$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a88a73-93bb-44b8-90fd-a8b74cf86175.roa File: 41a88a73-93bb-44b8-90fd-a8b74cf86175.roa (raw, json) Hash identifier: glaYWbNp0COp+NxLP7nAVaTRHHC/XWBSwCXVTVS5GEw= Subject key identifier: 44:9B:26:7C:D3:98:FE:26:C1:FB:6F:8B:54:D7:9E:09:04:32:4E:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E1CF114B12596CE6CC592D93A862B8D8C09E115 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a88a73-93bb-44b8-90fd-a8b74cf86175.roa Signing time: Fri 01 May 2026 00:51:04 +0000 ROA not before: Fri 01 May 2026 00:51:04 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 74.230.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:1c:f1:14:b1:25:96:ce:6c:c5:92:d9:3a:86:2b:8d:8c:09:e1:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:51:04 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=b8ea91d62ef8483e538b2dd574e74b52453d3d741f0821e1bb2369531f81f28b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5a:df:4d:71:c5:39:a0:75:92:f5:78:ca:11: eb:8e:0a:71:dd:93:ef:0b:59:c8:6e:53:b7:95:72: f4:4c:bf:7a:43:12:e5:a0:f7:3d:b8:79:f6:02:a5: 1f:22:e5:7e:13:59:31:18:1c:e4:66:5d:33:b7:6e: ee:42:c3:f3:c6:ef:c0:02:cf:c4:9b:40:12:9d:c8: 90:2d:a6:d6:64:62:2f:3b:c3:c6:c1:72:9c:ea:1d: ff:4b:4a:8e:24:2c:32:1d:48:ef:0b:5e:c4:a5:93: b9:08:a2:8b:8d:e0:dc:f1:5c:12:2c:8c:84:f8:d6: 15:46:53:5d:a2:b4:49:3f:40:a5:d8:d7:f7:7d:c1: 51:ca:8c:29:89:1b:19:99:d9:9f:01:5a:34:3f:1c: 38:cd:65:8c:0c:16:a4:e5:19:f0:aa:2b:7c:70:33: 57:c1:c8:5b:6e:63:33:ca:97:3a:75:47:c9:d1:08: 13:e7:65:50:9c:a4:ab:c7:84:6f:43:93:0b:b8:dd: b1:09:36:e2:58:c5:cc:cd:a5:c8:c2:b7:09:4b:89: ee:02:72:88:8c:1f:58:bd:fa:df:b0:69:af:e9:d5: fb:bb:76:22:8a:26:29:39:93:f9:e0:1c:1e:5d:32: 0a:e9:1b:4c:aa:f8:00:fa:bd:46:7c:0f:80:2a:c2: ec:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9B:26:7C:D3:98:FE:26:C1:FB:6F:8B:54:D7:9E:09:04:32:4E:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a88a73-93bb-44b8-90fd-a8b74cf86175.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.230.0.0/16 Signature Algorithm: sha256WithRSAEncryption 76:71:42:b2:4c:47:e5:ff:64:a3:21:35:fd:45:be:be:19:26: 29:b4:b9:64:c1:73:16:54:78:d5:6e:31:22:d6:e8:9d:8b:23: 37:7d:d6:ef:be:1e:d4:f7:80:88:32:1c:67:b9:5b:76:ac:e4: 13:9d:cb:7f:4c:51:1a:d5:15:bf:83:1f:07:f9:75:3c:5a:01: 12:22:b9:ec:b0:86:69:c4:9c:a3:c5:91:48:e4:ec:a5:52:08: c4:ef:b2:06:07:de:f7:2a:cc:72:b2:a0:3d:e4:60:57:6f:49: 06:4a:36:26:a9:05:b7:ae:71:f9:ae:e7:ef:c5:6e:e1:14:6f: 51:79:72:3b:cd:e5:05:f8:86:b8:30:b5:ef:d3:0b:79:4b:28: f4:6e:ae:e6:ef:d1:06:50:9d:09:91:b2:a4:d4:54:d6:a3:c3: 26:fd:b9:85:81:cc:01:b9:75:0b:85:67:20:0a:cf:a2:ff:cd: 3c:7f:b9:f2:86:31:ce:bc:97:bd:88:24:78:e5:cf:36:58:05: 12:02:83:9f:89:5c:ef:22:77:40:41:1b:75:e4:a5:b1:b0:e6: e8:08:65:b7:18:20:12:3f:48:16:2b:86:ef:fd:c8:5f:de:ac: c0:bb:31:81:3b:15:6e:49:c3:92:03:71:8f:b8:95:b5:08:d0: c2:34:7e:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUThzxFLElls5sxZLZOoYrjYwJ4RUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDA1MTA0WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGVhOTFkNjJlZjg0ODNlNTM4YjJkZDU3NGU3NGI1MjQ1 M2QzZDc0MWYwODIxZTFiYjIzNjk1MzFmODFmMjhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHWt9NccU5oHWS9XjKEeuOCnHdk+8LWchuU7eVcvRMv3pD EuWg9z24efYCpR8i5X4TWTEYHORmXTO3bu5Cw/PG78ACz8SbQBKdyJAtptZkYi87 w8bBcpzqHf9LSo4kLDIdSO8LXsSlk7kIoouN4NzxXBIsjIT41hVGU12itEk/QKXY 1/d9wVHKjCmJGxmZ2Z8BWjQ/HDjNZYwMFqTlGfCqK3xwM1fByFtuYzPKlzp1R8nR CBPnZVCcpKvHhG9Dkwu43bEJNuJYxczNpcjCtwlLie4CcoiMH1i9+t+waa/p1fu7 diKKJik5k/ngHB5dMgrpG0yq+AD6vUZ8D4Aqwuz7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURJsmfNOY/ibB+2+LVNeeCQQyTmswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxYTg4YTczLTkzYmItNDRiOC05MGZkLWE4Yjc0Y2Y4NjE3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBK5jANBgkqhkiG9w0BAQsFAAOCAQEAdnFCskxH5f9koyE1/UW+vhkmKbS5 ZMFzFlR41W4xItbonYsjN33W774e1PeAiDIcZ7lbdqzkE53Lf0xRGtUVv4MfB/l1 PFoBEiK57LCGacSco8WRSOTspVIIxO+yBgfe9yrMcrKgPeRgV29JBko2JqkFt65x +a7n78Vu4RRvUXlyO83lBfiGuDC179MLeUso9G6u5u/RBlCdCZGypNRU1qPDJv25 hYHMAbl1C4VnIArPov/NPH+58oYxzryXvYgkeOXPNlgFEgKDn4lc7yJ3QEEbdeSl sbDm6AhltxggEj9IFiuG7/3IX96swLsxgTsVbknDkgNxj7iVtQjQwjR+rg== -----END CERTIFICATE-----Generated at Mon May 11 12:34:48 2026 by rpki-client