$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/baf7a38e-454f-4c34-85b2-30f554704619.roa File: baf7a38e-454f-4c34-85b2-30f554704619.roa (raw, json) Hash identifier: Vm6BrpmFlZYhPqZmfw2FvU/dpSx9oprPvpWfMOKuGzg= Subject key identifier: FC:57:1E:A4:A2:5F:BD:90:2A:C5:EB:5F:40:BC:F1:78:81:03:0C:E4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 29F08DE251648826EBE2372F7114BF1E53D73CFD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/baf7a38e-454f-4c34-85b2-30f554704619.roa Signing time: Mon 04 May 2026 09:31:23 +0000 ROA not before: Mon 04 May 2026 09:31:23 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:37cc::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f0:8d:e2:51:64:88:26:eb:e2:37:2f:71:14:bf:1e:53:d7:3c:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 09:31:23 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=7f32972f4052b630ab652a3657eaa994783c9e82b67c00c4613448569d85cae3, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6c:95:0d:6a:a7:7f:3e:ea:63:03:f0:2c:b2: d2:42:77:03:19:ec:80:ff:73:22:28:f6:6e:79:55: 9e:5a:e6:da:e1:5d:af:78:0d:c0:0f:26:8a:4d:be: d9:d1:93:17:0b:c0:bb:ab:c9:ca:e9:a0:b7:71:92: 23:85:a3:86:74:a3:2d:44:28:aa:ed:72:f6:2c:b2: 56:74:6d:6e:b4:f8:97:97:69:bb:a4:7b:33:ea:14: 4c:46:c1:10:df:27:bd:9b:6f:25:4e:56:29:ff:21: 9f:7a:86:5f:00:90:b9:6b:f2:23:1a:6e:0b:90:3f: 9c:a1:49:56:d1:4a:0d:e0:85:3b:d4:bd:31:87:d8: eb:fd:23:bc:72:37:bc:89:51:63:82:84:c3:0c:59: c9:fa:34:46:f7:bf:bc:b1:ea:ca:c0:b8:49:02:a6: 15:f0:fb:42:78:f8:ed:40:c2:59:52:5e:09:8d:43: 16:6a:92:5d:bc:42:72:8a:1a:eb:11:fa:62:38:fd: 8a:52:78:b7:46:dd:49:ed:2e:c0:c7:ca:ee:92:2b: f2:66:87:99:27:fa:aa:e0:e6:68:a9:8f:b3:04:11: 74:87:d7:c4:30:05:db:06:94:5b:55:97:80:cf:36: f8:04:a5:64:20:ac:cc:e4:de:57:32:7d:47:67:88: ac:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:57:1E:A4:A2:5F:BD:90:2A:C5:EB:5F:40:BC:F1:78:81:03:0C:E4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/baf7a38e-454f-4c34-85b2-30f554704619.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:37cc::/46 Signature Algorithm: sha256WithRSAEncryption b3:6b:53:66:f3:ab:f0:fc:ca:fc:28:8f:4c:a3:4d:2a:7f:39: a5:7f:e4:b8:d5:6a:ab:96:27:c2:2d:1c:44:e2:30:0a:04:e1: cb:a7:65:2c:a6:c9:da:ec:66:ea:db:12:1d:de:76:92:eb:3f: 2f:e3:7a:82:d0:5d:df:6f:ce:e9:b3:52:96:fd:1b:54:61:4e: 5d:d4:18:ff:4b:2c:6b:77:74:5a:61:e7:f7:fb:bb:a8:25:06: b4:8a:17:99:7d:cf:e8:aa:23:33:8e:08:fb:c7:1d:ea:b3:64: 02:86:50:fb:91:cd:82:ba:e0:18:7b:c6:dd:3c:e3:dd:24:da: e8:43:4c:d4:03:39:43:f8:35:a9:eb:a5:c0:d9:45:9c:54:74: 55:6d:6b:4a:54:41:c7:a7:1d:e9:33:08:25:61:e2:e7:d0:88: 08:9a:7a:b0:84:73:e8:d0:15:54:70:4c:eb:d2:d2:c9:e1:8c: de:65:b4:fa:5c:19:99:d5:3e:bf:2d:6d:25:36:f2:d3:f3:94: 22:c1:c7:53:58:16:c1:23:8d:16:81:59:c0:d9:b3:bf:c2:ba: 40:73:f2:8a:8b:2e:39:d9:bd:ac:ac:08:02:ce:04:af:a9:73: 34:00:7b:b5:94:b1:2e:a7:bc:da:fd:03:38:aa:04:2e:9a:06: 77:a7:6e:9e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKfCN4lFkiCbr4jcvcRS/HlPXPP0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDkzMTIzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjMyOTcyZjQwNTJiNjMwYWI2NTJhMzY1N2VhYTk5NDc4 M2M5ZTgyYjY3YzAwYzQ2MTM0NDg1NjlkODVjYWUzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdbJUNaqd/PupjA/AsstJCdwMZ7ID/cyIo9m55VZ5a5trh Xa94DcAPJopNvtnRkxcLwLurycrpoLdxkiOFo4Z0oy1EKKrtcvYsslZ0bW60+JeX abukezPqFExGwRDfJ72bbyVOVin/IZ96hl8AkLlr8iMabguQP5yhSVbRSg3ghTvU vTGH2Ov9I7xyN7yJUWOChMMMWcn6NEb3v7yx6srAuEkCphXw+0J4+O1AwllSXgmN QxZqkl28QnKKGusR+mI4/YpSeLdG3UntLsDHyu6SK/Jmh5kn+qrg5mipj7MEEXSH 18QwBdsGlFtVl4DPNvgEpWQgrMzk3lcyfUdniKyHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/FcepKJfvZAqxetfQLzxeIEDDOQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JhZjdhMzhlLTQ1NGYtNGMzNC04NWIyLTMwZjU1NDcwNDYxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAN8wwDQYJKoZIhvcNAQELBQADggEBALNrU2bzq/D8yvwoj0yjTSp/ OaV/5LjVaquWJ8ItHETiMAoE4cunZSymydrsZurbEh3edpLrPy/jeoLQXd9vzumz Upb9G1RhTl3UGP9LLGt3dFph5/f7u6glBrSKF5l9z+iqIzOOCPvHHeqzZAKGUPuR zYK64Bh7xt08490k2uhDTNQDOUP4NanrpcDZRZxUdFVta0pUQcenHekzCCVh4ufQ iAiaerCEc+jQFVRwTOvS0snhjN5ltPpcGZnVPr8tbSU28tPzlCLBx1NYFsEjjRaB WcDZs7/CukBz8oqLLjnZvaysCALOBK+pczQAe7WUsS6nvNr9AziqBC6aBnenbp4= -----END CERTIFICATE-----Generated at Wed May 13 02:22:03 2026 by rpki-client