$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8d5989d2-9987-4ecd-b5dd-0c3c12c78aa2.roa File: 8d5989d2-9987-4ecd-b5dd-0c3c12c78aa2.roa (raw, json) Hash identifier: F24OpHgkmQisRmMFQ2F1MpJjV4tDHQ+cs6bkjaWeCb4= Subject key identifier: 1B:D1:1C:BD:8A:94:75:D1:31:38:4B:47:0D:EC:46:CA:A4:1E:D8:D9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3819DC44258F703A5E63C3C80A89D2636B5BCCCC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8d5989d2-9987-4ecd-b5dd-0c3c12c78aa2.roa Signing time: Thu 14 May 2026 00:41:26 +0000 ROA not before: Thu 14 May 2026 00:41:26 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.153.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:19:dc:44:25:8f:70:3a:5e:63:c3:c8:0a:89:d2:63:6b:5b:cc:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 14 00:41:26 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=25da3cc6e5bec74da234c6e0be9451ddc50bf17d9087158fcee9230332b4fd5e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a3:53:ca:1c:3e:64:d0:6d:e3:40:52:d3:20: b9:e5:a6:e2:34:46:f7:10:69:c6:74:5b:85:73:2a: 7a:8d:6e:f1:c0:b5:12:42:d9:70:ee:fc:40:5e:d0: be:6e:6b:78:1f:d3:23:f2:f8:24:2b:1e:52:e1:e3: 77:b5:70:66:de:49:f7:b0:95:2f:fc:d7:60:c9:c8: b8:39:33:f9:af:d5:04:f4:e8:87:90:08:e6:c4:5a: 5c:24:2b:6b:cb:44:56:5e:94:b3:ea:74:d2:1a:f2: 92:33:57:b6:81:c0:26:ca:59:ec:ca:b2:02:63:7a: 77:ce:a6:c8:2e:40:75:b7:21:28:88:a4:a1:49:4a: ec:d0:97:08:18:ee:97:3e:20:e8:5f:b5:15:05:b3: e1:19:e0:b1:ad:d6:d2:c0:7b:93:51:92:62:16:e6: 3d:b0:10:e1:4a:ed:18:42:ad:ac:1c:6a:30:2b:51: 3c:c7:b0:22:91:5e:78:20:57:c6:15:ad:83:1b:e6: 71:8b:4e:ef:8a:bf:e7:55:98:ce:41:90:5a:f5:b9: 0a:15:b7:e7:c8:41:3e:8e:27:5a:b9:85:12:3e:7f: a4:1b:1a:a1:f7:b3:ff:0c:38:0e:8c:b1:11:a8:d4: 95:6b:31:d2:fe:0d:df:4b:01:65:f1:64:db:64:e6: 42:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D1:1C:BD:8A:94:75:D1:31:38:4B:47:0D:EC:46:CA:A4:1E:D8:D9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8d5989d2-9987-4ecd-b5dd-0c3c12c78aa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.153.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1a:06:b0:2e:e4:80:0b:cd:72:07:00:66:b0:25:8a:66:a4:07: b8:01:64:f6:21:07:6e:43:19:26:2e:16:41:b1:f4:bc:26:4c: 09:78:16:ce:2e:29:ca:f7:34:98:cf:2b:99:55:51:49:b8:d2: f8:0d:4e:e1:79:11:27:e3:91:48:ab:3d:4b:cc:46:c8:57:13: 97:82:7b:a9:96:7d:e0:b2:0f:71:b3:25:46:8c:76:3f:50:d2: 7f:5d:ef:52:53:53:ed:24:50:87:05:cd:6b:a9:04:0b:89:a5: 56:13:54:1f:c8:e6:88:2b:8b:77:54:17:71:01:4e:cb:7c:c4: 76:fd:da:16:9d:b9:20:97:4f:31:eb:31:8a:3c:72:9a:d9:a3: 01:74:95:c5:ed:6a:e6:7b:7b:b4:85:7d:34:08:bf:08:e2:79: 8f:65:08:82:3c:aa:e4:6e:f3:9b:16:39:78:f8:4c:ab:49:9f: 47:6a:73:68:41:6c:b9:c2:a4:6b:4b:b1:10:bc:32:1e:ae:c3: 5f:86:46:34:81:35:e3:ea:85:eb:86:6b:5d:ed:2d:cf:35:af: 20:ae:e8:c8:0b:1e:52:1c:73:4f:6d:11:e7:f4:ed:5f:79:b6: 66:53:23:b8:72:50:76:1f:5e:42:ea:a6:a5:3f:5e:f9:4a:60: 82:e3:e3:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOBncRCWPcDpeY8PIConSY2tbzMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE0MDA0MTI2WhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWRhM2NjNmU1YmVjNzRkYTIzNGM2ZTBiZTk0NTFkZGM1 MGJmMTdkOTA4NzE1OGZjZWU5MjMwMzMyYjRmZDVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDo1PKHD5k0G3jQFLTILnlpuI0RvcQacZ0W4VzKnqNbvHA tRJC2XDu/EBe0L5ua3gf0yPy+CQrHlLh43e1cGbeSfewlS/812DJyLg5M/mv1QT0 6IeQCObEWlwkK2vLRFZelLPqdNIa8pIzV7aBwCbKWezKsgJjenfOpsguQHW3ISiI pKFJSuzQlwgY7pc+IOhftRUFs+EZ4LGt1tLAe5NRkmIW5j2wEOFK7RhCrawcajAr UTzHsCKRXnggV8YVrYMb5nGLTu+Kv+dVmM5BkFr1uQoVt+fIQT6OJ1q5hRI+f6Qb GqH3s/8MOA6MsRGo1JVrMdL+Dd9LAWXxZNtk5kLjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG9EcvYqUddExOEtHDexGyqQe2NkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhkNTk4OWQyLTk5ODctNGVjZC1iNWRkLTBjM2MxMmM3OGFhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2mQAwDQYJKoZIhvcNAQELBQADggEBABoGsC7kgAvNcgcAZrAlimakB7gB ZPYhB25DGSYuFkGx9LwmTAl4Fs4uKcr3NJjPK5lVUUm40vgNTuF5ESfjkUirPUvM RshXE5eCe6mWfeCyD3GzJUaMdj9Q0n9d71JTU+0kUIcFzWupBAuJpVYTVB/I5ogr i3dUF3EBTst8xHb92haduSCXTzHrMYo8cprZowF0lcXtauZ7e7SFfTQIvwjieY9l CII8quRu85sWOXj4TKtJn0dqc2hBbLnCpGtLsRC8Mh6uw1+GRjSBNePqheuGa13t Lc81ryCu6MgLHlIcc09tEef07V95tmZTI7hyUHYfXkLqpqU/XvlKYILj43I= -----END CERTIFICATE-----Generated at Wed Jun 17 08:31:25 2026 by rpki-client