$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0211872d-1936-42b2-b4c8-2ab2712cb4e8.roa File: 0211872d-1936-42b2-b4c8-2ab2712cb4e8.roa (raw, json) Hash identifier: Tumdmdko5VSdPJn2pz7ewi8imPdOIQmxUJk/vzNDewY= Subject key identifier: 3F:28:B4:59:B9:43:DF:BB:C6:68:1A:62:50:3C:61:4E:21:4A:DE:94 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6567E7C996FF09C901BC9F7A26BEA8A0FE050B9C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0211872d-1936-42b2-b4c8-2ab2712cb4e8.roa Signing time: Tue 05 May 2026 01:11:02 +0000 ROA not before: Tue 05 May 2026 01:11:02 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 15.220.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:67:e7:c9:96:ff:09:c9:01:bc:9f:7a:26:be:a8:a0:fe:05:0b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 5 01:11:02 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=c86f09d35faf2e3d8ab5139301f5ee96034162765178a7120c2f0b858e418e22, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c8:9a:1b:36:f5:c9:a6:80:c4:a2:96:0a:c2: 07:10:36:f3:0b:a2:4f:57:5b:1e:27:81:5d:d7:a3: 41:45:03:ba:c2:11:0b:41:4e:7e:46:6b:05:93:d9: a2:e0:1a:26:89:b2:d0:c6:2a:56:d2:53:33:86:ee: 36:b3:8d:95:49:c0:81:01:f2:df:13:f6:e5:10:52: 8f:c5:26:b7:e2:af:11:0f:7a:c9:46:a5:87:32:b4: 2a:8e:45:c9:de:ff:86:99:b1:66:11:0d:90:11:08: bc:b5:18:6a:fe:5d:21:b4:5c:03:3e:b3:60:40:12: 42:66:97:08:81:f5:26:47:b1:ad:2e:ce:9e:4c:a0: ad:9f:09:b5:47:dc:ad:63:1f:fb:ab:dc:df:a0:2a: 83:5f:de:9c:cf:e4:51:fd:d3:84:88:2c:16:3a:26: 29:b6:b9:d1:48:5d:a8:4e:35:1a:25:21:b6:25:85: e9:59:b6:b0:4e:bb:f0:39:05:57:e5:5e:74:27:92: 68:e6:2f:a2:09:be:5f:81:bb:81:a6:29:5b:14:28: 8e:7c:ac:51:68:a1:13:ae:26:4c:34:44:b1:de:3a: 46:2c:1f:93:14:67:83:67:00:e2:da:55:2b:12:03: 5a:5c:26:7b:36:4a:bf:94:3a:7e:61:58:03:72:fe: f8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:28:B4:59:B9:43:DF:BB:C6:68:1A:62:50:3C:61:4E:21:4A:DE:94 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0211872d-1936-42b2-b4c8-2ab2712cb4e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.250.0/23 Signature Algorithm: sha256WithRSAEncryption a8:ef:4c:0f:4b:4a:21:78:4c:ac:36:0d:a8:13:b3:15:8c:ec: 65:0c:a7:62:e8:89:bf:78:d2:dd:ce:cb:92:bc:89:fe:74:56: 04:e8:33:1a:f9:40:46:f1:0d:ae:c3:22:85:9c:5b:af:59:a5: af:69:8b:8f:01:13:f0:a1:9b:45:0d:25:53:85:19:34:45:24: 4d:b7:80:a5:67:b3:dc:5d:ff:ec:d1:f7:53:60:3b:46:be:58: 21:db:3a:68:c3:ab:c5:1a:af:42:49:14:d6:12:9a:d2:c2:dc: 99:20:47:19:38:3d:ac:be:9c:0e:0d:4a:b3:46:18:23:1f:d4: 67:c7:61:49:20:7e:92:66:9a:d6:a1:f6:01:2b:e3:01:fc:c8: 88:53:7b:f5:84:77:47:c3:bb:03:3d:6d:a8:ad:d6:01:6f:a6: 0b:12:f1:d2:0e:3a:39:1f:b2:ac:cd:5a:d8:b3:a5:18:ab:a3: bb:ef:da:2e:4e:e7:01:f5:80:46:ff:a5:4a:d0:93:55:50:8d: 88:85:2b:32:5b:68:ca:90:ba:d8:7f:f8:3c:b5:12:31:f7:86: a4:11:b2:4d:fc:bc:3f:13:c9:d0:d6:e1:96:9b:0d:cc:6c:fc: 09:8e:fc:c6:1d:b2:30:7a:52:1a:d8:5f:2b:38:de:00:1f:39: 06:da:8a:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZWfnyZb/CckBvJ96Jr6ooP4FC5wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA1MDExMTAyWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjODZmMDlkMzVmYWYyZTNkOGFiNTEzOTMwMWY1ZWU5NjAz NDE2Mjc2NTE3OGE3MTIwYzJmMGI4NThlNDE4ZTIyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD2yJobNvXJpoDEopYKwgcQNvMLok9XWx4ngV3Xo0FFA7rC EQtBTn5GawWT2aLgGiaJstDGKlbSUzOG7jazjZVJwIEB8t8T9uUQUo/FJrfirxEP eslGpYcytCqORcne/4aZsWYRDZARCLy1GGr+XSG0XAM+s2BAEkJmlwiB9SZHsa0u zp5MoK2fCbVH3K1jH/ur3N+gKoNf3pzP5FH904SILBY6Jim2udFIXahONRolIbYl helZtrBOu/A5BVflXnQnkmjmL6IJvl+Bu4GmKVsUKI58rFFooROuJkw0RLHeOkYs H5MUZ4NnAOLaVSsSA1pcJns2Sr+UOn5hWANy/vjNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPyi0WblD37vGaBpiUDxhTiFK3pQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAyMTE4NzJkLTE5MzYtNDJiMi1iNGM4LTJhYjI3MTJjYjRlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEP3PowDQYJKoZIhvcNAQELBQADggEBAKjvTA9LSiF4TKw2DagTsxWM7GUM p2Loib940t3Oy5K8if50VgToMxr5QEbxDa7DIoWcW69Zpa9pi48BE/Chm0UNJVOF GTRFJE23gKVns9xd/+zR91NgO0a+WCHbOmjDq8Uar0JJFNYSmtLC3JkgRxk4Pay+ nA4NSrNGGCMf1GfHYUkgfpJmmtah9gEr4wH8yIhTe/WEd0fDuwM9bait1gFvpgsS 8dIOOjkfsqzNWtizpRiro7vv2i5O5wH1gEb/pUrQk1VQjYiFKzJbaMqQuth/+Dy1 EjH3hqQRsk38vD8TydDW4ZabDcxs/AmO/MYdsjB6UhrYXys43gAfOQbail8= -----END CERTIFICATE-----Generated at Tue May 12 22:26:45 2026 by rpki-client