$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c1ffda2e-e6c4-43a7-bfd8-f1b8fca09f23.roa File: c1ffda2e-e6c4-43a7-bfd8-f1b8fca09f23.roa (raw, json) Hash identifier: duBfBnWsWzv+SWwHti/VOwYUqWBZe/li1TodWDfmowk= Subject key identifier: 35:DC:34:03:81:98:2D:9C:B7:C6:B4:DB:DA:75:57:50:84:73:0B:69 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6740228F67B85AFEFCB36354ABC54A18978B68BF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c1ffda2e-e6c4-43a7-bfd8-f1b8fca09f23.roa Signing time: Mon 04 May 2026 14:41:23 +0000 ROA not before: Mon 04 May 2026 14:41:23 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 3.2.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:40:22:8f:67:b8:5a:fe:fc:b3:63:54:ab:c5:4a:18:97:8b:68:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 4 14:41:23 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=36177b53175a4a4dfd073d1532ad31889c63c816372f91cca42bf61c22bdcc3c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5d:3c:ea:5b:be:ff:b0:f4:74:f1:a0:2b:00: f4:39:0c:4a:13:30:17:2f:a3:5b:87:9f:97:b2:8b: 3f:36:2e:dd:cc:8a:b7:6b:d7:b3:85:18:9a:8c:02: 2f:9e:0f:6b:29:36:c0:47:0d:f1:9d:e2:6b:b5:9e: 0b:3f:3d:a8:37:ce:e9:1b:79:3f:39:d0:86:73:a8: a7:68:24:d4:f9:04:ae:c6:74:5f:5c:af:80:d4:09: b8:14:e8:7a:c6:6b:cf:28:58:46:d9:b6:f1:75:0e: 2b:59:d1:c0:de:e1:0b:8e:9c:98:50:08:16:ca:51: 9b:b7:50:ba:90:99:ff:c7:b2:fd:f9:8e:1c:5c:5e: a7:66:d0:94:22:87:0e:c1:91:98:42:f8:85:01:7e: ac:66:8c:92:9c:1a:2b:82:00:b1:0c:7a:54:89:cb: ed:02:32:6f:b3:a9:15:60:e9:79:72:ce:06:8d:67: 69:33:63:fa:39:96:fa:23:8e:44:52:8b:48:38:86: 19:c6:dd:a5:c5:0f:06:90:22:7c:bd:a0:8d:16:88: 79:28:2c:b9:cd:4f:f8:49:8d:b5:17:a5:ff:6e:f9: 65:3b:db:99:2d:2a:f0:c3:ad:87:8e:0e:6a:12:b6: a8:fd:45:83:a3:76:88:83:a2:a9:3e:83:f9:e6:96: 3c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DC:34:03:81:98:2D:9C:B7:C6:B4:DB:DA:75:57:50:84:73:0B:69 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c1ffda2e-e6c4-43a7-bfd8-f1b8fca09f23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.73.0/24 Signature Algorithm: sha256WithRSAEncryption 84:04:c7:b8:ee:f3:c6:94:c7:da:d6:b5:c8:a6:16:a5:34:a5: c8:9d:5b:3f:cb:e5:6e:d1:8b:0f:8f:a5:55:0b:af:fe:85:ed: 04:07:af:2f:79:53:02:0f:a7:42:22:fb:82:ea:a0:32:9d:5c: 30:42:2c:75:7c:54:9e:b3:58:d8:01:ab:43:7d:36:41:2c:09: 6e:ff:06:c3:5a:e5:e2:ea:eb:5c:4b:a8:fa:87:6a:79:d2:6e: 26:5e:3e:9a:8e:14:85:c5:28:3b:27:f0:43:27:cc:6f:02:e1: ce:26:35:d8:92:c1:29:d7:54:19:e3:75:d1:28:a4:d8:a6:69: 25:b9:4f:71:20:1c:05:6b:10:0f:af:2b:63:f7:85:93:eb:a9: bc:c5:a9:72:96:fb:74:37:1a:f9:93:fd:83:82:cd:a3:cd:58: 14:96:a8:ac:04:04:6f:b7:81:b5:11:92:1c:0e:d5:69:86:6b: 4a:46:dc:4c:c4:4b:2f:22:54:22:cc:d9:c9:aa:47:ac:55:c0: c0:e7:86:02:de:25:2c:95:e2:b7:4e:9f:03:37:36:73:63:0c: e7:1a:ec:44:1a:5c:b8:38:2a:cf:dc:11:63:28:f0:9e:60:5e: d2:49:88:aa:6d:03:98:17:13:b5:21:d9:40:00:c7:d9:9a:8a: f4:d6:89:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ0Aij2e4Wv78s2NUq8VKGJeLaL8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA0MTQ0MTIzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjE3N2I1MzE3NWE0YTRkZmQwNzNkMTUzMmFkMzE4ODlj NjNjODE2MzcyZjkxY2NhNDJiZjYxYzIyYmRjYzNjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZXTzqW77/sPR08aArAPQ5DEoTMBcvo1uHn5eyiz82Lt3M irdr17OFGJqMAi+eD2spNsBHDfGd4mu1ngs/Pag3zukbeT850IZzqKdoJNT5BK7G dF9cr4DUCbgU6HrGa88oWEbZtvF1DitZ0cDe4QuOnJhQCBbKUZu3ULqQmf/Hsv35 jhxcXqdm0JQihw7BkZhC+IUBfqxmjJKcGiuCALEMelSJy+0CMm+zqRVg6XlyzgaN Z2kzY/o5lvojjkRSi0g4hhnG3aXFDwaQIny9oI0WiHkoLLnNT/hJjbUXpf9u+WU7 25ktKvDDrYeODmoStqj9RYOjdoiDoqk+g/nmljxlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNdw0A4GYLZy3xrTb2nVXUIRzC2kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MxZmZkYTJlLWU2YzQtNDNhNy1iZmQ4LWYxYjhmY2EwOWYyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAkkwDQYJKoZIhvcNAQELBQADggEBAIQEx7ju88aUx9rWtcimFqU0pcid Wz/L5W7Riw+PpVULr/6F7QQHry95UwIPp0Ii+4LqoDKdXDBCLHV8VJ6zWNgBq0N9 NkEsCW7/BsNa5eLq61xLqPqHannSbiZePpqOFIXFKDsn8EMnzG8C4c4mNdiSwSnX VBnjddEopNimaSW5T3EgHAVrEA+vK2P3hZPrqbzFqXKW+3Q3GvmT/YOCzaPNWBSW qKwEBG+3gbURkhwO1WmGa0pG3EzESy8iVCLM2cmqR6xVwMDnhgLeJSyV4rdOnwM3 NnNjDOca7EQaXLg4Ks/cEWMo8J5gXtJJiKptA5gXE7Uh2UAAx9maivTWibM= -----END CERTIFICATE-----Generated at Tue May 12 22:20:47 2026 by rpki-client