$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ca7fb95-046b-408c-9d33-2af8b2e953f4.roa File: 2ca7fb95-046b-408c-9d33-2af8b2e953f4.roa (raw, json) Hash identifier: 75f4zVeZNKWn6LvpdsmPB+JUtgLypmpho3ysvnpb5zI= Subject key identifier: 65:35:D5:8C:A9:50:24:FD:49:10:21:3F:47:6B:0F:39:B9:8A:C8:1C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7297784E599545076EC65B304CD1ABA9112DDFCE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ca7fb95-046b-408c-9d33-2af8b2e953f4.roa Signing time: Fri 15 May 2026 03:10:35 +0000 ROA not before: Fri 15 May 2026 03:10:35 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.192.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:97:78:4e:59:95:45:07:6e:c6:5b:30:4c:d1:ab:a9:11:2d:df:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 15 03:10:35 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=398b1b57ef34600f5a83a82173f01a6ae6fbae530af590334117eda960c2a82f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a3:4c:16:b1:3d:71:59:1d:d9:d4:b7:50:7a: 84:b5:9d:53:87:da:fa:e2:1f:5c:34:66:a2:95:cb: a7:3e:c2:88:48:b3:9f:0c:40:64:0e:05:ed:bc:9b: 08:01:ff:99:9f:2c:82:74:e1:2e:82:e6:ac:46:62: df:81:89:40:ba:52:7c:9d:00:b2:1b:10:59:bb:14: dd:81:0f:a6:93:32:55:4d:9b:80:06:ba:55:a2:bc: 86:53:df:d9:6d:c7:90:cf:bd:c4:1c:dd:8d:c3:a9: b6:b7:3a:36:ac:93:ee:10:97:85:08:db:5f:49:3b: 9b:91:04:02:85:30:aa:bc:e7:79:37:a6:b4:6d:e0: 0d:d8:2f:6c:31:fd:b7:3c:a1:73:d5:b8:5b:53:8a: 3f:79:4f:78:44:c6:40:b7:ea:eb:68:35:0c:cb:9d: c1:5e:e8:59:92:db:95:09:fc:23:b6:bc:46:34:94: 56:7e:d8:bb:a5:da:81:82:76:e9:80:d5:fc:68:b9: 38:e2:8e:f0:e1:b0:ff:00:1f:69:a7:6c:db:93:5f: 67:2f:57:bb:36:a8:ba:aa:9d:f3:30:2b:16:1b:5c: 3f:d6:25:99:22:09:ce:ac:df:4c:62:fd:30:18:7b: d2:ac:cc:87:b0:ec:f9:45:e4:6b:1f:65:f9:8b:a9: 28:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:35:D5:8C:A9:50:24:FD:49:10:21:3F:47:6B:0F:39:B9:8A:C8:1C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ca7fb95-046b-408c-9d33-2af8b2e953f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.192.0.0/12 Signature Algorithm: sha256WithRSAEncryption 1e:e7:51:20:37:1a:ff:61:7e:72:5a:4f:7e:66:83:f9:61:70: 2e:2e:16:43:14:5e:cf:bd:20:63:0f:4a:79:82:44:62:e3:40: 1e:78:14:9d:cf:44:11:80:2a:ca:2a:46:37:ec:57:75:a9:d8: 6d:c5:4a:fe:13:ee:24:f1:49:ac:d8:fb:48:4b:e6:d3:bc:2e: 2c:d2:2e:b6:c4:79:8e:5d:c6:f0:dd:58:fe:da:f6:df:b4:a0: dd:5e:3e:4a:0d:c7:da:a9:ca:99:7b:45:48:5a:38:0a:97:8a: df:8a:ce:78:15:06:68:66:18:75:e6:f6:3f:20:c3:e6:ed:ca: 66:cf:90:54:ca:ac:90:e8:51:bd:3c:d0:62:3b:a8:9d:d9:ed: e3:f2:ad:40:b8:20:31:3f:27:63:38:ce:f8:f2:e1:fd:4f:ea: 59:21:a9:f1:45:6d:a9:7b:50:4b:cc:98:7e:3e:18:07:bf:fd: a9:90:9f:c6:02:e3:a7:95:30:15:b8:75:27:0f:1d:f4:ae:53: 32:e4:61:ae:d5:87:44:21:89:a5:79:d4:55:ba:33:f5:9d:23: ca:f2:4e:9a:cb:b2:50:00:5d:b9:01:f0:f2:c5:5e:93:1a:1c: b5:88:f8:ba:7a:fc:c5:5e:9a:45:bd:cd:d9:61:03:4e:3c:16: 29:6d:14:eb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcpd4TlmVRQduxlswTNGrqREt384wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE1MDMxMDM1WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOThiMWI1N2VmMzQ2MDBmNWE4M2E4MjE3M2YwMWE2YWU2 ZmJhZTUzMGFmNTkwMzM0MTE3ZWRhOTYwYzJhODJmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGo0wWsT1xWR3Z1LdQeoS1nVOH2vriH1w0ZqKVy6c+wohI s58MQGQOBe28mwgB/5mfLIJ04S6C5qxGYt+BiUC6UnydALIbEFm7FN2BD6aTMlVN m4AGulWivIZT39ltx5DPvcQc3Y3Dqba3Ojask+4Ql4UI219JO5uRBAKFMKq853k3 prRt4A3YL2wx/bc8oXPVuFtTij95T3hExkC36utoNQzLncFe6FmS25UJ/CO2vEY0 lFZ+2Lul2oGCdumA1fxouTjijvDhsP8AH2mnbNuTX2cvV7s2qLqqnfMwKxYbXD/W JZkiCc6s30xi/TAYe9KszIew7PlF5GsfZfmLqSjpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZTXVjKlQJP1JECE/R2sPObmKyBwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJjYTdmYjk1LTA0NmItNDA4Yy05ZDMzLTJhZjhiMmU5NTNmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQ2wDANBgkqhkiG9w0BAQsFAAOCAQEAHudRIDca/2F+clpPfmaD+WFwLi4W QxRez70gYw9KeYJEYuNAHngUnc9EEYAqyipGN+xXdanYbcVK/hPuJPFJrNj7SEvm 07wuLNIutsR5jl3G8N1Y/tr237Sg3V4+Sg3H2qnKmXtFSFo4CpeK34rOeBUGaGYY deb2PyDD5u3KZs+QVMqskOhRvTzQYjuondnt4/KtQLggMT8nYzjO+PLh/U/qWSGp 8UVtqXtQS8yYfj4YB7/9qZCfxgLjp5UwFbh1Jw8d9K5TMuRhrtWHRCGJpXnUVboz 9Z0jyvJOmsuyUABduQHw8sVekxoctYj4unr8xV6aRb3N2WEDTjwWKW0U6w== -----END CERTIFICATE-----Generated at Wed Jun 17 08:30:23 2026 by rpki-client