$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2e94797-54d5-43cd-9963-f96454be885e.roa File: a2e94797-54d5-43cd-9963-f96454be885e.roa (raw, json) Hash identifier: 3+sS69NaS0ydrPsR/8eK8KJGwU1aTaB2cQYjjv5zQQ4= Subject key identifier: 42:EC:51:6C:C2:7D:8B:7D:EB:F0:C9:EE:DE:B7:D9:BD:FB:91:ED:E9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 503AFC0FC4CEF55650BAD95D499AB7FAB1617D8C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2e94797-54d5-43cd-9963-f96454be885e.roa Signing time: Mon 04 May 2026 13:50:07 +0000 ROA not before: Mon 04 May 2026 13:50:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3808::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3a:fc:0f:c4:ce:f5:56:50:ba:d9:5d:49:9a:b7:fa:b1:61:7d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 13:50:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=a792e781b9f54ce855be767a959b256968d7f335e9a2a2b12ac2a8e8789ab252, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:44:7e:8a:70:e9:e2:17:cf:a7:1f:57:07:6c: e0:18:20:18:f0:35:37:7d:b3:53:e4:bb:e9:81:b8: 73:c8:40:ad:88:e5:c7:cb:77:b0:73:71:b1:e1:9a: 8b:06:77:e1:44:26:7b:03:8a:2d:85:13:dd:53:8a: 25:b3:11:47:07:16:34:f6:c4:00:a6:38:95:a6:fe: 63:8d:ab:56:a7:a0:d2:26:f0:d0:04:c1:78:9e:c5: e0:3c:23:86:56:f2:5f:2b:04:e1:20:d9:2c:41:61: 5a:7a:9f:c1:b7:62:79:dd:ff:30:94:d9:c2:d7:12: 7c:14:90:9f:7d:03:a6:87:91:20:b2:4f:d6:41:9c: 99:f8:af:33:a7:50:90:c4:ea:88:13:df:2e:cc:ba: 4d:9a:cd:87:9c:27:e8:ba:3c:95:f8:1a:3b:7f:90: 1d:35:87:a5:d3:4d:11:05:81:fd:05:d6:96:c5:fa: fa:cd:f0:ec:e9:8f:fd:b0:5e:03:03:62:a9:5a:30: a5:84:51:e4:37:da:cd:ef:c7:a0:c0:bf:7c:bf:c6: 54:91:51:23:f4:f7:93:7b:c9:00:9a:9c:20:a9:4e: 8b:23:af:ac:69:01:f3:82:70:8b:6e:98:80:e1:15: 5e:ea:9e:d8:8f:c3:69:32:81:64:51:6d:6b:fc:b5: 0a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EC:51:6C:C2:7D:8B:7D:EB:F0:C9:EE:DE:B7:D9:BD:FB:91:ED:E9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2e94797-54d5-43cd-9963-f96454be885e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3808::/47 Signature Algorithm: sha256WithRSAEncryption 26:d5:31:37:a7:c2:b0:3e:6f:1d:37:09:92:fb:12:7c:f5:fe: f1:e2:31:94:eb:95:91:91:ee:d3:00:3f:0b:61:d9:c7:d2:c2: c8:20:81:3b:ba:7d:f1:6b:9c:8d:93:df:92:71:77:ec:71:61: dd:74:7f:51:c3:73:4f:fe:3f:e2:61:70:8b:36:f0:3b:5c:ef: 64:4a:c3:20:6f:26:e2:1a:e6:27:4f:e7:5a:7b:5b:fc:8b:05: b6:93:93:79:87:71:45:d5:73:cb:59:1a:a1:f4:9f:e4:51:64: 8d:74:62:db:4b:3b:3f:de:4b:53:1f:cb:6e:ac:5e:03:8a:b0: 8e:08:ab:12:2e:63:ad:e0:59:0b:50:bd:63:33:89:00:b8:28: e1:2c:28:9e:c5:50:ce:9d:56:cb:59:60:2e:93:72:0f:1e:df: b3:0b:ed:e0:c8:51:2c:a6:27:fe:aa:0c:ae:5c:ae:0d:72:6c: 0a:e5:ac:ca:b9:a4:cf:73:73:1e:4e:f1:e4:43:00:d3:57:0b: 7d:66:46:91:dd:4a:95:9b:32:34:ac:54:72:61:76:42:6d:0e: 6a:73:ca:04:e8:2b:37:e6:a4:ae:0c:b8:ac:9d:37:ab:d9:64: 59:1b:e6:c6:d1:00:7e:a8:d3:f1:ed:21:c6:c0:4e:3e:f7:b0: a0:5e:1e:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUDr8D8TO9VZQutldSZq3+rFhfYwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MTM1MDA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzkyZTc4MWI5ZjU0Y2U4NTViZTc2N2E5NTliMjU2OTY4 ZDdmMzM1ZTlhMmEyYjEyYWMyYThlODc4OWFiMjUyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDURH6KcOniF8+nH1cHbOAYIBjwNTd9s1Pku+mBuHPIQK2I 5cfLd7BzcbHhmosGd+FEJnsDii2FE91TiiWzEUcHFjT2xACmOJWm/mONq1anoNIm 8NAEwXiexeA8I4ZW8l8rBOEg2SxBYVp6n8G3Ynnd/zCU2cLXEnwUkJ99A6aHkSCy T9ZBnJn4rzOnUJDE6ogT3y7Muk2azYecJ+i6PJX4Gjt/kB01h6XTTREFgf0F1pbF +vrN8Ozpj/2wXgMDYqlaMKWEUeQ32s3vx6DAv3y/xlSRUSP095N7yQCanCCpTosj r6xpAfOCcItumIDhFV7qntiPw2kygWRRbWv8tQqtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQuxRbMJ9i33r8Mnu3rfZvfuR7ekwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyZTk0Nzk3LTU0ZDUtNDNjZC05OTYzLWY5NjQ1NGJlODg1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOAgwDQYJKoZIhvcNAQELBQADggEBACbVMTenwrA+bx03CZL7Enz1 /vHiMZTrlZGR7tMAPwth2cfSwsgggTu6ffFrnI2T35Jxd+xxYd10f1HDc0/+P+Jh cIs28Dtc72RKwyBvJuIa5idP51p7W/yLBbaTk3mHcUXVc8tZGqH0n+RRZI10YttL Oz/eS1Mfy26sXgOKsI4IqxIuY63gWQtQvWMziQC4KOEsKJ7FUM6dVstZYC6Tcg8e 37ML7eDIUSymJ/6qDK5crg1ybArlrMq5pM9zcx5O8eRDANNXC31mRpHdSpWbMjSs VHJhdkJtDmpzygToKzfmpK4MuKydN6vZZFkb5sbRAH6o0/HtIcbATj73sKBeHqg= -----END CERTIFICATE-----Generated at Wed May 13 01:19:28 2026 by rpki-client