$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1688a7fb-3cd3-4e47-8793-7de68d9ef090.roa File: 1688a7fb-3cd3-4e47-8793-7de68d9ef090.roa (raw, json) Hash identifier: 4QDtsXlSAO8SNP+8U9r1ULeTKD7jThSciV+h4cgjUgY= Subject key identifier: D2:DB:64:FF:0D:92:B1:13:27:28:C7:9A:8D:5A:12:65:19:58:88:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 114F618AD375637146419DE619C9147DA1E13E6C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1688a7fb-3cd3-4e47-8793-7de68d9ef090.roa Signing time: Mon 04 May 2026 00:41:27 +0000 ROA not before: Mon 04 May 2026 00:41:27 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4f:61:8a:d3:75:63:71:46:41:9d:e6:19:c9:14:7d:a1:e1:3e:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:41:27 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=eb424734b819e450d8df9f49a0e1320e64dfb1d4d8e597e07d85c529749759fb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7a:6d:50:0f:f7:af:0c:8d:13:e4:e2:7a:b1: 15:db:3b:d9:37:d6:13:a2:01:ba:aa:b9:4a:56:eb: 5a:b2:c6:ea:ca:d9:ba:f0:a8:f8:b0:c7:76:bb:f1: 0e:b9:bf:bc:7b:03:82:b3:e6:2f:8c:bd:3a:2f:b6: 4b:d5:0e:42:0b:82:74:93:57:6a:54:48:1f:35:5b: a9:4f:b2:20:cb:39:62:f0:5d:a9:bc:1c:69:75:db: bc:e8:14:31:a6:58:c5:b6:e0:3d:2e:b9:ed:fd:12: d1:02:45:82:7c:1d:73:c6:a7:d6:88:f2:87:0f:52: 74:73:4e:ec:49:4f:01:a9:a4:7f:61:7f:fa:91:c0: f0:13:61:27:1e:23:c5:f8:10:0a:2a:94:55:78:44: be:41:4c:f8:7c:ca:63:e0:d6:5f:0a:35:0a:a1:d0: 33:65:2c:ea:f4:40:06:23:d1:5c:81:ec:30:3f:7a: 57:62:b8:a3:94:50:a8:ad:85:80:fc:92:63:dc:43: 3d:f7:61:4e:cf:57:a0:9b:be:1e:b4:af:11:27:55: 2f:21:fc:fe:ed:1c:ab:5f:7f:0f:8b:59:cd:ce:6d: 7c:24:eb:24:ca:77:2f:dd:03:f8:f5:68:bd:4e:5e: 5e:b1:9d:04:f2:da:9d:d2:36:5f:bf:7d:84:a2:7c: c3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:DB:64:FF:0D:92:B1:13:27:28:C7:9A:8D:5A:12:65:19:58:88:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1688a7fb-3cd3-4e47-8793-7de68d9ef090.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.192.0/19 Signature Algorithm: sha256WithRSAEncryption bd:5f:59:6a:96:08:dc:61:42:03:c7:05:5d:67:b9:d6:c0:31: 3e:7e:c4:01:e8:3b:7b:b3:b8:4a:d9:c1:7b:a3:ea:25:d5:0b: e9:20:0b:cd:29:f4:40:49:26:1d:69:4a:4f:9f:c1:6c:55:f1: ee:b0:6d:37:41:c2:cd:a7:91:04:97:77:93:a5:7a:16:98:a5: 2a:e5:dd:1a:33:51:ac:48:4e:16:d9:fd:29:eb:c5:bb:51:a7: ae:cc:c8:bd:a1:94:5a:a7:f4:fe:b1:e5:21:71:50:14:ae:bd: 2b:be:03:dd:c1:4b:b8:34:14:20:58:48:7e:c9:ee:c9:28:fc: d4:5b:df:c4:38:b1:ca:27:ac:8f:8e:96:57:da:97:92:fa:c1: 1a:f9:59:fe:26:be:44:63:20:94:f6:72:45:65:cf:a2:73:2c: ca:13:43:16:54:b0:fd:ce:df:ca:59:16:f8:9d:93:8f:d3:aa: 13:0e:f1:f5:23:6c:a2:be:93:5e:00:81:dc:24:2a:50:6d:77: d8:50:7c:9b:94:83:c0:96:51:0e:35:37:2a:ad:c2:e6:bf:b6: 2a:69:41:5a:8f:de:3d:67:7c:f7:56:91:96:cc:16:47:8b:fa: c1:ae:7b:c6:64:d1:ff:ef:80:29:d6:e1:20:06:eb:23:51:75: 51:8c:39:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEU9hitN1Y3FGQZ3mGckUfaHhPmwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDA0MTI3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjQyNDczNGI4MTllNDUwZDhkZjlmNDlhMGUxMzIwZTY0 ZGZiMWQ0ZDhlNTk3ZTA3ZDg1YzUyOTc0OTc1OWZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXem1QD/evDI0T5OJ6sRXbO9k31hOiAbqquUpW61qyxurK 2brwqPiwx3a78Q65v7x7A4Kz5i+MvTovtkvVDkILgnSTV2pUSB81W6lPsiDLOWLw Xam8HGl127zoFDGmWMW24D0uue39EtECRYJ8HXPGp9aI8ocPUnRzTuxJTwGppH9h f/qRwPATYSceI8X4EAoqlFV4RL5BTPh8ymPg1l8KNQqh0DNlLOr0QAYj0VyB7DA/ eldiuKOUUKithYD8kmPcQz33YU7PV6Cbvh60rxEnVS8h/P7tHKtffw+LWc3ObXwk 6yTKdy/dA/j1aL1OXl6xnQTy2p3SNl+/fYSifMNpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0ttk/w2SsRMnKMeajVoSZRlYiNgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2ODhhN2ZiLTNjZDMtNGU0Ny04NzkzLTdkZTY4ZDllZjA5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUNgMAwDQYJKoZIhvcNAQELBQADggEBAL1fWWqWCNxhQgPHBV1nudbAMT5+ xAHoO3uzuErZwXuj6iXVC+kgC80p9EBJJh1pSk+fwWxV8e6wbTdBws2nkQSXd5Ol ehaYpSrl3RozUaxIThbZ/SnrxbtRp67MyL2hlFqn9P6x5SFxUBSuvSu+A93BS7g0 FCBYSH7J7sko/NRb38Q4sconrI+Ollfal5L6wRr5Wf4mvkRjIJT2ckVlz6JzLMoT QxZUsP3O38pZFvidk4/TqhMO8fUjbKK+k14AgdwkKlBtd9hQfJuUg8CWUQ41Nyqt wua/tippQVqP3j1nfPdWkZbMFkeL+sGue8Zk0f/vgCnW4SAG6yNRdVGMOc0= -----END CERTIFICATE-----Generated at Mon May 4 21:37:35 2026 by rpki-client