$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/875bb551-b6b7-4ce8-9b27-e65e92b3381d.roa File: 875bb551-b6b7-4ce8-9b27-e65e92b3381d.roa (raw, json) Hash identifier: AotE4LPxecVVcoLdsys74Qo16oQdUzG3hj+4LvAyKjE= Subject key identifier: E8:5B:76:E5:57:2A:DD:8C:3C:72:1A:5F:7D:F4:74:09:9B:36:F9:7C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3A49E08D8B7CFE9F99A22D9EC719607F7FB8C374 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/875bb551-b6b7-4ce8-9b27-e65e92b3381d.roa Signing time: Fri 15 May 2026 03:10:36 +0000 ROA not before: Fri 15 May 2026 03:10:36 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.232.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:49:e0:8d:8b:7c:fe:9f:99:a2:2d:9e:c7:19:60:7f:7f:b8:c3:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 15 03:10:36 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=40fc301c95a55132417ca21d08fcad54f132f264af51fd090da829b1f6e2ad19, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:47:b6:47:52:a7:2c:35:b3:85:af:8b:9e:42: a3:74:72:c0:f9:da:fc:09:a1:3f:9b:b4:53:98:1b: d8:c1:77:ef:fc:84:f2:d9:b0:d0:56:ca:bc:02:c6: 4e:38:d6:ab:4b:89:f7:3a:12:93:a1:92:76:dc:fa: 1c:11:f0:57:88:f9:71:87:fe:56:aa:95:9d:0f:f4: 93:eb:ee:4f:2e:a3:e9:bf:f3:50:72:b8:7f:5e:c2: 13:72:d9:f9:11:6f:41:6b:14:14:74:6c:07:c7:f8: a5:e9:6a:c6:8d:70:40:f8:1d:ab:93:3b:25:2a:68: 1e:03:a9:b3:e6:6e:8c:bb:5f:2c:ae:03:1a:21:55: e6:36:49:99:de:f8:90:ca:d4:f4:93:85:58:ad:b3: 14:10:99:b0:f4:05:2c:a4:93:6a:a3:17:88:61:85: fd:17:cc:1d:34:45:c4:43:c3:eb:39:9e:33:d9:fb: ab:d5:c0:2a:d1:2a:3e:09:7a:8c:21:36:b7:33:2e: dd:8e:04:8e:af:53:1c:4d:c0:c5:e2:18:06:1a:b2: 0a:0b:57:c5:d0:76:6c:c6:fb:06:77:19:94:d4:d6: 8d:24:ef:cf:4f:18:e5:cd:a8:19:f7:97:6e:db:9c: df:7c:f3:48:0c:69:5c:58:7e:a4:dc:db:45:14:6a: bf:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5B:76:E5:57:2A:DD:8C:3C:72:1A:5F:7D:F4:74:09:9B:36:F9:7C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/875bb551-b6b7-4ce8-9b27-e65e92b3381d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.232.176.0/20 Signature Algorithm: sha256WithRSAEncryption 0e:dc:bc:2a:cd:01:95:c9:02:02:e7:09:61:89:31:96:f6:a1: ce:35:f2:14:cb:a4:64:34:92:15:4d:fc:13:29:3a:94:78:81: 87:83:05:b9:8c:76:5c:53:36:c5:d9:e2:5d:61:44:9a:a7:e9: 6b:24:f7:55:13:e6:2c:d6:a2:f6:da:4a:75:24:19:74:1f:3d: 5e:54:a6:a8:a0:d7:bb:12:c6:58:0e:a3:9e:46:10:d1:74:80: bb:41:e5:b2:43:69:a2:44:15:b0:07:0e:b2:5a:12:0f:5e:c1: de:35:e4:b3:c1:ed:76:9c:a7:ad:dd:71:2b:60:f6:34:38:1d: af:0a:e4:86:ec:a4:b3:c0:36:27:59:0c:ec:37:b0:cf:d0:5e: fa:53:b6:41:6a:81:4e:97:09:1b:12:78:b9:3d:a5:3a:9f:a4: 4c:56:68:07:da:cc:01:47:95:04:0a:d2:e1:80:1a:ed:8e:bd: 40:aa:b5:c7:49:22:b0:a3:76:30:23:52:c4:0b:5d:f4:28:11: 6d:6e:37:12:8c:84:db:09:e5:1c:ad:40:fd:2b:e4:7a:22:39: f3:be:1d:6e:9c:92:39:fd:21:d4:c5:28:31:b8:43:b5:62:ea: 08:68:22:5e:9d:56:6e:41:52:c6:cd:85:38:4d:24:3f:b6:81: 4a:38:49:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOkngjYt8/p+Zoi2exxlgf3+4w3QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE1MDMxMDM2WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGZjMzAxYzk1YTU1MTMyNDE3Y2EyMWQwOGZjYWQ1NGYx MzJmMjY0YWY1MWZkMDkwZGE4MjliMWY2ZTJhZDE5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVR7ZHUqcsNbOFr4ueQqN0csD52vwJoT+btFOYG9jBd+/8 hPLZsNBWyrwCxk441qtLifc6EpOhknbc+hwR8FeI+XGH/laqlZ0P9JPr7k8uo+m/ 81ByuH9ewhNy2fkRb0FrFBR0bAfH+KXpasaNcED4HauTOyUqaB4DqbPmboy7Xyyu AxohVeY2SZne+JDK1PSThVitsxQQmbD0BSykk2qjF4hhhf0XzB00RcRDw+s5njPZ +6vVwCrRKj4JeowhNrczLt2OBI6vUxxNwMXiGAYasgoLV8XQdmzG+wZ3GZTU1o0k 789PGOXNqBn3l27bnN9880gMaVxYfqTc20UUar/BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6Ft25Vcq3Yw8chpfffR0CZs2+XwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg3NWJiNTUxLWI2YjctNGNlOC05YjI3LWU2NWU5MmIzMzgxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ26LAwDQYJKoZIhvcNAQELBQADggEBAA7cvCrNAZXJAgLnCWGJMZb2oc41 8hTLpGQ0khVN/BMpOpR4gYeDBbmMdlxTNsXZ4l1hRJqn6Wsk91UT5izWovbaSnUk GXQfPV5Upqig17sSxlgOo55GENF0gLtB5bJDaaJEFbAHDrJaEg9ewd415LPB7Xac p63dcStg9jQ4Ha8K5IbspLPANidZDOw3sM/QXvpTtkFqgU6XCRsSeLk9pTqfpExW aAfazAFHlQQK0uGAGu2OvUCqtcdJIrCjdjAjUsQLXfQoEW1uNxKMhNsJ5RytQP0r 5HoiOfO+HW6ckjn9IdTFKDG4Q7Vi6ghoIl6dVm5BUsbNhThNJD+2gUo4SdM= -----END CERTIFICATE-----Generated at Wed Jun 17 08:29:36 2026 by rpki-client