$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2183ab3a-e81a-44c4-8358-256a616f7a12.roa File: 2183ab3a-e81a-44c4-8358-256a616f7a12.roa (raw, json) Hash identifier: 2IyMrfF0/vSkoFwDprKmfF6LBl+i8lWpbwhRHjWSaAw= Subject key identifier: E0:F1:38:55:82:61:25:FA:55:81:17:EB:04:88:F2:CF:B5:AF:81:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F7D4D713FA3861728FB91C2F902C7FF3420940B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2183ab3a-e81a-44c4-8358-256a616f7a12.roa Signing time: Fri 01 May 2026 00:30:34 +0000 ROA not before: Fri 01 May 2026 00:30:34 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:7d:4d:71:3f:a3:86:17:28:fb:91:c2:f9:02:c7:ff:34:20:94:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:30:34 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=fa09e9a3c9feb95f48d7e74aea910503eeb31cacb8d0a5f44ac1d6fd3ea11abb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:00:5d:bb:f3:82:8b:77:3b:ec:b2:5e:32:68: df:87:91:d0:bb:52:0f:15:48:21:59:9a:ac:ec:72: a5:24:bf:f4:47:99:4f:2b:0c:db:78:e1:ed:07:85: dd:92:7a:bc:1f:05:8a:d3:63:6d:87:f0:50:93:19: 43:9d:54:cb:13:2f:a8:a1:a2:3d:71:d4:2b:e8:fd: 1b:ad:3c:01:9f:ec:dc:4b:c2:4a:95:b2:e0:9f:fc: 14:02:64:d7:b9:c0:b9:51:1a:1f:e1:39:a4:12:35: d2:7e:28:e5:61:1d:a7:85:44:c6:80:b7:b0:d7:85: 76:2d:dd:02:4e:8d:b4:bb:cf:0f:bb:83:d7:30:b4: 57:52:6c:17:ea:2c:a6:29:3b:65:32:75:b5:38:1d: 19:32:11:f6:da:31:5c:6e:c2:9b:2a:5f:dc:b5:dc: dc:8a:e2:48:6a:06:d3:c5:de:f3:ed:5c:70:5a:dc: 0b:94:b8:03:27:85:85:a5:5b:ba:c8:a6:84:26:8f: df:2e:97:5c:5b:a2:64:37:7f:f5:10:fa:3c:1b:ce: 01:6d:01:b7:e2:bc:76:f1:ad:e7:b8:a5:0b:26:ea: 1a:91:eb:8e:60:0a:5a:27:eb:c3:67:02:7c:d7:d0: 5a:f0:c7:ef:92:53:1e:e2:d2:10:6d:a0:27:57:46: ad:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F1:38:55:82:61:25:FA:55:81:17:EB:04:88:F2:CF:B5:AF:81:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2183ab3a-e81a-44c4-8358-256a616f7a12.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.122.0/24 Signature Algorithm: sha256WithRSAEncryption c5:b3:75:2d:5b:d0:19:3b:2c:b5:66:7f:12:28:a6:7b:6f:d7: c5:66:d1:c8:80:d4:b5:35:41:5e:4d:af:11:4b:ff:f5:42:2a: 7b:67:49:e2:62:1f:fa:95:6e:53:db:a0:4c:bc:0a:dd:d5:fe: 70:91:b2:7b:e3:5e:16:9a:df:84:c2:d6:9d:8a:5d:da:a6:1d: fc:12:68:20:3f:4c:80:ff:1c:5c:70:15:09:97:ea:de:11:f5: bf:2f:a3:52:49:28:d9:e0:07:3a:dc:be:15:f9:7f:98:5d:bc: a5:99:1d:ac:7f:02:8d:32:53:a4:1b:07:86:95:f9:3c:fe:72: ff:99:d2:60:72:39:d8:18:b5:22:25:36:39:b0:2f:af:63:19: 96:5d:e1:12:46:43:a0:23:96:6f:13:d6:bb:4b:ef:d6:65:f9: a4:55:b7:14:99:40:e5:26:7a:7c:0f:18:cf:3c:81:13:61:d1: 47:df:cf:3b:55:dc:0c:c5:2f:c4:48:dd:26:2a:78:12:f8:ce: 1e:03:4d:5c:b7:8a:52:fd:e8:4d:04:83:ef:38:41:bf:77:e5: 90:e8:c5:24:a8:c0:e9:f3:5e:89:02:18:f4:22:b7:25:6b:f2: 79:d1:f5:70:e4:38:a5:22:d4:b4:3e:d5:4b:8c:5b:23:ea:58: 71:fa:8f:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD31NcT+jhhco+5HC+QLH/zQglAswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAzMDM0WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTA5ZTlhM2M5ZmViOTVmNDhkN2U3NGFlYTkxMDUwM2Vl YjMxY2FjYjhkMGE1ZjQ0YWMxZDZmZDNlYTExYWJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxAF2784KLdzvssl4yaN+HkdC7Ug8VSCFZmqzscqUkv/RH mU8rDNt44e0Hhd2SerwfBYrTY22H8FCTGUOdVMsTL6ihoj1x1Cvo/RutPAGf7NxL wkqVsuCf/BQCZNe5wLlRGh/hOaQSNdJ+KOVhHaeFRMaAt7DXhXYt3QJOjbS7zw+7 g9cwtFdSbBfqLKYpO2UydbU4HRkyEfbaMVxuwpsqX9y13NyK4khqBtPF3vPtXHBa 3AuUuAMnhYWlW7rIpoQmj98ul1xbomQ3f/UQ+jwbzgFtAbfivHbxree4pQsm6hqR 645gClon68NnAnzX0Frwx++SUx7i0hBtoCdXRq1xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4PE4VYJhJfpVgRfrBIjyz7WvgXMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxODNhYjNhLWU4MWEtNDRjNC04MzU4LTI1NmE2MTZmN2ExMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HowDQYJKoZIhvcNAQELBQADggEBAMWzdS1b0Bk7LLVmfxIopntv18Vm 0ciA1LU1QV5NrxFL//VCKntnSeJiH/qVblPboEy8Ct3V/nCRsnvjXhaa34TC1p2K XdqmHfwSaCA/TID/HFxwFQmX6t4R9b8vo1JJKNngBzrcvhX5f5hdvKWZHax/Ao0y U6QbB4aV+Tz+cv+Z0mByOdgYtSIlNjmwL69jGZZd4RJGQ6Ajlm8T1rtL79Zl+aRV txSZQOUmenwPGM88gRNh0UffzztV3AzFL8RI3SYqeBL4zh4DTVy3ilL96E0Eg+84 Qb935ZDoxSSowOnzXokCGPQityVr8nnR9XDkOKUi1LQ+1UuMWyPqWHH6j+M= -----END CERTIFICATE-----Generated at Sun May 3 14:46:08 2026 by rpki-client