$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5a88f9b7-28f9-4924-9ed0-c9d997312cd7.roa File: 5a88f9b7-28f9-4924-9ed0-c9d997312cd7.roa (raw, json) Hash identifier: KBK4iqUqrlXCGmFtltHbKe4cFQlR81cUypWUjIFLddY= Subject key identifier: F9:14:5D:BC:6F:95:46:2D:48:E2:52:29:2E:8B:0C:83:FC:BF:C9:E0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 21C5DF635CD90FC725F4C20008C3A5A70ABE987D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5a88f9b7-28f9-4924-9ed0-c9d997312cd7.roa Signing time: Mon 04 May 2026 14:11:03 +0000 ROA not before: Mon 04 May 2026 14:11:03 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 3.2.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c5:df:63:5c:d9:0f:c7:25:f4:c2:00:08:c3:a5:a7:0a:be:98:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 4 14:11:03 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=e63d46fb5d705cfc3284a1eb209893199bf294cdf4e84ea2cee9597c88f09d2c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:98:dc:b1:e0:66:fc:94:1f:87:e6:a8:ae:d8: 50:c6:8a:15:85:15:11:01:be:e3:5d:f0:8a:31:b5: 3f:ad:1f:30:17:d2:10:c5:8b:13:53:e9:47:17:2f: 5b:99:21:51:ae:da:40:e5:ef:43:db:f8:a6:e8:ee: 11:64:e1:74:e8:09:27:20:24:43:10:5b:ad:3f:9b: bf:bc:bf:b0:99:64:f5:0a:5d:90:6e:7d:29:46:5e: 20:f4:8f:a6:21:5b:d2:75:f2:c8:d7:a1:f2:1a:03: a4:03:da:51:70:46:9a:27:6b:57:54:4a:bd:dd:77: dc:39:cc:e5:43:ac:11:eb:fc:3a:64:61:92:f9:75: 6f:05:f6:f2:ce:59:f8:63:99:b4:48:b5:1b:f4:ab: 37:49:5a:d5:f3:81:23:e4:c4:21:99:1c:e1:f8:fa: 37:44:17:39:ad:44:0e:b8:d0:1f:0a:73:b7:06:64: e3:a0:2b:7b:bf:d5:8d:ea:45:86:ec:94:c0:2c:ea: c1:ad:fa:ef:83:d7:e3:e0:14:9b:9a:ee:12:96:0e: 7a:4e:c7:01:1c:73:cd:18:0c:6e:44:06:2b:48:b6: 53:66:fe:d7:03:b9:d3:ed:7d:ff:65:28:f0:b6:dd: a8:5a:b0:2c:70:58:32:e7:66:38:8b:d4:83:3b:59: 87:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:14:5D:BC:6F:95:46:2D:48:E2:52:29:2E:8B:0C:83:FC:BF:C9:E0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5a88f9b7-28f9-4924-9ed0-c9d997312cd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.90.0/24 Signature Algorithm: sha256WithRSAEncryption 62:b4:87:b7:d0:fd:e2:c9:97:e0:23:3d:29:32:da:99:e1:67: a1:97:63:28:a5:8d:e8:14:d8:e1:fc:ee:ab:87:6d:0d:69:fb: 48:1e:d4:39:de:fb:fc:ef:9d:e4:f2:29:b1:55:6a:4b:ed:2b: d8:c4:b8:c0:02:48:c5:01:38:96:0e:65:50:fe:bf:7b:6b:7e: fa:b4:85:6e:f8:94:c4:33:9d:d5:18:69:94:75:c3:5d:b7:12: ee:13:b8:a4:4c:05:78:6e:3b:67:c8:c5:50:ea:ed:5d:df:fb: e9:f2:79:3c:4b:b2:2d:05:16:26:a1:95:06:87:e4:83:e3:f2: bf:43:08:bd:86:5e:01:a6:86:c9:48:07:00:e0:50:1e:cc:53: 61:62:bc:d3:8b:f4:5d:a4:52:aa:06:f3:99:f2:c0:36:49:6c: 0c:32:a1:1e:bb:3d:61:6a:6c:f6:d6:4a:62:87:16:28:c4:f7: 62:9f:0e:10:50:0c:b2:3e:e8:9e:8e:25:e8:d4:48:5d:60:9c: f6:24:61:30:6b:e9:4d:58:f5:05:09:6d:f6:8c:53:df:40:cb: 96:5d:79:06:5a:07:9e:be:92:7d:b6:7a:b0:15:c9:18:bf:df: 69:63:a2:6e:5d:32:78:2e:05:9b:0a:26:67:7b:5f:9a:70:de: b5:43:b5:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIcXfY1zZD8cl9MIACMOlpwq+mH0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA0MTQxMTAzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjNkNDZmYjVkNzA1Y2ZjMzI4NGExZWIyMDk4OTMxOTli ZjI5NGNkZjRlODRlYTJjZWU5NTk3Yzg4ZjA5ZDJjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMmNyx4Gb8lB+H5qiu2FDGihWFFREBvuNd8IoxtT+tHzAX 0hDFixNT6UcXL1uZIVGu2kDl70Pb+Kbo7hFk4XToCScgJEMQW60/m7+8v7CZZPUK XZBufSlGXiD0j6YhW9J18sjXofIaA6QD2lFwRpona1dUSr3dd9w5zOVDrBHr/Dpk YZL5dW8F9vLOWfhjmbRItRv0qzdJWtXzgSPkxCGZHOH4+jdEFzmtRA640B8Kc7cG ZOOgK3u/1Y3qRYbslMAs6sGt+u+D1+PgFJua7hKWDnpOxwEcc80YDG5EBitItlNm /tcDudPtff9lKPC23ahasCxwWDLnZjiL1IM7WYe5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+RRdvG+VRi1I4lIpLosMg/y/yeAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVhODhmOWI3LTI4ZjktNDkyNC05ZWQwLWM5ZDk5NzMxMmNkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAlowDQYJKoZIhvcNAQELBQADggEBAGK0h7fQ/eLJl+AjPSky2pnhZ6GX YyiljegU2OH87quHbQ1p+0ge1Dne+/zvneTyKbFVakvtK9jEuMACSMUBOJYOZVD+ v3trfvq0hW74lMQzndUYaZR1w123Eu4TuKRMBXhuO2fIxVDq7V3f++nyeTxLsi0F FiahlQaH5IPj8r9DCL2GXgGmhslIBwDgUB7MU2FivNOL9F2kUqoG85nywDZJbAwy oR67PWFqbPbWSmKHFijE92KfDhBQDLI+6J6OJejUSF1gnPYkYTBr6U1Y9QUJbfaM U99Ay5ZdeQZaB56+kn22erAVyRi/32ljom5dMnguBZsKJmd7X5pw3rVDtRA= -----END CERTIFICATE-----Generated at Tue May 12 22:00:41 2026 by rpki-client