$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f7baf32-49d8-4e8f-990c-772af5b5f57e.roa File: 5f7baf32-49d8-4e8f-990c-772af5b5f57e.roa (raw, json) Hash identifier: qGwIqZODGsxCoK32k2A7uJPGGpkRFSQKLb3sp/H3wMM= Subject key identifier: B4:13:88:FA:46:6F:19:3F:55:16:FB:C8:48:8D:33:09:6B:AB:A5:E7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3777B3B1DE9E2CCB8FF0EEF18D14F2E9EABE928D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f7baf32-49d8-4e8f-990c-772af5b5f57e.roa Signing time: Fri 08 May 2026 01:10:04 +0000 ROA not before: Fri 08 May 2026 01:10:04 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 34.224.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:77:b3:b1:de:9e:2c:cb:8f:f0:ee:f1:8d:14:f2:e9:ea:be:92:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 8 01:10:04 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=d5bc5eb8e773fc86eb972e837f96787527a5c617ec3b3a6d6bd386626976c930, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:73:99:81:eb:3a:79:8c:64:2d:27:08:33:9c: 76:17:61:4c:5c:4b:16:c4:f8:c5:14:d6:cc:fd:48: 35:56:74:b2:87:a1:82:64:6d:94:da:85:f9:86:1e: 64:16:f0:82:aa:b6:4e:77:af:f5:fc:94:e4:a7:c5: 9e:62:02:5a:26:68:3b:53:a0:17:4d:62:1e:42:05: b4:f6:53:8f:47:ea:df:87:6c:21:b8:35:78:da:24: fe:a7:0a:db:ef:85:e6:53:21:0f:45:80:bb:b7:f3: c4:f0:85:52:ef:c7:67:83:79:0f:e9:47:04:df:3d: ed:c9:02:7d:bd:63:e7:2c:a0:72:09:e9:d6:26:b7: c0:e5:f7:0d:56:14:84:d3:95:06:4f:dd:ce:4c:76: 27:76:99:1b:a0:d6:9f:01:31:43:85:1f:94:fd:a9: c6:23:37:e2:2b:f6:10:f5:67:44:24:a2:1a:66:c5: a7:85:35:e5:ea:e5:47:f9:de:54:9b:fa:bc:cc:ec: d5:8f:a8:2d:df:51:32:ea:a5:c1:10:1b:af:5b:be: 83:0e:4a:bd:bd:c9:ec:4a:1f:ff:ef:a0:6f:35:9d: da:00:16:de:2e:7f:46:c9:f9:fc:8c:41:12:9f:ef: 87:65:9c:4b:11:5e:fc:5d:98:f1:c5:ea:c3:e0:19: 18:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:13:88:FA:46:6F:19:3F:55:16:FB:C8:48:8D:33:09:6B:AB:A5:E7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f7baf32-49d8-4e8f-990c-772af5b5f57e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.224.0.0/12 Signature Algorithm: sha256WithRSAEncryption 36:97:b9:e2:c6:01:7f:9e:7a:ff:42:8e:e6:fb:d9:e9:d0:0f: 63:86:1b:91:dc:b3:8d:27:75:cb:d9:05:66:69:cf:e9:41:53: 18:4e:0c:4e:53:e1:4c:a7:13:8c:06:e5:8c:06:6c:b4:8a:db: 00:c9:fc:23:e2:18:9e:03:20:03:16:4a:b1:a5:50:c1:45:65: 61:77:50:70:9d:59:6b:92:5d:b9:83:56:b8:f2:31:a9:3f:ce: 51:3a:24:45:f1:26:ed:4d:5c:9f:ed:bf:bf:08:45:f3:0e:66: e2:0d:30:e7:f6:f9:80:77:e7:94:af:42:e0:fe:ed:7d:a2:1f: 73:ed:cc:ad:9c:3e:79:5c:d1:24:da:34:75:b1:04:8a:89:7d: 0f:c8:7e:fe:a7:0c:c7:81:24:23:69:ad:d2:29:eb:85:9b:f1: de:0b:56:b5:9c:e3:35:ed:09:10:14:20:25:10:7b:bf:22:3e: 73:88:0a:d2:d2:9c:54:92:8d:3b:d1:69:e8:b0:e8:5a:87:16: 1a:f6:86:a8:01:a2:9d:ea:7d:0b:8d:b7:d3:74:0e:1d:8e:39: 8e:46:6a:82:43:6d:e7:78:0d:b7:27:6f:fc:7c:da:93:05:28: b2:3e:c6:e3:22:d5:47:cd:6e:05:78:de:cb:0f:6b:3e:1c:b8: 12:40:e7:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUN3ezsd6eLMuP8O7xjRTy6eq+ko0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA4MDExMDA0WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWJjNWViOGU3NzNmYzg2ZWI5NzJlODM3Zjk2Nzg3NTI3 YTVjNjE3ZWMzYjNhNmQ2YmQzODY2MjY5NzZjOTMwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYc5mB6zp5jGQtJwgznHYXYUxcSxbE+MUU1sz9SDVWdLKH oYJkbZTahfmGHmQW8IKqtk53r/X8lOSnxZ5iAlomaDtToBdNYh5CBbT2U49H6t+H bCG4NXjaJP6nCtvvheZTIQ9FgLu388TwhVLvx2eDeQ/pRwTfPe3JAn29Y+csoHIJ 6dYmt8Dl9w1WFITTlQZP3c5Mdid2mRug1p8BMUOFH5T9qcYjN+Ir9hD1Z0Qkohpm xaeFNeXq5Uf53lSb+rzM7NWPqC3fUTLqpcEQG69bvoMOSr29yexKH//voG81ndoA Ft4uf0bJ+fyMQRKf74dlnEsRXvxdmPHF6sPgGRgJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtBOI+kZvGT9VFvvISI0zCWurpecwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVmN2JhZjMyLTQ5ZDgtNGU4Zi05OTBjLTc3MmFmNWI1ZjU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQi4DANBgkqhkiG9w0BAQsFAAOCAQEANpe54sYBf556/0KO5vvZ6dAPY4Yb kdyzjSd1y9kFZmnP6UFTGE4MTlPhTKcTjAbljAZstIrbAMn8I+IYngMgAxZKsaVQ wUVlYXdQcJ1Za5JduYNWuPIxqT/OUTokRfEm7U1cn+2/vwhF8w5m4g0w5/b5gHfn lK9C4P7tfaIfc+3MrZw+eVzRJNo0dbEEiol9D8h+/qcMx4EkI2mt0inrhZvx3gtW tZzjNe0JEBQgJRB7vyI+c4gK0tKcVJKNO9Fp6LDoWocWGvaGqAGinep9C42303QO HY45jkZqgkNt53gNtydv/HzakwUosj7G4yLVR81uBXjeyw9rPhy4EkDnyg== -----END CERTIFICATE-----Generated at Tue May 12 22:27:08 2026 by rpki-client