$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c58af958-30ea-40e2-92af-e96d5d0e749a.roa File: c58af958-30ea-40e2-92af-e96d5d0e749a.roa (raw, json) Hash identifier: +y0gEPdSg/c31NHxREckfckDFlWyoVSQFk7b3nflzBw= Subject key identifier: 04:41:D0:0E:B7:0B:C6:2E:C1:40:60:EC:10:DD:B5:26:45:6C:DB:39 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1B90212D19FD7BD8F6C0811FC50F536C17D4D826 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c58af958-30ea-40e2-92af-e96d5d0e749a.roa Signing time: Fri 08 May 2026 02:00:08 +0000 ROA not before: Fri 08 May 2026 02:00:08 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.190.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:90:21:2d:19:fd:7b:d8:f6:c0:81:1f:c5:0f:53:6c:17:d4:d8:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 8 02:00:08 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=c5e249e343403d83b939051b1b74259de43051bb981f0e95c5c5d9aee497c3d4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c0:87:a5:36:e8:f9:20:e2:51:00:96:12:76: c9:d7:4b:e6:59:85:bc:42:de:fe:53:90:e8:27:70: 9c:36:bc:d6:8d:ee:e6:71:3d:3a:4b:bf:4a:de:14: cb:36:2e:f0:1d:8a:2f:a5:bd:e4:5c:a2:17:c2:6f: 22:d8:d6:9f:04:de:1d:bf:5f:b1:92:cc:7c:03:0c: 29:db:ed:60:e0:2d:9b:ff:08:53:a3:c6:93:e1:7a: 06:9b:2e:e8:bd:16:60:6d:e4:cd:3e:a6:66:e0:fa: 6f:83:0b:d6:27:23:ef:1d:cb:7d:29:73:2e:44:da: 27:26:5e:3d:e2:02:27:1e:4c:e0:ad:42:2a:15:1b: 0e:8d:89:50:c5:65:30:88:02:ff:dd:0c:f3:e7:b3: 1a:a6:f9:49:43:94:82:a8:50:0b:52:e2:a0:dd:7b: 6e:ee:3c:76:70:9a:4f:1e:7b:a0:86:25:59:a1:17: 66:ed:da:50:3c:a2:c1:d2:e4:42:6f:10:91:41:8c: ad:c3:69:d8:98:89:f2:04:f6:28:1d:70:b7:fc:e1: e0:63:52:8a:11:31:03:81:e8:ce:46:11:ab:36:a5: 11:ec:ac:c6:25:f7:bb:1c:c4:08:62:b0:b4:8a:28: 4a:db:ec:d1:89:20:88:d8:b5:77:98:5b:80:8f:84: 18:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:41:D0:0E:B7:0B:C6:2E:C1:40:60:EC:10:DD:B5:26:45:6C:DB:39 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c58af958-30ea-40e2-92af-e96d5d0e749a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.190.254.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:5a:dd:36:59:43:36:16:35:14:96:bc:20:ac:83:79:41:e5: a7:55:f7:f1:25:27:81:d3:36:ee:f5:7b:b2:c0:01:ae:c6:0b: 5b:ec:7c:98:63:3e:a4:09:cc:0d:b6:3d:8e:bf:ba:a0:04:29: a7:f4:30:5d:3f:02:77:eb:09:12:3b:68:ca:e2:1d:87:d3:9d: 81:df:35:9e:4a:d3:94:fa:bd:35:d9:e5:03:94:a2:24:c1:0d: 0c:a3:e1:36:06:4a:6f:04:f9:3b:24:2e:ca:81:6f:df:a8:e7: 13:61:fd:ff:57:20:30:86:99:55:4b:a1:37:2e:98:3b:cb:07: a2:f7:fb:19:7d:51:e9:b5:d1:f3:03:b7:4f:14:66:dd:a5:c6: af:02:4d:16:0f:9b:b7:01:9f:9c:fb:43:93:e5:4a:6e:a2:8a: 5f:d2:c8:ae:3b:79:ca:05:a4:44:9d:7f:31:ce:0f:42:ca:17: 51:f2:f3:e4:f1:11:50:26:6f:59:58:4e:74:11:94:e5:73:bf: 78:67:5f:fc:e9:90:dd:5e:43:24:52:fd:91:40:30:fe:ae:9b: 72:2a:1f:f5:90:d6:79:a0:0d:27:91:61:ca:3f:83:bf:2a:44: e1:5e:f0:44:6f:a5:74:98:3d:f2:c1:a3:da:7a:f5:23:be:b3: fa:a1:62:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG5AhLRn9e9j2wIEfxQ9TbBfU2CYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA4MDIwMDA4WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWUyNDllMzQzNDAzZDgzYjkzOTA1MWIxYjc0MjU5ZGU0 MzA1MWJiOTgxZjBlOTVjNWM1ZDlhZWU0OTdjM2Q0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7wIelNuj5IOJRAJYSdsnXS+ZZhbxC3v5TkOgncJw2vNaN 7uZxPTpLv0reFMs2LvAdii+lveRcohfCbyLY1p8E3h2/X7GSzHwDDCnb7WDgLZv/ CFOjxpPhegabLui9FmBt5M0+pmbg+m+DC9YnI+8dy30pcy5E2icmXj3iAiceTOCt QioVGw6NiVDFZTCIAv/dDPPnsxqm+UlDlIKoUAtS4qDde27uPHZwmk8ee6CGJVmh F2bt2lA8osHS5EJvEJFBjK3DadiYifIE9igdcLf84eBjUooRMQOB6M5GEas2pRHs rMYl97scxAhisLSKKErb7NGJIIjYtXeYW4CPhBjHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBEHQDrcLxi7BQGDsEN21JkVs2zkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M1OGFmOTU4LTMwZWEtNDBlMi05MmFmLWU5NmQ1ZDBlNzQ5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2vv4wDQYJKoZIhvcNAQELBQADggEBACpa3TZZQzYWNRSWvCCsg3lB5adV 9/ElJ4HTNu71e7LAAa7GC1vsfJhjPqQJzA22PY6/uqAEKaf0MF0/AnfrCRI7aMri HYfTnYHfNZ5K05T6vTXZ5QOUoiTBDQyj4TYGSm8E+TskLsqBb9+o5xNh/f9XIDCG mVVLoTcumDvLB6L3+xl9Uem10fMDt08UZt2lxq8CTRYPm7cBn5z7Q5PlSm6iil/S yK47ecoFpESdfzHOD0LKF1Hy8+TxEVAmb1lYTnQRlOVzv3hnX/zpkN1eQyRS/ZFA MP6um3IqH/WQ1nmgDSeRYco/g78qROFe8ERvpXSYPfLBo9p69SO+s/qhYhg= -----END CERTIFICATE-----Generated at Tue May 12 22:21:07 2026 by rpki-client