$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa File: 0343534b-f673-4820-a35c-761953dd8136.roa (raw, json) Hash identifier: JO/8aGwhs3qfOqBsYKcUyJMiUvqfSDMeiBv7ojZ0JUE= Subject key identifier: C2:65:86:CA:04:E8:E1:5E:5F:D2:85:DF:6F:F3:17:B7:74:94:E0:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20EC5E3B4A6FC23ED45BB7B5203ADBECF88C97CF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa Signing time: Wed 29 Apr 2026 00:30:17 +0000 ROA not before: Wed 29 Apr 2026 00:30:17 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 216.73.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ec:5e:3b:4a:6f:c2:3e:d4:5b:b7:b5:20:3a:db:ec:f8:8c:97:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:30:17 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=b9008100e005ab7b6287c3c2c60a850a2ecdd5bf9ae47a64c69ad47722d6dcc9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:fe:25:d7:a2:49:73:79:d5:88:67:2d:1f: 50:08:e9:15:c5:f9:8e:da:e7:37:d4:ba:aa:04:af: 5c:b2:ea:d1:99:fa:be:08:03:24:fe:47:5a:11:85: 26:d6:12:ae:14:44:77:f8:22:8e:99:d2:f5:6f:a3: 0e:9a:4b:eb:35:f4:0d:1d:94:d0:9a:ce:5f:07:2b: 19:9f:9f:6e:43:be:70:19:04:5b:d4:4c:08:cf:be: 73:93:de:81:bf:c1:15:51:b7:03:8d:35:f2:2b:2d: 4b:a2:0a:e0:c1:ac:15:d3:bd:67:77:b2:12:78:31: bc:0c:16:b2:b4:59:dd:cf:be:64:a5:9d:d9:43:d3: 85:75:32:db:15:7c:a9:b6:3e:55:f7:2b:5f:e6:26: 9c:03:1e:80:e9:46:ff:53:b2:87:0c:a4:85:61:a4: b0:a5:15:9c:50:58:03:9a:fc:30:9b:c6:e2:36:f4: 50:10:15:37:17:f7:d2:73:1d:df:55:5e:32:66:45: 19:04:8d:d4:23:c5:01:fb:83:85:0d:d5:a8:84:94: 76:e8:85:16:3b:e4:12:c5:25:69:20:1c:e9:5e:1c: 1a:9c:2a:af:5b:15:3e:e3:58:fc:56:f7:85:e7:e8: e2:d9:a0:3b:fb:8c:e1:cf:d1:69:79:8e:5c:e8:91: ae:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:65:86:CA:04:E8:E1:5E:5F:D2:85:DF:6F:F3:17:B7:74:94:E0:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.73.208.0/21 Signature Algorithm: sha256WithRSAEncryption d0:03:cf:5d:c4:7a:9e:30:e5:d9:e0:0b:86:a1:21:55:bb:66: 7f:c4:3c:82:a5:60:9f:6c:db:75:7b:e8:41:e8:39:c1:a0:63: 56:0f:3b:55:20:7b:01:49:e9:ad:3e:d5:83:b2:b1:d9:82:a1: ab:bc:f5:27:4d:d3:c4:45:30:bf:07:a4:94:13:b5:85:e2:86: 94:30:c0:d4:3c:8f:1a:47:d4:7c:dc:27:01:31:22:93:77:7c: 8e:33:cc:a0:eb:27:cb:b1:41:35:36:8d:d0:e3:c3:4e:91:ac: 9d:d1:6a:df:21:ed:92:34:24:ff:c5:b6:9e:62:a1:9a:83:fe: e3:67:49:06:74:ac:29:fa:77:eb:34:10:9b:96:a6:88:48:62: 88:0f:2c:6e:e2:b7:ff:12:d8:bd:17:62:d9:48:1a:b9:6d:21: 16:29:5a:c6:93:c2:f3:cd:bc:71:2b:14:7a:97:e3:49:1c:1f: 2b:60:fb:d6:01:4d:e0:4f:a5:41:a5:29:68:5b:7d:fb:95:42: 10:f9:82:da:b3:ea:8b:c8:08:3f:58:14:eb:80:60:99:f1:4d: 7d:c9:a5:72:10:4d:f4:1d:ea:16:c2:bb:a1:a9:7d:e4:5e:cb: 34:45:33:91:1c:6a:a7:24:b7:dc:f1:32:05:ad:5b:7e:a4:6a: 04:32:d4:0f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIOxeO0pvwj7UW7e1IDrb7PiMl88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMDE3WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTAwODEwMGUwMDVhYjdiNjI4N2MzYzJjNjBhODUwYTJl Y2RkNWJmOWFlNDdhNjRjNjlhZDQ3NzIyZDZkY2M5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0sP4l16JJc3nViGctH1AI6RXF+Y7a5zfUuqoEr1yy6tGZ +r4IAyT+R1oRhSbWEq4URHf4Io6Z0vVvow6aS+s19A0dlNCazl8HKxmfn25DvnAZ BFvUTAjPvnOT3oG/wRVRtwONNfIrLUuiCuDBrBXTvWd3shJ4MbwMFrK0Wd3PvmSl ndlD04V1MtsVfKm2PlX3K1/mJpwDHoDpRv9TsocMpIVhpLClFZxQWAOa/DCbxuI2 9FAQFTcX99JzHd9VXjJmRRkEjdQjxQH7g4UN1aiElHbohRY75BLFJWkgHOleHBqc Kq9bFT7jWPxW94Xn6OLZoDv7jOHP0Wl5jlzoka4XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwmWGygTo4V5f0oXfb/MXt3SU4GIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzNDM1MzRiLWY2NzMtNDgyMC1hMzVjLTc2MTk1M2RkODEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYSdAwDQYJKoZIhvcNAQELBQADggEBANADz13Eep4w5dngC4ahIVW7Zn/E PIKlYJ9s23V76EHoOcGgY1YPO1UgewFJ6a0+1YOysdmCoau89SdN08RFML8HpJQT tYXihpQwwNQ8jxpH1HzcJwExIpN3fI4zzKDrJ8uxQTU2jdDjw06RrJ3Rat8h7ZI0 JP/Ftp5ioZqD/uNnSQZ0rCn6d+s0EJuWpohIYogPLG7it/8S2L0XYtlIGrltIRYp WsaTwvPNvHErFHqX40kcHytg+9YBTeBPpUGlKWhbffuVQhD5gtqz6ovICD9YFOuA YJnxTX3JpXIQTfQd6hbCu6GpfeReyzRFM5Ecaqckt9zxMgWtW36kagQy1A8= -----END CERTIFICATE-----Generated at Mon May 4 21:40:02 2026 by rpki-client