$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa File: 4d588aef-dd6d-4314-86bb-29808b3e63c0.roa (raw, json) Hash identifier: MAPwrRmSaRNoKDuwwQx5OqFr3lQyYDi1V25SWQOdNhM= Subject key identifier: BF:65:D3:F8:EB:48:3B:A4:2E:A7:15:F7:A4:A0:58:15:C7:85:B5:3B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 60B25E036C20CEE2971AAF3F77B6AF9AD17321E8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa Signing time: Wed 20 May 2026 00:30:44 +0000 ROA not before: Wed 20 May 2026 00:30:44 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b2:5e:03:6c:20:ce:e2:97:1a:af:3f:77:b6:af:9a:d1:73:21:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 20 00:30:44 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=e213e2f3c0955cc082ac6d9a4fa2ffb98b85d4ee5e22048b2b48f4466d57702f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:af:ed:1d:c9:86:cf:b7:2b:44:10:a6:d4:06: 4b:15:be:46:99:c9:be:eb:f1:1e:67:37:1f:74:b4: 97:4a:cc:db:ef:12:a0:5c:e8:7b:b0:3f:b9:d6:37: b2:65:53:f7:37:cc:7e:8b:99:ff:0a:68:1f:5e:ae: 60:24:12:11:f2:f2:7f:e5:32:01:c1:bb:dd:b1:6e: 1c:b3:0f:0f:35:f4:f9:d1:25:f3:0a:d9:45:f1:24: 15:72:57:6d:3d:38:9c:b3:60:ab:ea:c3:0d:93:3a: 30:ee:4c:34:ac:80:d5:3a:88:b9:3b:d5:e8:f3:f3: e6:96:2b:71:31:44:f6:88:80:4a:e3:88:ea:16:2d: a4:b4:88:31:23:a0:49:04:e4:33:70:66:23:bc:db: f5:65:fc:81:89:74:cc:02:b3:1f:26:e6:5e:02:3b: 8d:b3:da:32:04:7d:53:e1:45:75:2a:bf:f3:21:35: fb:88:53:b4:69:a8:45:1c:8e:1a:36:01:2d:57:8f: 9d:c9:7a:5c:ba:76:3d:09:7a:83:fe:a7:3a:20:44: 99:01:a9:4e:d6:3f:07:4a:99:06:f7:d6:0a:96:86: 61:8e:21:84:88:4c:a3:e3:f8:47:65:02:c2:63:00: 44:ac:ee:47:f2:0a:7c:cd:0c:96:7c:93:f5:b3:87: 22:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:65:D3:F8:EB:48:3B:A4:2E:A7:15:F7:A4:A0:58:15:C7:85:B5:3B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d588aef-dd6d-4314-86bb-29808b3e63c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.40.0/21 Signature Algorithm: sha256WithRSAEncryption 42:30:d3:bb:1a:9e:49:32:b6:1a:81:9b:15:b2:11:c2:dd:93: 7a:ca:00:58:83:ab:c4:6e:d2:2e:05:fb:fa:d7:cd:2b:4f:03: 9d:50:4c:c5:6a:72:bb:6d:81:ee:c3:f4:62:6a:c9:58:07:47: 26:a8:e2:f3:82:b5:54:84:6e:24:9f:e4:0e:6c:02:30:2d:9b: c7:89:d8:d4:58:24:c2:8d:64:f4:3f:77:51:bd:d1:61:c4:8a: 92:d8:c1:cb:09:fc:e9:62:84:5c:68:60:1d:c2:f5:21:db:cb: b8:ef:2b:0b:31:36:e3:98:10:f1:65:01:b0:8e:8d:99:6f:a0: bb:92:88:5f:5a:21:d9:4d:87:20:27:21:74:d4:f3:1a:71:e3: b8:cf:aa:f6:eb:10:8f:84:e9:d1:e1:36:07:70:da:52:0e:23: 06:a5:e0:5c:5d:71:5b:12:36:bc:b5:7c:d5:48:f9:11:6f:60: ba:d0:73:c4:ba:59:39:dd:6c:43:2b:81:a6:a6:2c:28:69:c0: ee:c7:10:db:90:2f:f5:40:46:08:d5:3d:a6:ea:26:4b:d8:b5: af:38:c4:99:74:80:52:b4:59:d7:1e:ba:dc:0b:fb:63:51:6c: 7d:28:6e:b1:42:aa:d6:8a:0f:72:3d:a9:4b:e4:84:44:c8:79: 42:9f:4b:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYLJeA2wgzuKXGq8/d7avmtFzIegwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTIwMDAzMDQ0WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjEzZTJmM2MwOTU1Y2MwODJhYzZkOWE0ZmEyZmZiOThi ODVkNGVlNWUyMjA0OGIyYjQ4ZjQ0NjZkNTc3MDJmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHr+0dyYbPtytEEKbUBksVvkaZyb7r8R5nNx90tJdKzNvv EqBc6HuwP7nWN7JlU/c3zH6Lmf8KaB9ermAkEhHy8n/lMgHBu92xbhyzDw819PnR JfMK2UXxJBVyV209OJyzYKvqww2TOjDuTDSsgNU6iLk71ejz8+aWK3ExRPaIgErj iOoWLaS0iDEjoEkE5DNwZiO82/Vl/IGJdMwCsx8m5l4CO42z2jIEfVPhRXUqv/Mh NfuIU7RpqEUcjho2AS1Xj53Jely6dj0JeoP+pzogRJkBqU7WPwdKmQb31gqWhmGO IYSITKPj+EdlAsJjAESs7kfyCnzNDJZ8k/WzhyKJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv2XT+OtIO6QupxX3pKBYFceFtTswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRkNTg4YWVmLWRkNmQtNDMxNC04NmJiLTI5ODA4YjNlNjNjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYiSgwDQYJKoZIhvcNAQELBQADggEBAEIw07sankkythqBmxWyEcLdk3rK AFiDq8Ru0i4F+/rXzStPA51QTMVqcrttge7D9GJqyVgHRyao4vOCtVSEbiSf5A5s AjAtm8eJ2NRYJMKNZPQ/d1G90WHEipLYwcsJ/OlihFxoYB3C9SHby7jvKwsxNuOY EPFlAbCOjZlvoLuSiF9aIdlNhyAnIXTU8xpx47jPqvbrEI+E6dHhNgdw2lIOIwal 4FxdcVsSNry1fNVI+RFvYLrQc8S6WTndbEMrgaamLChpwO7HENuQL/VARgjVPabq JkvYta84xJl0gFK0WdceutwL+2NRbH0obrFCqtaKD3I9qUvkhETIeUKfSyA= -----END CERTIFICATE-----Generated at Sat Jun 13 10:59:16 2026 by rpki-client