$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b3bf74f8-f8ed-4714-a9ea-6890406bdffa.roa File: b3bf74f8-f8ed-4714-a9ea-6890406bdffa.roa (raw, json) Hash identifier: mQtDoyHNTjMQbhfndGhVVn7K9r5fgPtW8hbTsRARrEo= Subject key identifier: 2F:62:C5:F6:14:33:A1:DA:99:88:B3:74:E4:DD:0B:1F:28:38:8F:F0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1012A110882199F011A15CB9B149E2D0C84FBF01 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b3bf74f8-f8ed-4714-a9ea-6890406bdffa.roa Signing time: Fri 15 May 2026 03:31:11 +0000 ROA not before: Fri 15 May 2026 03:31:11 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.245.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:12:a1:10:88:21:99:f0:11:a1:5c:b9:b1:49:e2:d0:c8:4f:bf:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 15 03:31:11 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=37f5887be6407a78edb6e76848934c0f22c4011255c96d335fd8ab69be8b5665, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:b2:40:a3:b8:8d:84:c6:c7:05:2f:e4:0a: ad:59:d2:71:a4:66:7b:2e:a7:01:d8:f1:03:37:4e: d5:66:97:41:89:2e:e3:ea:cd:b2:ea:4f:4d:4c:ee: 44:60:3b:6d:ad:1b:d9:8c:0c:a1:67:78:b5:15:b5: a4:e9:1e:5f:91:0d:27:57:48:4d:18:45:2f:83:62: 39:f3:ad:da:e9:08:11:44:8d:47:39:53:a1:2e:aa: 66:5b:60:01:4e:f0:ba:52:bc:b9:43:2b:42:6a:c1: 53:e9:cf:39:09:62:73:fa:cd:0d:6f:fd:e1:f3:a6: 3d:a5:25:66:40:77:0e:30:88:dd:0b:ae:17:9a:c4: 5c:80:33:00:ca:28:dd:01:2d:69:c1:ac:52:06:71: 37:12:73:9c:15:b8:fd:8f:77:3a:34:34:01:ef:7c: fd:99:3e:30:74:b5:64:2b:05:b9:9e:66:6b:bf:c8: 24:5b:85:92:1b:bd:a1:0a:5b:e7:b0:58:08:bb:de: 90:6a:d0:93:f8:e0:3c:0a:20:0b:f7:36:a5:16:e3: 88:de:f0:47:7a:ef:6d:c4:82:cd:82:4f:d5:27:5d: 37:27:bc:d8:89:72:72:f1:95:9d:6c:32:d2:63:26: 9e:6c:9c:02:c0:39:07:9a:a4:e1:cd:57:cd:0a:ca: 39:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:62:C5:F6:14:33:A1:DA:99:88:B3:74:E4:DD:0B:1F:28:38:8F:F0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b3bf74f8-f8ed-4714-a9ea-6890406bdffa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.245.64.0/20 Signature Algorithm: sha256WithRSAEncryption 63:6f:a1:bb:2a:59:9e:c3:04:f6:56:87:4c:64:51:2b:22:22: 2d:e1:52:87:fd:37:cd:87:3b:43:72:ea:72:b5:b5:f6:52:ab: c2:3b:5b:fc:75:14:a8:c0:3d:9a:76:a4:63:e3:70:0c:22:0c: 6c:31:b0:d7:0a:99:f5:36:25:34:a3:65:a8:a8:1d:da:40:53: c8:89:28:b3:a6:0b:f5:84:e3:fb:82:cf:dc:1a:68:5b:5a:31: c7:64:3c:78:9b:74:81:4a:22:c2:96:7f:01:dc:dc:2e:34:63: f5:70:cd:4d:70:b0:d3:c7:22:ea:62:f1:6e:f5:51:f2:32:75: 57:48:b7:3b:9e:59:db:3f:74:6c:09:88:0a:b2:6c:f6:dc:5f: 9a:17:1c:3e:a2:b8:da:75:58:92:70:ea:41:54:fe:ee:2f:1d: 33:08:fc:c1:c5:61:15:c9:e3:71:7e:ec:68:e2:91:65:6f:ba: 4d:de:46:87:3c:de:79:8c:11:5e:b1:62:56:3d:90:bd:10:4a: 5a:3d:0c:85:47:73:0f:95:b3:39:5a:aa:bf:0f:b2:ae:f6:b8: 46:ee:83:d1:bc:f7:ad:96:ba:4d:20:d1:cd:dd:5a:dc:88:eb: 03:ab:ad:72:72:7e:8e:6f:bf:47:40:77:8a:53:54:b4:1d:bb: ca:81:2d:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEBKhEIghmfARoVy5sUni0MhPvwEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE1MDMzMTExWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2Y1ODg3YmU2NDA3YTc4ZWRiNmU3Njg0ODkzNGMwZjIy YzQwMTEyNTVjOTZkMzM1ZmQ4YWI2OWJlOGI1NjY1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMlLJAo7iNhMbHBS/kCq1Z0nGkZnsupwHY8QM3TtVml0GJ LuPqzbLqT01M7kRgO22tG9mMDKFneLUVtaTpHl+RDSdXSE0YRS+DYjnzrdrpCBFE jUc5U6EuqmZbYAFO8LpSvLlDK0JqwVPpzzkJYnP6zQ1v/eHzpj2lJWZAdw4wiN0L rheaxFyAMwDKKN0BLWnBrFIGcTcSc5wVuP2Pdzo0NAHvfP2ZPjB0tWQrBbmeZmu/ yCRbhZIbvaEKW+ewWAi73pBq0JP44DwKIAv3NqUW44je8Ed6723Egs2CT9UnXTcn vNiJcnLxlZ1sMtJjJp5snALAOQeapOHNV80KyjkNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL2LF9hQzodqZiLN05N0LHyg4j/AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2IzYmY3NGY4LWY4ZWQtNDcxNC1hOWVhLTY4OTA0MDZiZGZmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ29UAwDQYJKoZIhvcNAQELBQADggEBAGNvobsqWZ7DBPZWh0xkUSsiIi3h Uof9N82HO0Ny6nK1tfZSq8I7W/x1FKjAPZp2pGPjcAwiDGwxsNcKmfU2JTSjZaio HdpAU8iJKLOmC/WE4/uCz9waaFtaMcdkPHibdIFKIsKWfwHc3C40Y/VwzU1wsNPH Iupi8W71UfIydVdItzueWds/dGwJiAqybPbcX5oXHD6iuNp1WJJw6kFU/u4vHTMI /MHFYRXJ43F+7GjikWVvuk3eRoc83nmMEV6xYlY9kL0QSlo9DIVHcw+Vszlaqr8P sq72uEbug9G8962Wuk0g0c3dWtyI6wOrrXJyfo5vv0dAd4pTVLQdu8qBLbY= -----END CERTIFICATE-----Generated at Wed Jun 17 08:51:42 2026 by rpki-client