$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/408e650b-c989-4a72-b5c0-025d84956966.roa File: 408e650b-c989-4a72-b5c0-025d84956966.roa (raw, json) Hash identifier: 478sguEQ8t8BvMIJXdZC2zSlfSUffYKUQRcygAectiM= Subject key identifier: 45:DB:DD:BE:1D:E1:41:89:F7:11:C9:39:EA:3A:95:38:C7:08:73:FA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 022F3CF65BCC242E4A71ECCC22F8D114A4367E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/408e650b-c989-4a72-b5c0-025d84956966.roa Signing time: Sat 16 May 2026 02:31:46 +0000 ROA not before: Sat 16 May 2026 02:31:46 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.84.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:2f:3c:f6:5b:cc:24:2e:4a:71:ec:cc:22:f8:d1:14:a4:36:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 16 02:31:46 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=904e0ab3963acf5dc2570b878293e43a997b9449c332238efe2d9044b39772f7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:41:5b:c5:d8:9d:c0:5c:aa:79:da:41:60:c8: c4:83:ea:ce:96:f9:41:01:bf:e2:53:7e:4f:3f:e9: 66:73:b2:a0:4a:20:7d:cf:41:ad:c9:70:9f:a4:f4: 65:08:a3:34:cd:50:0a:77:8b:2b:c4:99:90:d1:38: 97:83:2f:12:09:fa:5f:d7:1a:f5:3e:6a:03:2d:d6: e8:30:8d:c7:15:85:3c:7f:49:3e:96:67:3f:f1:76: 3d:92:f3:98:18:59:cd:1f:cd:48:8d:2c:ef:d5:d7: 4b:b5:83:da:76:85:5a:93:bd:d8:b1:5d:66:9e:26: db:11:d5:d7:b9:12:3e:33:be:3b:b5:ed:ac:db:f6: d2:62:85:d9:9e:e1:97:fb:8e:f5:27:98:0a:1c:c2: f5:6f:8a:ea:24:d0:2c:7d:d6:7e:d7:3c:4e:a5:b5: 6b:82:82:3a:b2:b2:58:ff:ee:79:31:14:3d:f1:3a: 76:77:a2:99:7b:c8:4c:2d:46:db:20:cd:36:89:33: b9:ac:69:0a:ea:3e:4e:e2:8c:07:1b:78:63:81:fe: 54:88:23:92:87:ba:35:5a:1e:09:3c:1b:b5:bd:8f: d8:a6:0d:06:ca:e0:e4:f1:b7:6d:99:ca:1e:24:a7: 53:1d:94:bb:e1:24:ee:3d:b8:25:8c:da:51:28:d3: 2c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:DB:DD:BE:1D:E1:41:89:F7:11:C9:39:EA:3A:95:38:C7:08:73:FA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/408e650b-c989-4a72-b5c0-025d84956966.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.84.59.0/24 Signature Algorithm: sha256WithRSAEncryption 92:a4:b8:b6:91:f3:bf:b7:51:f3:2d:e0:1e:ae:d0:a1:6a:b1: 53:bc:7d:2b:27:37:d7:6f:4c:c0:0e:7a:2d:b8:7e:ff:e5:e4: 7a:25:e7:50:14:8a:2b:9c:7b:67:de:a1:7f:58:8b:fb:a5:17: c3:b5:61:52:ab:2b:8d:32:74:1e:91:cc:9c:5f:41:18:76:d2: 64:a1:0b:7d:14:82:a4:5e:94:07:23:0e:a6:e5:4d:81:08:61: 09:c1:e0:db:a3:68:95:a5:6e:e7:e4:83:e2:10:e7:73:c3:d3: cd:3b:a1:25:08:b3:1f:88:7e:33:c2:60:83:82:da:ca:3e:05: 86:1d:f1:83:34:b7:97:03:16:0f:1d:37:cf:81:77:96:d3:2c: 89:f3:d2:9e:6a:0c:11:29:2e:4f:de:f8:c3:38:45:64:40:10: 82:10:a5:4b:df:cb:ee:4b:10:c5:a7:80:97:c2:e7:51:64:f1: de:d5:76:51:f8:bb:06:17:95:e9:fe:5a:3d:47:02:c7:0c:76: a6:38:81:50:ba:f6:7c:31:b1:a0:2a:a7:8b:f1:1d:16:a0:15: 4b:00:11:33:76:84:4c:4c:61:50:42:af:4b:6b:31:72:1a:e2: 86:f4:13:7b:e4:6c:20:4e:6d:53:92:00:67:ef:f5:b1:90:80: ed:1b:2c:38 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITAi889lvMJC5KcezMIvjRFKQ2fjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNjA1MTYwMjMxNDZaFw0yNjA4MTQyMzU5NTla MHoxSTBHBgNVBAUTQDkwNGUwYWIzOTYzYWNmNWRjMjU3MGI4NzgyOTNlNDNhOTk3 Yjk0NDljMzMyMjM4ZWZlMmQ5MDQ0YjM5NzcyZjcxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKZBW8XYncBcqnnaQWDIxIPqzpb5QQG/4lN+Tz/pZnOyoEog fc9Brclwn6T0ZQijNM1QCneLK8SZkNE4l4MvEgn6X9ca9T5qAy3W6DCNxxWFPH9J PpZnP/F2PZLzmBhZzR/NSI0s79XXS7WD2naFWpO92LFdZp4m2xHV17kSPjO+O7Xt rNv20mKF2Z7hl/uO9SeYChzC9W+K6iTQLH3Wftc8TqW1a4KCOrKyWP/ueTEUPfE6 dneimXvITC1G2yDNNokzuaxpCuo+TuKMBxt4Y4H+VIgjkoe6NVoeCTwbtb2P2KYN Bsrg5PG3bZnKHiSnUx2Uu+Ek7j24JYzaUSjTLFkCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRF292+HeFBifcRyTnqOpU4xwhz+jAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvNDA4ZTY1MGItYzk4OS00YTcyLWI1YzAtMDI1ZDg0OTU2OTY2LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEADRUOzANBgkqhkiG9w0BAQsFAAOCAQEAkqS4tpHzv7dR8y3gHq7QoWqxU7x9 Kyc3129MwA56Lbh+/+XkeiXnUBSKK5x7Z96hf1iL+6UXw7VhUqsrjTJ0HpHMnF9B GHbSZKELfRSCpF6UByMOpuVNgQhhCcHg26NolaVu5+SD4hDnc8PTzTuhJQizH4h+ M8Jgg4Layj4Fhh3xgzS3lwMWDx03z4F3ltMsifPSnmoMESkuT974wzhFZEAQghCl S9/L7ksQxaeAl8LnUWTx3tV2Ufi7BheV6f5aPUcCxwx2pjiBULr2fDGxoCqni/Ed FqAVSwARM3aETExhUEKvS2sxchrihvQTe+RsIE5tU5IAZ+/1sZCA7RssOA== -----END CERTIFICATE-----Generated at Wed Jun 17 08:35:51 2026 by rpki-client