$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa File: 3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa (raw, json) Hash identifier: ObDJ77G2sg9sl2CTe/TOrT1xTPVmzfPIEtfH6W7TcC0= Subject key identifier: FB:5B:68:53:A2:0B:33:99:8B:86:D1:72:40:61:85:E9:1F:9A:0F:26 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4ECC79553A8B9B566FD5F7CB1FE2BBD1856194A9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa Signing time: Tue 19 May 2026 01:40:08 +0000 ROA not before: Tue 19 May 2026 01:40:08 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.248.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:cc:79:55:3a:8b:9b:56:6f:d5:f7:cb:1f:e2:bb:d1:85:61:94:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 19 01:40:08 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=f5329be073c62ff8229f1ad5d66287a81a55e9c480aaf32f8cc5d210c3ca21f8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3a:a9:14:6d:0a:cb:53:e9:74:f1:af:84:59: 46:2b:7e:75:12:a1:f9:42:ea:36:3b:e0:f1:b7:7d: 68:ec:7d:b5:cd:2d:fd:58:2f:34:79:f5:d2:c6:f4: 57:6c:72:43:7d:94:c6:e1:22:d5:78:18:e2:1a:9a: ca:80:b9:ed:2c:2f:ab:33:2b:87:7b:63:c2:c8:37: 1b:e4:20:64:6e:6c:84:e8:ec:db:37:ed:35:af:81: 36:08:1d:4d:94:b7:d4:0f:2c:77:ad:cb:52:ca:7c: 93:47:78:d7:bc:51:32:b6:b4:c4:a7:03:03:f1:68: d3:1a:86:ac:76:d9:41:10:3a:48:39:4f:89:d7:18: 96:cc:5e:db:64:4d:13:6c:1c:42:b5:ff:bc:05:e3: ef:6b:94:b6:31:d8:c3:bc:84:80:8b:81:b1:33:73: b0:ee:be:40:f8:9b:c9:a2:9b:42:29:6d:3d:6e:ea: 60:80:df:ea:6e:55:56:41:9f:f6:1b:8f:ee:88:63: 64:65:cf:b6:38:a5:f5:e2:8e:61:d6:e5:17:2d:c8: a4:9e:d7:cd:d7:16:3d:3d:54:02:7a:a8:6c:cb:33: 67:c1:21:4c:e6:f8:c6:91:7a:5a:c5:cb:dc:cc:14: 88:e1:77:20:1b:43:43:da:89:4c:a3:2c:5d:6f:05: 8c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:5B:68:53:A2:0B:33:99:8B:86:D1:72:40:61:85:E9:1F:9A:0F:26 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.115.0/24 Signature Algorithm: sha256WithRSAEncryption ae:4f:19:67:3d:50:0c:e3:a7:d4:4e:d4:db:7a:5a:77:3d:c3: 95:1f:e7:c8:1c:e3:fe:90:a9:aa:08:d8:8e:3f:6f:8e:c8:3e: 6e:09:a7:de:16:1b:c6:2c:c1:e8:b9:8c:6f:b3:8b:a0:b2:b1: 61:b1:54:14:b4:46:85:df:f1:42:23:5c:42:4d:76:71:d1:50: cd:21:f3:04:be:34:1f:9c:de:69:9b:62:79:3d:9b:3c:13:0b: 25:cc:31:56:3b:9a:4a:c2:32:dd:a0:90:c6:ab:1a:b5:15:c2: 0a:c2:fc:e3:ff:29:00:10:d2:fe:9c:f5:3a:4a:c1:05:6f:c0: c4:af:c5:81:df:a1:a0:e3:fa:99:a5:0a:19:0b:9d:4a:45:ec: f2:07:36:76:cb:0d:49:d1:df:4c:19:d9:dc:71:1f:9d:c4:ea: 11:92:1b:69:7f:97:94:45:19:a7:47:ec:4a:0a:ae:a9:27:b6: 4b:88:fc:53:58:81:81:f2:2b:73:fb:12:9e:55:e8:2e:69:ba: 3f:87:98:ff:ce:04:09:da:11:a3:b2:11:34:f2:79:43:fe:06: c0:04:3e:c8:30:69:f0:c6:3d:04:0d:5a:22:39:fb:e8:89:91: c2:62:08:3b:5f:d7:7a:97:23:63:b7:1f:f5:87:47:c3:b7:8d: d6:df:bd:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTsx5VTqLm1Zv1ffLH+K70YVhlKkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE5MDE0MDA4WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTMyOWJlMDczYzYyZmY4MjI5ZjFhZDVkNjYyODdhODFh NTVlOWM0ODBhYWYzMmY4Y2M1ZDIxMGMzY2EyMWY4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzOqkUbQrLU+l08a+EWUYrfnUSoflC6jY74PG3fWjsfbXN Lf1YLzR59dLG9FdsckN9lMbhItV4GOIamsqAue0sL6szK4d7Y8LINxvkIGRubITo 7Ns37TWvgTYIHU2Ut9QPLHety1LKfJNHeNe8UTK2tMSnAwPxaNMahqx22UEQOkg5 T4nXGJbMXttkTRNsHEK1/7wF4+9rlLYx2MO8hICLgbEzc7DuvkD4m8mim0IpbT1u 6mCA3+puVVZBn/Ybj+6IY2Rlz7Y4pfXijmHW5RctyKSe183XFj09VAJ6qGzLM2fB IUzm+MaRelrFy9zMFIjhdyAbQ0PaiUyjLF1vBYwpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+1toU6ILM5mLhtFyQGGF6R+aDyYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNhZTFiYTJiLTE5M2MtNDBkMy05YWQ1LTdlNjEyNmFlNmYxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+HMwDQYJKoZIhvcNAQELBQADggEBAK5PGWc9UAzjp9RO1Nt6Wnc9w5Uf 58gc4/6QqaoI2I4/b47IPm4Jp94WG8Yswei5jG+zi6CysWGxVBS0RoXf8UIjXEJN dnHRUM0h8wS+NB+c3mmbYnk9mzwTCyXMMVY7mkrCMt2gkMarGrUVwgrC/OP/KQAQ 0v6c9TpKwQVvwMSvxYHfoaDj+pmlChkLnUpF7PIHNnbLDUnR30wZ2dxxH53E6hGS G2l/l5RFGadH7EoKrqkntkuI/FNYgYHyK3P7Ep5V6C5puj+HmP/OBAnaEaOyETTy eUP+BsAEPsgwafDGPQQNWiI5++iJkcJiCDtf13qXI2O3H/WHR8O3jdbfvbI= -----END CERTIFICATE-----Generated at Wed Jun 17 09:22:09 2026 by rpki-client