$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4c924ae-3593-4667-9292-d37685860ee0.roa File: a4c924ae-3593-4667-9292-d37685860ee0.roa (raw, json) Hash identifier: 8CPnJLojSlJuExtBSskrKJjfKDNoy2nhknT1use+N6Y= Subject key identifier: 40:1F:D5:E6:63:1A:36:E1:EE:A0:8B:37:17:31:49:0C:6C:5F:F1:33 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5F2555D8639054DB987EBE610270F62800DDE7FD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4c924ae-3593-4667-9292-d37685860ee0.roa Signing time: Sat 09 May 2026 00:40:09 +0000 ROA not before: Sat 09 May 2026 00:40:09 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.61.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 15 May 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:25:55:d8:63:90:54:db:98:7e:be:61:02:70:f6:28:00:dd:e7:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 00:40:09 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=61998217ec40a9438df47da279fd31ed81c3343ad811f3c13e0b26b22003a4ee, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:88:2d:8f:32:b3:eb:ad:50:53:ef:ea:97:2d: 14:47:d2:c6:d0:9b:b2:36:62:b0:41:d5:3a:32:63: c9:d8:1f:d8:7d:73:76:cb:74:52:98:ee:09:3d:88: c1:5c:8d:86:e2:03:fb:db:74:e5:3a:3e:15:1b:f3: b8:04:a7:94:f3:43:4a:02:4a:8d:dd:70:0e:05:c8: 24:0b:ea:2a:a4:19:ec:1c:6d:d9:cc:5a:6a:54:51: a9:bc:2f:46:e8:2f:d8:19:48:d2:8c:8b:6a:a0:76: 2c:2b:74:6d:95:ad:57:06:56:5b:25:53:f2:68:40: 23:da:22:29:29:ce:91:cc:16:6b:7c:e2:98:00:5b: 32:28:6e:ff:78:cf:69:0c:22:df:26:3c:f0:36:cc: 57:64:85:30:4b:1d:fb:de:e6:bd:db:d8:ae:5f:b9: 6a:02:32:4d:b8:c3:11:e7:6f:60:b0:7a:a0:c3:df: 8b:db:c8:32:71:f8:a1:1c:b3:2c:8d:58:f6:e7:57: ee:26:e1:2c:a2:ce:33:94:8a:c8:33:5f:18:b5:11: 78:1f:d0:37:f1:10:83:d2:50:8e:17:7b:67:3a:7b: 2f:73:61:09:22:9f:38:2c:62:2f:ff:91:df:26:55: f0:cf:0f:ae:ed:84:9d:d6:b0:97:d3:3e:79:58:ac: 9a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:1F:D5:E6:63:1A:36:E1:EE:A0:8B:37:17:31:49:0C:6C:5F:F1:33 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4c924ae-3593-4667-9292-d37685860ee0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:8f:2b:b4:38:33:c6:c7:57:90:ee:bd:33:d9:d6:67:ad:b3: 0b:c2:bb:4d:65:c8:65:b4:cb:e1:80:d3:d5:8a:b7:bd:6e:b9: b7:cf:32:5e:bc:b9:4d:0a:1c:5f:b7:36:34:e7:f3:a3:6a:51: a5:c6:f8:b9:0c:c3:d1:77:9c:52:88:4c:7c:57:c4:0f:90:cd: ee:17:5a:5e:55:7e:12:c2:49:c2:2e:0d:1f:92:d8:fc:75:1d: 47:d7:e4:ba:93:c1:fe:11:fb:9a:26:03:60:b6:8d:64:8f:34: c8:3a:08:33:81:25:a1:09:04:a0:0f:19:d4:31:ba:e4:64:3a: ef:c6:d7:41:57:1e:92:49:37:33:37:37:48:7f:9b:e0:fe:10: 62:d6:86:2c:ae:92:db:ed:71:93:eb:3d:00:af:ea:d5:3e:7b: 1d:b6:38:bc:fb:0b:24:d0:13:57:a1:63:35:51:26:70:38:5d: 10:8d:87:3a:75:01:53:6e:ec:70:79:28:f6:69:e5:7e:8e:bf: 51:06:cf:f5:bd:fa:3c:b4:6c:df:6c:15:53:33:58:f2:bf:63: 5e:10:2c:b4:11:4f:05:5e:f8:9c:1a:5a:47:f2:09:c2:e1:b1: 19:8c:50:f0:9f:02:cc:5c:21:7b:8a:85:47:e1:0d:0f:bd:2c: 39:f3:0c:64 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXyVV2GOQVNuYfr5hAnD2KADd5/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA5MDA0MDA5WhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTk5ODIxN2VjNDBhOTQzOGRmNDdkYTI3OWZkMzFlZDgx YzMzNDNhZDgxMWYzYzEzZTBiMjZiMjIwMDNhNGVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDiC2PMrPrrVBT7+qXLRRH0sbQm7I2YrBB1ToyY8nYH9h9 c3bLdFKY7gk9iMFcjYbiA/vbdOU6PhUb87gEp5TzQ0oCSo3dcA4FyCQL6iqkGewc bdnMWmpUUam8L0boL9gZSNKMi2qgdiwrdG2VrVcGVlslU/JoQCPaIikpzpHMFmt8 4pgAWzIobv94z2kMIt8mPPA2zFdkhTBLHfve5r3b2K5fuWoCMk24wxHnb2CweqDD 34vbyDJx+KEcsyyNWPbnV+4m4SyizjOUisgzXxi1EXgf0DfxEIPSUI4Xe2c6ey9z YQkinzgsYi//kd8mVfDPD67thJ3WsJfTPnlYrJrNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQB/V5mMaNuHuoIs3FzFJDGxf8TMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E0YzkyNGFlLTM1OTMtNDY2Ny05MjkyLWQzNzY4NTg2MGVlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA0PTANBgkqhkiG9w0BAQsFAAOCAQEAOo8rtDgzxsdXkO69M9nWZ62zC8K7 TWXIZbTL4YDT1Yq3vW65t88yXry5TQocX7c2NOfzo2pRpcb4uQzD0XecUohMfFfE D5DN7hdaXlV+EsJJwi4NH5LY/HUdR9fkupPB/hH7miYDYLaNZI80yDoIM4EloQkE oA8Z1DG65GQ678bXQVcekkk3Mzc3SH+b4P4QYtaGLK6S2+1xk+s9AK/q1T57HbY4 vPsLJNATV6FjNVEmcDhdEI2HOnUBU27scHko9mnlfo6/UQbP9b36PLRs32wVUzNY 8r9jXhAstBFPBV74nBpaR/IJwuGxGYxQ8J8CzFwhe4qFR+END70sOfMMZA== -----END CERTIFICATE-----Generated at Tue May 12 23:33:01 2026 by rpki-client