$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa File: 9c668317-9f28-4868-b993-30a89bb71db1.roa (raw, json) Hash identifier: a8m189ejzKzP1akCqA/oSeOSCZNXsH6DQa0N/35Jzhc= Subject key identifier: 69:05:2E:DF:8D:AE:5E:7D:AE:EF:34:3A:12:72:5E:BA:F4:79:2E:17 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 272E79339584ED23E354236E32B726DEAC2B4C20 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa Signing time: Wed 06 May 2026 00:30:13 +0000 ROA not before: Wed 06 May 2026 00:30:13 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2e:79:33:95:84:ed:23:e3:54:23:6e:32:b7:26:de:ac:2b:4c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 6 00:30:13 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=76b2c74645ee357d8363e772f4c4faf8c7afffa9b376e8779366d1f2c15fb684, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f0:33:fe:3d:df:98:35:ab:39:31:51:60:ad: e0:dd:16:89:10:20:8d:80:e7:d9:8a:0f:ee:c7:b8: 4c:99:96:89:0c:5e:ee:d4:46:ae:95:44:d7:bf:52: bd:60:ab:6f:d8:41:48:ac:8b:7c:41:90:93:ba:e0: 2b:eb:3c:eb:56:be:7a:94:76:5d:1b:ba:83:11:c5: e5:59:29:e5:0a:7b:f2:b9:f8:e0:dc:62:d0:5f:21: 7f:a7:87:9f:d9:6b:cc:bd:a4:da:0b:fc:0a:87:bf: 37:dc:13:d9:a8:35:63:8f:06:ec:ac:77:82:3e:fc: c2:8a:7f:1c:e6:54:42:94:dc:9c:d3:61:30:a9:d2: ac:1b:75:f9:ff:65:b5:f1:8f:06:b7:12:0c:65:e0: 69:eb:a1:6d:2c:8e:b5:85:dc:d1:68:9a:b0:4d:88: 16:51:29:47:90:7d:b7:56:26:c5:02:6a:4d:35:9b: 33:0b:0c:86:d2:ca:02:21:00:01:70:7f:eb:dd:bb: af:a5:31:bc:0e:34:69:4d:78:28:70:0b:15:6f:6b: c5:81:6b:c9:e9:6f:46:71:76:6d:eb:66:63:83:ff: b1:23:e0:5f:e6:aa:ee:4b:57:8b:da:13:89:b9:21: a1:86:74:8a:94:13:3f:74:8f:6e:f1:6f:f6:a4:ad: 50:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:05:2E:DF:8D:AE:5E:7D:AE:EF:34:3A:12:72:5E:BA:F4:79:2E:17 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption 08:43:74:87:47:d6:ed:ac:cc:24:20:d0:24:5d:c9:4f:4d:3d: e6:91:7e:a1:bf:98:51:6d:fd:5d:43:5d:12:0b:34:c6:fe:29: 9f:94:6f:94:5f:5a:1d:3e:97:26:28:ff:fb:68:ea:6a:b6:b8: 44:ac:89:0d:b5:e3:02:79:ba:d5:8f:39:23:34:0d:71:c8:02: c0:89:8b:30:d6:e8:e7:d6:d4:79:65:b6:18:35:cd:c9:d8:fa: f4:50:a3:2e:fd:3c:47:97:bb:0f:89:f1:20:82:a0:81:2f:d2: c6:3b:9c:80:78:1e:72:35:d0:76:b9:82:96:0a:b8:34:b0:a3: cc:f0:4b:9e:d8:df:d2:61:16:33:f9:48:f1:48:b5:a3:c0:18: a2:d9:93:8a:45:a6:ff:42:aa:06:f3:58:dc:f9:fc:71:92:ff: db:7d:fd:6f:44:99:a8:2b:ab:8d:d3:f3:51:b7:2b:36:fb:86: d9:41:c0:56:4a:a8:36:96:d5:51:e2:0f:6a:b9:3a:25:25:f5: 20:ac:e8:8a:70:8b:c7:20:c5:5a:e0:fc:f4:ce:22:54:c7:da: 72:b1:e8:00:19:6d:a8:7e:e7:cb:e8:62:6f:8f:4c:16:83:17: c5:e6:4e:df:e4:e0:92:e1:5b:db:f5:0c:8a:b9:b5:b7:a7:92: bf:fd:31:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJy55M5WE7SPjVCNuMrcm3qwrTCAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA2MDAzMDEzWhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmIyYzc0NjQ1ZWUzNTdkODM2M2U3NzJmNGM0ZmFmOGM3 YWZmZmE5YjM3NmU4Nzc5MzY2ZDFmMmMxNWZiNjg0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd8DP+Pd+YNas5MVFgreDdFokQII2A59mKD+7HuEyZlokM Xu7URq6VRNe/Ur1gq2/YQUisi3xBkJO64CvrPOtWvnqUdl0buoMRxeVZKeUKe/K5 +ODcYtBfIX+nh5/Za8y9pNoL/AqHvzfcE9moNWOPBuysd4I+/MKKfxzmVEKU3JzT YTCp0qwbdfn/ZbXxjwa3Egxl4GnroW0sjrWF3NFomrBNiBZRKUeQfbdWJsUCak01 mzMLDIbSygIhAAFwf+vdu6+lMbwONGlNeChwCxVva8WBa8npb0Zxdm3rZmOD/7Ej 4F/mqu5LV4vaE4m5IaGGdIqUEz90j27xb/akrVCfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaQUu342uXn2u7zQ6EnJeuvR5LhcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzljNjY4MzE3LTlmMjgtNDg2OC1iOTkzLTMwYTg5YmI3MWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBAAhDdIdH1u2szCQg0CRdyU9NPeaR fqG/mFFt/V1DXRILNMb+KZ+Ub5RfWh0+lyYo//to6mq2uESsiQ214wJ5utWPOSM0 DXHIAsCJizDW6OfW1Hllthg1zcnY+vRQoy79PEeXuw+J8SCCoIEv0sY7nIB4HnI1 0Ha5gpYKuDSwo8zwS57Y39JhFjP5SPFItaPAGKLZk4pFpv9CqgbzWNz5/HGS/9t9 /W9Emagrq43T81G3Kzb7htlBwFZKqDaW1VHiD2q5OiUl9SCs6Ipwi8cgxVrg/PTO IlTH2nKx6AAZbah+58voYm+PTBaDF8XmTt/k4JLhW9v1DIq5tbenkr/9MdE= -----END CERTIFICATE-----Generated at Tue May 12 23:41:02 2026 by rpki-client