$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/523a037e-572e-40af-b8a2-1d8ed93b2134.roa File: 523a037e-572e-40af-b8a2-1d8ed93b2134.roa (raw, json) Hash identifier: Uws1W/A8UeowBUMI49oq2yrcO/8UgPl+TfqQbVwhUdw= Subject key identifier: 13:7F:79:03:58:E2:30:86:C0:EB:F0:CD:9B:18:50:CE:71:83:8A:50 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6EDC6ED4981A48ED1423BC8DAD6EA9D65BE0A337 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/523a037e-572e-40af-b8a2-1d8ed93b2134.roa Signing time: Mon 04 May 2026 11:12:15 +0000 ROA not before: Mon 04 May 2026 11:12:15 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2de8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:dc:6e:d4:98:1a:48:ed:14:23:bc:8d:ad:6e:a9:d6:5b:e0:a3:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 11:12:15 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=e7edd8ba2a866db6b75b03b72aa988a722db2b4141271d92eb589367b6556b54, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fd:1a:7d:4b:0a:d7:f5:46:9a:e8:3b:90:d0: 40:ab:40:5c:9f:35:b1:32:64:d8:23:34:18:60:fe: 42:e1:06:b4:96:1c:67:13:94:be:57:c3:9e:25:f4: de:b3:a2:0f:b5:dd:2f:09:80:c8:8a:bb:2e:26:68: 63:37:fc:87:98:b4:59:f5:05:7a:a2:e2:6d:26:34: af:e6:12:48:59:ac:a2:28:f8:4c:c0:cf:92:be:db: 67:49:28:c1:fc:d2:0a:34:27:ca:ab:dd:ec:23:34: 94:74:ff:29:8f:aa:10:18:96:34:06:ed:55:24:93: c7:de:56:b3:ab:72:91:c0:01:45:24:e6:4f:52:f0: fe:0d:e2:92:5c:d0:c9:a2:f8:8d:24:d9:0c:f0:9e: ac:49:15:e0:95:0d:4a:34:95:5a:f5:96:e4:ea:4c: 0b:51:f6:97:68:0a:bf:61:4c:92:fd:3f:06:ae:90: 21:3c:ee:2c:1d:e7:2b:19:e8:7f:12:f1:f0:ff:23: a5:36:ff:52:00:71:73:0f:2e:9e:05:ba:1b:8f:a0: 69:f3:9a:47:65:c5:27:2a:88:a8:b0:bc:ca:a6:fa: 45:6f:64:45:b7:d9:fb:d6:fe:ce:d9:16:38:a2:4a: 54:af:93:8c:4f:77:b4:ef:43:42:40:5a:6f:c1:7d: c4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7F:79:03:58:E2:30:86:C0:EB:F0:CD:9B:18:50:CE:71:83:8A:50 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/523a037e-572e-40af-b8a2-1d8ed93b2134.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2de8::/45 Signature Algorithm: sha256WithRSAEncryption 4c:2d:de:a4:c3:af:73:a1:d3:44:55:4e:1f:38:61:48:ea:ec: 9d:4a:05:56:69:46:6c:0a:57:ed:ec:59:3e:3d:7e:c0:fc:a3: ec:fb:51:71:d6:6b:0a:50:16:18:66:70:24:3f:b1:72:b2:4b: e8:77:e1:d6:b5:2c:5d:62:29:b9:d2:1d:13:bc:c3:a5:71:99: 5c:c0:cc:24:7e:9e:1e:30:17:d5:9c:9b:7e:20:40:17:fb:38: cd:84:10:cf:3a:68:68:67:0e:31:b3:9a:5b:9e:a1:93:f1:c4: 29:19:e7:4d:e1:b0:8c:73:5f:97:75:93:be:16:5c:43:4c:82: 1a:8f:b5:6c:68:b1:ee:ab:e6:db:d4:43:f2:18:e9:6d:23:c9: 23:05:23:c5:1c:bd:d3:5b:4a:73:f5:00:a8:fb:90:cc:57:61: cb:88:0c:f6:b0:26:8d:30:7b:ac:4e:f6:fd:fd:16:bb:a9:39: 72:01:c3:7b:1d:50:e6:0e:e7:60:4e:22:f6:b6:81:5b:e1:f3: 3b:67:da:2b:24:d2:4f:f0:51:d4:2f:4a:4d:d3:21:45:3d:ca: dc:99:be:0d:13:16:13:42:f3:74:7c:7e:8d:05:ec:10:eb:f9: 3a:d7:77:20:b7:c5:7d:8b:55:f6:cb:f4:5a:b3:fe:62:49:14: 37:de:64:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbtxu1JgaSO0UI7yNrW6p1lvgozcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MTExMjE1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2VkZDhiYTJhODY2ZGI2Yjc1YjAzYjcyYWE5ODhhNzIy ZGIyYjQxNDEyNzFkOTJlYjU4OTM2N2I2NTU2YjU0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5/Rp9SwrX9Uaa6DuQ0ECrQFyfNbEyZNgjNBhg/kLhBrSW HGcTlL5Xw54l9N6zog+13S8JgMiKuy4maGM3/IeYtFn1BXqi4m0mNK/mEkhZrKIo +EzAz5K+22dJKMH80go0J8qr3ewjNJR0/ymPqhAYljQG7VUkk8feVrOrcpHAAUUk 5k9S8P4N4pJc0Mmi+I0k2QzwnqxJFeCVDUo0lVr1luTqTAtR9pdoCr9hTJL9Pwau kCE87iwd5ysZ6H8S8fD/I6U2/1IAcXMPLp4FuhuPoGnzmkdlxScqiKiwvMqm+kVv ZEW32fvW/s7ZFjiiSlSvk4xPd7TvQ0JAWm/BfcQdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUE395A1jiMIbA6/DNmxhQznGDilAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzUyM2EwMzdlLTU3MmUtNDBhZi1iOGEyLTFkOGVkOTNiMjEzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAALegwDQYJKoZIhvcNAQELBQADggEBAEwt3qTDr3Oh00RVTh84YUjq 7J1KBVZpRmwKV+3sWT49fsD8o+z7UXHWawpQFhhmcCQ/sXKyS+h34da1LF1iKbnS HRO8w6VxmVzAzCR+nh4wF9Wcm34gQBf7OM2EEM86aGhnDjGzmlueoZPxxCkZ503h sIxzX5d1k74WXENMghqPtWxose6r5tvUQ/IY6W0jySMFI8UcvdNbSnP1AKj7kMxX YcuIDPawJo0we6xO9v39FrupOXIBw3sdUOYO52BOIva2gVvh8ztn2isk0k/wUdQv Sk3TIUU9ytyZvg0TFhNC83R8fo0F7BDr+TrXdyC3xX2LVfbL9Fqz/mJJFDfeZJA= -----END CERTIFICATE-----Generated at Wed May 13 00:41:21 2026 by rpki-client