$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f8f3c1ea-ed7d-40e9-9e28-dac36da3ad6d.roa File: f8f3c1ea-ed7d-40e9-9e28-dac36da3ad6d.roa (raw, json) Hash identifier: Oiq2VfkzA92mr+gMUo0A2RACZgG4S8XTIO2dDKd50Ec= Subject key identifier: 1B:F7:64:F1:D1:8C:97:A3:5B:C2:F0:88:B0:A8:69:54:78:19:8A:7F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4F3E0AB8C8BCEFB255984B1CD2AB67B37EBFEC18 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f8f3c1ea-ed7d-40e9-9e28-dac36da3ad6d.roa Signing time: Fri 01 May 2026 00:00:07 +0000 ROA not before: Fri 01 May 2026 00:00:07 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 72.21.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:3e:0a:b8:c8:bc:ef:b2:55:98:4b:1c:d2:ab:67:b3:7e:bf:ec:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 1 00:00:07 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=566fc4ae0ac149a562cf48e3fb29b1b124a9cfc475f277f30b4c02419dc0035f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5a:c4:48:0a:f7:88:aa:3a:30:bf:95:f8:ad: 4a:8f:75:cd:8c:12:2e:c4:6d:30:09:e8:b1:aa:d9: 2d:9e:f2:f7:16:64:31:ac:3a:ed:6a:49:b9:d0:53: c6:4e:fe:cf:df:1a:d3:a5:3d:ad:b6:91:cb:f8:52: 1b:45:e6:22:08:45:b1:3e:56:97:1f:16:06:29:5d: f5:3d:80:b6:54:c1:2f:fb:38:22:03:5e:8c:0f:b7: 4f:51:81:44:0f:fd:f9:c4:99:a0:73:e3:12:84:e7: 78:55:f8:2b:75:89:0f:f2:c8:eb:11:28:1e:98:5c: 05:d0:45:8d:d1:b7:0e:47:38:8b:cd:ce:f5:a7:e9: ab:41:78:a9:e9:c5:8c:7e:e7:3b:fc:63:f0:f3:e1: 69:b2:98:e4:26:ce:8a:26:17:17:fd:9b:84:66:bd: 7c:40:30:6d:3a:58:ed:fb:90:6d:55:95:f1:52:10: 0d:d8:85:c4:f3:a1:fe:36:15:c8:72:10:d8:95:29: 66:aa:2e:a9:65:cd:7c:53:61:fa:68:03:ff:3f:fe: 16:0d:ee:75:25:e2:94:37:27:6d:35:7b:01:c8:49: cf:40:d2:64:e0:25:25:4b:5a:62:be:74:9e:01:0f: aa:4e:8b:13:8f:c4:38:8e:a1:ea:95:c1:4c:d0:58: eb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F7:64:F1:D1:8C:97:A3:5B:C2:F0:88:B0:A8:69:54:78:19:8A:7F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f8f3c1ea-ed7d-40e9-9e28-dac36da3ad6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.21.192.0/19 Signature Algorithm: sha256WithRSAEncryption 48:31:22:0d:d4:62:68:9e:5b:04:b8:94:98:92:c5:92:78:96: c9:ed:9d:15:ac:ab:6a:f5:c9:2e:f3:64:2e:7c:3b:84:37:f4: 15:8b:17:be:7d:bd:30:ff:4d:16:d3:b9:1a:a6:3f:f8:b4:74: a4:fe:6d:22:db:5b:e8:3b:41:23:8d:93:68:2c:af:82:50:43: 6b:7f:19:81:2a:fa:b8:35:9d:2b:5f:d6:63:b9:27:26:f2:2f: f1:a1:e7:72:b9:ab:4b:a3:be:4d:fa:31:02:b1:60:22:4b:83: 37:8c:04:52:98:2f:49:4c:27:ca:dc:d2:77:06:f8:e8:84:b6: 4e:72:0d:b1:a8:06:c9:7f:d5:8d:97:8b:f7:89:43:02:0f:04: 6a:97:c3:66:6b:61:45:ee:b4:a9:76:88:94:f3:b0:c0:54:b5: 8d:b5:b8:d5:38:2b:b1:77:f4:6a:f3:5c:fb:7c:b9:22:c1:29: 89:1f:05:a1:b8:9b:33:4f:e2:47:ef:28:d7:b4:07:62:45:ad: 67:0a:9e:99:26:c0:4e:4f:fb:a5:71:82:de:9c:d2:4d:52:d6: e5:95:bc:d6:d2:08:e8:44:aa:9b:98:e9:17:f6:9f:ee:8f:fe: 37:59:57:83:87:f3:89:16:b7:65:12:2f:84:31:04:1f:81:79: 78:2d:a7:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTz4KuMi877JVmEsc0qtns36/7BgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAxMDAwMDA3WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjZmYzRhZTBhYzE0OWE1NjJjZjQ4ZTNmYjI5YjFiMTI0 YTljZmM0NzVmMjc3ZjMwYjRjMDI0MTlkYzAwMzVmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPWsRICveIqjowv5X4rUqPdc2MEi7EbTAJ6LGq2S2e8vcW ZDGsOu1qSbnQU8ZO/s/fGtOlPa22kcv4UhtF5iIIRbE+VpcfFgYpXfU9gLZUwS/7 OCIDXowPt09RgUQP/fnEmaBz4xKE53hV+Ct1iQ/yyOsRKB6YXAXQRY3Rtw5HOIvN zvWn6atBeKnpxYx+5zv8Y/Dz4WmymOQmzoomFxf9m4RmvXxAMG06WO37kG1VlfFS EA3YhcTzof42FchyENiVKWaqLqllzXxTYfpoA/8//hYN7nUl4pQ3J201ewHISc9A 0mTgJSVLWmK+dJ4BD6pOixOPxDiOoeqVwUzQWOvFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG/dk8dGMl6NbwvCIsKhpVHgZin8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Y4ZjNjMWVhLWVkN2QtNDBlOS05ZTI4LWRhYzM2ZGEzYWQ2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVIFcAwDQYJKoZIhvcNAQELBQADggEBAEgxIg3UYmieWwS4lJiSxZJ4lsnt nRWsq2r1yS7zZC58O4Q39BWLF759vTD/TRbTuRqmP/i0dKT+bSLbW+g7QSONk2gs r4JQQ2t/GYEq+rg1nStf1mO5JybyL/Gh53K5q0ujvk36MQKxYCJLgzeMBFKYL0lM J8rc0ncG+OiEtk5yDbGoBsl/1Y2Xi/eJQwIPBGqXw2ZrYUXutKl2iJTzsMBUtY21 uNU4K7F39GrzXPt8uSLBKYkfBaG4mzNP4kfvKNe0B2JFrWcKnpkmwE5P+6Vxgt6c 0k1S1uWVvNbSCOhEqpuY6Rf2n+6P/jdZV4OH84kWt2USL4QxBB+BeXgtp5A= -----END CERTIFICATE-----Generated at Tue May 12 22:18:17 2026 by rpki-client