$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/431fab42-8dce-4996-981e-0eeb9cb8a5f2.roa File: 431fab42-8dce-4996-981e-0eeb9cb8a5f2.roa (raw, json) Hash identifier: jyDWTuthtdZyTkjMFpOSSjmbzBGNuDgN6J0UsuLngyY= Subject key identifier: F9:B8:E2:58:F9:E2:80:1A:13:FB:54:EA:7A:D6:E9:6E:F7:4B:CD:5D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6CFA76F5A7CD0435E64B9FB34242F7FEB059588B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/431fab42-8dce-4996-981e-0eeb9cb8a5f2.roa Signing time: Thu 14 May 2026 00:31:48 +0000 ROA not before: Thu 14 May 2026 00:31:48 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.147.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fa:76:f5:a7:cd:04:35:e6:4b:9f:b3:42:42:f7:fe:b0:59:58:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 14 00:31:48 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=08cec39fd0851a1ae7dc01376c79ac77513a75bf72dbfae22b705cb8795175f0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9d:92:80:f4:35:d9:33:df:9d:55:dc:95:3c: 38:c6:23:73:7e:4b:83:f3:32:10:8e:0c:36:3d:68: a8:f9:49:a3:0a:a4:77:a2:ac:61:7e:82:b4:20:21: a8:19:8e:90:25:73:bb:dc:f7:3e:b2:47:de:5f:63: b7:66:61:75:16:40:ce:96:27:c6:1d:05:cc:7a:3f: ce:4a:aa:bf:b0:59:ec:99:3a:10:72:37:50:91:d8: 41:d0:64:a7:d7:dc:75:15:dc:e5:a9:0d:1c:50:c2: f9:90:a7:cc:b6:10:cb:b0:33:b8:e3:80:97:b8:a3: a3:23:db:76:1c:df:a5:11:b0:54:6a:e4:da:03:ff: 1a:e2:54:ad:db:f0:16:96:a9:a7:80:5d:3e:c6:69: 25:5b:ef:e6:f0:96:0b:42:b0:0c:d6:c5:be:46:29: ae:12:20:16:a6:a4:92:e2:81:76:f7:1a:2d:98:7d: 3e:bd:99:62:b9:3f:12:4d:a8:05:f1:6f:9c:60:70: 52:60:dd:1a:ed:2a:9a:49:fb:67:ea:fc:5c:d6:9c: 35:ce:c2:02:e6:84:41:fe:99:fd:a6:53:29:5f:7b: 08:5f:b5:c4:20:bb:13:b7:3a:ad:3a:59:9a:27:e0: cc:90:47:bf:d1:e5:a1:d8:02:b9:1c:a0:09:82:ca: b2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B8:E2:58:F9:E2:80:1A:13:FB:54:EA:7A:D6:E9:6E:F7:4B:CD:5D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/431fab42-8dce-4996-981e-0eeb9cb8a5f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.147.64.0/18 Signature Algorithm: sha256WithRSAEncryption 26:87:22:69:52:29:b6:20:d0:21:3d:fb:25:d0:52:6b:b4:a5: 24:9b:09:a2:5a:56:11:63:20:1b:5c:8a:cb:f1:c3:77:03:dc: 88:e3:9a:cc:ae:b2:8d:eb:1c:54:e7:3d:cd:47:93:5e:88:f1: 72:62:87:ec:ae:67:25:68:1a:f3:79:5a:ec:2d:05:dd:43:e4: 67:4a:f8:75:55:17:19:3e:4a:a8:f6:91:31:55:aa:c9:ff:12: be:5f:fa:b5:88:0c:03:96:9f:47:1e:b8:8e:43:da:27:81:c4: a8:96:89:bf:cb:de:50:29:27:94:0f:79:88:ec:99:a3:ab:cf: 33:f3:b7:26:ba:e5:ed:40:76:38:91:ce:28:5e:fc:c7:14:f0: 82:b5:94:a9:dc:3b:e6:9e:6e:0b:22:1f:0d:36:5b:21:99:92: d6:e8:63:7c:ce:08:80:73:e9:a7:ca:69:fd:28:7f:d7:e8:f7: 81:fa:b6:94:f1:a8:31:87:4e:e6:b6:4e:be:21:77:bd:19:d9: 63:d7:21:df:b0:25:a4:99:e4:7c:f9:27:7c:3e:a8:26:a2:56: 63:75:b7:74:62:7e:48:87:f6:db:d5:da:28:14:21:1c:a8:78: 60:51:3f:79:c2:77:d8:4e:8d:ce:37:d1:19:a3:30:eb:7d:6e: bd:c4:3b:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbPp29afNBDXmS5+zQkL3/rBZWIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE0MDAzMTQ4WhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGNlYzM5ZmQwODUxYTFhZTdkYzAxMzc2Yzc5YWM3NzUx M2E3NWJmNzJkYmZhZTIyYjcwNWNiODc5NTE3NWYwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCznZKA9DXZM9+dVdyVPDjGI3N+S4PzMhCODDY9aKj5SaMK pHeirGF+grQgIagZjpAlc7vc9z6yR95fY7dmYXUWQM6WJ8YdBcx6P85Kqr+wWeyZ OhByN1CR2EHQZKfX3HUV3OWpDRxQwvmQp8y2EMuwM7jjgJe4o6Mj23Yc36URsFRq 5NoD/xriVK3b8BaWqaeAXT7GaSVb7+bwlgtCsAzWxb5GKa4SIBampJLigXb3Gi2Y fT69mWK5PxJNqAXxb5xgcFJg3RrtKppJ+2fq/FzWnDXOwgLmhEH+mf2mUylfewhf tcQguxO3Oq06WZon4MyQR7/R5aHYArkcoAmCyrIZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+bjiWPnigBoT+1TqetbpbvdLzV0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQzMWZhYjQyLThkY2UtNDk5Ni05ODFlLTBlZWI5Y2I4YTVmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2k0AwDQYJKoZIhvcNAQELBQADggEBACaHImlSKbYg0CE9+yXQUmu0pSSb CaJaVhFjIBtcisvxw3cD3Ijjmsyuso3rHFTnPc1Hk16I8XJih+yuZyVoGvN5Wuwt Bd1D5GdK+HVVFxk+Sqj2kTFVqsn/Er5f+rWIDAOWn0ceuI5D2ieBxKiWib/L3lAp J5QPeYjsmaOrzzPztya65e1AdjiRzihe/McU8IK1lKncO+aebgsiHw02WyGZktbo Y3zOCIBz6afKaf0of9fo94H6tpTxqDGHTua2Tr4hd70Z2WPXId+wJaSZ5Hz5J3w+ qCaiVmN1t3RifkiH9tvV2igUIRyoeGBRP3nCd9hOjc430RmjMOt9br3EOxg= -----END CERTIFICATE-----Generated at Wed Jun 17 10:56:54 2026 by rpki-client