$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1da3f1fb-2590-422d-9b28-4bd14d22f09b.roa File: 1da3f1fb-2590-422d-9b28-4bd14d22f09b.roa (raw, json) Hash identifier: ucQxuBwu8n5atcV+VgxAih28Wl8W31tPTGxhi+ZDTlo= Subject key identifier: 86:F1:F6:35:5E:2D:50:BA:C8:6F:08:99:65:56:1D:1E:09:8E:B0:D1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4654A1E364D4785A01D2F4007D72123060F52928 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1da3f1fb-2590-422d-9b28-4bd14d22f09b.roa Signing time: Tue 19 May 2026 03:10:05 +0000 ROA not before: Tue 19 May 2026 03:10:05 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.239.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:54:a1:e3:64:d4:78:5a:01:d2:f4:00:7d:72:12:30:60:f5:29:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 19 03:10:05 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=5422292225edecf932ff4f72fa38e8feb545d67e173a50692fd9375d2f3aacc8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:4e:21:77:ac:10:dc:99:09:99:bb:f8:b1:49: a0:a5:f7:f4:8d:5e:73:8e:39:64:da:5d:4d:16:d1: 6a:3f:36:34:ec:80:70:b4:2d:bc:dc:e4:3d:86:50: 1d:b1:c4:9d:0d:75:12:f6:b0:59:58:c7:d2:b8:a2: 8e:21:02:24:3c:3a:ca:6b:de:b0:3c:34:7c:1f:c7: 90:87:84:1a:36:0e:c2:6f:87:f3:b1:cc:6c:b7:03: 4b:2a:cb:3b:ca:17:c6:e0:eb:ee:76:c8:37:27:d2: ff:0a:4c:a3:0b:18:73:ef:f9:77:f4:3c:33:53:07: f0:44:b1:d6:e8:49:13:62:7c:e3:f0:04:dc:4e:4e: 22:23:7d:f3:f7:5c:e6:51:1a:cd:07:cd:42:76:e4: ce:5c:c2:dd:a2:ac:be:b2:b6:49:a7:99:80:76:f0: bf:8f:a1:57:b8:17:8c:c0:52:b7:6b:04:81:41:04: c0:f4:0c:ee:3a:53:76:d9:4b:ba:e6:b3:87:61:70: f9:50:f3:5d:f0:c8:2a:16:2b:b9:b6:d0:c9:97:ee: 6f:20:28:11:fe:6d:9f:85:bd:91:2d:b6:8f:70:8c: f1:7e:24:3d:13:74:19:e1:01:3c:4b:4a:27:79:19: fd:63:9e:6a:91:ae:ee:da:23:2c:c0:c0:40:d2:31: 6a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F1:F6:35:5E:2D:50:BA:C8:6F:08:99:65:56:1D:1E:09:8E:B0:D1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1da3f1fb-2590-422d-9b28-4bd14d22f09b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.113.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:5e:0c:1d:4d:7a:b0:5a:85:ea:aa:c1:f8:a9:e8:e2:dd:b1: ff:07:51:ae:c0:d4:a0:a0:0a:b0:4f:7b:7d:dc:35:a3:62:49: fc:d2:5f:14:62:47:57:3e:ce:e7:ea:01:a1:de:0f:fc:13:3c: 27:3f:f8:4e:8b:cb:3d:0f:cb:88:7c:17:f2:cd:65:d3:c3:f7: 33:67:12:af:87:6e:0e:72:ae:be:bd:b4:5d:0f:39:63:71:03: d7:e0:bc:a8:62:b8:fb:99:1b:e4:7d:4b:55:d0:a3:b2:c2:24: 7c:a0:35:12:2e:b3:a7:83:ea:1f:94:b9:cc:30:ec:9d:f6:3f: bb:a2:d5:7e:78:4e:cf:3a:ed:88:9c:ff:f0:5d:d0:85:64:02: ea:a0:0d:6e:d1:ce:9f:d1:4b:47:a8:7d:7c:91:cf:30:2b:22: 53:12:ba:b1:e8:4b:64:69:39:09:ea:d1:6a:46:63:4c:a9:38: b2:06:c5:59:73:03:47:4d:4e:ab:be:11:85:fc:07:29:28:1a: 67:c3:cb:35:7a:ba:7c:f5:25:2d:e9:00:34:30:02:b1:cb:97: 30:fc:96:77:0b:a8:5e:fe:c3:50:92:4f:65:08:9b:f3:11:fb: 2c:05:6a:07:31:d3:77:ca:ec:cf:f6:e3:c0:78:e8:99:8d:2a: 25:7f:65:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURlSh42TUeFoB0vQAfXISMGD1KSgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE5MDMxMDA1WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDIyMjkyMjI1ZWRlY2Y5MzJmZjRmNzJmYTM4ZThmZWI1 NDVkNjdlMTczYTUwNjkyZmQ5Mzc1ZDJmM2FhY2M4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmTiF3rBDcmQmZu/ixSaCl9/SNXnOOOWTaXU0W0Wo/NjTs gHC0Lbzc5D2GUB2xxJ0NdRL2sFlYx9K4oo4hAiQ8Ospr3rA8NHwfx5CHhBo2DsJv h/OxzGy3A0sqyzvKF8bg6+52yDcn0v8KTKMLGHPv+Xf0PDNTB/BEsdboSRNifOPw BNxOTiIjffP3XOZRGs0HzUJ25M5cwt2irL6ytkmnmYB28L+PoVe4F4zAUrdrBIFB BMD0DO46U3bZS7rms4dhcPlQ813wyCoWK7m20MmX7m8gKBH+bZ+FvZEtto9wjPF+ JD0TdBnhATxLSid5Gf1jnmqRru7aIyzAwEDSMWpXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhvH2NV4tULrIbwiZZVYdHgmOsNEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFkYTNmMWZiLTI1OTAtNDIyZC05YjI4LTRiZDE0ZDIyZjA5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA273EwDQYJKoZIhvcNAQELBQADggEBAF1eDB1NerBaheqqwfip6OLdsf8H Ua7A1KCgCrBPe33cNaNiSfzSXxRiR1c+zufqAaHeD/wTPCc/+E6Lyz0Py4h8F/LN ZdPD9zNnEq+Hbg5yrr69tF0POWNxA9fgvKhiuPuZG+R9S1XQo7LCJHygNRIus6eD 6h+Uucww7J32P7ui1X54Ts867Yic//Bd0IVkAuqgDW7Rzp/RS0eofXyRzzArIlMS urHoS2RpOQnq0WpGY0ypOLIGxVlzA0dNTqu+EYX8BykoGmfDyzV6unz1JS3pADQw ArHLlzD8lncLqF7+w1CST2UIm/MR+ywFagcx03fK7M/248B46JmNKiV/ZeY= -----END CERTIFICATE-----Generated at Sat Jun 13 11:32:56 2026 by rpki-client