$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8cfb76d4-bfc0-483e-a124-648ef84bdd55.roa File: 8cfb76d4-bfc0-483e-a124-648ef84bdd55.roa (raw, json) Hash identifier: wokcHbcJw8/9tKB+fo0TDpE3Fc9yfxWsWAOeHY/ljUA= Subject key identifier: DC:10:58:B6:C6:04:2B:3D:48:14:F6:63:0C:37:AA:44:22:52:68:9A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3DB4E62E8442F7C3925591B3CC57ED00FB71167A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8cfb76d4-bfc0-483e-a124-648ef84bdd55.roa Signing time: Fri 08 May 2026 01:31:00 +0000 ROA not before: Fri 08 May 2026 01:31:00 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.167.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b4:e6:2e:84:42:f7:c3:92:55:91:b3:cc:57:ed:00:fb:71:16:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 8 01:31:00 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=c072e7cabc6836fd1d42eac27cd9dcb3aee902746a20daeffa85290aef3a7b9c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ce:57:8f:34:97:47:4b:55:97:53:9e:77:5d: f5:b7:f5:f2:ba:fd:b7:9f:d8:e2:17:97:f5:71:90: 41:3c:7e:be:4b:74:3e:22:57:a1:e4:41:b6:ed:e2: 9b:94:b1:07:4f:b0:ab:d9:13:e6:c8:bf:a3:6f:a0: 8d:4c:0a:d7:b1:e6:9e:96:e9:39:2f:1c:85:f1:03: 5c:04:c4:62:43:d2:5e:4b:a6:3a:c9:93:a7:50:f4: 9d:0d:6d:85:56:89:3a:4f:73:07:b8:8a:c0:49:5f: d9:4d:9b:47:88:bf:c4:13:b0:c5:80:15:1f:f9:a5: 9d:05:68:35:d8:c7:18:5f:4a:49:16:3b:1f:2d:ab: 6f:dc:dd:7b:9b:06:8f:ce:55:d7:41:3c:d6:5d:cc: a2:e6:d3:6a:72:0a:3f:a0:4b:18:f6:36:17:e6:1f: e5:3c:b5:2c:7a:fd:c5:5a:bb:99:d0:76:f3:6b:79: 96:b8:dc:b3:0c:d6:00:92:e4:f5:fd:27:32:b3:5a: 5d:90:30:ba:68:83:66:d1:89:73:13:f9:2c:2e:3b: 6a:9e:cf:5f:8f:c0:90:58:aa:95:b0:b2:e6:ed:8d: b1:cd:0c:e0:cf:59:83:84:9d:31:96:a2:3f:5f:bd: 30:cc:f2:da:ec:e2:cb:f1:6f:cd:80:69:5a:7c:c6: c6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:10:58:B6:C6:04:2B:3D:48:14:F6:63:0C:37:AA:44:22:52:68:9A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8cfb76d4-bfc0-483e-a124-648ef84bdd55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.167.0.0/17 Signature Algorithm: sha256WithRSAEncryption 60:93:01:bb:1e:8a:68:35:13:fb:38:c3:ee:52:2c:d5:39:5f: 7f:d3:e4:6c:b9:ca:0d:68:f4:8d:c7:d4:c3:d0:2a:82:8a:34: 9f:60:bf:39:89:47:63:db:40:ed:7f:9b:b8:9f:7c:d0:89:e3: d6:0c:b5:3c:23:73:40:62:29:63:17:5e:84:06:8a:e4:1c:9e: 57:2e:1a:9d:ac:ce:2c:c8:49:f8:ba:47:0a:d9:d1:5e:df:d6: 05:a7:f6:0d:ef:fc:4a:0c:c2:12:a2:82:55:49:4e:1d:02:02: e4:70:f1:0b:b0:d3:71:73:02:1c:20:ed:f7:2e:3b:bf:4b:8b: b9:20:d8:80:39:48:26:c2:1f:71:1a:1d:92:c7:d3:7c:b1:85: 17:bf:fe:19:a1:8c:8b:06:d4:c1:ac:f0:99:c1:38:0f:41:3b: 75:41:66:25:0d:95:cb:da:0d:77:2d:27:ef:51:77:78:59:4f: 8d:d4:0d:1a:35:39:e2:25:46:9c:35:e6:32:0a:e7:eb:12:48: 4b:8b:07:b0:08:8c:34:5e:e9:16:e1:e4:bf:c9:fe:24:4b:28: a0:45:0c:9e:e5:5a:65:d0:0b:9b:06:4d:fc:f0:18:fa:cd:61: 35:fc:7a:65:3d:b9:a6:05:27:77:0a:24:09:8c:5f:ae:45:b3: 97:90:dc:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPbTmLoRC98OSVZGzzFftAPtxFnowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA4MDEzMTAwWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDcyZTdjYWJjNjgzNmZkMWQ0MmVhYzI3Y2Q5ZGNiM2Fl ZTkwMjc0NmEyMGRhZWZmYTg1MjkwYWVmM2E3YjljMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUzlePNJdHS1WXU553XfW39fK6/bef2OIXl/VxkEE8fr5L dD4iV6HkQbbt4puUsQdPsKvZE+bIv6NvoI1MCtex5p6W6TkvHIXxA1wExGJD0l5L pjrJk6dQ9J0NbYVWiTpPcwe4isBJX9lNm0eIv8QTsMWAFR/5pZ0FaDXYxxhfSkkW Ox8tq2/c3XubBo/OVddBPNZdzKLm02pyCj+gSxj2NhfmH+U8tSx6/cVau5nQdvNr eZa43LMM1gCS5PX9JzKzWl2QMLpog2bRiXMT+SwuO2qez1+PwJBYqpWwsubtjbHN DODPWYOEnTGWoj9fvTDM8trs4svxb82AaVp8xsZVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3BBYtsYEKz1IFPZjDDeqRCJSaJowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhjZmI3NmQ0LWJmYzAtNDgzZS1hMTI0LTY0OGVmODRiZGQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2pwAwDQYJKoZIhvcNAQELBQADggEBAGCTAbseimg1E/s4w+5SLNU5X3/T 5Gy5yg1o9I3H1MPQKoKKNJ9gvzmJR2PbQO1/m7iffNCJ49YMtTwjc0BiKWMXXoQG iuQcnlcuGp2szizISfi6RwrZ0V7f1gWn9g3v/EoMwhKiglVJTh0CAuRw8Quw03Fz Ahwg7fcuO79Li7kg2IA5SCbCH3EaHZLH03yxhRe//hmhjIsG1MGs8JnBOA9BO3VB ZiUNlcvaDXctJ+9Rd3hZT43UDRo1OeIlRpw15jIK5+sSSEuLB7AIjDRe6Rbh5L/J /iRLKKBFDJ7lWmXQC5sGTfzwGPrNYTX8emU9uaYFJ3cKJAmMX65Fs5eQ3Aw= -----END CERTIFICATE-----Generated at Tue May 12 22:19:09 2026 by rpki-client