$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa File: 5307b426-3578-4099-8905-82473e6dd0a6.roa (raw, json) Hash identifier: 6oZmbOfR+VQddi3qtqunovANvLTgD3KaPa4CqQAAZYY= Subject key identifier: EF:5B:3B:72:E9:90:13:BE:7A:C6:A0:9D:4A:F2:55:AE:7C:E2:8D:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59E5048A46D0ED2AA7BBE85194E26F9BEE59291F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa Signing time: Mon 04 May 2026 00:10:14 +0000 ROA not before: Mon 04 May 2026 00:10:14 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 206.72.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e5:04:8a:46:d0:ed:2a:a7:bb:e8:51:94:e2:6f:9b:ee:59:29:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:10:14 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=51ccaac5fadae0b779eee2c91f704d8bf6288b44c455553174c0629565f5f9d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a0:1c:b6:d9:2b:83:d5:93:bd:85:85:ae:4c: 70:1e:17:55:a0:72:6a:56:f6:ea:64:13:67:7c:cb: 4d:af:00:0a:aa:f9:27:7b:5a:75:9f:ed:0a:dd:e1: ff:02:b4:71:9e:a1:83:fd:a8:89:32:22:87:f3:93: c4:89:44:ef:3e:bb:8e:90:c7:97:08:c3:2d:2a:bd: f2:38:7f:a2:82:ec:31:cb:76:aa:0f:73:c5:71:6d: 7f:cb:ab:91:24:aa:9b:97:8b:af:42:7e:79:e8:a7: 3c:72:44:8f:ef:b6:a0:56:ca:b5:40:09:67:81:cc: 59:c5:94:e8:bb:11:31:b4:c1:3e:38:ea:35:f1:8c: d5:cd:91:f6:1a:3e:bf:ab:1d:a2:1c:09:37:69:51: a1:15:39:f8:fe:41:d7:23:70:29:36:93:77:79:b0: 9e:d7:94:29:e7:92:30:a5:2f:b9:32:5f:13:0f:6d: cf:56:30:58:f3:23:f0:79:db:48:3f:55:78:6a:e8: 40:bb:cb:c4:8a:d2:e8:0f:6f:6b:47:19:fc:ad:33: d1:c9:30:9f:b8:ce:f0:ba:02:05:d1:25:c0:3e:7a: df:a5:28:be:ff:2c:cc:1f:50:7a:01:3b:6b:23:f9: f6:d8:45:d6:93:cb:c4:cc:19:09:d1:c5:09:7f:67: 1e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:5B:3B:72:E9:90:13:BE:7A:C6:A0:9D:4A:F2:55:AE:7C:E2:8D:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.72.209.0/24 Signature Algorithm: sha256WithRSAEncryption d6:da:f5:81:73:ac:37:b8:fc:1e:61:bd:bc:49:1a:74:df:2e: 29:d6:30:f9:5f:df:c2:ff:78:46:53:c2:54:91:5f:85:ab:f4: d7:c7:aa:03:f3:38:e6:5c:b1:67:8a:aa:a4:29:d7:8e:63:aa: a4:43:b9:a5:80:c8:36:5f:ad:75:a9:a4:78:4b:ce:3e:e8:20: b6:8f:66:96:7b:69:17:d2:f2:97:71:68:b9:0d:3c:bb:15:c4: 99:50:50:62:e0:03:77:88:22:78:db:6d:55:03:85:5b:0a:88: 16:19:c7:b7:a8:54:ef:0a:b5:e3:4b:d9:bc:ff:59:11:c4:cd: 84:11:4a:10:0f:2b:1f:1f:51:0f:6a:e7:24:92:c6:b3:f7:11: 88:d1:bd:73:06:39:21:e5:8c:fc:75:92:23:06:c0:fd:89:61: 18:4e:37:97:c6:3f:0c:69:01:b6:eb:b5:6e:f5:6e:5f:37:c8: 72:57:a5:d5:f0:a9:94:97:3d:61:f8:ca:bd:16:09:f2:f2:79: 1d:c6:8e:ac:28:11:22:f9:2a:4d:ef:ed:09:52:fe:00:fa:3a: a2:b7:ca:46:65:46:d6:e6:21:8b:3a:61:a7:77:78:5a:f9:0b: a3:4c:10:34:b6:f3:ed:df:82:17:d6:c1:f2:26:58:ae:a5:58: ec:94:ac:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWeUEikbQ7Sqnu+hRlOJvm+5ZKR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDAxMDE0WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MWNjYWFjNWZhZGFlMGI3NzllZWUyYzkxZjcwNGQ4YmY2 Mjg4YjQ0YzQ1NTU1MzE3NGMwNjI5NTY1ZjVmOWQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxoBy22SuD1ZO9hYWuTHAeF1WgcmpW9upkE2d8y02vAAqq +Sd7WnWf7Qrd4f8CtHGeoYP9qIkyIofzk8SJRO8+u46Qx5cIwy0qvfI4f6KC7DHL dqoPc8VxbX/Lq5EkqpuXi69CfnnopzxyRI/vtqBWyrVACWeBzFnFlOi7ETG0wT44 6jXxjNXNkfYaPr+rHaIcCTdpUaEVOfj+QdcjcCk2k3d5sJ7XlCnnkjClL7kyXxMP bc9WMFjzI/B520g/VXhq6EC7y8SK0ugPb2tHGfytM9HJMJ+4zvC6AgXRJcA+et+l KL7/LMwfUHoBO2sj+fbYRdaTy8TMGQnRxQl/Zx6tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU71s7cumQE756xqCdSvJVrnzijZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMDdiNDI2LTM1NzgtNDA5OS04OTA1LTgyNDczZTZkZDBhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADOSNEwDQYJKoZIhvcNAQELBQADggEBANba9YFzrDe4/B5hvbxJGnTfLinW MPlf38L/eEZTwlSRX4Wr9NfHqgPzOOZcsWeKqqQp145jqqRDuaWAyDZfrXWppHhL zj7oILaPZpZ7aRfS8pdxaLkNPLsVxJlQUGLgA3eIInjbbVUDhVsKiBYZx7eoVO8K teNL2bz/WRHEzYQRShAPKx8fUQ9q5ySSxrP3EYjRvXMGOSHljPx1kiMGwP2JYRhO N5fGPwxpAbbrtW71bl83yHJXpdXwqZSXPWH4yr0WCfLyeR3GjqwoESL5Kk3v7QlS /gD6OqK3ykZlRtbmIYs6Yad3eFr5C6NMEDS28+3fghfWwfImWK6lWOyUrAQ= -----END CERTIFICATE-----Generated at Mon May 4 21:40:08 2026 by rpki-client