$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c1e2604-6355-4061-8e4d-164d58041afe.roa File: 1c1e2604-6355-4061-8e4d-164d58041afe.roa (raw, json) Hash identifier: R3kTGI8bB8vqATu58CZfktYA4ZOfKKUv1GrHGF5kED0= Subject key identifier: F5:C2:07:7E:FD:49:D8:15:33:A5:08:85:FE:6E:86:A1:77:9F:D1:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 373D7CA2F71C8BB8AE2BE3BBA61767212A77B1DD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c1e2604-6355-4061-8e4d-164d58041afe.roa Signing time: Wed 29 Apr 2026 00:21:10 +0000 ROA not before: Wed 29 Apr 2026 00:21:10 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 66.219.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:3d:7c:a2:f7:1c:8b:b8:ae:2b:e3:bb:a6:17:67:21:2a:77:b1:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:21:10 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=54d7ba7189dcd51a8ecac95ec84f494f1d09cc1bbef3885e9906ac615cb1cd7b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0a:a7:7a:13:d9:b4:f7:b7:33:96:73:9c:a5: f1:84:51:8f:18:3e:08:94:9c:7c:58:5b:62:9e:b3: 3f:e1:3e:c3:1d:4c:ae:28:7a:4d:cb:20:aa:fe:b0: 54:5b:5e:cd:87:ae:47:6a:9b:24:d5:07:c4:0b:b5: 56:73:57:b1:ff:91:41:af:a7:4f:b5:18:ca:6b:cc: 27:a3:3c:1d:75:5f:22:10:25:d5:3b:e5:07:31:90: 9c:1f:c4:2d:dc:6e:cd:e8:a6:d4:f9:88:fe:4c:d0: fa:57:f8:87:c9:c9:b1:08:55:d1:52:af:74:7e:ba: f6:d8:f6:a5:dd:bc:02:4f:5e:1b:ea:a8:c1:7a:00: ec:21:b1:80:75:83:46:ad:16:3b:53:c6:8c:a6:13: 04:ab:3a:11:e1:1f:64:f7:76:a6:1a:c8:26:e1:b8: f4:a3:24:1f:b9:a2:58:86:04:95:06:14:67:eb:25: ce:51:fa:0c:d6:41:87:6a:7c:6d:84:fb:b9:2d:2f: c7:6c:13:d3:8f:1f:59:ff:9d:c0:48:7e:fc:43:ef: b2:84:0b:bd:d6:1a:25:67:9e:73:fb:fc:34:52:22: 0d:e4:d7:2e:62:39:34:f5:6c:bd:cf:54:a1:25:15: 61:08:68:88:89:d9:f1:c5:3a:bc:da:25:c9:4b:ed: 57:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C2:07:7E:FD:49:D8:15:33:A5:08:85:FE:6E:86:A1:77:9F:D1:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c1e2604-6355-4061-8e4d-164d58041afe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.219.64.0/19 Signature Algorithm: sha256WithRSAEncryption 2e:fe:d3:12:c5:bb:3d:c5:21:8a:6b:3c:25:47:eb:2f:4f:50: b6:9b:8d:7f:24:eb:4d:42:f1:e6:b8:cb:6b:38:5a:48:4e:6a: b0:e4:91:d9:ff:99:3a:29:be:45:db:94:e3:d9:79:24:f2:07: b3:46:91:f9:48:b6:e1:0f:40:b0:7d:be:87:79:1c:22:1c:90: 9b:ff:69:78:bd:a5:f1:a3:49:e9:c6:11:72:75:58:a8:b9:5e: 9f:4f:8f:da:a1:5d:85:c7:90:9f:d7:38:0e:b1:4b:85:30:2e: c8:43:51:b5:fa:09:72:dd:7f:05:05:be:22:ce:87:08:c0:d3: e3:28:86:f3:b1:c5:c3:67:27:f7:ec:fb:36:bf:f0:82:63:64: 2e:90:f8:fb:06:9b:fe:7d:08:f9:29:48:04:46:02:8c:0a:5e: f8:2a:e6:f2:0a:24:09:d2:f3:fa:b9:b3:b4:f6:6c:bf:ac:23: 88:fc:14:ff:fc:87:28:dc:78:c9:2b:a8:30:7b:54:07:78:b0: 1c:4f:63:bb:4f:b6:8e:3b:a9:6e:d9:9e:90:5a:e9:96:98:ce: e0:f0:ba:fe:6c:82:2e:6e:76:76:3d:25:0a:3a:15:f4:75:93: cd:12:e3:0e:18:ff:71:84:18:2b:48:55:5d:60:8b:b9:44:72: 2c:16:2a:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNz18ovcci7iuK+O7phdnISp3sd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAyMTEwWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGQ3YmE3MTg5ZGNkNTFhOGVjYWM5NWVjODRmNDk0ZjFk MDljYzFiYmVmMzg4NWU5OTA2YWM2MTVjYjFjZDdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyCqd6E9m097czlnOcpfGEUY8YPgiUnHxYW2Kesz/hPsMd TK4oek3LIKr+sFRbXs2HrkdqmyTVB8QLtVZzV7H/kUGvp0+1GMprzCejPB11XyIQ JdU75QcxkJwfxC3cbs3optT5iP5M0PpX+IfJybEIVdFSr3R+uvbY9qXdvAJPXhvq qMF6AOwhsYB1g0atFjtTxoymEwSrOhHhH2T3dqYayCbhuPSjJB+5oliGBJUGFGfr Jc5R+gzWQYdqfG2E+7ktL8dsE9OPH1n/ncBIfvxD77KEC73WGiVnnnP7/DRSIg3k 1y5iOTT1bL3PVKElFWEIaIiJ2fHFOrzaJclL7Vf7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9cIHfv1J2BUzpQiF/m6GoXef0RwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjMWUyNjA0LTYzNTUtNDA2MS04ZTRkLTE2NGQ1ODA0MWFmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVC20AwDQYJKoZIhvcNAQELBQADggEBAC7+0xLFuz3FIYprPCVH6y9PULab jX8k601C8ea4y2s4WkhOarDkkdn/mTopvkXblOPZeSTyB7NGkflItuEPQLB9vod5 HCIckJv/aXi9pfGjSenGEXJ1WKi5Xp9Pj9qhXYXHkJ/XOA6xS4UwLshDUbX6CXLd fwUFviLOhwjA0+MohvOxxcNnJ/fs+za/8IJjZC6Q+PsGm/59CPkpSARGAowKXvgq 5vIKJAnS8/q5s7T2bL+sI4j8FP/8hyjceMkrqDB7VAd4sBxPY7tPto47qW7ZnpBa 6ZaYzuDwuv5sgi5udnY9JQo6FfR1k80S4w4Y/3GEGCtIVV1gi7lEciwWKtI= -----END CERTIFICATE-----Generated at Sun May 3 14:47:18 2026 by rpki-client