$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a95b2d-b390-454d-b7fe-61f0be7e13af.roa File: 47a95b2d-b390-454d-b7fe-61f0be7e13af.roa (raw, json) Hash identifier: gGs+dOQKLMLPFg9+5yOfs8ACY24j85lNbenguQLLor4= Subject key identifier: F0:F1:55:4C:5B:52:CF:7D:94:31:65:82:2A:1C:23:7F:0A:A3:72:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B9BE0B6851C243172C392198271AF910CCEC9DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a95b2d-b390-454d-b7fe-61f0be7e13af.roa Signing time: Mon 27 Apr 2026 00:10:08 +0000 ROA not before: Mon 27 Apr 2026 00:10:08 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 131.127.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:9b:e0:b6:85:1c:24:31:72:c3:92:19:82:71:af:91:0c:ce:c9:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:10:08 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=ea215f641b4d98fb027d86bcdb539fc138fffa8dd7913943f7dc351f62337908, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:13:48:fd:81:f5:ce:07:9b:9a:37:85:b4:20: f1:4c:64:3c:ad:20:69:ef:33:24:81:d4:48:4a:4b: 2a:31:be:a6:53:2c:e1:87:96:1c:9a:8f:eb:09:a7: 52:99:51:49:a5:0f:49:2f:45:81:59:de:7c:4b:89: dd:e4:7e:ec:e9:12:68:b2:39:cd:8d:b3:8e:bf:b3: c5:c0:d0:87:2b:8a:c4:f7:21:1d:8c:b7:b5:9a:eb: 5e:00:89:9f:a6:65:39:e5:d5:32:66:ea:f5:28:da: 40:c1:4c:44:4c:f9:35:2e:38:ce:0c:4b:93:6f:97: 44:2a:9f:0b:ab:ba:5b:26:9a:72:aa:95:e4:11:f4: a7:21:a5:ec:86:98:8c:03:9b:68:7d:d3:2e:7e:cf: 24:45:b7:fd:59:00:e0:29:13:5c:ea:44:69:af:3e: fa:ee:62:be:fa:57:ff:1e:da:25:c2:90:05:ca:92: f8:f9:4c:f7:e6:46:05:e9:34:3b:ec:13:57:11:91: ac:5e:0e:c2:b5:d7:d0:31:10:ec:be:7f:99:87:2a: ac:2e:03:58:22:92:b5:e9:54:ab:64:46:ff:e4:a0: 72:f8:29:ab:2f:2f:04:dc:92:52:df:89:d5:1a:87: 41:00:f1:c8:cd:76:63:87:65:38:55:04:91:c8:68: 70:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F1:55:4C:5B:52:CF:7D:94:31:65:82:2A:1C:23:7F:0A:A3:72:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a95b2d-b390-454d-b7fe-61f0be7e13af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.127.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:50:9e:32:12:97:b8:e4:33:37:90:8e:10:c3:91:33:ec:1a: 8b:b1:69:46:dd:15:24:7d:cd:7b:5f:88:e2:76:4b:5a:03:e7: 21:50:4c:98:cb:a4:28:78:58:af:54:8b:f3:30:59:21:30:df: f4:25:30:79:17:85:e2:22:e4:35:16:9d:c8:32:7f:c2:c4:35: 56:fe:9c:8b:3f:26:f1:21:7c:13:62:2a:71:a5:39:c4:b5:f5: e9:bd:e9:02:66:b1:ac:a6:c6:df:78:8b:90:da:7d:e5:fc:ec: ae:4c:86:1f:70:5d:28:45:55:f5:9f:f4:8c:8b:9d:6d:02:af: 32:0f:bb:30:35:37:b0:5b:bf:ee:c4:df:47:f1:68:22:12:3c: cd:62:b4:67:62:e5:89:d7:16:24:52:c1:5f:40:7e:f3:10:25: 7f:22:93:6e:7d:82:99:13:d8:55:0e:1a:d7:04:db:a0:8e:85: 98:4b:93:b2:fb:47:a0:7d:5c:dd:67:a5:69:10:08:4d:31:ba: 35:b2:e3:19:fb:53:ed:a5:58:df:0f:aa:9a:dc:16:21:86:fa: c5:03:2c:d7:be:09:7c:5f:3f:45:e6:b4:37:93:73:81:60:33: 46:fe:ad:49:2c:55:d2:9b:4c:6a:f5:25:63:f3:1f:8a:47:7c: ee:89:2f:15 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe5vgtoUcJDFyw5IZgnGvkQzOydswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAxMDA4WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTIxNWY2NDFiNGQ5OGZiMDI3ZDg2YmNkYjUzOWZjMTM4 ZmZmYThkZDc5MTM5NDNmN2RjMzUxZjYyMzM3OTA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtE0j9gfXOB5uaN4W0IPFMZDytIGnvMySB1EhKSyoxvqZT LOGHlhyaj+sJp1KZUUmlD0kvRYFZ3nxLid3kfuzpEmiyOc2Ns46/s8XA0IcrisT3 IR2Mt7Wa614AiZ+mZTnl1TJm6vUo2kDBTERM+TUuOM4MS5Nvl0QqnwurulsmmnKq leQR9KchpeyGmIwDm2h90y5+zyRFt/1ZAOApE1zqRGmvPvruYr76V/8e2iXCkAXK kvj5TPfmRgXpNDvsE1cRkaxeDsK119AxEOy+f5mHKqwuA1gikrXpVKtkRv/koHL4 KasvLwTcklLfidUah0EA8cjNdmOHZThVBJHIaHCrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8PFVTFtSz32UMWWCKhwjfwqjci4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3YTk1YjJkLWIzOTAtNDU0ZC1iN2ZlLTYxZjBiZTdlMTNhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCDfzANBgkqhkiG9w0BAQsFAAOCAQEAk1CeMhKXuOQzN5COEMORM+wai7Fp Rt0VJH3Ne1+I4nZLWgPnIVBMmMukKHhYr1SL8zBZITDf9CUweReF4iLkNRadyDJ/ wsQ1Vv6ciz8m8SF8E2IqcaU5xLX16b3pAmaxrKbG33iLkNp95fzsrkyGH3BdKEVV 9Z/0jIudbQKvMg+7MDU3sFu/7sTfR/FoIhI8zWK0Z2LlidcWJFLBX0B+8xAlfyKT bn2CmRPYVQ4a1wTboI6FmEuTsvtHoH1c3WelaRAITTG6NbLjGftT7aVY3w+qmtwW IYb6xQMs174JfF8/Rea0N5NzgWAzRv6tSSxV0ptMavUlY/Mfikd87okvFQ== -----END CERTIFICATE-----Generated at Sun May 3 14:46:46 2026 by rpki-client