$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/371b2f91-2743-40f8-9fcb-85c3287a3b0b.roa File: 371b2f91-2743-40f8-9fcb-85c3287a3b0b.roa (raw, json) Hash identifier: oBpy0JlSQs5rgMdf/F25fhrRztmyG5IrSBffeNsaQ/Y= Subject key identifier: E2:7B:34:3E:6E:5B:84:8A:30:33:F5:AC:69:88:5C:FB:0F:92:C5:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07525561BC4239DDC37C59D54509C22B92098988 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/371b2f91-2743-40f8-9fcb-85c3287a3b0b.roa Signing time: Sat 02 May 2026 00:50:54 +0000 ROA not before: Sat 02 May 2026 00:50:54 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:52:55:61:bc:42:39:dd:c3:7c:59:d5:45:09:c2:2b:92:09:89:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:50:54 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=254e8f4546c6f615c7ba1f76c8de61ae8f5aeef3ac28393cc06432eec67b04f0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:db:4c:71:76:1e:f1:aa:9e:d9:ea:4a:47:03: 5a:9f:75:91:ae:59:6b:d1:2d:0a:93:c0:e1:0e:d0: cc:f6:2b:c1:65:5a:ef:88:f8:7f:2f:90:89:4f:b2: 44:b4:a8:94:69:f2:85:e2:18:2e:4a:6a:4e:51:b6: 0a:a5:63:ec:88:12:df:a5:39:04:e8:47:f7:9c:bd: 5f:bd:bd:71:91:c3:5a:2f:c2:17:88:99:0b:e9:0d: e6:f4:a2:86:09:a3:07:b0:05:7f:f7:da:50:5e:79: 51:9b:e9:34:11:68:e6:d8:0f:df:61:69:19:91:e2: 6e:ed:86:16:1a:64:1c:d2:f3:00:1a:d5:dd:78:50: 80:00:66:d3:0a:30:fa:26:45:19:0f:3e:01:19:fd: 56:3e:29:a4:ae:85:10:99:fb:83:2f:5e:c0:41:3d: 69:c3:30:63:78:c0:63:8f:94:2b:1f:95:c9:df:5f: 10:6d:06:ee:60:d3:f4:f0:9d:3e:3b:7d:2b:23:1d: d7:b7:e9:a2:eb:d9:8d:15:81:c5:5a:1b:3e:6c:97: 16:a8:3b:0d:33:4a:d3:85:36:ab:11:70:1d:94:19: 46:bf:73:29:58:d7:c8:15:9e:d7:2a:29:83:48:a8: 38:70:87:6f:c7:bd:42:90:9e:eb:8f:87:1a:34:4a: 54:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:7B:34:3E:6E:5B:84:8A:30:33:F5:AC:69:88:5C:FB:0F:92:C5:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/371b2f91-2743-40f8-9fcb-85c3287a3b0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:3b:a1:ce:cf:c1:9f:f8:52:68:c7:bd:79:60:bc:d5:fc:b7: 7b:12:28:e3:02:7c:4d:40:87:78:d5:4f:6b:07:64:46:ed:18: a0:2f:77:2b:47:53:78:9d:7c:a3:a4:c3:d2:bd:ae:72:47:6a: 86:d6:35:b7:97:e2:fb:e0:d7:59:46:f8:bc:f6:43:ac:f5:72: d6:c6:1f:16:1c:d7:2d:05:27:b8:26:a3:79:ff:ec:4a:25:ce: f0:64:4c:9c:67:d6:a6:53:ca:03:6e:c0:e9:17:c7:10:6e:89: b2:5c:be:c7:79:51:3d:0d:a5:99:9f:a5:d9:83:0f:a3:80:e9: 27:7d:19:75:36:4c:3b:37:41:c5:22:59:ba:9c:65:18:0f:01: 77:a5:de:19:1e:c1:cf:66:00:05:65:a5:1a:46:48:23:ba:cc: a5:77:01:73:ed:c3:75:32:3d:94:c2:32:5c:92:11:84:78:f7: 8f:9e:ef:5d:5e:cb:5a:22:e3:97:74:a1:45:e3:40:45:a9:80: 2a:84:63:bd:6f:74:d2:49:4a:86:23:fa:a1:15:c1:d1:bf:b8: 0b:31:fc:84:35:79:ff:b0:0b:51:b9:b5:ad:d5:79:aa:f7:fa: da:91:5f:40:b4:ae:85:60:fc:df:f9:9e:4f:b3:5d:94:3a:e6: f3:a5:10:2e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUB1JVYbxCOd3DfFnVRQnCK5IJiYgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDA1MDU0WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTRlOGY0NTQ2YzZmNjE1YzdiYTFmNzZjOGRlNjFhZThm NWFlZWYzYWMyODM5M2NjMDY0MzJlZWM2N2IwNGYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM20xxdh7xqp7Z6kpHA1qfdZGuWWvRLQqTwOEO0Mz2K8Fl Wu+I+H8vkIlPskS0qJRp8oXiGC5Kak5RtgqlY+yIEt+lOQToR/ecvV+9vXGRw1ov wheImQvpDeb0ooYJowewBX/32lBeeVGb6TQRaObYD99haRmR4m7thhYaZBzS8wAa 1d14UIAAZtMKMPomRRkPPgEZ/VY+KaSuhRCZ+4MvXsBBPWnDMGN4wGOPlCsflcnf XxBtBu5g0/TwnT47fSsjHde36aLr2Y0VgcVaGz5slxaoOw0zStOFNqsRcB2UGUa/ cylY18gVntcqKYNIqDhwh2/HvUKQnuuPhxo0SlRHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4ns0Pm5bhIowM/WsaYhc+w+SxVMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MWIyZjkxLTI3NDMtNDBmOC05ZmNiLTg1YzMyODdhM2IwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoujANBgkqhkiG9w0BAQsFAAOCAQEAYTuhzs/Bn/hSaMe9eWC81fy3exIo 4wJ8TUCHeNVPawdkRu0YoC93K0dTeJ18o6TD0r2uckdqhtY1t5fi++DXWUb4vPZD rPVy1sYfFhzXLQUnuCajef/sSiXO8GRMnGfWplPKA27A6RfHEG6Jsly+x3lRPQ2l mZ+l2YMPo4DpJ30ZdTZMOzdBxSJZupxlGA8Bd6XeGR7Bz2YABWWlGkZII7rMpXcB c+3DdTI9lMIyXJIRhHj3j57vXV7LWiLjl3ShReNARamAKoRjvW900klKhiP6oRXB 0b+4CzH8hDV5/7ALUbm1rdV5qvf62pFfQLSuhWD83/meT7NdlDrm86UQLg== -----END CERTIFICATE-----Generated at Sun May 3 14:46:17 2026 by rpki-client