$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/69ce586a-9045-40f4-a836-a2de20247211.roa File: 69ce586a-9045-40f4-a836-a2de20247211.roa (raw, json) Hash identifier: egwAdGL3+RN3fcF8SXuyVDjgfr3j/iMES3ZgvDvPF3M= Subject key identifier: 09:32:B2:19:C8:A5:3F:42:BE:44:41:AD:9D:3A:F3:9D:A6:28:4E:EB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1FB7AFCD756E2BC2294547AEE55632B1984FA30F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/69ce586a-9045-40f4-a836-a2de20247211.roa Signing time: Mon 04 May 2026 12:01:19 +0000 ROA not before: Mon 04 May 2026 12:01:19 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:33ce::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b7:af:cd:75:6e:2b:c2:29:45:47:ae:e5:56:32:b1:98:4f:a3:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 12:01:19 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=307202d7bea0a15d6cd83e988c48b81678e9a7fa8511e7fa22a60ba5c3fc444a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:51:a2:36:65:b5:e9:b9:cb:9e:98:74:66:df: 2a:97:6c:83:88:00:74:98:e6:46:29:74:dc:06:c5: e8:e5:39:49:62:f6:43:c9:66:41:dc:41:45:ad:33: 2c:e0:ab:c9:4c:f0:ba:8d:31:0e:75:09:87:61:44: 45:db:d1:fb:b8:f4:55:bb:9e:94:c8:c4:b4:75:2b: 07:2f:4d:2a:bc:4c:10:47:c4:c6:46:97:47:3e:23: 66:87:25:80:4d:69:95:eb:ce:bb:5e:53:5b:37:5a: e8:26:07:6d:8e:8a:1a:ea:71:13:8e:a2:1b:b3:58: 5e:6f:fd:eb:5d:2a:b7:c5:17:ea:16:6d:1a:64:39: ec:71:b4:d2:46:2e:a8:ce:60:f4:1f:d6:45:b7:96: d8:24:e1:db:1f:c6:6c:de:d4:42:f0:6b:c5:11:26: 4a:4b:0e:3f:e0:7e:e5:9d:62:5c:4e:41:aa:62:7d: 29:47:d5:53:f9:42:2a:1c:67:53:19:9e:8c:cc:88: e9:75:91:64:a2:01:ef:24:30:33:19:e6:9d:bd:0c: fd:73:d6:bb:b3:7d:53:60:d3:c7:c0:44:6c:75:ed: 71:2c:b3:5a:a7:28:b9:57:58:27:16:86:0c:87:7b: 47:de:51:a9:bf:24:91:e4:06:29:92:04:77:65:a6: d7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:32:B2:19:C8:A5:3F:42:BE:44:41:AD:9D:3A:F3:9D:A6:28:4E:EB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/69ce586a-9045-40f4-a836-a2de20247211.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:33ce::/47 Signature Algorithm: sha256WithRSAEncryption 5b:e3:b5:91:b2:e5:66:48:9f:c6:9d:40:ad:c9:5b:de:b7:9c: 44:5b:36:2f:57:32:a7:00:15:86:92:64:73:f7:19:f8:3c:ca: 03:c5:f2:17:4a:2f:83:f6:df:b9:d0:97:f4:5b:0a:87:b7:c7: 3a:85:80:71:6a:2e:94:a3:8e:c4:19:c0:f9:02:e6:45:6a:bd: 77:a8:2e:d5:5c:cc:3d:70:f8:a3:29:28:89:82:a4:0f:42:9a: c1:6c:3b:92:be:77:4f:ff:36:00:91:c2:f5:ee:24:3c:5c:86: 1f:d3:ca:25:7e:8e:cb:b8:90:36:43:ff:fa:0c:38:04:b5:90: 6e:5b:ff:bc:df:82:d7:3d:2f:25:71:68:b6:92:2f:a0:2a:be: 45:86:53:bc:e9:64:a6:71:8b:8d:5d:ec:0d:c4:1c:97:f6:4e: e2:cb:ac:51:a2:99:6f:e7:08:5d:d1:dc:96:32:99:08:11:d5: 91:2c:39:73:37:1e:e0:bf:17:78:a1:2a:a7:ff:a8:40:54:bd: 3c:61:24:2d:dd:85:c2:cd:22:68:7e:0b:c8:8c:c6:83:71:95: 08:3e:a8:e2:8a:35:22:0b:7e:13:6c:c8:d2:1a:d8:ca:34:e8: 24:3d:cd:85:f2:47:a9:6c:96:e1:bf:b6:ce:e4:94:e5:78:51: ff:d7:43:07 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUH7evzXVuK8IpRUeu5VYysZhPow8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MTIwMTE5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDcyMDJkN2JlYTBhMTVkNmNkODNlOTg4YzQ4YjgxNjc4 ZTlhN2ZhODUxMWU3ZmEyMmE2MGJhNWMzZmM0NDRhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4UaI2ZbXpucuemHRm3yqXbIOIAHSY5kYpdNwGxejlOUli 9kPJZkHcQUWtMyzgq8lM8LqNMQ51CYdhREXb0fu49FW7npTIxLR1KwcvTSq8TBBH xMZGl0c+I2aHJYBNaZXrzrteU1s3WugmB22OihrqcROOohuzWF5v/etdKrfFF+oW bRpkOexxtNJGLqjOYPQf1kW3ltgk4dsfxmze1ELwa8URJkpLDj/gfuWdYlxOQapi fSlH1VP5QiocZ1MZnozMiOl1kWSiAe8kMDMZ5p29DP1z1ruzfVNg08fARGx17XEs s1qnKLlXWCcWhgyHe0feUam/JJHkBimSBHdlptdJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCTKyGcilP0K+REGtnTrznaYoTuswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY5Y2U1ODZhLTkwNDUtNDBmNC1hODM2LWEyZGUyMDI0NzIxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAM84wDQYJKoZIhvcNAQELBQADggEBAFvjtZGy5WZIn8adQK3JW963 nERbNi9XMqcAFYaSZHP3Gfg8ygPF8hdKL4P237nQl/RbCoe3xzqFgHFqLpSjjsQZ wPkC5kVqvXeoLtVczD1w+KMpKImCpA9CmsFsO5K+d0//NgCRwvXuJDxchh/TyiV+ jsu4kDZD//oMOAS1kG5b/7zfgtc9LyVxaLaSL6AqvkWGU7zpZKZxi41d7A3EHJf2 TuLLrFGimW/nCF3R3JYymQgR1ZEsOXM3HuC/F3ihKqf/qEBUvTxhJC3dhcLNImh+ C8iMxoNxlQg+qOKKNSILfhNsyNIa2Mo06CQ9zYXyR6lsluG/ts7klOV4Uf/XQwc= -----END CERTIFICATE-----Generated at Wed May 13 00:37:24 2026 by rpki-client