$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87bb972c-e710-4e09-9397-1e1c2121dac8.roa File: 87bb972c-e710-4e09-9397-1e1c2121dac8.roa (raw, json) Hash identifier: 9OcXhmr/8P0Jx0QMwFpL2R0BoSUHGkf/XH37f+ws/gk= Subject key identifier: 3B:71:04:16:F8:57:3D:4E:AA:1B:54:E8:2E:06:E6:16:82:9C:55:B6 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3174FED58E47839BC9F3744CF2052B914C3E81C1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87bb972c-e710-4e09-9397-1e1c2121dac8.roa Signing time: Mon 04 May 2026 06:20:49 +0000 ROA not before: Mon 04 May 2026 06:20:49 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3cc0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:74:fe:d5:8e:47:83:9b:c9:f3:74:4c:f2:05:2b:91:4c:3e:81:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 06:20:49 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=8966c49801288bebb8a9504707d6d9d03970d6c3c3dbbe7a37cb006d16bec635, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e5:16:c9:3e:bc:79:c5:b6:fa:40:a5:3d:72: 50:f4:7e:90:90:07:cb:10:d0:1d:1e:bd:0e:29:4c: cc:be:2b:7c:ac:eb:9b:41:0a:1d:85:f2:9f:44:55: 80:c7:d3:56:27:b5:0d:97:60:5e:63:62:2a:44:62: 19:3d:c7:80:d1:54:bf:4e:7b:2f:7b:e0:8d:f7:c4: 8e:22:50:64:92:04:e3:ed:45:b8:3c:f7:28:88:dc: d1:8d:ca:c0:19:00:ee:cc:94:b2:18:16:7b:84:b2: 37:c9:81:56:cf:73:d9:07:89:fe:5d:f5:32:31:8a: 9a:a2:7e:b4:77:08:4e:48:c8:ae:11:91:04:06:fc: dd:bd:a7:c8:57:cc:f2:ca:4c:51:54:b9:64:af:5d: ab:3d:97:bc:4b:66:10:94:1f:74:52:3c:40:bc:5d: 08:22:ab:35:35:dc:ce:b2:50:3a:de:cb:22:19:67: 50:8a:0d:1d:15:19:54:9d:5c:60:9b:78:1b:e3:58: 84:0d:23:4c:c4:b9:d8:af:4f:4f:ed:31:f8:81:fe: 24:e0:c1:2b:c7:c7:77:ef:9d:d7:67:51:84:4a:43: d9:32:df:8b:7f:54:11:1b:85:61:2a:f7:19:ec:00: 63:33:a5:85:b4:92:ea:53:c1:a6:cd:39:f7:3b:5e: 72:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:71:04:16:F8:57:3D:4E:AA:1B:54:E8:2E:06:E6:16:82:9C:55:B6 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87bb972c-e710-4e09-9397-1e1c2121dac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3cc0::/44 Signature Algorithm: sha256WithRSAEncryption 86:13:28:a0:c3:22:82:50:3b:5d:a5:41:5e:c2:dd:14:0f:af: 92:ad:ba:ba:fd:0e:71:79:a6:c6:1f:07:8e:30:34:0d:28:15: 9a:d7:c2:52:6b:e4:23:a7:49:9e:82:c8:2b:8a:b5:30:3e:0d: ee:a1:a8:72:e6:dc:71:10:99:3c:39:1c:04:a0:9d:d8:ac:8f: 06:25:39:bb:05:85:ec:8c:d4:bd:a0:e9:6a:31:5b:b5:e1:90: 02:30:ba:5b:15:81:c3:02:b8:0e:4f:ae:a8:77:64:c0:05:41: f3:30:d1:7f:8f:84:e9:a3:26:94:83:3a:d5:e0:5c:1a:6d:de: e5:e3:5e:19:5a:f8:90:38:14:ee:dd:06:fd:af:64:1b:81:b5: 2b:b5:23:83:1f:b8:17:79:f4:02:62:f7:5e:05:9d:64:5a:ee: c1:6f:db:98:d6:28:c8:ab:3c:0b:f2:42:ce:fb:75:5a:db:a8: e9:a9:67:dd:bb:f6:f1:82:9a:e3:55:fb:8d:77:e8:c5:91:a9: 03:03:06:6d:bf:9b:33:d8:83:19:76:8a:14:4d:d5:fa:15:b8: 23:cc:f3:79:e2:ee:25:69:2e:d4:94:23:dd:55:09:6e:d8:a9: ce:93:bb:b7:ee:6c:e1:ed:38:6f:63:58:5b:33:f5:ce:74:0a: 94:81:8e:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMXT+1Y5Hg5vJ83RM8gUrkUw+gcEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDYyMDQ5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTY2YzQ5ODAxMjg4YmViYjhhOTUwNDcwN2Q2ZDlkMDM5 NzBkNmMzYzNkYmJlN2EzN2NiMDA2ZDE2YmVjNjM1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx5RbJPrx5xbb6QKU9clD0fpCQB8sQ0B0evQ4pTMy+K3ys 65tBCh2F8p9EVYDH01YntQ2XYF5jYipEYhk9x4DRVL9Oey974I33xI4iUGSSBOPt Rbg89yiI3NGNysAZAO7MlLIYFnuEsjfJgVbPc9kHif5d9TIxipqifrR3CE5IyK4R kQQG/N29p8hXzPLKTFFUuWSvXas9l7xLZhCUH3RSPEC8XQgiqzU13M6yUDreyyIZ Z1CKDR0VGVSdXGCbeBvjWIQNI0zEudivT0/tMfiB/iTgwSvHx3fvnddnUYRKQ9ky 34t/VBEbhWEq9xnsAGMzpYW0kupTwabNOfc7XnIrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUO3EEFvhXPU6qG1ToLgbmFoKcVbYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg3YmI5NzJjLWU3MTAtNGUwOS05Mzk3LTFlMWMyMTIxZGFjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAPMAwDQYJKoZIhvcNAQELBQADggEBAIYTKKDDIoJQO12lQV7C3RQP r5Kturr9DnF5psYfB44wNA0oFZrXwlJr5COnSZ6CyCuKtTA+De6hqHLm3HEQmTw5 HASgndisjwYlObsFheyM1L2g6WoxW7XhkAIwulsVgcMCuA5Prqh3ZMAFQfMw0X+P hOmjJpSDOtXgXBpt3uXjXhla+JA4FO7dBv2vZBuBtSu1I4MfuBd59AJi914FnWRa 7sFv25jWKMirPAvyQs77dVrbqOmpZ9279vGCmuNV+4136MWRqQMDBm2/mzPYgxl2 ihRN1foVuCPM83ni7iVpLtSUI91VCW7Yqc6Tu7fubOHtOG9jWFsz9c50CpSBjpA= -----END CERTIFICATE-----Generated at Wed May 13 00:59:17 2026 by rpki-client