$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9101673a-cea5-4663-a45e-2fec42f24d91.roa File: 9101673a-cea5-4663-a45e-2fec42f24d91.roa (raw, json) Hash identifier: eK/4T6unGziCFX/RtsUASbNeFlC2P2j1mftWd9/tB8U= Subject key identifier: B7:D4:50:34:6D:6E:F8:63:89:16:69:87:A2:D4:79:B2:02:83:22:EC Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7198383C1139293E2D089D151BC54E7BE3F0BEFF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9101673a-cea5-4663-a45e-2fec42f24d91.roa Signing time: Mon 04 May 2026 03:32:01 +0000 ROA not before: Mon 04 May 2026 03:32:01 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3534::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:98:38:3c:11:39:29:3e:2d:08:9d:15:1b:c5:4e:7b:e3:f0:be:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 03:32:01 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=88b121b83753f65684bffa6757de91ccd3dab2e01ecaad2dc8488f3619c8552d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:50:31:bc:79:69:79:f1:57:6f:f7:6f:6f:66: 51:16:4d:99:fd:a2:8d:b2:c9:66:25:bb:a2:85:c3: cc:bc:2f:6c:e9:14:0c:38:13:06:83:96:23:8c:22: 2a:52:0e:97:c7:dc:76:04:06:96:69:13:3b:00:12: d8:d6:69:5f:94:d4:bf:a7:c0:88:62:55:88:3a:77: ef:36:c1:67:bf:83:64:20:00:78:1f:cf:8f:10:1b: 84:f4:f2:f4:4d:58:4e:a3:3e:ce:7c:3c:ca:df:17: d4:ce:fb:4d:a0:0c:59:a2:d1:dc:c1:71:1a:c6:7c: 62:09:cd:f5:bd:91:4b:3b:eb:38:cc:bc:8d:6e:ab: 75:3b:26:4b:6d:cf:a3:94:2a:44:57:5f:e2:bd:29: a8:ba:25:0a:3c:56:81:4f:14:cb:f0:54:95:cc:ad: 9c:e3:e1:ac:3e:ba:7e:2e:31:84:14:b0:63:dc:c5: 34:34:78:26:3c:4c:47:1a:50:54:3d:db:e4:9d:6a: a9:d2:bd:c2:eb:59:fe:aa:c5:d8:c8:24:02:08:a1: e7:4a:b3:71:8a:95:0a:05:40:aa:40:2c:c8:0f:e9: 69:38:38:94:48:ca:df:3e:19:36:f4:ec:1e:86:1c: 38:67:08:37:1c:92:09:19:02:95:19:4f:5c:59:4e: a4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D4:50:34:6D:6E:F8:63:89:16:69:87:A2:D4:79:B2:02:83:22:EC X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9101673a-cea5-4663-a45e-2fec42f24d91.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3534::/46 Signature Algorithm: sha256WithRSAEncryption 01:00:27:05:d0:35:7c:6e:83:ef:e3:1b:43:18:bf:04:1c:5e: 44:e9:1f:05:a4:47:3c:1c:b7:32:ad:3c:1e:08:8a:78:6a:92: 33:26:59:d6:a3:30:65:fe:cd:8a:a5:e3:0e:58:f2:9c:54:27: 23:fe:d4:05:8d:7a:d0:3c:10:04:50:0a:cf:3a:be:12:7c:e1: a9:c0:e7:44:a3:fa:81:f5:be:62:67:a6:b8:8c:b3:ad:68:d4: 09:4f:18:e1:40:b4:ef:62:cd:ad:65:6e:d9:d8:64:b4:43:d7: 8d:26:83:5b:a4:aa:19:f5:c2:d6:aa:0b:23:44:0d:cb:40:da: 07:61:d6:0c:e2:60:b6:27:08:8c:77:b7:2c:6e:cd:cf:b8:17: 03:b8:48:ef:0a:1f:40:0f:bf:cc:3e:2f:ef:c7:6b:d7:83:4c: 69:36:87:8a:fa:b7:7c:e9:17:ea:4a:e3:d9:03:9a:64:fe:f6: 87:39:7a:97:40:c3:b0:89:46:e0:15:e5:e3:62:95:71:ee:e1: d7:8e:03:c5:f8:20:4f:52:f3:c7:0e:a5:cc:36:24:50:4d:15: c4:26:23:53:9b:77:a4:00:53:f3:ee:7a:58:bf:56:e1:1c:a3: 68:9a:bc:c8:73:75:81:85:5c:af:c4:1a:da:70:15:6b:72:2d: 0e:ab:15:5e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcZg4PBE5KT4tCJ0VG8VOe+Pwvv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDMzMjAxWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGIxMjFiODM3NTNmNjU2ODRiZmZhNjc1N2RlOTFjY2Qz ZGFiMmUwMWVjYWFkMmRjODQ4OGYzNjE5Yzg1NTJkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwUDG8eWl58Vdv929vZlEWTZn9oo2yyWYlu6KFw8y8L2zp FAw4EwaDliOMIipSDpfH3HYEBpZpEzsAEtjWaV+U1L+nwIhiVYg6d+82wWe/g2Qg AHgfz48QG4T08vRNWE6jPs58PMrfF9TO+02gDFmi0dzBcRrGfGIJzfW9kUs76zjM vI1uq3U7Jkttz6OUKkRXX+K9Kai6JQo8VoFPFMvwVJXMrZzj4aw+un4uMYQUsGPc xTQ0eCY8TEcaUFQ92+SdaqnSvcLrWf6qxdjIJAIIoedKs3GKlQoFQKpALMgP6Wk4 OJRIyt8+GTb07B6GHDhnCDcckgkZApUZT1xZTqQHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUt9RQNG1u+GOJFmmHotR5sgKDIuwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzkxMDE2NzNhLWNlYTUtNDY2My1hNDVlLTJmZWM0MmYyNGQ5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAANTQwDQYJKoZIhvcNAQELBQADggEBAAEAJwXQNXxug+/jG0MYvwQc XkTpHwWkRzwctzKtPB4IinhqkjMmWdajMGX+zYql4w5Y8pxUJyP+1AWNetA8EARQ Cs86vhJ84anA50Sj+oH1vmJnpriMs61o1AlPGOFAtO9iza1lbtnYZLRD140mg1uk qhn1wtaqCyNEDctA2gdh1gziYLYnCIx3tyxuzc+4FwO4SO8KH0APv8w+L+/Ha9eD TGk2h4r6t3zpF+pK49kDmmT+9oc5epdAw7CJRuAV5eNilXHu4deOA8X4IE9S88cO pcw2JFBNFcQmI1Obd6QAU/Pueli/VuEco2iavMhzdYGFXK/EGtpwFWtyLQ6rFV4= -----END CERTIFICATE-----Generated at Wed May 13 00:41:59 2026 by rpki-client