$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa File: 3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa (raw, json) Hash identifier: dfRGqeJvO1fkc1vUE8vPubPq02e9JBkUI7pFNmhlFMM= Subject key identifier: 43:F9:45:89:56:11:D9:DA:0F:BB:7C:1E:BC:0B:4C:A6:AC:57:3B:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D6A7894EF680AD2CF6A76E2B1543CC7B738BB0A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa Signing time: Wed 29 Apr 2026 00:10:06 +0000 ROA not before: Wed 29 Apr 2026 00:10:06 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 32.160.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:6a:78:94:ef:68:0a:d2:cf:6a:76:e2:b1:54:3c:c7:b7:38:bb:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:10:06 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=486f2365290b57a59325df82fa27bbb3ab41ad84160e5c3d2f4763f07b72849f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:35:d7:4a:be:97:64:55:27:8f:f2:76:fd:ed: a1:b5:c3:53:f2:8b:4c:3e:c0:42:98:e0:08:38:dc: a2:10:62:02:34:b6:d7:be:e2:db:70:59:90:11:1a: df:b6:df:ab:e3:a4:30:67:74:52:f6:03:fb:ba:ce: fa:96:5a:b8:54:3e:12:ff:aa:1b:1c:af:f6:fe:a0: 8c:9a:14:5b:1c:28:d9:8d:06:0f:b1:d6:27:33:d0: fe:49:f3:94:c5:78:1f:cd:ba:12:4c:8d:fb:56:26: e7:aa:29:d7:7c:2c:3d:28:1c:ed:eb:68:78:73:14: 40:5e:4e:ed:44:5e:57:cb:83:86:f9:0b:26:69:30: db:5f:a5:5c:53:98:0a:a2:30:0a:0d:e1:aa:0d:cc: 75:73:86:9a:d4:a6:b4:cc:cd:37:47:76:fd:94:fc: 1f:96:ca:4a:97:73:63:0c:92:94:cd:c8:6f:df:23: e8:57:8e:04:f5:b6:bf:11:ef:33:73:72:dc:1a:30: 1f:c5:7f:ca:54:55:ec:52:25:25:c0:56:a0:a2:ef: 10:e2:0c:f8:15:6d:8d:4b:b9:aa:d8:89:e3:77:d4: a8:a3:1c:fd:b1:76:d3:e5:1a:e8:fa:a5:f1:24:28: 41:4d:1b:8f:17:36:ce:30:10:fb:8d:43:3a:99:2d: e5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F9:45:89:56:11:D9:DA:0F:BB:7C:1E:BC:0B:4C:A6:AC:57:3B:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.160.0.0/14 Signature Algorithm: sha256WithRSAEncryption 69:f4:8d:d6:63:7e:b1:d3:01:32:a2:2e:44:af:59:f0:cd:ad: 98:8b:72:31:1b:ac:00:03:57:04:d9:50:25:62:12:c7:15:31: 36:e7:b9:eb:38:fe:83:97:45:0b:b9:03:d3:d4:7a:d0:99:cf: 06:c5:7b:5f:25:fc:ee:4a:98:c6:48:c9:91:a7:be:0f:ef:44: 67:8a:59:8c:3d:e5:5c:7d:4c:f2:e4:b5:8c:c8:5f:3d:da:11: 5f:f8:46:58:fa:fe:91:cd:65:ff:23:39:3a:8b:ed:2d:c2:d9: fc:fa:9a:09:c0:51:20:dc:6c:4a:55:2a:04:f0:87:2b:de:4d: 7f:dd:04:15:67:46:5b:4d:58:e2:7a:83:11:6e:09:74:c3:b7: 53:1c:dd:84:f9:dc:2d:e7:7b:ea:20:e8:f9:b1:15:aa:f0:13: fc:58:15:70:19:a0:7c:c6:4f:a5:10:95:d7:07:d1:8d:79:c2: b9:cd:ed:2e:b9:da:5c:6c:88:d7:cf:69:43:8e:21:e5:e7:67: b7:fe:d8:8c:cc:d9:25:27:ae:7b:b2:64:01:87:52:1b:48:ef: b5:7b:dc:11:6e:9d:99:2b:01:0b:2f:ec:f4:c0:a7:fc:0f:c7: 9c:f8:a2:48:2f:1b:a2:0b:b6:ff:b6:81:40:25:23:7f:12:b6: 9c:a3:29:0d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPWp4lO9oCtLPanbisVQ8x7c4uwowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAxMDA2WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODZmMjM2NTI5MGI1N2E1OTMyNWRmODJmYTI3YmJiM2Fi NDFhZDg0MTYwZTVjM2QyZjQ3NjNmMDdiNzI4NDlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnNddKvpdkVSeP8nb97aG1w1Pyi0w+wEKY4Ag43KIQYgI0 tte+4ttwWZARGt+236vjpDBndFL2A/u6zvqWWrhUPhL/qhscr/b+oIyaFFscKNmN Bg+x1icz0P5J85TFeB/NuhJMjftWJueqKdd8LD0oHO3raHhzFEBeTu1EXlfLg4b5 CyZpMNtfpVxTmAqiMAoN4aoNzHVzhprUprTMzTdHdv2U/B+WykqXc2MMkpTNyG/f I+hXjgT1tr8R7zNzctwaMB/Ff8pUVexSJSXAVqCi7xDiDPgVbY1LuarYieN31Kij HP2xdtPlGuj6pfEkKEFNG48XNs4wEPuNQzqZLeWDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQ/lFiVYR2doPu3wevAtMpqxXO6EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjNTJjMGU2LTcyMzctNDM4Ni1hMWQ4LWM0NzM4YzAxZDNhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgoDANBgkqhkiG9w0BAQsFAAOCAQEAafSN1mN+sdMBMqIuRK9Z8M2tmIty MRusAANXBNlQJWISxxUxNue56zj+g5dFC7kD09R60JnPBsV7XyX87kqYxkjJkae+ D+9EZ4pZjD3lXH1M8uS1jMhfPdoRX/hGWPr+kc1l/yM5OovtLcLZ/PqaCcBRINxs SlUqBPCHK95Nf90EFWdGW01Y4nqDEW4JdMO3UxzdhPncLed76iDo+bEVqvAT/FgV cBmgfMZPpRCV1wfRjXnCuc3tLrnaXGyI189pQ44h5ednt/7YjMzZJSeue7JkAYdS G0jvtXvcEW6dmSsBCy/s9MCn/A/HnPiiSC8bogu2/7aBQCUjfxK2nKMpDQ== -----END CERTIFICATE-----Generated at Sun May 3 14:46:53 2026 by rpki-client