$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa File: 4d9499c0-c507-4e26-9055-7e0de6b69d27.roa (raw, json) Hash identifier: nxoCN4D4dPvTRasjcg2jshG60196QPQdCRvqFYmAn4U= Subject key identifier: 72:66:17:B8:C2:D0:71:F1:50:D3:3A:A7:60:F0:DE:52:8B:E0:8A:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EEA9694C0AA80C7E613CC9BD4F05244B3593F39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa Signing time: Tue 19 May 2026 00:00:09 +0000 ROA not before: Tue 19 May 2026 00:00:09 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 03 Jun 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ea:96:94:c0:aa:80:c7:e6:13:cc:9b:d4:f0:52:44:b3:59:3f:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:00:09 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=32a85ed32202f6956f19b0e899fad7d382746041d8d4a3c688c0d937b3dfe47c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5f:fa:2a:2b:7c:f4:86:f9:e1:b9:49:27:73: 58:49:f9:3d:f1:cc:e5:1b:f4:91:b9:01:26:57:75: 6e:ee:8b:f1:e9:a3:50:bd:76:d5:34:56:b8:28:8a: c1:b9:18:2e:88:0a:00:f2:6d:7b:23:62:18:a9:36: 52:c9:ed:f2:6c:c9:bb:08:08:70:d4:47:21:21:e2: 2c:c3:60:33:b2:d8:b1:d3:54:8c:8c:2e:5d:83:dc: 5a:7f:75:c2:3b:f1:1b:22:6e:98:8b:f6:54:cd:28: 30:a5:37:0d:b0:cd:52:05:1d:9b:a2:9c:f6:fa:c8: 9e:61:8a:48:e9:43:49:37:c0:c6:03:f1:e9:83:17: 66:ec:7b:c1:35:ec:b1:e4:7c:db:4e:af:de:f4:9f: 53:d3:62:22:16:67:db:52:42:a0:9e:6b:f9:29:ca: 77:c4:e0:57:83:af:70:52:4f:73:14:93:c8:ba:d0: 4a:63:ee:89:25:2f:4f:98:1e:d9:40:bc:aa:97:18: 74:45:a8:31:1f:d1:2e:8f:6f:5b:64:11:3a:91:1c: fe:80:46:0d:7a:c9:81:45:67:ab:9c:3f:69:a5:15: 95:71:e4:83:68:50:e6:2e:73:63:6e:06:3f:ac:37: 25:cd:b7:37:dc:70:45:7b:87:1e:a6:b1:1b:b1:8d: ea:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:66:17:B8:C2:D0:71:F1:50:D3:3A:A7:60:F0:DE:52:8B:E0:8A:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9499c0-c507-4e26-9055-7e0de6b69d27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.102.0/24 Signature Algorithm: sha256WithRSAEncryption 42:63:f6:3c:ef:ca:68:a0:a0:70:d2:31:98:c5:20:d6:53:d8: 23:f8:c5:3d:4b:75:8a:97:91:cb:57:76:8e:aa:c9:06:e5:f3: 9a:4b:83:8a:7b:80:aa:11:f9:99:2e:00:3a:6f:bf:6a:47:a4: 86:43:be:d3:1a:80:78:54:60:e1:90:ba:fc:a1:fe:d5:de:50: 7f:49:8d:48:67:bb:e7:59:23:bd:39:0b:7c:63:98:e4:fe:22: ea:ce:b8:ba:45:66:f8:af:c6:53:71:3d:be:b1:88:4c:04:85: 24:8a:cf:2f:0a:14:fe:b9:3b:62:62:88:ee:48:fc:59:b2:a1: 4a:b8:04:00:51:71:ed:1c:9b:26:12:5c:09:a0:19:eb:a2:22: fa:1c:14:e8:c3:0a:ed:64:fb:2f:76:30:31:33:07:1a:ee:e2: 1b:84:41:0b:27:d0:16:1e:81:07:a1:89:3f:e0:fa:de:da:79: 0c:6f:ce:ca:56:44:3e:3b:f6:65:a7:33:83:ac:7d:37:18:60: 00:7e:35:cd:d7:fc:4f:39:c7:6c:33:b6:28:76:f0:8e:0f:dc: bf:7f:95:f4:33:d6:87:c1:5e:29:6c:9c:3b:12:a1:7b:95:5c: 9a:b1:53:3d:12:9d:4d:07:ca:c7:e0:cc:f2:ce:ac:2f:d1:32: ac:9c:93:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfuqWlMCqgMfmE8yb1PBSRLNZPzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAwMDA5WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmE4NWVkMzIyMDJmNjk1NmYxOWIwZTg5OWZhZDdkMzgy NzQ2MDQxZDhkNGEzYzY4OGMwZDkzN2IzZGZlNDdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAX/oqK3z0hvnhuUknc1hJ+T3xzOUb9JG5ASZXdW7ui/Hp o1C9dtU0VrgoisG5GC6ICgDybXsjYhipNlLJ7fJsybsICHDURyEh4izDYDOy2LHT VIyMLl2D3Fp/dcI78RsibpiL9lTNKDClNw2wzVIFHZuinPb6yJ5hikjpQ0k3wMYD 8emDF2bse8E17LHkfNtOr970n1PTYiIWZ9tSQqCea/kpynfE4FeDr3BST3MUk8i6 0Epj7oklL0+YHtlAvKqXGHRFqDEf0S6Pb1tkETqRHP6ARg16yYFFZ6ucP2mlFZVx 5INoUOYuc2NuBj+sNyXNtzfccEV7hx6msRuxjeo/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcmYXuMLQcfFQ0zqnYPDeUovgihAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkOTQ5OWMwLWM1MDctNGUyNi05MDU1LTdlMGRlNmI2OWQyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GYwDQYJKoZIhvcNAQELBQADggEBAEJj9jzvymigoHDSMZjFINZT2CP4 xT1LdYqXkctXdo6qyQbl85pLg4p7gKoR+ZkuADpvv2pHpIZDvtMagHhUYOGQuvyh /tXeUH9JjUhnu+dZI705C3xjmOT+IurOuLpFZvivxlNxPb6xiEwEhSSKzy8KFP65 O2JiiO5I/FmyoUq4BABRce0cmyYSXAmgGeuiIvocFOjDCu1k+y92MDEzBxru4huE QQsn0BYegQehiT/g+t7aeQxvzspWRD479mWnM4OsfTcYYAB+Nc3X/E85x2wztih2 8I4P3L9/lfQz1ofBXilsnDsSoXuVXJqxUz0SnU0HysfgzPLOrC/RMqyck/E= -----END CERTIFICATE-----Generated at Mon Jun 1 22:18:41 2026 by rpki-client