$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/01a4ba3f-879d-4446-9474-aa3c352a0fe7.roa File: 01a4ba3f-879d-4446-9474-aa3c352a0fe7.roa (raw, json) Hash identifier: EIT6a7Mmo2COmIWb0dl+dS9r4Wh5XqZUq1QhIcxOCfA= Subject key identifier: B4:DD:C2:AE:15:9B:87:09:31:97:3A:73:51:09:F0:80:53:F9:CE:A2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3CB490FDF6E7C6E201AD2041A2636596F84E9E01 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/01a4ba3f-879d-4446-9474-aa3c352a0fe7.roa Signing time: Thu 14 May 2026 00:50:42 +0000 ROA not before: Thu 14 May 2026 00:50:42 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.124.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:b4:90:fd:f6:e7:c6:e2:01:ad:20:41:a2:63:65:96:f8:4e:9e:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 14 00:50:42 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=29912c20c88660f45a5e383ed728e2448ccba293b76c3ec3ec61cd04e2eac21e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2d:c2:73:7d:70:77:5d:df:1b:e7:8c:b3:5e: 95:fb:4b:72:53:09:61:75:c9:9c:6e:24:cf:06:ae: af:e3:3d:a6:ae:31:d3:5b:84:a8:4b:4f:85:c3:18: ae:68:89:e8:ad:8e:8e:c7:ff:4c:7c:b2:59:41:0e: a6:a4:e0:d9:dc:a0:a1:1e:1a:d0:76:11:09:03:77: c9:c1:7d:8e:dd:81:cd:e4:45:da:aa:e4:82:2f:df: 2f:f9:c4:a6:dd:2e:d5:70:8c:90:ce:0c:be:37:74: e1:1f:c0:a2:4f:82:c9:ee:f3:e8:39:1c:4b:16:02: 0c:ed:3f:17:01:d4:63:d8:7e:7d:ff:cd:ca:7c:7c: 7d:fe:3a:01:a2:a0:08:8d:00:13:70:20:b4:85:a4: 5b:20:88:b2:87:74:2b:12:1a:35:14:e8:b0:0e:92: a8:3c:63:98:13:76:b0:45:43:97:20:79:1d:03:eb: ec:8d:b6:a7:68:40:c2:e7:3d:0c:8b:95:12:5a:44: 2c:3a:7b:77:b8:85:8d:d6:19:8c:0b:27:bf:62:2a: c8:9a:27:ce:16:8a:7e:21:f1:69:05:c9:3a:cd:45: 81:93:0a:56:fc:7d:19:4f:ea:af:89:47:2c:e9:cb: b1:14:b5:86:98:fa:fd:62:9a:81:e8:41:82:3c:3e: d0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:DD:C2:AE:15:9B:87:09:31:97:3A:73:51:09:F0:80:53:F9:CE:A2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/01a4ba3f-879d-4446-9474-aa3c352a0fe7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.124.153.0/24 Signature Algorithm: sha256WithRSAEncryption 38:94:fd:aa:3b:7c:6e:11:17:ec:23:05:9a:8a:1c:d8:4e:a8: 19:26:64:3a:94:c1:1f:f7:8c:c1:d0:ca:5f:cb:ae:84:01:ca: b2:8e:ae:ba:bd:cb:f4:0c:9d:18:de:9d:00:21:e1:6f:a2:6f: 1d:36:78:5d:b7:45:c4:11:1a:1e:8c:d1:31:28:eb:da:e4:1b: 2c:40:1b:91:d8:56:6b:3a:d0:44:50:13:34:5d:2f:0b:02:a5: e3:db:4f:ff:5e:a6:c9:de:06:c9:44:4d:8b:52:bc:dd:14:30: 32:f9:29:1a:22:dc:76:5b:4a:21:7f:c5:17:2d:79:db:79:c3: f0:b6:2e:79:07:13:6b:27:48:75:99:2a:0b:e5:3e:c5:6e:06: 1d:30:80:54:6f:cf:f4:e1:bd:7b:4c:5f:5e:7a:b5:cf:7c:a3: 2d:6d:6b:92:d6:4a:11:a7:f2:8a:8a:4c:ff:80:31:fa:c9:e1: 6b:fe:1c:a1:b3:fd:22:e2:78:a6:be:36:33:33:8b:23:18:76: 25:0c:7e:5d:a5:b4:1e:1d:15:d1:11:7c:28:c4:16:40:54:d5: 5f:b9:02:65:70:fc:56:d9:be:bd:96:32:bf:ff:f1:b9:07:04: 3f:24:bf:c4:d3:d4:2c:ae:9f:ab:02:cf:0b:9c:e0:35:7b:33: 11:9c:b5:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPLSQ/fbnxuIBrSBBomNllvhOngEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE0MDA1MDQyWhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTkxMmMyMGM4ODY2MGY0NWE1ZTM4M2VkNzI4ZTI0NDhj Y2JhMjkzYjc2YzNlYzNlYzYxY2QwNGUyZWFjMjFlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyLcJzfXB3Xd8b54yzXpX7S3JTCWF1yZxuJM8Grq/jPaau MdNbhKhLT4XDGK5oieitjo7H/0x8sllBDqak4NncoKEeGtB2EQkDd8nBfY7dgc3k Rdqq5IIv3y/5xKbdLtVwjJDODL43dOEfwKJPgsnu8+g5HEsWAgztPxcB1GPYfn3/ zcp8fH3+OgGioAiNABNwILSFpFsgiLKHdCsSGjUU6LAOkqg8Y5gTdrBFQ5cgeR0D 6+yNtqdoQMLnPQyLlRJaRCw6e3e4hY3WGYwLJ79iKsiaJ84Win4h8WkFyTrNRYGT Clb8fRlP6q+JRyzpy7EUtYaY+v1imoHoQYI8PtBxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtN3CrhWbhwkxlzpzUQnwgFP5zqIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAxYTRiYTNmLTg3OWQtNDQ0Ni05NDc0LWFhM2MzNTJhMGZlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0fJkwDQYJKoZIhvcNAQELBQADggEBADiU/ao7fG4RF+wjBZqKHNhOqBkm ZDqUwR/3jMHQyl/LroQByrKOrrq9y/QMnRjenQAh4W+ibx02eF23RcQRGh6M0TEo 69rkGyxAG5HYVms60ERQEzRdLwsCpePbT/9epsneBslETYtSvN0UMDL5KRoi3HZb SiF/xRctedt5w/C2LnkHE2snSHWZKgvlPsVuBh0wgFRvz/ThvXtMX156tc98oy1t a5LWShGn8oqKTP+AMfrJ4Wv+HKGz/SLieKa+NjMziyMYdiUMfl2ltB4dFdERfCjE FkBU1V+5AmVw/FbZvr2WMr//8bkHBD8kv8TT1Cyun6sCzwuc4DV7MxGctWI= -----END CERTIFICATE-----Generated at Sat Jun 13 07:58:43 2026 by rpki-client