$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa File: 8504b97b-070b-4a27-bdb7-8e64f1610647.roa (raw, json) Hash identifier: 4eys5BJVIvuzy1U/ajPBevjZWgDIlmdh/lYYM++L8/c= Subject key identifier: 51:E6:51:2F:0C:53:41:CB:02:75:B9:11:CD:C4:FB:1F:05:D5:C1:FD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 324E02BFCA3CF913119EAE554EAAE1573E74B046 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa Signing time: Mon 11 May 2026 00:50:40 +0000 ROA not before: Mon 11 May 2026 00:50:40 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:4e:02:bf:ca:3c:f9:13:11:9e:ae:55:4e:aa:e1:57:3e:74:b0:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 11 00:50:40 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=4e196af278d83d9fa1ddeabd65a8a24b5c46ad6b63e09f9c7837622ecb5e67ae, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ef:d0:5f:ee:9d:38:34:9b:ff:06:65:ee:2c: cd:b5:14:ca:ab:1a:4c:82:aa:d4:84:83:80:98:88: a9:94:df:b8:16:c7:dd:74:0f:c2:3f:ce:de:3a:5d: 91:ad:81:40:55:db:35:ab:bc:3d:c8:54:9d:67:68: 39:b4:99:f3:a3:ba:da:91:ea:56:f7:ee:cb:97:6e: 2c:25:5f:6c:e0:1d:af:af:b7:75:66:ff:9b:5c:2d: 04:18:48:83:c3:4e:7e:9d:03:7c:fb:db:96:f8:31: 0c:6e:bb:fe:74:d7:89:3e:9c:27:91:e0:65:ca:e6: b4:d9:eb:34:16:f3:d8:3c:56:43:8d:15:6a:24:8f: d8:cb:7e:97:c8:7d:84:bb:7d:43:80:5a:00:40:10: 5d:d1:e8:14:8b:90:62:93:70:b5:fb:c2:6a:0e:ce: 66:49:f6:c9:40:0d:3a:55:93:c6:d4:88:cc:7e:ed: c3:2d:27:dd:c8:4e:73:33:d2:0b:2d:b8:14:ae:60: cb:f5:05:0a:af:3f:b5:77:ef:fb:36:88:0f:80:f9: e3:9d:ed:6e:87:2e:a5:35:07:6b:f7:f9:5c:4b:2b: 7c:33:a8:7b:b4:20:ed:69:df:12:68:77:56:d7:ba: b6:10:64:5d:0a:d9:76:fb:39:56:eb:b0:5f:8c:f6: 3c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E6:51:2F:0C:53:41:CB:02:75:B9:11:CD:C4:FB:1F:05:D5:C1:FD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8504b97b-070b-4a27-bdb7-8e64f1610647.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.253.0/24 Signature Algorithm: sha256WithRSAEncryption 28:3e:2c:ad:7b:34:23:99:d7:19:2a:94:d4:fc:83:2c:3c:4a: 13:6f:95:1b:ef:57:3c:6c:62:4f:f3:29:b2:64:76:6b:56:26: 7f:34:1b:30:8c:37:a2:bd:99:61:93:3c:ab:64:c4:58:68:ea: c2:41:c2:12:9e:56:f0:2c:1e:ed:1d:3f:05:19:51:63:20:9a: e2:2d:15:7e:38:8d:31:09:4a:a0:24:e2:3c:17:c3:a6:6c:48: e9:37:8f:83:ee:1c:d9:84:6f:f3:3c:6d:2a:8d:2b:50:25:7a: f2:4e:43:fb:28:cf:c4:7e:1a:40:ca:61:46:ac:a2:50:0c:d0: b4:7f:5d:ad:59:79:22:8d:32:7c:e8:dd:ee:3e:09:79:00:bc: 48:90:40:b3:db:33:b0:1b:41:5b:43:3e:cc:9b:f5:a7:80:1e: 59:c2:0f:eb:e6:04:e9:20:ce:87:1d:40:ca:04:30:a4:ed:c0: 6d:8c:9b:4f:d6:ca:1f:1c:1e:39:29:0c:a5:b1:d6:32:14:e0: c6:9e:f7:43:b6:0e:8f:4e:22:d8:7c:b1:4e:9a:33:13:80:d0: ce:5c:8c:75:56:46:08:4d:db:40:94:ae:df:d9:ff:44:5a:35: c6:d5:86:af:86:21:5e:e6:17:9c:f4:7f:e2:4c:ef:79:60:d0: d6:59:ac:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMk4Cv8o8+RMRnq5VTqrhVz50sEYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTExMDA1MDQwWhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTE5NmFmMjc4ZDgzZDlmYTFkZGVhYmQ2NWE4YTI0YjVj NDZhZDZiNjNlMDlmOWM3ODM3NjIyZWNiNWU2N2FlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC79Bf7p04NJv/BmXuLM21FMqrGkyCqtSEg4CYiKmU37gW x910D8I/zt46XZGtgUBV2zWrvD3IVJ1naDm0mfOjutqR6lb37suXbiwlX2zgHa+v t3Vm/5tcLQQYSIPDTn6dA3z725b4MQxuu/5014k+nCeR4GXK5rTZ6zQW89g8VkON FWokj9jLfpfIfYS7fUOAWgBAEF3R6BSLkGKTcLX7wmoOzmZJ9slADTpVk8bUiMx+ 7cMtJ93ITnMz0gstuBSuYMv1BQqvP7V37/s2iA+A+eOd7W6HLqU1B2v3+VxLK3wz qHu0IO1p3xJod1bXurYQZF0K2Xb7OVbrsF+M9jzvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUeZRLwxTQcsCdbkRzcT7HwXVwf0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg1MDRiOTdiLTA3MGItNGEyNy1iZGI3LThlNjRmMTYxMDY0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADN+/0wDQYJKoZIhvcNAQELBQADggEBACg+LK17NCOZ1xkqlNT8gyw8ShNv lRvvVzxsYk/zKbJkdmtWJn80GzCMN6K9mWGTPKtkxFho6sJBwhKeVvAsHu0dPwUZ UWMgmuItFX44jTEJSqAk4jwXw6ZsSOk3j4PuHNmEb/M8bSqNK1AlevJOQ/soz8R+ GkDKYUasolAM0LR/Xa1ZeSKNMnzo3e4+CXkAvEiQQLPbM7AbQVtDPsyb9aeAHlnC D+vmBOkgzocdQMoEMKTtwG2Mm0/Wyh8cHjkpDKWx1jIU4Mae90O2Do9OIth8sU6a MxOA0M5cjHVWRghN20CUrt/Z/0RaNcbVhq+GIV7mF5z0f+JM73lg0NZZrNw= -----END CERTIFICATE-----Generated at Wed May 13 00:40:29 2026 by rpki-client