$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/965304b3-9ac5-4573-8d5d-94762763b483.roa File: 965304b3-9ac5-4573-8d5d-94762763b483.roa (raw, json) Hash identifier: 1OK6BTmTtt2ArLeKS2YV8vqLBxuh7SRTgYe5KnTiLbM= Subject key identifier: 18:80:AF:96:DD:10:C4:94:01:E4:D8:D1:80:98:8E:22:7A:9E:34:15 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1581A9D5F2836CAF7DE46E987F233FD88D82DE1E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/965304b3-9ac5-4573-8d5d-94762763b483.roa Signing time: Mon 04 May 2026 01:40:07 +0000 ROA not before: Mon 04 May 2026 01:40:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2e40::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:81:a9:d5:f2:83:6c:af:7d:e4:6e:98:7f:23:3f:d8:8d:82:de:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 01:40:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=ffcda3ec574311ebf9c1306e5b1718036b8901746f6f680588cbc2dc58890e44, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:37:1e:7e:be:72:d7:0e:76:0e:bc:5d:1c:9e: 8b:e4:1a:e6:ab:2d:69:c4:a0:50:96:de:a1:3e:d0: 0d:7b:24:a0:3d:7e:a6:5b:ab:c6:0c:89:a6:2c:59: 1e:1b:58:3d:84:68:ed:50:f2:f8:e1:78:02:ab:90: a8:62:e0:b6:9b:d4:66:87:5a:8e:e3:79:74:5f:77: d5:00:c1:cb:cb:62:e5:05:59:91:80:5f:b6:a8:a2: ec:2b:9b:00:da:8c:8b:c5:5d:71:c9:51:32:8b:bd: 7d:c3:43:f7:cf:16:17:d5:ba:5e:5b:e6:be:a5:21: 13:70:7d:87:e1:b9:c0:5e:35:3a:7b:5a:b6:04:8d: ad:b3:e6:0d:59:f5:6b:20:9e:3c:ae:cd:86:8c:e3: 5d:98:4e:9b:98:f7:da:6c:64:ab:c7:f8:45:a6:e1: 0c:94:0c:fe:97:ab:82:4a:42:c6:03:dd:55:87:11: ef:57:ca:ef:8e:85:38:de:3f:40:1d:cb:ea:7e:77: 0c:53:3e:7a:a1:6b:1c:71:78:9e:d5:dd:f6:40:87: 38:43:5b:21:4e:ad:0c:f0:43:c7:63:74:a9:83:cc: b5:e7:07:81:1e:6f:bc:7b:e6:aa:1e:d3:c8:44:f8: a5:7f:7d:02:5f:83:0a:7b:8c:cc:ed:3d:a5:40:01: fb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:80:AF:96:DD:10:C4:94:01:E4:D8:D1:80:98:8E:22:7A:9E:34:15 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/965304b3-9ac5-4573-8d5d-94762763b483.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2e40::/45 Signature Algorithm: sha256WithRSAEncryption 20:a9:63:ed:9a:66:9b:5c:4e:6c:02:6b:09:8a:be:47:50:8a: df:b6:0f:69:b3:b2:2d:f4:4a:79:c0:1a:d6:53:d5:f6:db:9b: 98:4b:fd:e6:c6:4f:b0:4c:47:c6:b7:89:99:13:4f:e0:07:b4: 22:b1:38:bd:fa:78:e5:93:d3:7b:5e:50:c6:4b:4e:fa:66:92: 58:8b:53:b9:a8:46:b4:59:66:86:cf:69:02:30:26:ff:ac:d7: d7:03:68:a2:70:24:4d:fb:2e:7b:cd:6e:d0:f5:d7:7e:da:29: e0:b9:ac:04:31:da:6d:d3:c3:37:fe:81:25:d3:2c:db:c9:e8: 48:d0:a2:b5:9c:68:5e:e1:94:f9:50:85:ae:ef:36:63:80:39: dc:b8:f6:3a:cb:7b:73:7c:ce:ac:45:bc:59:e9:11:9b:17:27: 16:96:fa:73:7f:15:f6:78:8e:0f:96:74:e0:48:3e:87:db:69: 14:01:f6:fc:b0:f9:e4:a5:51:d5:4c:50:bb:72:9c:02:a2:48: fa:06:c0:13:e1:be:bc:ba:2b:c4:55:fb:9e:22:18:cb:bc:82: 46:36:ea:a0:51:54:00:ee:4c:1c:c2:87:86:04:b1:e7:c4:75: 53:b7:f2:63:ec:b3:47:b9:37:25:4b:46:9a:8f:a7:59:76:ba: c3:db:e1:cf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFYGp1fKDbK995G6YfyM/2I2C3h4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDE0MDA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZmNkYTNlYzU3NDMxMWViZjljMTMwNmU1YjE3MTgwMzZi ODkwMTc0NmY2ZjY4MDU4OGNiYzJkYzU4ODkwZTQ0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUNx5+vnLXDnYOvF0cnovkGuarLWnEoFCW3qE+0A17JKA9 fqZbq8YMiaYsWR4bWD2EaO1Q8vjheAKrkKhi4Lab1GaHWo7jeXRfd9UAwcvLYuUF WZGAX7aoouwrmwDajIvFXXHJUTKLvX3DQ/fPFhfVul5b5r6lIRNwfYfhucBeNTp7 WrYEja2z5g1Z9WsgnjyuzYaM412YTpuY99psZKvH+EWm4QyUDP6Xq4JKQsYD3VWH Ee9Xyu+OhTjeP0Ady+p+dwxTPnqhaxxxeJ7V3fZAhzhDWyFOrQzwQ8djdKmDzLXn B4Eeb7x75qoe08hE+KV/fQJfgwp7jMztPaVAAfsLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGICvlt0QxJQB5NjRgJiOInqeNBUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzk2NTMwNGIzLTlhYzUtNDU3My04ZDVkLTk0NzYyNzYzYjQ4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAALkAwDQYJKoZIhvcNAQELBQADggEBACCpY+2aZptcTmwCawmKvkdQ it+2D2mzsi30SnnAGtZT1fbbm5hL/ebGT7BMR8a3iZkTT+AHtCKxOL36eOWT03te UMZLTvpmkliLU7moRrRZZobPaQIwJv+s19cDaKJwJE37LnvNbtD1137aKeC5rAQx 2m3Twzf+gSXTLNvJ6EjQorWcaF7hlPlQha7vNmOAOdy49jrLe3N8zqxFvFnpEZsX JxaW+nN/FfZ4jg+WdOBIPofbaRQB9vyw+eSlUdVMULtynAKiSPoGwBPhvry6K8RV +54iGMu8gkY26qBRVADuTBzCh4YEsefEdVO38mPss0e5NyVLRpqPp1l2usPb4c8= -----END CERTIFICATE-----Generated at Wed May 13 01:09:10 2026 by rpki-client