$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ae0c8532-30e8-40b4-8f53-a7045f337468.roa File: ae0c8532-30e8-40b4-8f53-a7045f337468.roa (raw, json) Hash identifier: gknrH2L/6IQktGlp4kzabqP/UgToEmVipVx39sDTXfs= Subject key identifier: 20:3C:3C:EE:58:F5:BF:6C:B2:BD:38:0E:E6:31:D7:18:D1:E8:A8:D6 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0841EAA0BA58A7DD87244951C603863C71D6DF35 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ae0c8532-30e8-40b4-8f53-a7045f337468.roa Signing time: Mon 04 May 2026 04:12:01 +0000 ROA not before: Mon 04 May 2026 04:12:01 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3ab4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:41:ea:a0:ba:58:a7:dd:87:24:49:51:c6:03:86:3c:71:d6:df:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 04:12:01 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=067aeeac490fbf7c10339cec4f0fd93c8f11eaa60b0a2877876c1d3fb04b6572, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:50:85:dc:da:64:ab:e1:3f:0f:7a:4c:cb:5d: fa:c1:2b:9f:70:e8:d0:32:c2:63:bc:40:09:e3:d5: 43:84:12:59:14:10:76:44:ab:cd:08:8e:bf:bd:89: 60:4d:10:73:18:e8:8e:4c:04:54:7a:50:9d:07:5f: 71:4b:58:92:e6:59:8c:4b:35:1d:bb:42:28:9e:80: b4:25:99:42:61:16:49:b0:8d:01:f7:c7:fe:a6:c4: 21:95:cf:e3:4a:2c:dd:16:e7:d3:94:1f:4c:5a:da: c0:84:c9:18:e6:1a:e9:73:19:b5:07:f6:4f:34:15: 28:e5:eb:9b:5a:53:4d:2c:67:1c:46:94:c0:0e:1b: e2:ee:25:fd:2d:1f:d6:3d:cd:68:f1:41:49:bb:3e: e3:45:0b:0f:3c:82:8f:53:38:08:a4:5d:98:74:10: 6d:1e:0a:4b:40:50:9c:6d:10:98:a9:ec:43:7e:30: 42:4f:26:61:7e:ad:32:7d:e2:76:6d:94:44:cd:d7: c8:0b:a6:16:3a:b7:cf:ef:03:d9:11:c7:23:51:10: 1a:f9:e2:e2:e0:bb:67:12:4a:48:45:a8:0d:b3:41: 08:ae:7f:ad:b8:6b:16:e3:dc:bb:ce:4b:ae:9a:36: 03:4f:0a:b1:8d:58:f9:78:29:8e:f9:1d:aa:98:32: 2e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3C:3C:EE:58:F5:BF:6C:B2:BD:38:0E:E6:31:D7:18:D1:E8:A8:D6 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ae0c8532-30e8-40b4-8f53-a7045f337468.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3ab4::/47 Signature Algorithm: sha256WithRSAEncryption 84:a4:bd:ae:e1:d3:51:e0:ef:51:2c:15:bf:01:dd:08:aa:6a: 3f:83:f9:1a:7c:8e:1d:4e:19:5e:4f:83:79:55:96:34:c5:bd: 44:f8:50:21:3b:19:02:f5:23:d4:c7:f4:2e:c5:f7:91:cf:15: 09:f1:72:d7:41:67:b0:f3:1a:01:4e:a7:98:51:7e:95:68:81: 28:6e:50:2c:8d:11:ba:a6:45:9a:0d:e6:e9:97:4a:67:79:77: 2c:e9:a3:3f:58:60:42:1b:e4:7f:70:47:7b:c9:70:65:8a:fe: 2b:13:3c:30:8d:30:4e:8c:14:e4:f2:6d:3f:bf:12:62:a0:1b: 5a:aa:5c:9b:a2:25:ee:72:9c:c8:b3:7c:81:d6:a1:1b:33:2b: 1b:ab:13:ab:6e:6d:04:a1:5d:f5:b1:8b:22:91:0f:1b:a1:a0: 84:6c:a3:a4:57:cf:19:1d:45:86:38:a8:0d:5a:66:c2:63:bf: ce:c9:9e:4b:d3:56:20:df:81:4d:88:bf:93:47:ed:4d:e3:ec: 4b:17:42:83:1e:d2:59:03:fa:2a:00:5c:fe:04:a0:ca:17:7a: aa:da:1e:62:d0:40:1e:9c:a1:ed:70:c1:b9:ba:a0:06:e9:27: d7:da:71:9c:66:16:7b:b0:e5:f2:34:45:9a:03:57:84:6f:ca: 19:80:c0:f7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCEHqoLpYp92HJElRxgOGPHHW3zUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDQxMjAxWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjdhZWVhYzQ5MGZiZjdjMTAzMzljZWM0ZjBmZDkzYzhm MTFlYWE2MGIwYTI4Nzc4NzZjMWQzZmIwNGI2NTcyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqUIXc2mSr4T8PekzLXfrBK59w6NAywmO8QAnj1UOEElkU EHZEq80Ijr+9iWBNEHMY6I5MBFR6UJ0HX3FLWJLmWYxLNR27QiiegLQlmUJhFkmw jQH3x/6mxCGVz+NKLN0W59OUH0xa2sCEyRjmGulzGbUH9k80FSjl65taU00sZxxG lMAOG+LuJf0tH9Y9zWjxQUm7PuNFCw88go9TOAikXZh0EG0eCktAUJxtEJip7EN+ MEJPJmF+rTJ94nZtlETN18gLphY6t8/vA9kRxyNREBr54uLgu2cSSkhFqA2zQQiu f624axbj3LvOS66aNgNPCrGNWPl4KY75HaqYMi5PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIDw87lj1v2yyvTgO5jHXGNHoqNYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FlMGM4NTMyLTMwZTgtNDBiNC04ZjUzLWE3MDQ1ZjMzNzQ2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOrQwDQYJKoZIhvcNAQELBQADggEBAISkva7h01Hg71EsFb8B3Qiq aj+D+Rp8jh1OGV5Pg3lVljTFvUT4UCE7GQL1I9TH9C7F95HPFQnxctdBZ7DzGgFO p5hRfpVogShuUCyNEbqmRZoN5umXSmd5dyzpoz9YYEIb5H9wR3vJcGWK/isTPDCN ME6MFOTybT+/EmKgG1qqXJuiJe5ynMizfIHWoRszKxurE6tubQShXfWxiyKRDxuh oIRso6RXzxkdRYY4qA1aZsJjv87JnkvTViDfgU2Iv5NH7U3j7EsXQoMe0lkD+ioA XP4EoMoXeqraHmLQQB6coe1wwbm6oAbpJ9facZxmFnuw5fI0RZoDV4RvyhmAwPc= -----END CERTIFICATE-----Generated at Wed May 13 01:00:11 2026 by rpki-client