$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa File: a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa (raw, json) Hash identifier: pr2d4Ajf61+J9QfoQupytqpaD3Snpopd/hh2mKyhLtE= Subject key identifier: BF:22:53:AD:81:DF:3E:25:94:79:33:38:66:B4:34:DA:4A:8B:24:B1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 66CF308148CBDA331F8093A86046435CA465633F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa Signing time: Wed 06 May 2026 00:30:16 +0000 ROA not before: Wed 06 May 2026 00:30:16 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 207.171.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:cf:30:81:48:cb:da:33:1f:80:93:a8:60:46:43:5c:a4:65:63:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 6 00:30:16 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=0d41d5f2af6793a803ec9b300ab52d669cb3bb053d91392672ca0951f3434318, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6c:b9:fe:b6:d1:d6:84:ef:c1:0b:9a:8d:88: 99:36:f8:11:0e:5e:37:a0:e2:71:a7:ab:26:95:dd: 7f:5a:9f:d0:de:5b:3f:46:89:fd:43:6e:d6:54:6f: d8:59:12:3d:6a:df:a3:1d:68:cb:0b:ca:de:11:76: b9:86:0f:2a:1c:b3:8c:d4:a1:08:9a:b2:32:1d:a3: df:25:79:2f:d2:01:17:5e:60:7a:38:18:57:8c:30: 91:d9:c2:d6:82:02:9d:f8:15:6f:6c:84:9e:c0:24: 00:16:6e:05:d8:10:2b:fa:9c:34:cc:0d:5d:d5:f1: 8a:4f:7a:b2:14:b2:e7:c4:ba:ec:c3:11:aa:ce:cf: 7b:74:35:2a:89:dc:f6:99:9d:81:87:ee:1f:10:4b: 0d:ca:6d:e0:de:08:1b:b8:ab:b1:4c:9c:c2:19:75: f3:9d:1a:97:e1:b0:fe:06:3a:09:38:20:77:10:7f: 22:39:6f:03:17:34:e5:ed:91:db:a9:ac:13:82:f7: de:8f:fe:4f:35:08:e9:04:57:81:7b:b4:0d:1f:46: 03:5c:ed:be:50:b8:46:72:0b:fa:2c:60:6f:1c:01: a3:87:4c:6c:ee:c0:97:4f:04:b2:e5:7e:a5:43:5a: 9a:de:5c:94:a1:b0:37:94:b6:25:45:69:0d:68:eb: c3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:22:53:AD:81:DF:3E:25:94:79:33:38:66:B4:34:DA:4A:8B:24:B1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/19 Signature Algorithm: sha256WithRSAEncryption 9c:c6:93:28:ea:34:cc:a2:a6:a5:d3:8d:86:60:fd:b7:78:fc: cf:f2:79:b8:aa:4c:53:bb:4c:01:17:dd:1a:86:a2:7f:f2:7d: ae:22:ca:e9:f6:8d:32:8c:42:27:f0:75:11:79:c1:00:4a:fb: 2d:fa:3e:a6:89:d6:d3:f9:83:0a:83:d5:2e:1d:ab:c6:36:17: c8:0c:d4:75:95:cb:7b:e5:7f:df:da:ee:35:7d:45:ec:04:ca: 0d:cb:03:a2:cb:f8:2f:4f:db:53:9a:87:c3:5a:5a:b9:37:f7: ce:54:ac:d3:6b:74:ce:a5:ac:39:78:7e:3c:47:b2:69:16:40: 42:ac:54:45:8d:67:3f:45:fc:49:95:f1:3f:c5:6b:b0:c5:28: cc:1e:65:ee:ae:75:4b:3c:66:4c:82:cf:73:8c:46:59:86:25: 3a:02:99:ae:fe:c3:12:dd:7e:3b:31:a9:6d:ed:69:1c:a2:b9: e6:78:77:27:b3:bb:c0:7b:a8:93:16:a0:1e:ea:f5:63:08:e8: 36:33:1b:bf:6a:ca:98:8c:9f:5c:95:8f:d1:9c:18:a3:8b:4f: fe:c6:cb:2a:71:ed:fa:a6:67:0d:fc:f3:db:7f:5b:b1:ba:55: 7e:f4:0b:06:7b:6f:cc:0e:5f:b3:d7:66:58:f7:1a:75:70:8d: f9:42:3e:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZs8wgUjL2jMfgJOoYEZDXKRlYz8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA2MDAzMDE2WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDQxZDVmMmFmNjc5M2E4MDNlYzliMzAwYWI1MmQ2Njlj YjNiYjA1M2Q5MTM5MjY3MmNhMDk1MWYzNDM0MzE4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDubLn+ttHWhO/BC5qNiJk2+BEOXjeg4nGnqyaV3X9an9De Wz9Gif1DbtZUb9hZEj1q36MdaMsLyt4RdrmGDyocs4zUoQiasjIdo98leS/SARde YHo4GFeMMJHZwtaCAp34FW9shJ7AJAAWbgXYECv6nDTMDV3V8YpPerIUsufEuuzD EarOz3t0NSqJ3PaZnYGH7h8QSw3KbeDeCBu4q7FMnMIZdfOdGpfhsP4GOgk4IHcQ fyI5bwMXNOXtkduprBOC996P/k81COkEV4F7tA0fRgNc7b5QuEZyC/osYG8cAaOH TGzuwJdPBLLlfqVDWpreXJShsDeUtiVFaQ1o68MvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvyJTrYHfPiWUeTM4ZrQ02kqLJLEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyM2Y1N2JmLTM5NDctNDhjNC05MWYxLWU0MzY0YjdkOTRhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXPq6AwDQYJKoZIhvcNAQELBQADggEBAJzGkyjqNMyipqXTjYZg/bd4/M/y ebiqTFO7TAEX3RqGon/yfa4iyun2jTKMQifwdRF5wQBK+y36PqaJ1tP5gwqD1S4d q8Y2F8gM1HWVy3vlf9/a7jV9RewEyg3LA6LL+C9P21Oah8NaWrk3985UrNNrdM6l rDl4fjxHsmkWQEKsVEWNZz9F/EmV8T/Fa7DFKMweZe6udUs8ZkyCz3OMRlmGJToC ma7+wxLdfjsxqW3taRyiueZ4dyezu8B7qJMWoB7q9WMI6DYzG79qypiMn1yVj9Gc GKOLT/7Gyypx7fqmZw3889t/W7G6VX70CwZ7b8wOX7PXZlj3GnVwjflCPlA= -----END CERTIFICATE-----Generated at Wed May 13 01:31:53 2026 by rpki-client