$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb8c39ad-ccc2-4066-97b9-75af999eb9db.roa File: fb8c39ad-ccc2-4066-97b9-75af999eb9db.roa (raw, json) Hash identifier: Wz8nOH0g+IUthTdVTGuSkb8B3R/OddriESTsgAhvd50= Subject key identifier: 86:AD:9F:11:55:8F:08:7D:F3:D0:D9:EE:DA:96:E4:41:B9:A8:D8:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5EE0698F3090EF41394E0039D0BC25A02918BE68 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb8c39ad-ccc2-4066-97b9-75af999eb9db.roa Signing time: Mon 04 May 2026 14:11:36 +0000 ROA not before: Mon 04 May 2026 14:11:36 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 3.2.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:e0:69:8f:30:90:ef:41:39:4e:00:39:d0:bc:25:a0:29:18:be:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 4 14:11:36 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=81f97f34b705075ecc50a9199bb35d015e0a4efbd29f39710377da4e397c8954, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ec:63:c8:bd:40:5a:74:5a:4e:e0:1c:95:09: cf:d6:7d:ec:24:cd:3d:a7:bb:82:5a:38:5c:3b:91: da:0a:82:98:46:da:92:7d:f5:4f:41:3a:96:3d:d3: 66:8c:48:07:08:01:41:a7:b7:c0:fc:9e:41:7f:c6: 19:19:64:c9:c5:63:0b:08:99:69:27:82:28:2a:67: 81:99:a1:0f:ed:a7:f0:8d:e4:09:dd:d8:cf:50:02: c3:23:f6:86:61:47:7d:c9:50:e9:4c:3e:3a:42:b9: 28:eb:ec:6c:69:31:21:f1:6f:ec:01:0f:6e:e6:5b: e7:80:9b:68:53:54:47:c9:5f:09:94:42:56:38:62: a7:ce:4e:9a:ea:be:53:86:af:e0:ae:11:a0:a6:c6: 83:85:dc:70:d9:3c:ed:6f:a5:df:5f:15:af:54:6a: a0:fe:51:3c:1d:4f:e8:b0:0c:06:6d:e1:f8:ff:e0: 4d:e3:c5:16:27:f9:84:30:01:1e:56:48:95:d3:ca: e5:64:15:5f:ec:35:ac:45:85:10:c7:0e:47:2e:b4: 4e:01:eb:75:80:fa:7a:a8:69:24:98:f1:1e:c6:7e: 6e:38:54:0b:f6:3c:17:17:17:e0:b8:17:63:eb:4a: 0b:02:fa:61:70:30:92:b4:c9:85:69:49:a2:60:6b: 88:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AD:9F:11:55:8F:08:7D:F3:D0:D9:EE:DA:96:E4:41:B9:A8:D8:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb8c39ad-ccc2-4066-97b9-75af999eb9db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.71.0/24 Signature Algorithm: sha256WithRSAEncryption b2:b7:86:9f:a0:3a:d7:15:06:ad:19:90:3d:34:f6:33:eb:31: ac:d8:49:02:67:3d:80:86:fb:ed:68:96:db:d2:a1:e2:e4:fe: bb:d9:9a:0d:0f:8f:c4:cf:85:0b:a9:1c:89:af:b5:ec:f2:f3: 54:b9:b9:cd:e2:04:0e:8b:17:8e:47:4f:15:57:cd:c1:17:f0: 2c:77:4f:76:f7:94:90:b3:dc:97:6c:aa:94:4c:4f:ec:dd:03: a8:74:f3:7a:c8:6e:17:78:c9:57:1d:c0:86:68:51:d3:a4:28: 4e:2d:8a:29:b2:bc:1c:8a:50:a0:40:cd:05:e0:bc:bd:88:ce: d6:f2:58:eb:f1:1b:55:58:e8:4f:52:b9:b3:4f:6c:db:cd:96: 10:98:44:da:57:d4:eb:84:dd:86:88:08:14:57:70:7f:98:c6: 43:4c:4c:16:b6:39:44:cd:5b:ec:2e:70:e7:71:88:8f:b4:f2: fb:75:60:17:86:12:bb:a2:ba:51:60:3a:c4:ae:e9:d8:a6:0b: e0:4b:41:ed:8e:32:64:22:4e:32:29:a0:d0:74:db:c2:0a:c9: 50:53:2c:5f:1e:33:b2:5b:db:85:78:af:79:73:67:46:d2:35: 78:11:fb:ca:d7:2b:e3:fd:44:fb:5c:b3:c2:9e:a8:b4:8c:7d: 19:6a:4b:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXuBpjzCQ70E5TgA50LwloCkYvmgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA0MTQxMTM2WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWY5N2YzNGI3MDUwNzVlY2M1MGE5MTk5YmIzNWQwMTVl MGE0ZWZiZDI5ZjM5NzEwMzc3ZGE0ZTM5N2M4OTU0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf7GPIvUBadFpO4ByVCc/WfewkzT2nu4JaOFw7kdoKgphG 2pJ99U9BOpY902aMSAcIAUGnt8D8nkF/xhkZZMnFYwsImWkngigqZ4GZoQ/tp/CN 5And2M9QAsMj9oZhR33JUOlMPjpCuSjr7GxpMSHxb+wBD27mW+eAm2hTVEfJXwmU QlY4YqfOTprqvlOGr+CuEaCmxoOF3HDZPO1vpd9fFa9UaqD+UTwdT+iwDAZt4fj/ 4E3jxRYn+YQwAR5WSJXTyuVkFV/sNaxFhRDHDkcutE4B63WA+nqoaSSY8R7Gfm44 VAv2PBcXF+C4F2PrSgsC+mFwMJK0yYVpSaJga4iXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhq2fEVWPCH3z0Nnu2pbkQbmo2HcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZiOGMzOWFkLWNjYzItNDA2Ni05N2I5LTc1YWY5OTllYjlkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAkcwDQYJKoZIhvcNAQELBQADggEBALK3hp+gOtcVBq0ZkD009jPrMazY SQJnPYCG++1oltvSoeLk/rvZmg0Pj8TPhQupHImvtezy81S5uc3iBA6LF45HTxVX zcEX8Cx3T3b3lJCz3JdsqpRMT+zdA6h083rIbhd4yVcdwIZoUdOkKE4tiimyvByK UKBAzQXgvL2IztbyWOvxG1VY6E9SubNPbNvNlhCYRNpX1OuE3YaICBRXcH+YxkNM TBa2OUTNW+wucOdxiI+08vt1YBeGEruiulFgOsSu6dimC+BLQe2OMmQiTjIpoNB0 28IKyVBTLF8eM7Jb24V4r3lzZ0bSNXgR+8rXK+P9RPtcs8KeqLSMfRlqS9c= -----END CERTIFICATE-----Generated at Tue May 12 22:00:56 2026 by rpki-client