$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf45ca66-aede-4d9b-b87e-a247db447316.roa File: bf45ca66-aede-4d9b-b87e-a247db447316.roa (raw, json) Hash identifier: BHSv7tZDSCEjtCoarNy/jJZ9W4vJLa/tKyfMlWQc56c= Subject key identifier: 5B:E4:B4:34:EF:86:D8:58:11:69:CC:B8:98:4D:C8:F1:6E:98:DB:1B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0798B71A68D21A36212FB425326DF2E076C21B79 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf45ca66-aede-4d9b-b87e-a247db447316.roa Signing time: Mon 04 May 2026 08:01:11 +0000 ROA not before: Mon 04 May 2026 08:01:11 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3fce::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:98:b7:1a:68:d2:1a:36:21:2f:b4:25:32:6d:f2:e0:76:c2:1b:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 4 08:01:11 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=8163f0de0c77480c6eb40c9819f00f9f5cd83785ff5c763c3efc1301c65cc947, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:59:54:95:d5:20:2f:72:6f:e5:df:e1:ca:4c: 88:e1:cb:5e:b4:55:24:81:c3:62:c5:c1:ae:49:d4: b4:ff:c6:71:eb:b5:29:ed:71:ac:01:f9:1c:90:a1: 95:31:4f:c4:74:f9:e0:64:9e:4b:63:a1:2f:85:5d: f7:32:c7:18:cd:28:3c:8a:13:62:c4:26:7d:36:4a: 7f:eb:99:d5:92:6d:0d:75:e2:c0:1c:19:90:1c:f2: dd:42:d6:e5:ab:ce:2f:48:3b:d2:5b:cd:3b:f9:41: 63:30:da:18:c9:1f:7b:48:a7:8b:66:3a:b8:e1:f3: d3:44:7f:01:b4:8c:28:4c:3d:87:ad:ce:5c:0d:ee: a5:ea:19:e7:81:72:57:8f:63:d7:a1:4d:bd:f2:ee: 6c:4d:ea:6d:fb:e5:bc:d0:98:00:b5:db:40:f1:f7: 1e:ac:6e:d6:df:50:71:3d:78:87:92:95:54:77:0e: fc:82:13:78:03:e2:e7:9a:38:e5:1c:80:4e:59:94: c2:10:70:fb:89:c3:55:cd:fa:58:bc:02:26:5b:46: 0d:c7:83:de:e4:10:e5:90:ec:fa:1c:88:e7:3a:ca: c6:f8:0a:32:70:c3:b5:75:41:fb:81:62:1f:dc:21: ca:66:be:6b:bd:3d:dd:84:89:bd:7b:0b:64:7d:7f: fa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E4:B4:34:EF:86:D8:58:11:69:CC:B8:98:4D:C8:F1:6E:98:DB:1B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf45ca66-aede-4d9b-b87e-a247db447316.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3fce::/47 Signature Algorithm: sha256WithRSAEncryption ac:41:83:4a:26:1b:46:61:1f:64:a2:98:a1:c8:09:08:87:81: f7:9d:16:89:cd:04:d9:43:32:d8:d8:49:60:f9:58:16:d9:68: c9:1f:d2:07:13:d2:69:d3:9d:40:7e:ba:0b:1d:ec:d8:98:0f: e2:99:de:4d:0b:89:29:40:d4:e5:60:e8:17:da:f9:66:4f:21: c0:cb:f0:e1:f3:e2:38:8d:1c:85:a2:c6:0d:26:57:f1:bd:e1: 2c:e9:43:ba:03:b5:e5:a8:66:79:13:e1:47:45:40:f2:5f:cf: dd:dc:2b:9b:83:73:48:e0:0e:3f:47:71:09:a1:f9:bf:74:6a: ce:a0:24:cd:75:52:fc:45:0d:51:d0:e6:77:0c:85:4f:3a:5b: d3:65:2c:9f:4c:37:dd:92:c9:a4:91:b1:32:e4:41:e3:25:53: a3:a7:81:4d:78:97:c4:d8:79:9d:83:f0:a9:12:9a:3c:da:b1: 92:f6:ed:ab:4e:33:6d:64:50:7c:43:72:69:67:26:95:22:f4: be:f1:e4:54:f3:20:1b:40:b5:5f:b6:a2:5b:4e:3c:8f:a7:f0: fd:7a:e7:f6:78:57:18:b9:db:d7:20:73:73:3b:04:f7:26:58: 77:68:a7:ab:52:44:f4:71:f6:19:84:d5:aa:8a:f5:44:e9:a3: 41:cb:b2:c1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB5i3GmjSGjYhL7QlMm3y4HbCG3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTA0MDgwMTExWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTYzZjBkZTBjNzc0ODBjNmViNDBjOTgxOWYwMGY5ZjVj ZDgzNzg1ZmY1Yzc2M2MzZWZjMTMwMWM2NWNjOTQ3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrWVSV1SAvcm/l3+HKTIjhy160VSSBw2LFwa5J1LT/xnHr tSntcawB+RyQoZUxT8R0+eBknktjoS+FXfcyxxjNKDyKE2LEJn02Sn/rmdWSbQ11 4sAcGZAc8t1C1uWrzi9IO9JbzTv5QWMw2hjJH3tIp4tmOrjh89NEfwG0jChMPYet zlwN7qXqGeeBclePY9ehTb3y7mxN6m375bzQmAC120Dx9x6sbtbfUHE9eIeSlVR3 DvyCE3gD4ueaOOUcgE5ZlMIQcPuJw1XN+li8AiZbRg3Hg97kEOWQ7PociOc6ysb4 CjJww7V1QfuBYh/cIcpmvmu9Pd2Eib17C2R9f/oTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW+S0NO+G2FgRacy4mE3I8W6Y2xswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmNDVjYTY2LWFlZGUtNGQ5Yi1iODdlLWEyNDdkYjQ0NzMxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP84wDQYJKoZIhvcNAQELBQADggEBAKxBg0omG0ZhH2SimKHICQiH gfedFonNBNlDMtjYSWD5WBbZaMkf0gcT0mnTnUB+ugsd7NiYD+KZ3k0LiSlA1OVg 6Bfa+WZPIcDL8OHz4jiNHIWixg0mV/G94SzpQ7oDteWoZnkT4UdFQPJfz93cK5uD c0jgDj9HcQmh+b90as6gJM11UvxFDVHQ5ncMhU86W9NlLJ9MN92SyaSRsTLkQeMl U6OngU14l8TYeZ2D8KkSmjzasZL27atOM21kUHxDcmlnJpUi9L7x5FTzIBtAtV+2 oltOPI+n8P165/Z4Vxi529cgc3M7BPcmWHdop6tSRPRx9hmE1aqK9UTpo0HLssE= -----END CERTIFICATE-----Generated at Wed May 13 01:21:58 2026 by rpki-client