$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/214ee2ee-d5e9-4d97-9783-3c0ff7933f36.roa File: 214ee2ee-d5e9-4d97-9783-3c0ff7933f36.roa (raw, json) Hash identifier: En3wV70C+STuOWAABNWGII+0mAKjPPTn/i7LllHNpyQ= Subject key identifier: 79:CF:17:E0:29:52:9D:D9:BA:4D:E3:54:56:7E:44:D6:8B:58:B2:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D955F73F5D604F2CDA943FA0930C327709F80F3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/214ee2ee-d5e9-4d97-9783-3c0ff7933f36.roa Signing time: Fri 01 May 2026 00:20:07 +0000 ROA not before: Fri 01 May 2026 00:20:07 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.152.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:95:5f:73:f5:d6:04:f2:cd:a9:43:fa:09:30:c3:27:70:9f:80:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:20:07 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=426dfda986b4109ece25f3aa6e2b03e113d311599c2237cb1efd2453bb76746c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c9:f2:ef:8f:2f:ba:80:df:a8:d0:5f:06:d2: 49:62:28:c0:83:58:0f:ec:fa:6c:e6:8d:e1:4e:ea: 15:d3:40:23:e6:fc:09:5d:45:95:42:71:03:12:95: 29:00:37:89:a8:e1:bc:89:41:d1:93:e0:65:d8:f5: 48:f6:b0:7a:1d:5b:4b:3f:48:7c:6f:4b:71:b8:f8: 33:c6:07:74:3e:b4:dd:6a:b2:0a:67:e8:f8:cd:7e: c4:00:ba:65:26:e4:3f:10:81:fa:27:43:09:f4:f9: bd:f8:36:9e:03:e7:40:a8:ec:41:e3:ff:12:27:b2: 4f:2f:b7:ad:52:bc:e0:32:43:1a:27:7f:6a:62:86: e5:88:f6:a5:36:9f:9f:e2:17:ed:d7:f8:08:21:7c: 38:55:09:50:2f:fd:eb:3e:36:fc:b0:05:c4:ce:0d: d2:18:61:b6:eb:4a:f5:f8:1c:d0:62:ee:df:0d:00: 2d:fb:45:5f:30:60:22:ab:65:2e:46:ee:38:44:4b: 2e:c0:8e:82:9d:a7:d5:bc:06:0c:d9:8b:cd:8e:ca: a5:9b:43:34:95:19:2b:e6:f2:73:56:be:fd:f6:7c: a1:ef:bd:c1:c2:01:8d:f8:4f:f6:c8:a5:a6:bb:c3: df:de:19:50:84:c7:27:84:0b:8f:f5:2a:ff:72:7f: 34:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CF:17:E0:29:52:9D:D9:BA:4D:E3:54:56:7E:44:D6:8B:58:B2:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/214ee2ee-d5e9-4d97-9783-3c0ff7933f36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.152.132.0/24 Signature Algorithm: sha256WithRSAEncryption d2:43:90:31:cc:41:a5:42:82:b5:86:ce:2e:ac:0a:1b:64:5f: 19:ec:f4:ac:cd:c2:a8:38:7b:f6:4f:75:50:53:38:fc:c1:53: 02:9b:c4:cd:be:00:8e:b9:09:c4:28:e7:ac:fa:93:d2:55:6e: be:ef:a9:a9:bb:fa:35:cd:77:5a:e9:dd:21:db:0f:f5:a6:06: 90:1a:81:a5:a8:3f:30:14:75:e9:ec:ec:ae:d2:ab:cb:30:03: f9:8f:76:1f:e1:87:fc:94:b0:41:7c:4a:12:9e:e7:34:bc:86: f9:2a:ea:34:3a:aa:8f:ac:c2:48:08:44:ad:cf:21:69:c2:b1: 22:2c:fc:9b:01:3f:6a:66:51:9c:87:4d:18:58:e0:76:e8:05: cb:b0:c5:7b:4e:83:63:36:04:6d:40:2a:16:14:10:ec:76:61: 71:f9:f6:47:62:43:66:47:7c:2a:95:b2:2a:9b:b7:05:48:aa: 82:6e:de:db:2b:e8:1d:94:f5:6d:13:55:5f:ba:cf:9d:19:9c: bf:85:ff:cd:60:95:f4:d3:7f:49:f7:2d:2e:2e:e0:0f:2b:bd: 58:d0:e9:76:0d:35:45:5b:28:6d:34:f6:44:21:c8:54:64:d3: 1d:91:5d:88:66:51:1c:c1:6d:81:ae:95:90:b2:84:cd:4b:49: c4:c3:53:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPZVfc/XWBPLNqUP6CTDDJ3CfgPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAyMDA3WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjZkZmRhOTg2YjQxMDllY2UyNWYzYWE2ZTJiMDNlMTEz ZDMxMTU5OWMyMjM3Y2IxZWZkMjQ1M2JiNzY3NDZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMyfLvjy+6gN+o0F8G0kliKMCDWA/s+mzmjeFO6hXTQCPm /AldRZVCcQMSlSkAN4mo4byJQdGT4GXY9Uj2sHodW0s/SHxvS3G4+DPGB3Q+tN1q sgpn6PjNfsQAumUm5D8QgfonQwn0+b34Np4D50Co7EHj/xInsk8vt61SvOAyQxon f2pihuWI9qU2n5/iF+3X+AghfDhVCVAv/es+NvywBcTODdIYYbbrSvX4HNBi7t8N AC37RV8wYCKrZS5G7jhESy7AjoKdp9W8BgzZi82OyqWbQzSVGSvm8nNWvv32fKHv vcHCAY34T/bIpaa7w9/eGVCExyeEC4/1Kv9yfzQBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUec8X4ClSndm6TeNUVn5E1otYspEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxNGVlMmVlLWQ1ZTktNGQ5Ny05NzgzLTNjMGZmNzkzM2YzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABrmIQwDQYJKoZIhvcNAQELBQADggEBANJDkDHMQaVCgrWGzi6sChtkXxns 9KzNwqg4e/ZPdVBTOPzBUwKbxM2+AI65CcQo56z6k9JVbr7vqam7+jXNd1rp3SHb D/WmBpAagaWoPzAUdens7K7Sq8swA/mPdh/hh/yUsEF8ShKe5zS8hvkq6jQ6qo+s wkgIRK3PIWnCsSIs/JsBP2pmUZyHTRhY4HboBcuwxXtOg2M2BG1AKhYUEOx2YXH5 9kdiQ2ZHfCqVsiqbtwVIqoJu3tsr6B2U9W0TVV+6z50ZnL+F/81glfTTf0n3LS4u 4A8rvVjQ6XYNNUVbKG009kQhyFRk0x2RXYhmURzBbYGulZCyhM1LScTDU1o= -----END CERTIFICATE-----Generated at Sun May 3 14:44:55 2026 by rpki-client