$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ddeb352-141f-467b-8491-f45b959c60b1.roa File: 0ddeb352-141f-467b-8491-f45b959c60b1.roa (raw, json) Hash identifier: vH+n+MKqQTc84iuUyGkE8lmjGPv07OwA5BNPEVZfHQs= Subject key identifier: 71:3D:7E:62:C2:E4:3D:B6:87:EF:67:A5:0A:E9:AB:A8:B1:9F:D7:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C74B6FB36E7AF26D9BE00C74FEDA76C8F61EFF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ddeb352-141f-467b-8491-f45b959c60b1.roa Signing time: Wed 29 Apr 2026 00:00:05 +0000 ROA not before: Wed 29 Apr 2026 00:00:05 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 209.54.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:74:b6:fb:36:e7:af:26:d9:be:00:c7:4f:ed:a7:6c:8f:61:ef:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:00:05 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=e97061ccb05181e9e10733aae96632fa9b962b48ffaea8fb5738d83a09630d86, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:12:22:a7:79:e2:e0:2e:1d:c4:28:b3:0a:6b: 90:ed:b8:02:5e:8c:13:df:15:e3:a2:f7:89:ec:42: 51:c4:86:3f:30:83:7c:56:8c:0b:73:dd:a6:fb:44: e7:a7:9e:91:b2:73:dc:0d:9a:b0:a8:f2:d1:e4:bf: 17:48:d5:53:15:d3:85:94:e9:60:e9:88:bb:ed:03: 72:d0:8d:fc:89:78:d6:0c:ac:42:20:d6:40:2b:69: 27:83:d9:1b:85:b5:90:df:f7:01:bb:78:08:a3:0f: b2:40:c9:a5:84:0c:a5:39:7f:e0:69:5a:9a:72:a8: c2:4a:4b:d4:ac:4d:27:d7:10:d8:7e:1e:81:f8:ef: 85:be:1f:32:4d:64:9e:49:ce:15:59:57:4e:4a:f1: 06:36:8a:d5:12:2b:51:d2:ca:17:01:ad:83:1b:4d: e9:cb:96:d4:b7:50:e1:5a:07:a7:b6:32:f0:89:76: 9b:c2:d2:c2:7c:83:c9:6b:2b:a9:ec:5e:79:0e:2a: 08:f2:35:0a:81:76:1a:65:6e:12:6b:3c:1a:b0:70: 64:79:d1:cb:aa:4b:f3:69:02:b2:7e:74:2b:52:bb: 8d:92:f1:df:e3:dc:d8:2d:fa:94:e2:98:a5:c1:e4: cd:12:4d:56:58:ab:ed:35:ec:b0:6d:ba:cd:98:64: 9e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3D:7E:62:C2:E4:3D:B6:87:EF:67:A5:0A:E9:AB:A8:B1:9F:D7:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ddeb352-141f-467b-8491-f45b959c60b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.54.176.0/21 Signature Algorithm: sha256WithRSAEncryption 41:d1:07:20:1c:51:99:0e:83:86:c6:49:d6:a7:89:b9:f7:99: 59:ad:ff:e0:e6:a4:47:81:cb:b4:6b:7d:e0:78:d0:a2:91:f6: 6e:50:0f:fd:82:2a:a2:9a:5f:e9:7e:1b:0c:cf:cd:94:50:f3: a4:bd:ee:1d:6a:7c:95:d4:88:6d:8e:ba:42:53:d1:6e:29:25: dd:f0:ee:3d:cf:5d:71:a1:d2:aa:04:aa:82:8e:6e:dd:63:63: 0f:d3:bf:c8:6e:42:04:01:7c:7e:71:51:e3:4c:58:c1:f8:cd: bd:c4:de:4c:6e:0d:a4:d5:e5:9c:c7:e0:68:19:a1:f5:c1:9c: 19:1c:26:8f:6c:6e:e2:a1:7c:7e:38:01:b6:27:8f:17:29:de: bb:b2:f1:c9:b0:15:5e:f7:17:21:78:9f:05:3b:a0:12:a4:cf: 40:64:57:f8:55:61:bf:cf:40:60:ed:e2:df:aa:fe:0c:5d:e2: 21:2f:c3:8c:0c:fd:25:0f:90:1d:84:60:b2:a1:e0:91:ca:bc: 0f:9a:89:b5:64:df:76:d9:2a:74:50:f9:80:98:d7:bb:34:bf: 46:6b:c8:f2:f7:ab:6b:e0:5a:ac:5e:90:29:a0:e7:c1:d3:b5: 89:78:5a:71:54:e3:69:db:24:51:9e:a1:81:93:cd:a5:cb:54: 7f:7d:04:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbHS2+zbnrybZvgDHT+2nbI9h7/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAwMDA1WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTcwNjFjY2IwNTE4MWU5ZTEwNzMzYWFlOTY2MzJmYTli OTYyYjQ4ZmZhZWE4ZmI1NzM4ZDgzYTA5NjMwZDg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmEiKneeLgLh3EKLMKa5DtuAJejBPfFeOi94nsQlHEhj8w g3xWjAtz3ab7ROennpGyc9wNmrCo8tHkvxdI1VMV04WU6WDpiLvtA3LQjfyJeNYM rEIg1kAraSeD2RuFtZDf9wG7eAijD7JAyaWEDKU5f+BpWppyqMJKS9SsTSfXENh+ HoH474W+HzJNZJ5JzhVZV05K8QY2itUSK1HSyhcBrYMbTenLltS3UOFaB6e2MvCJ dpvC0sJ8g8lrK6nsXnkOKgjyNQqBdhplbhJrPBqwcGR50cuqS/NpArJ+dCtSu42S 8d/j3Ngt+pTimKXB5M0STVZYq+017LBtus2YZJ7vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcT1+YsLkPbaH72elCumrqLGf12EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkZGViMzUyLTE0MWYtNDY3Yi04NDkxLWY0NWI5NTljNjBiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRNrAwDQYJKoZIhvcNAQELBQADggEBAEHRByAcUZkOg4bGSdanibn3mVmt /+DmpEeBy7RrfeB40KKR9m5QD/2CKqKaX+l+GwzPzZRQ86S97h1qfJXUiG2OukJT 0W4pJd3w7j3PXXGh0qoEqoKObt1jYw/Tv8huQgQBfH5xUeNMWMH4zb3E3kxuDaTV 5ZzH4GgZofXBnBkcJo9sbuKhfH44AbYnjxcp3ruy8cmwFV73FyF4nwU7oBKkz0Bk V/hVYb/PQGDt4t+q/gxd4iEvw4wM/SUPkB2EYLKh4JHKvA+aibVk33bZKnRQ+YCY 17s0v0ZryPL3q2vgWqxekCmg58HTtYl4WnFU42nbJFGeoYGTzaXLVH99BIg= -----END CERTIFICATE-----Generated at Mon May 4 21:40:03 2026 by rpki-client