$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/432e3f94-13c1-42f9-b4dc-848f8123f77e.roa File: 432e3f94-13c1-42f9-b4dc-848f8123f77e.roa (raw, json) Hash identifier: lRIeAgfBlh2Bd9vUXdZqFWzkGZkn6FV7S1p1wQBlwiY= Subject key identifier: 00:03:78:15:56:65:E3:95:F4:1E:78:41:43:F4:01:58:B2:D7:A8:47 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 52436267EA14430F400894299D39A5615EEA8799 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/432e3f94-13c1-42f9-b4dc-848f8123f77e.roa Signing time: Mon 04 May 2026 05:01:34 +0000 ROA not before: Mon 04 May 2026 05:01:34 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d88::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:43:62:67:ea:14:43:0f:40:08:94:29:9d:39:a5:61:5e:ea:87:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 05:01:34 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=890f82d84cdea894a703efb2f0bec753a443192c56a3d60fe876536ee2884f6c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cb:48:5a:89:a7:dc:9a:09:e0:47:f4:a4:57: 87:ae:4b:1a:ac:45:7e:2a:43:ae:3b:8b:04:dc:a5: 15:6d:e1:0c:24:3d:49:9d:f0:79:c2:96:1c:d5:95: 14:4f:af:e7:36:a8:33:69:d2:d8:33:6f:a0:6d:c4: 92:02:1c:d3:75:dd:78:c6:58:84:d2:66:a1:d8:58: 6e:a0:25:d5:c9:4d:4a:d1:33:f3:81:01:e8:b6:19: 9c:c8:06:7f:74:e2:0b:71:91:e6:45:07:23:94:f4: 1d:6e:5f:d7:11:1c:06:e8:2b:79:09:78:d0:b7:54: 90:4d:a1:6a:1e:36:04:71:92:50:99:39:b1:3d:c0: 7c:e2:d2:be:30:3a:b9:88:df:e3:bd:d6:48:17:50: 9f:25:55:1d:f8:02:e1:de:7e:77:bc:b0:36:cc:87: 70:97:50:80:9a:af:f8:a0:30:69:c0:90:fc:79:1b: 65:e5:ca:da:91:1c:03:f2:2d:d8:d9:3d:00:7f:31: 69:c9:c7:c1:f0:5e:f0:d3:39:b7:86:07:c0:12:7f: ed:ae:ff:1a:e9:b6:ab:18:ac:32:21:91:91:6b:fe: 1a:e7:63:29:ca:b1:48:4d:46:fa:fe:26:ba:b5:7c: 96:c6:c9:2e:77:51:0d:89:08:77:ae:97:ed:29:85: 1d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:03:78:15:56:65:E3:95:F4:1E:78:41:43:F4:01:58:B2:D7:A8:47 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/432e3f94-13c1-42f9-b4dc-848f8123f77e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d88::/45 Signature Algorithm: sha256WithRSAEncryption ac:4c:86:0c:e1:f2:2b:29:5d:60:fe:89:3c:e4:df:87:e3:75: 16:a2:06:45:47:c4:31:8e:b0:ee:2b:45:1c:5f:a3:28:8f:3e: 28:63:10:29:48:de:f6:c3:92:c3:c2:06:8e:f5:3c:88:b9:fa: 5a:e5:8a:a0:ed:72:9b:14:96:7f:03:b3:a4:bc:73:b2:dd:7f: 53:5c:9d:b5:13:61:1b:41:3d:78:51:73:8f:60:35:63:99:96: 3b:5a:19:e7:12:66:c9:75:ec:7e:01:36:e9:34:fc:1f:5c:48: 7c:72:cb:68:d6:b8:4e:97:9e:f8:93:58:a6:ba:99:8f:e1:c5: a2:e3:1d:4d:38:71:13:af:a7:c1:f4:bd:6c:8c:5b:9e:87:c3: d4:09:94:2b:58:ef:20:e6:3d:37:bc:eb:a7:46:ee:13:3a:b3: 56:58:00:dd:c6:10:a6:dd:04:5c:69:d1:2d:02:a6:f3:ac:c1: 45:51:b4:f2:b2:95:5f:10:c6:7b:30:29:02:71:98:7a:c2:0b: e1:a1:5c:ce:64:45:93:1d:96:3b:68:0a:4d:79:4f:b3:27:2d: dd:1a:60:82:9d:5b:83:d3:8f:f3:f2:16:51:26:5f:6f:44:d8: 71:b5:03:c6:be:b4:9d:2c:c8:9b:f9:af:80:a4:c9:0e:51:c1: 41:e2:52:8c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUkNiZ+oUQw9ACJQpnTmlYV7qh5kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDUwMTM0WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTBmODJkODRjZGVhODk0YTcwM2VmYjJmMGJlYzc1M2E0 NDMxOTJjNTZhM2Q2MGZlODc2NTM2ZWUyODg0ZjZjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCey0haiafcmgngR/SkV4euSxqsRX4qQ647iwTcpRVt4Qwk PUmd8HnClhzVlRRPr+c2qDNp0tgzb6BtxJICHNN13XjGWITSZqHYWG6gJdXJTUrR M/OBAei2GZzIBn904gtxkeZFByOU9B1uX9cRHAboK3kJeNC3VJBNoWoeNgRxklCZ ObE9wHzi0r4wOrmI3+O91kgXUJ8lVR34AuHefne8sDbMh3CXUICar/igMGnAkPx5 G2XlytqRHAPyLdjZPQB/MWnJx8HwXvDTObeGB8ASf+2u/xrptqsYrDIhkZFr/hrn YynKsUhNRvr+Jrq1fJbGyS53UQ2JCHeul+0phR0TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAAN4FVZl45X0HnhBQ/QBWLLXqEcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQzMmUzZjk0LTEzYzEtNDJmOS1iNGRjLTg0OGY4MTIzZjc3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAALYgwDQYJKoZIhvcNAQELBQADggEBAKxMhgzh8ispXWD+iTzk34fj dRaiBkVHxDGOsO4rRRxfoyiPPihjEClI3vbDksPCBo71PIi5+lrliqDtcpsUln8D s6S8c7Ldf1NcnbUTYRtBPXhRc49gNWOZljtaGecSZsl17H4BNuk0/B9cSHxyy2jW uE6XnviTWKa6mY/hxaLjHU04cROvp8H0vWyMW56Hw9QJlCtY7yDmPTe866dG7hM6 s1ZYAN3GEKbdBFxp0S0CpvOswUVRtPKylV8QxnswKQJxmHrCC+GhXM5kRZMdljto Ck15T7MnLd0aYIKdW4PTj/PyFlEmX29E2HG1A8a+tJ0syJv5r4CkyQ5RwUHiUow= -----END CERTIFICATE-----Generated at Wed May 13 01:09:14 2026 by rpki-client