$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/283d9ad9-8773-4702-8d3e-c2a0b3d78076.roa File: 283d9ad9-8773-4702-8d3e-c2a0b3d78076.roa (raw, json) Hash identifier: imbELLIXleGxYpJaS5HMqQ37JsQKy0WaK6NxKTKgblg= Subject key identifier: EA:35:39:66:AF:E3:15:9A:29:DA:88:3F:16:62:98:E0:F2:2F:91:BD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 77FB36950E18026113E9BDDAAC5F8404E5CA3EAC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/283d9ad9-8773-4702-8d3e-c2a0b3d78076.roa Signing time: Mon 04 May 2026 14:20:07 +0000 ROA not before: Mon 04 May 2026 14:20:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 3.2.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:fb:36:95:0e:18:02:61:13:e9:bd:da:ac:5f:84:04:e5:ca:3e:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 4 14:20:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=6b420aadd95c2db3930bf7890d83f7c7623fdc745d12fa0f9c4cb723c438af62, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fe:bf:71:cc:de:2c:9a:2d:3e:ac:ea:fc:ee: 25:9b:25:df:bd:6c:33:63:cb:c1:b3:e8:81:50:fe: d3:3a:98:e2:fe:ec:ed:f7:33:a0:f5:a8:3d:a0:43: e9:7c:eb:af:4d:1f:70:c1:d0:47:58:ec:36:bc:cb: 20:e2:9b:b4:7a:30:af:99:63:ae:63:b1:f6:ad:b1: 19:ed:47:1e:03:79:54:33:f8:19:dd:d9:4b:ae:35: 66:13:a8:dd:97:85:13:f1:0b:1d:28:0c:8a:8e:fa: 9b:89:10:78:04:d2:30:4d:72:a0:93:e4:93:1d:2b: 26:9e:7d:75:e2:b8:49:09:51:23:6b:b6:40:b9:11: c1:c4:e0:9f:09:f7:19:5b:49:18:f4:e5:1d:74:a6: 4f:83:a3:0c:67:dc:0c:0f:05:52:55:b2:e7:6d:66: d1:ee:d2:41:7b:cf:28:a1:9b:dc:a0:2c:02:7e:13: db:49:ac:0e:d1:cd:74:8a:64:f6:68:56:ec:5e:24: 3c:0c:b8:e1:9c:96:68:00:bd:36:13:64:d0:01:a2: dd:4b:2a:73:e3:5b:65:c2:23:e1:b9:ee:ed:46:2d: 94:6a:7b:da:b8:1f:37:63:b0:67:df:43:e7:5a:89: 46:08:b3:b0:2a:7b:7c:44:9d:18:08:d7:6c:5a:f2: 01:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:35:39:66:AF:E3:15:9A:29:DA:88:3F:16:62:98:E0:F2:2F:91:BD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/283d9ad9-8773-4702-8d3e-c2a0b3d78076.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.76.0/24 Signature Algorithm: sha256WithRSAEncryption 61:99:b0:a5:74:dd:9b:fd:05:9d:32:bc:85:06:a8:e3:d1:e4: ee:fb:e6:e3:9a:fe:9f:78:69:c8:63:dd:db:6a:7a:69:93:ab: df:b0:96:27:82:76:6d:a3:c6:af:84:d2:9b:42:53:b3:fe:25: 9f:b6:bf:9f:ad:ff:34:df:84:d4:78:a7:03:c3:95:8e:c9:71: 20:91:00:9a:30:ba:73:82:2c:e0:14:b4:0b:c3:14:a1:e0:37: 72:7c:d5:71:02:03:a2:0c:cc:e2:b4:3c:92:ad:d0:a6:78:d4: 44:b5:73:a1:93:8c:cc:e0:aa:8c:b3:04:d6:a7:63:bb:c2:e5: 07:dc:87:29:37:25:bd:a6:e9:e9:80:76:57:4b:c5:49:33:4c: 38:b8:1b:bf:a2:ff:c0:cc:61:33:65:0e:f5:de:e9:18:b7:95: 82:68:93:df:0e:44:40:7b:7d:63:a2:e9:75:74:39:39:26:c4: 9c:6f:4b:d8:9f:c0:e5:56:9c:f7:ee:86:b5:49:02:ff:10:1d: c3:af:e1:be:59:76:6a:e0:d3:b4:d9:5d:e9:1a:1b:cb:7e:b0: de:b4:af:80:ad:01:01:98:aa:56:42:1d:39:ac:7b:4c:d7:e1: cd:ef:ea:e4:c0:a6:cf:91:34:95:1c:21:7a:c5:65:86:bb:67: 60:87:90:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd/s2lQ4YAmET6b3arF+EBOXKPqwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA0MTQyMDA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjQyMGFhZGQ5NWMyZGIzOTMwYmY3ODkwZDgzZjdjNzYy M2ZkYzc0NWQxMmZhMGY5YzRjYjcyM2M0MzhhZjYyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU/r9xzN4smi0+rOr87iWbJd+9bDNjy8Gz6IFQ/tM6mOL+ 7O33M6D1qD2gQ+l8669NH3DB0EdY7Da8yyDim7R6MK+ZY65jsfatsRntRx4DeVQz +Bnd2UuuNWYTqN2XhRPxCx0oDIqO+puJEHgE0jBNcqCT5JMdKyaefXXiuEkJUSNr tkC5EcHE4J8J9xlbSRj05R10pk+Dowxn3AwPBVJVsudtZtHu0kF7zyihm9ygLAJ+ E9tJrA7RzXSKZPZoVuxeJDwMuOGclmgAvTYTZNABot1LKnPjW2XCI+G57u1GLZRq e9q4HzdjsGffQ+daiUYIs7Aqe3xEnRgI12xa8gH3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6jU5Zq/jFZop2og/FmKY4PIvkb0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI4M2Q5YWQ5LTg3NzMtNDcwMi04ZDNlLWMyYTBiM2Q3ODA3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAkwwDQYJKoZIhvcNAQELBQADggEBAGGZsKV03Zv9BZ0yvIUGqOPR5O77 5uOa/p94achj3dtqemmTq9+wlieCdm2jxq+E0ptCU7P+JZ+2v5+t/zTfhNR4pwPD lY7JcSCRAJowunOCLOAUtAvDFKHgN3J81XECA6IMzOK0PJKt0KZ41ES1c6GTjMzg qoyzBNanY7vC5Qfchyk3Jb2m6emAdldLxUkzTDi4G7+i/8DMYTNlDvXe6Ri3lYJo k98OREB7fWOi6XV0OTkmxJxvS9ifwOVWnPfuhrVJAv8QHcOv4b5Zdmrg07TZXeka G8t+sN60r4CtAQGYqlZCHTmse0zX4c3v6uTAps+RNJUcIXrFZYa7Z2CHkF4= -----END CERTIFICATE-----Generated at Tue May 12 22:34:27 2026 by rpki-client