$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa File: 0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa (raw, json) Hash identifier: X9ibutuwujCnFcZRc1/zBfvt60NoRXB8qE3pNju/Pok= Subject key identifier: 23:95:21:D5:EE:A8:4E:59:8A:F6:46:47:04:91:05:16:98:D2:5D:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AA4DB3D52AF0427E2FA65A2D340D57E82976C8E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa Signing time: Fri 01 May 2026 00:41:29 +0000 ROA not before: Fri 01 May 2026 00:41:29 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:a4:db:3d:52:af:04:27:e2:fa:65:a2:d3:40:d5:7e:82:97:6c:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:41:29 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=b9cc5ec35adbcc4b4dc9e93813d9b3327f6f6ae8b94e017429456bd2f2821494, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:40:3f:0d:70:05:1a:c4:31:07:cb:3d:31: 6b:6d:c5:ce:25:2a:b0:58:f2:8f:ed:f6:a0:61:b2: 01:a4:60:30:83:8d:c5:3a:61:71:72:4d:9d:4c:22: 4f:3d:5a:fd:05:aa:ad:52:21:41:79:a2:9b:f4:7b: a0:41:79:35:1a:82:44:65:f6:ce:af:79:fa:99:b9: af:bf:10:f3:4a:64:4c:30:86:a9:9b:20:65:52:96: bd:11:31:96:1c:84:3d:87:1e:b6:4c:4c:15:21:e4: 70:21:5b:ae:f1:6d:9a:e4:3c:46:cd:aa:5d:bd:03: ab:b0:40:4c:6e:a1:d5:c3:5e:a2:16:31:ed:70:14: 4a:22:1a:09:c0:52:e9:61:6f:4f:b5:3a:3a:28:8a: 2b:1d:a7:45:b8:54:de:0b:0c:40:58:46:8f:2a:1a: 2c:43:02:36:a2:5c:cd:7c:f9:07:23:6c:eb:0d:1d: c2:a9:6e:0b:7b:f6:30:2f:64:96:c4:65:f0:c1:06: 1a:1b:43:40:f9:a2:c3:7c:85:20:64:b9:88:ea:0b: 6a:b8:43:ef:ac:39:74:df:29:48:89:c3:0d:0f:be: f6:1e:7d:a1:f2:b1:8e:19:99:de:7e:e3:a2:23:8c: e3:4a:d0:0d:30:98:a8:cc:22:c9:6e:89:ee:a4:86: a2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:95:21:D5:EE:A8:4E:59:8A:F6:46:47:04:91:05:16:98:D2:5D:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.73.0/24 Signature Algorithm: sha256WithRSAEncryption 57:d7:a5:68:56:ae:8a:8e:85:ad:72:87:7a:d0:7a:3b:97:5e: a9:a5:9d:89:c8:af:ac:0e:e2:23:ab:f1:46:d4:b6:fa:30:c1: de:0c:62:57:5b:de:6f:b5:ff:2c:de:44:84:37:9d:44:f1:fa: 91:c6:a9:7e:54:79:e5:87:f9:ab:15:af:53:92:bc:e9:ed:c4: 3d:76:47:c2:0e:36:b6:a1:8a:39:b4:28:99:5b:e8:42:ba:a5: 91:98:ca:b3:97:2c:3a:37:8c:f5:1b:f1:2a:38:ba:a5:82:3a: 67:e5:a6:8a:f5:30:37:9f:4c:55:aa:d9:20:01:1b:86:98:00: 00:40:22:e8:08:ff:8c:46:ef:8f:79:3c:eb:e2:7b:ea:5a:12: 78:68:5c:42:82:9d:e7:cd:ac:fb:f1:57:29:16:77:d3:ec:6d: 0e:3a:87:4c:45:23:9c:9c:5d:2e:56:91:ff:c3:fb:e3:62:b6: 2a:0d:b5:2a:eb:33:22:95:03:c5:15:b4:9c:91:ce:2d:aa:f2: a5:dc:f2:1a:ef:22:eb:a0:91:f6:37:f0:2f:b0:df:6d:4f:39: 6c:93:fd:50:1c:34:92:b8:82:4e:76:cd:af:15:2c:d0:07:92: e8:15:2d:2b:dc:af:d7:43:c6:7a:5f:fa:04:e0:59:af:57:b9: b6:23:8b:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKqTbPVKvBCfi+mWi00DVfoKXbI4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDA0MTI5WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWNjNWVjMzVhZGJjYzRiNGRjOWU5MzgxM2Q5YjMzMjdm NmY2YWU4Yjk0ZTAxNzQyOTQ1NmJkMmYyODIxNDk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBskA/DXAFGsQxB8s9MWttxc4lKrBY8o/t9qBhsgGkYDCD jcU6YXFyTZ1MIk89Wv0Fqq1SIUF5opv0e6BBeTUagkRl9s6vefqZua+/EPNKZEww hqmbIGVSlr0RMZYchD2HHrZMTBUh5HAhW67xbZrkPEbNql29A6uwQExuodXDXqIW Me1wFEoiGgnAUulhb0+1Ojooiisdp0W4VN4LDEBYRo8qGixDAjaiXM18+QcjbOsN HcKpbgt79jAvZJbEZfDBBhobQ0D5osN8hSBkuYjqC2q4Q++sOXTfKUiJww0PvvYe faHysY4Zmd5+46IjjONK0A0wmKjMIsluie6khqItAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI5Uh1e6oTlmK9kZHBJEFFpjSXZgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjMjkxYjRmLTg2YzgtNGE2Yy05MDcyLTllZjQ2MDY5ZDNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EkwDQYJKoZIhvcNAQELBQADggEBAFfXpWhWroqOha1yh3rQejuXXqml nYnIr6wO4iOr8UbUtvowwd4MYldb3m+1/yzeRIQ3nUTx+pHGqX5UeeWH+asVr1OS vOntxD12R8IONrahijm0KJlb6EK6pZGYyrOXLDo3jPUb8So4uqWCOmflpor1MDef TFWq2SABG4aYAABAIugI/4xG7495POvie+paEnhoXEKCnefNrPvxVykWd9PsbQ46 h0xFI5ycXS5Wkf/D++NitioNtSrrMyKVA8UVtJyRzi2q8qXc8hrvIuugkfY38C+w 321POWyT/VAcNJK4gk52za8VLNAHkugVLSvcr9dDxnpf+gTgWa9XubYji+8= -----END CERTIFICATE-----Generated at Sun May 3 14:46:11 2026 by rpki-client