$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3a9866d9-cce5-4663-a699-7cccecd1ebfb.roa File: 3a9866d9-cce5-4663-a699-7cccecd1ebfb.roa (raw, json) Hash identifier: 8Xlz8XbosYZQZeXG7clV52hiS8LFARUXHEeal5iKp2k= Subject key identifier: 02:BE:FD:C2:E3:89:30:83:A1:A6:41:74:EE:70:EC:C4:8C:CF:E6:3A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 560BCDA4B6C474CEF678AE38A503EF996D90E4EB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3a9866d9-cce5-4663-a699-7cccecd1ebfb.roa Signing time: Wed 13 May 2026 00:40:07 +0000 ROA not before: Wed 13 May 2026 00:40:07 +0000 ROA not after: Tue 11 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 144.220.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:0b:cd:a4:b6:c4:74:ce:f6:78:ae:38:a5:03:ef:99:6d:90:e4:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 13 00:40:07 2026 GMT Not After : Aug 11 23:59:59 2026 GMT Subject: serialNumber=139c3edb4639cd6363fc2722a955dfbb09f935cde8c477360995cee20aebc2f0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3a:16:be:fc:a5:22:4b:13:e0:70:f9:aa:86: c6:82:2e:5e:11:ff:64:63:42:25:b7:90:01:bc:e4: 7e:a3:fe:88:f3:11:7b:da:1d:d0:33:80:98:0b:05: 35:fc:9c:95:30:2e:23:41:3a:4f:62:0f:6c:d8:ac: cb:4c:73:48:61:e3:32:d3:70:6c:78:9e:f1:9b:78: 21:2a:d1:8d:9e:20:ac:44:39:39:47:85:1b:28:9d: c9:27:19:42:ab:c6:f7:09:5c:59:10:a1:42:a0:a2: b2:7b:ac:2d:fd:7d:7f:86:38:ff:26:8e:43:b8:6a: a1:f1:fe:a2:f8:fd:2d:09:2d:1e:0d:0b:23:c7:1f: b2:98:4b:5c:62:c1:23:cc:f4:e5:1f:ad:a3:a5:51: 2b:62:73:8c:c0:60:e9:3e:33:f3:5c:24:b5:44:e8: 67:c3:71:78:fd:a4:ca:ce:b0:36:90:32:e4:1b:b6: a6:5b:06:12:5e:8d:4a:43:f9:65:1a:66:05:e8:97: 11:cd:9a:ae:94:d8:da:d7:55:9f:07:7e:8d:cd:db: cc:df:aa:63:9b:62:2a:c5:31:a1:42:10:4f:0b:59: a6:53:9f:5f:6d:50:0b:46:ca:be:64:e5:11:0c:b6: 23:7b:1b:cd:a8:3f:0f:dc:b7:08:2f:31:90:82:c0: 55:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:BE:FD:C2:E3:89:30:83:A1:A6:41:74:EE:70:EC:C4:8C:CF:E6:3A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3a9866d9-cce5-4663-a699-7cccecd1ebfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.220.89.0/24 Signature Algorithm: sha256WithRSAEncryption 18:ca:d0:a8:f8:cf:08:6f:d0:71:7e:e4:9c:dc:94:8d:6e:92: 80:51:48:f9:e8:59:02:2e:5f:5c:8c:75:b6:3b:23:2c:3a:17: b7:c9:90:2f:1c:ab:56:14:ec:e3:39:28:23:00:2b:47:6d:38: 46:7e:c0:c4:bb:07:cb:c3:88:12:23:03:50:db:48:a5:b0:51: 0a:21:97:f8:b3:d5:b0:19:15:da:aa:0a:7d:79:79:91:7b:0b: 0b:a7:d8:1d:8d:cb:88:6c:4d:37:c7:49:58:40:3b:09:35:46: d4:01:4c:32:82:7a:96:7f:0a:59:b9:6f:2a:ca:1f:24:7d:0f: 31:d6:8b:80:f3:ff:d0:ee:43:2c:03:2e:91:2a:47:f7:2e:e7: e4:cd:24:56:55:7f:96:e6:e5:24:6f:25:76:63:62:9b:5e:4e: 04:ec:3c:f3:82:5f:d7:99:ef:1d:13:2d:d5:45:1b:05:d1:7a: ec:05:1b:47:33:e1:ed:9c:44:41:e1:93:a1:64:bb:1c:18:41: dd:b2:6f:78:e8:27:e3:d8:7d:91:84:06:bd:c2:6a:2c:c0:65: 8c:4d:b2:13:04:ac:fa:89:1e:89:c7:5f:04:85:65:fd:64:0b: 56:ee:29:b5:1e:f7:fe:e9:ac:43:a3:69:51:fe:ec:8d:2a:a5: 03:52:a2:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVgvNpLbEdM72eK44pQPvmW2Q5OswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTEzMDA0MDA3WhcNMjYwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzljM2VkYjQ2MzljZDYzNjNmYzI3MjJhOTU1ZGZiYjA5 ZjkzNWNkZThjNDc3MzYwOTk1Y2VlMjBhZWJjMmYwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqOha+/KUiSxPgcPmqhsaCLl4R/2RjQiW3kAG85H6j/ojz EXvaHdAzgJgLBTX8nJUwLiNBOk9iD2zYrMtMc0hh4zLTcGx4nvGbeCEq0Y2eIKxE OTlHhRsoncknGUKrxvcJXFkQoUKgorJ7rC39fX+GOP8mjkO4aqHx/qL4/S0JLR4N CyPHH7KYS1xiwSPM9OUfraOlUStic4zAYOk+M/NcJLVE6GfDcXj9pMrOsDaQMuQb tqZbBhJejUpD+WUaZgXolxHNmq6U2NrXVZ8Hfo3N28zfqmObYirFMaFCEE8LWaZT n19tUAtGyr5k5REMtiN7G82oPw/ctwgvMZCCwFUvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAr79wuOJMIOhpkF07nDsxIzP5jowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNhOTg2NmQ5LWNjZTUtNDY2My1hNjk5LTdjY2NlY2QxZWJmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACQ3FkwDQYJKoZIhvcNAQELBQADggEBABjK0Kj4zwhv0HF+5JzclI1ukoBR SPnoWQIuX1yMdbY7Iyw6F7fJkC8cq1YU7OM5KCMAK0dtOEZ+wMS7B8vDiBIjA1Db SKWwUQohl/iz1bAZFdqqCn15eZF7Cwun2B2Ny4hsTTfHSVhAOwk1RtQBTDKCepZ/ Clm5byrKHyR9DzHWi4Dz/9DuQywDLpEqR/cu5+TNJFZVf5bm5SRvJXZjYpteTgTs PPOCX9eZ7x0TLdVFGwXReuwFG0cz4e2cREHhk6FkuxwYQd2yb3joJ+PYfZGEBr3C aizAZYxNshMErPqJHonHXwSFZf1kC1buKbUe9/7prEOjaVH+7I0qpQNSooA= -----END CERTIFICATE-----Generated at Wed Jun 17 10:06:27 2026 by rpki-client