$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/121a5400-f940-428a-9bc9-2251735f0c70.roa File: 121a5400-f940-428a-9bc9-2251735f0c70.roa (raw, json) Hash identifier: jPOLZwW/O9R14KuMfQqMbtL0i/1JdmdhTXyrT2SHFbI= Subject key identifier: 6B:B3:CA:6A:C4:FF:00:F6:8C:4C:CE:D8:87:87:69:D4:2F:28:B6:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39BEA19A4BB6445013404BE5BE3673F9D684A37A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/121a5400-f940-428a-9bc9-2251735f0c70.roa Signing time: Fri 01 May 2026 00:21:05 +0000 ROA not before: Fri 01 May 2026 00:21:05 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 57.204.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:be:a1:9a:4b:b6:44:50:13:40:4b:e5:be:36:73:f9:d6:84:a3:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:21:05 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=afcd62cf845eef7efa5332d5ac9ba5cbdde166eebec092c8f8707cf0353c0374, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:34:08:bc:44:d2:a8:fc:0a:eb:be:df:b1:f5: 24:02:df:8a:d6:49:91:ff:41:c3:2a:4f:3d:ea:f5: 22:9d:65:c5:7f:d3:ca:6b:9a:cb:29:ad:91:0a:6e: ed:37:8e:41:38:b3:4b:ba:67:02:ed:85:02:f8:09: 71:22:f4:b4:2f:21:05:59:ce:16:92:08:34:e7:db: 51:a5:43:fe:f8:26:66:41:39:d5:ac:48:15:80:2b: ae:24:cd:1f:6b:0e:90:6f:30:d3:fe:40:59:dc:ba: e6:fb:91:01:84:80:13:fe:c5:38:7c:53:d5:c4:06: 15:04:57:29:f9:0c:ba:80:68:55:1d:f3:e3:09:83: f3:2d:e2:e3:21:f4:54:29:24:00:98:ca:ce:de:d2: a4:81:ff:67:9e:d5:f2:15:2b:27:7c:45:d5:c9:cc: b4:34:c3:e7:25:e5:2e:3a:c7:c2:d8:c9:08:5e:d8: 90:8e:52:6f:76:a7:70:71:27:3b:e5:0a:06:fb:0a: 90:c8:32:ca:28:f2:53:ef:f1:26:f0:c0:7f:12:ed: 8e:85:cc:f6:b0:a3:44:ee:f5:7b:e2:1c:e4:c6:b0: ad:47:af:a1:1f:c2:37:5e:1a:7a:01:7e:d8:a5:6d: 22:a1:e3:64:17:7c:1b:65:27:ba:0d:f0:a4:4c:1e: ae:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B3:CA:6A:C4:FF:00:F6:8C:4C:CE:D8:87:87:69:D4:2F:28:B6:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/121a5400-f940-428a-9bc9-2251735f0c70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.204.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:e6:51:4d:57:78:fc:1b:81:26:ae:3f:bc:d1:1b:4e:ae:cd: c3:e4:16:a1:d1:6c:13:db:48:f3:6d:56:7b:15:d5:d7:c8:8e: 14:39:f2:63:79:b5:fa:19:f9:97:5d:1c:73:6a:4b:32:2e:89: e3:1c:45:0a:cf:6e:9b:45:4a:24:35:b4:12:76:f2:3a:74:94: 0c:9b:ae:8a:43:18:10:90:5e:0e:c4:a1:64:98:05:5c:ba:a4: 7c:5e:86:12:0a:1a:a5:f3:c7:36:3c:bd:13:b0:85:a0:65:93: 79:a4:10:1a:f8:50:ca:6d:b8:67:7e:fc:c0:a0:99:1c:6c:f8: 12:21:20:6a:44:61:ef:7c:e9:f9:3f:86:19:52:5c:88:63:ac: 95:c4:91:92:da:c0:45:1b:d4:81:09:74:bb:14:37:4d:83:22: 52:8d:fc:98:9c:e0:65:de:34:14:0b:16:24:11:b7:15:76:10: 9d:a2:7b:98:55:0d:9b:9c:bf:ab:67:1e:99:23:e5:ce:7f:2f: f2:70:21:3f:6c:ef:f1:6c:11:ff:57:5a:5b:0f:42:5a:7b:cb: f6:32:c6:a9:6f:4d:e9:cf:76:3f:12:29:42:31:68:c5:08:41: 66:28:14:fe:8f:2a:91:56:83:0a:3a:12:3b:00:6d:98:9d:51: 4b:9a:fe:35 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOb6hmku2RFATQEvlvjZz+daEo3owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAyMTA1WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZmNkNjJjZjg0NWVlZjdlZmE1MzMyZDVhYzliYTVjYmRk ZTE2NmVlYmVjMDkyYzhmODcwN2NmMDM1M2MwMzc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtNAi8RNKo/Arrvt+x9SQC34rWSZH/QcMqTz3q9SKdZcV/ 08prmssprZEKbu03jkE4s0u6ZwLthQL4CXEi9LQvIQVZzhaSCDTn21GlQ/74JmZB OdWsSBWAK64kzR9rDpBvMNP+QFncuub7kQGEgBP+xTh8U9XEBhUEVyn5DLqAaFUd 8+MJg/Mt4uMh9FQpJACYys7e0qSB/2ee1fIVKyd8RdXJzLQ0w+cl5S46x8LYyQhe 2JCOUm92p3BxJzvlCgb7CpDIMsoo8lPv8SbwwH8S7Y6FzPawo0Tu9XviHOTGsK1H r6EfwjdeGnoBftilbSKh42QXfBtlJ7oN8KRMHq5vAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUa7PKasT/APaMTM7Yh4dp1C8otgkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyMWE1NDAwLWY5NDAtNDI4YS05YmM5LTIyNTE3MzVmMGM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5zDANBgkqhkiG9w0BAQsFAAOCAQEAl+ZRTVd4/BuBJq4/vNEbTq7Nw+QW odFsE9tI821WexXV18iOFDnyY3m1+hn5l10cc2pLMi6J4xxFCs9um0VKJDW0Enby OnSUDJuuikMYEJBeDsShZJgFXLqkfF6GEgoapfPHNjy9E7CFoGWTeaQQGvhQym24 Z378wKCZHGz4EiEgakRh73zp+T+GGVJciGOslcSRktrARRvUgQl0uxQ3TYMiUo38 mJzgZd40FAsWJBG3FXYQnaJ7mFUNm5y/q2cemSPlzn8v8nAhP2zv8WwR/1daWw9C WnvL9jLGqW9N6c92PxIpQjFoxQhBZigU/o8qkVaDCjoSOwBtmJ1RS5r+NQ== -----END CERTIFICATE-----Generated at Sun May 3 14:47:38 2026 by rpki-client