$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa File: 482e401f-8bd4-49bd-aa37-5a143d94fa53.roa (raw, json) Hash identifier: EeMVndv6wvDKx2jWDUR/lKVLOck0RATmmz9nZyXSwKw= Subject key identifier: 83:4B:DF:0E:F1:F9:CE:C1:20:4C:EE:72:3C:30:A4:3F:0B:8D:86:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0352DBA01C46ACB6A7365A0D58D6671A54EE2AD3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa Signing time: Wed 29 Apr 2026 00:31:24 +0000 ROA not before: Wed 29 Apr 2026 00:31:24 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:52:db:a0:1c:46:ac:b6:a7:36:5a:0d:58:d6:67:1a:54:ee:2a:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:31:24 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=fd6f69c0ff8490ebe1f2f29b6626768d479aa23ef483edd3fb8864bfc2673b70, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7b:6a:7a:11:b4:9e:75:22:2c:86:6a:b3:dd: 15:d0:b4:5b:cd:7a:30:22:59:b8:73:75:54:12:2e: e0:db:a2:22:ea:ac:78:15:13:82:c3:4e:cf:81:58: d0:25:e8:30:69:1d:5b:eb:88:b8:29:26:ba:f4:52: 96:1c:ab:d1:e6:64:36:f7:1b:7d:69:80:54:54:1b: 0a:57:74:ab:20:c0:77:a7:68:39:ae:5b:c4:29:81: 74:81:10:39:50:4b:30:47:d6:c3:01:c7:84:a0:08: 04:f7:da:d6:11:c8:64:8b:96:21:e9:93:5d:dd:0c: 54:8e:26:28:84:8d:e0:94:32:68:6b:cc:35:8e:f9: 35:17:94:d2:dc:5a:b5:ff:22:5f:a1:7b:73:e6:1b: 23:48:be:ac:d1:fa:b0:4d:bc:1f:65:be:4e:fd:d3: ac:a6:66:7e:1e:b5:0b:a5:9f:55:20:01:69:82:1d: e7:cb:6b:91:9f:b1:92:2d:de:62:01:25:71:ba:18: 01:55:ce:a8:3a:f9:dd:d5:54:6d:56:4e:3b:47:cf: 4d:34:3b:b4:79:39:4a:5e:cc:4e:38:d9:77:a3:88: f7:f4:f3:4e:94:03:c9:80:c1:98:18:07:da:89:ce: d7:5b:77:d4:12:4f:57:16:14:1a:90:60:d4:9f:c2: 1a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4B:DF:0E:F1:F9:CE:C1:20:4C:EE:72:3C:30:A4:3F:0B:8D:86:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.108.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:a8:70:d7:6d:79:2e:4f:2f:e6:a3:04:37:d5:17:13:73:ad: e4:42:f4:ee:0b:9f:9a:47:40:92:c3:d0:95:3e:94:e3:c6:27: 26:97:d7:bc:40:9e:c3:b7:78:48:f8:c5:d4:7e:c1:01:b6:63: e3:28:48:85:86:08:34:6c:98:bc:a0:a4:26:ce:ba:9f:94:b9: 5d:0d:69:31:dd:e8:cd:90:bb:e8:32:77:48:ff:1c:73:bc:b9: bd:f3:a7:5f:85:75:fe:94:7e:37:11:dc:f4:a9:92:db:fa:61: d4:d9:dd:4f:f4:28:49:8c:2a:d7:35:c3:d7:1f:e6:8c:fd:13: 09:76:1c:7d:4e:9d:46:aa:b7:cb:97:23:66:52:4e:09:5e:e6: 80:ae:65:de:65:05:48:d6:90:83:45:49:b6:91:c1:dc:f0:04: 9d:70:ea:56:18:22:6a:b5:92:a4:e4:fa:60:47:79:5a:15:99: f3:b3:97:76:c4:0d:a4:54:27:a7:a6:c0:45:bf:6b:f7:44:3b: ae:f5:6f:eb:00:69:11:b6:d1:90:88:72:f7:c2:3d:08:88:5a: 30:7c:ab:6a:a8:cc:23:c8:26:3a:88:0f:21:ee:cc:76:eb:9c: 1f:36:88:91:a4:40:89:73:9c:e1:da:22:c0:cd:8e:26:46:2a: eb:d5:3e:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA1LboBxGrLanNloNWNZnGlTuKtMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMTI0WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDZmNjljMGZmODQ5MGViZTFmMmYyOWI2NjI2NzY4ZDQ3 OWFhMjNlZjQ4M2VkZDNmYjg4NjRiZmMyNjczYjcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCee2p6EbSedSIshmqz3RXQtFvNejAiWbhzdVQSLuDboiLq rHgVE4LDTs+BWNAl6DBpHVvriLgpJrr0UpYcq9HmZDb3G31pgFRUGwpXdKsgwHen aDmuW8QpgXSBEDlQSzBH1sMBx4SgCAT32tYRyGSLliHpk13dDFSOJiiEjeCUMmhr zDWO+TUXlNLcWrX/Il+he3PmGyNIvqzR+rBNvB9lvk7906ymZn4etQuln1UgAWmC HefLa5GfsZIt3mIBJXG6GAFVzqg6+d3VVG1WTjtHz000O7R5OUpezE442XejiPf0 806UA8mAwZgYB9qJztdbd9QST1cWFBqQYNSfwhrzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg0vfDvH5zsEgTO5yPDCkPwuNhl0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4MmU0MDFmLThiZDQtNDliZC1hYTM3LTVhMTQzZDk0ZmE1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GwwDQYJKoZIhvcNAQELBQADggEBAAyocNdteS5PL+ajBDfVFxNzreRC 9O4Ln5pHQJLD0JU+lOPGJyaX17xAnsO3eEj4xdR+wQG2Y+MoSIWGCDRsmLygpCbO up+UuV0NaTHd6M2Qu+gyd0j/HHO8ub3zp1+Fdf6UfjcR3PSpktv6YdTZ3U/0KEmM Ktc1w9cf5oz9Ewl2HH1OnUaqt8uXI2ZSTgle5oCuZd5lBUjWkINFSbaRwdzwBJ1w 6lYYImq1kqTk+mBHeVoVmfOzl3bEDaRUJ6emwEW/a/dEO671b+sAaRG20ZCIcvfC PQiIWjB8q2qozCPIJjqIDyHuzHbrnB82iJGkQIlznOHaIsDNjiZGKuvVPtg= -----END CERTIFICATE-----Generated at Sun May 3 14:45:58 2026 by rpki-client