS/Y5N3i8PE5PsVNY864zDq4= -----END CERTIFICATE-----Generated at Wed May 13 01:21:59 2026 by rpki-client