$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3af9623e-32ed-42f5-9064-0c24c6f9238e.roa File: 3af9623e-32ed-42f5-9064-0c24c6f9238e.roa (raw, json) Hash identifier: 1JvKJq5XgHPFKqfMfes4XuaiuoFNbO0wNfNICwnioH8= Subject key identifier: 8C:DA:97:56:53:76:90:32:F6:0C:86:FE:E7:8A:00:92:D4:8A:7C:6B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 78D17E96B26289DA162E89360BDF711D5FA89ACD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3af9623e-32ed-42f5-9064-0c24c6f9238e.roa Signing time: Fri 03 Apr 2026 00:30:13 +0000 ROA not before: Fri 03 Apr 2026 00:30:13 +0000 ROA not after: Thu 02 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1e82::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Apr 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:d1:7e:96:b2:62:89:da:16:2e:89:36:0b:df:71:1d:5f:a8:9a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Apr 3 00:30:13 2026 GMT Not After : Jul 2 23:59:59 2026 GMT Subject: serialNumber=ea581655fe298810d1035fc0e87f94f19c9bdddb9fd59d6fb67b6ebea87b2cac, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:44:5c:5c:33:75:6e:8d:be:44:0d:ab:2e:8d: 51:97:bf:8b:91:16:de:c5:d2:e1:27:b3:9a:6a:8e: 64:9d:06:cd:98:bf:4d:56:52:92:61:71:2b:94:da: d6:4e:9f:5a:71:57:59:b0:be:c3:22:bd:df:62:d8: d1:11:19:1d:38:4c:c2:25:2b:3b:02:7e:e8:d6:f8: da:33:f3:01:4d:8e:d6:ef:f8:a7:ab:68:b8:a6:f1: b8:47:42:35:2f:5f:dc:f5:55:9f:ef:bf:a9:56:c5: 13:6b:3c:46:57:69:76:52:43:43:4c:58:ed:a9:14: 1b:6d:5b:e7:af:4b:3f:36:b1:b7:d7:32:f1:47:85: 03:57:2d:94:82:9c:bd:ce:99:ec:1a:bf:59:01:c2: 77:28:69:f2:1b:c5:bb:bd:14:33:aa:a3:9b:fc:b1: f8:61:a2:9e:d9:32:b0:44:f0:6f:7c:1f:29:cd:6a: 09:bf:0a:d5:c7:b3:a3:b8:ba:7a:82:fa:4a:71:3f: 65:19:36:e4:cd:83:05:85:3a:e3:53:a8:f8:4e:2e: 18:03:c0:b6:fc:c7:1b:eb:15:20:93:ba:35:de:f4: d1:30:f4:9d:95:31:5b:5b:d5:5e:3f:d1:87:9b:56: fd:47:9e:fe:57:ce:7b:b0:4f:13:8e:09:82:2f:a5: d4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:DA:97:56:53:76:90:32:F6:0C:86:FE:E7:8A:00:92:D4:8A:7C:6B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3af9623e-32ed-42f5-9064-0c24c6f9238e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1e82::/48 Signature Algorithm: sha256WithRSAEncryption 24:e0:78:13:e8:56:2f:e6:f6:12:82:b9:44:b9:43:e9:22:ef: fc:90:e2:b0:8e:73:b3:57:42:6b:ab:da:e3:d3:0b:76:ec:e8: 8e:99:41:d7:5e:b6:b8:16:e5:c8:b9:52:fe:96:cd:bb:69:63: a4:56:e5:70:52:67:4d:89:2a:e8:f5:e9:0e:43:e9:bb:0a:c9: 25:fe:32:9f:ac:4c:b7:26:10:22:16:a9:6c:cf:7e:66:01:c7: c0:92:01:cf:11:cc:33:c9:c0:ce:b0:d9:90:78:91:dc:2c:09: 3d:da:18:d6:89:dc:3e:2f:14:c5:09:e5:eb:03:35:f8:89:c5: e1:e4:9c:ba:59:00:50:16:f6:65:5c:ed:51:c9:5e:d9:50:8d: d1:28:18:91:a1:51:5d:fe:37:e1:46:f0:a0:ca:a1:f9:ab:4a: e7:0a:43:ba:6d:51:93:5a:66:91:36:a4:38:c6:00:9b:6b:b8: 0b:42:ae:3c:87:eb:b9:4f:e7:aa:c9:7f:7f:b4:e4:70:7c:e8: fd:cc:4e:e0:a5:2b:93:44:74:9b:f0:c4:ef:ad:a9:a9:80:e9: 43:86:0d:99:ef:8a:f6:c3:f2:01:89:6f:e3:65:f2:d3:ae:8e: 8d:34:bc:45:ed:4f:61:75:35:e8:4b:6d:6d:3b:43:44:08:9a: cc:63:fa:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeNF+lrJiidoWLok2C99xHV+oms0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNDAzMDAzMDEzWhcNMjYwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTU4MTY1NWZlMjk4ODEwZDEwMzVmYzBlODdmOTRmMTlj OWJkZGRiOWZkNTlkNmZiNjdiNmViZWE4N2IyY2FjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaRFxcM3Vujb5EDasujVGXv4uRFt7F0uEns5pqjmSdBs2Y v01WUpJhcSuU2tZOn1pxV1mwvsMivd9i2NERGR04TMIlKzsCfujW+Noz8wFNjtbv +KeraLim8bhHQjUvX9z1VZ/vv6lWxRNrPEZXaXZSQ0NMWO2pFBttW+evSz82sbfX MvFHhQNXLZSCnL3Omewav1kBwncoafIbxbu9FDOqo5v8sfhhop7ZMrBE8G98HynN agm/CtXHs6O4unqC+kpxP2UZNuTNgwWFOuNTqPhOLhgDwLb8xxvrFSCTujXe9NEw 9J2VMVtb1V4/0YebVv1Hnv5XznuwTxOOCYIvpdT3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjNqXVlN2kDL2DIb+54oAktSKfGswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNhZjk2MjNlLTMyZWQtNDJmNS05MDY0LTBjMjRjNmY5MjM4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAHoIwDQYJKoZIhvcNAQELBQADggEBACTgeBPoVi/m9hKCuUS5Q+ki 7/yQ4rCOc7NXQmur2uPTC3bs6I6ZQddetrgW5ci5Uv6WzbtpY6RW5XBSZ02JKuj1 6Q5D6bsKySX+Mp+sTLcmECIWqWzPfmYBx8CSAc8RzDPJwM6w2ZB4kdwsCT3aGNaJ 3D4vFMUJ5esDNfiJxeHknLpZAFAW9mVc7VHJXtlQjdEoGJGhUV3+N+FG8KDKofmr SucKQ7ptUZNaZpE2pDjGAJtruAtCrjyH67lP56rJf3+05HB86P3MTuClK5NEdJvw xO+tqamA6UOGDZnvivbD8gGJb+Nl8tOujo00vEXtT2F1NehLbW07Q0QImsxj+hU= -----END CERTIFICATE-----Generated at Fri Apr 17 10:26:42 2026 by rpki-client