$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa File: 4d588aef-dd6d-4314-86bb-29808b3e63c0.roa (raw, json) Hash identifier: aZlN9E/kxlBovOQT4tPrYZqxs83ECe6RKb0G8PVBGiE= Subject key identifier: C4:A2:69:42:96:2A:85:82:64:BC:B6:27:68:4E:55:98:BB:3C:D3:9B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3425A3605433255AE0FF80A127F0133BF8CA4C1A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa Signing time: Sun 01 Mar 2026 00:40:49 +0000 ROA not before: Sun 01 Mar 2026 00:40:49 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:25:a3:60:54:33:25:5a:e0:ff:80:a1:27:f0:13:3b:f8:ca:4c:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Mar 1 00:40:49 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=694446b8243ed939579042fc2bd2131749282378dffc66f04716f75a6f3c4412, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:60:96:27:73:1a:57:1c:09:0e:21:27:31:22: 76:f7:67:01:4a:65:5a:18:fc:bb:36:72:cb:cc:ba: 9c:b9:b6:c0:fe:29:90:bb:ca:85:3c:99:dc:f5:63: c0:f8:f5:41:c5:c3:0e:c7:b9:b2:41:19:73:25:fe: ad:9e:1c:55:51:5e:49:67:4a:40:73:0e:3a:5f:06: d9:4d:47:af:d5:a3:b6:d9:25:0a:43:1f:3e:16:1a: 00:f8:db:46:c9:bf:5b:70:2c:4d:13:75:41:5f:09: 99:aa:94:ee:19:0e:98:44:75:87:00:0a:b9:3c:f3: 04:c4:37:0c:f9:74:78:f0:f0:82:91:fb:77:62:ba: 06:2f:b7:3f:14:8b:d5:8c:eb:4c:15:76:b0:34:04: 20:9c:8b:ae:54:74:29:b0:32:51:b7:41:fa:01:a8: 62:73:95:7e:c1:30:58:cb:73:e0:56:07:f2:93:3d: d1:43:76:dc:e0:be:44:be:f0:69:55:6c:41:51:f2: 8a:3f:bd:49:61:75:a8:b2:1f:50:17:d5:9c:c9:96: 7b:d6:9b:a3:19:2c:ca:da:d5:a0:d2:be:5c:43:6c: 54:7e:33:8d:32:c3:f1:3a:e5:ff:ad:db:0b:4b:d6: 53:f0:3d:99:e2:ea:f1:66:2a:12:d6:c5:5a:9e:a0: f2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A2:69:42:96:2A:85:82:64:BC:B6:27:68:4E:55:98:BB:3C:D3:9B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.40.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:40:cd:ae:a1:1a:9b:1b:97:56:01:67:5b:44:3d:d7:1e:2e: 00:c1:4f:99:ee:e8:75:4a:c8:44:a1:25:ea:fd:97:10:56:d0: 98:4b:ab:89:e8:38:a9:1c:7d:08:cb:93:65:d5:e2:f7:d0:94: 98:0e:22:e1:7b:ff:1b:41:f0:92:0d:97:ec:bb:08:e0:f1:c0: b3:87:3f:34:65:80:db:89:25:74:00:25:86:f0:71:c9:45:92: 4d:f1:35:83:79:f9:18:3a:10:80:be:7f:b8:28:e2:69:91:a9: dc:37:80:e7:13:81:e6:16:7a:a0:fc:e9:36:08:92:e0:e6:5d: c0:c3:30:c1:f8:67:54:5d:ae:a5:c4:1e:c5:6d:9c:15:23:bc: eb:7c:b1:68:c8:80:07:da:4b:83:af:81:c8:5d:7f:0d:fc:8a: 87:a1:96:74:07:bf:47:56:b5:ee:bf:2c:1a:b2:59:fa:bb:8a: 8d:52:ad:b4:d6:b1:16:2d:80:f1:0f:ea:58:c9:68:d0:5d:fd: ee:c9:78:70:f5:fd:f6:f2:12:4a:d8:47:e9:59:83:c5:a8:f8: 7d:c5:cc:d9:e5:29:6b:ef:e3:15:73:b4:d6:c9:d7:84:bd:c5: 53:9a:b3:fb:ac:cc:9e:8c:51:ac:13:06:93:0f:c8:1f:45:83: 5f:d0:22:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNCWjYFQzJVrg/4ChJ/ATO/jKTBowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwMzAxMDA0MDQ5WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTQ0NDZiODI0M2VkOTM5NTc5MDQyZmMyYmQyMTMxNzQ5 MjgyMzc4ZGZmYzY2ZjA0NzE2Zjc1YTZmM2M0NDEyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTYJYncxpXHAkOIScxInb3ZwFKZVoY/Ls2csvMupy5tsD+ KZC7yoU8mdz1Y8D49UHFww7HubJBGXMl/q2eHFVRXklnSkBzDjpfBtlNR6/Vo7bZ JQpDHz4WGgD420bJv1twLE0TdUFfCZmqlO4ZDphEdYcACrk88wTENwz5dHjw8IKR +3diugYvtz8Ui9WM60wVdrA0BCCci65UdCmwMlG3QfoBqGJzlX7BMFjLc+BWB/KT PdFDdtzgvkS+8GlVbEFR8oo/vUlhdaiyH1AX1ZzJlnvWm6MZLMra1aDSvlxDbFR+ M40yw/E65f+t2wtL1lPwPZni6vFmKhLWxVqeoPKXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxKJpQpYqhYJkvLYnaE5VmLs805swHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRkNTg4YWVmLWRkNmQtNDMxNC04NmJiLTI5ODA4YjNlNjNjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYiSgwDQYJKoZIhvcNAQELBQADggEBAB9Aza6hGpsbl1YBZ1tEPdceLgDB T5nu6HVKyEShJer9lxBW0JhLq4noOKkcfQjLk2XV4vfQlJgOIuF7/xtB8JINl+y7 CODxwLOHPzRlgNuJJXQAJYbwcclFkk3xNYN5+Rg6EIC+f7go4mmRqdw3gOcTgeYW eqD86TYIkuDmXcDDMMH4Z1RdrqXEHsVtnBUjvOt8sWjIgAfaS4Ovgchdfw38ioeh lnQHv0dWte6/LBqyWfq7io1SrbTWsRYtgPEP6ljJaNBd/e7JeHD1/fbyEkrYR+lZ g8Wo+H3FzNnlKWvv4xVztNbJ14S9xVOas/uszJ6MUawTBpMPyB9Fg1/QIl8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:14:51 2026 by rpki-client