$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa File: 53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa (raw, json) Hash identifier: 6Nj0aWds5gUjeZYPvq15GfB8SCVTM5Y1n1EoyikXn6s= Subject key identifier: 6B:BD:C9:84:CA:94:4A:E4:0C:A3:1A:9E:B5:D1:A4:21:15:92:E8:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A40A2269DB4BC521A59C3C9CC9ED5332B378818 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa Signing time: Sat 02 May 2026 01:00:52 +0000 ROA not before: Sat 02 May 2026 01:00:52 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:40:a2:26:9d:b4:bc:52:1a:59:c3:c9:cc:9e:d5:33:2b:37:88:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 01:00:52 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=e0f40ae9ae3e6a8383dac9d0dc9324d0c0a5702ea9e39fe2feedd7fd1ffd684b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0b:5c:6c:0f:b2:16:dc:1a:65:a1:28:60:38: 7c:5a:57:16:03:03:4c:1b:c3:b2:5e:62:64:b7:d8: 86:00:e9:bb:bf:76:78:42:23:6e:90:01:4c:33:38: 36:bf:7f:89:1b:ed:db:04:12:ad:1e:66:bc:44:73: 1b:9f:14:58:3a:74:38:ce:97:40:84:e4:e8:e5:b4: 55:5a:dd:90:38:1a:52:71:f7:dc:9d:72:86:7d:d9: cd:d5:fd:02:29:50:e1:8f:f6:b5:3b:e8:4e:06:2f: 70:1c:89:f1:34:9b:cd:28:cf:7a:b9:f1:64:2d:0c: ef:4d:06:77:94:0a:32:d2:62:52:70:23:67:19:1f: 50:f6:de:97:e4:17:86:b8:b1:13:f2:31:41:cd:02: 5c:59:56:97:1c:8f:ad:32:b4:e6:4c:d3:1e:5a:58: de:d8:e4:8c:bd:a3:78:1d:dd:eb:e9:70:d8:3e:65: 88:ed:39:f5:6f:0d:3a:f3:79:01:af:04:60:a9:e9: 2b:82:6a:06:13:3c:30:99:d0:7e:72:9c:e0:99:b7: c4:7c:75:0f:72:a8:29:8c:ee:88:6c:5a:4c:90:2c: c1:b8:32:2a:0a:8c:7f:88:2a:20:ec:3a:9b:d1:a9: 4a:a7:fb:96:61:78:52:80:ff:82:92:bb:32:b3:03: 88:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:BD:C9:84:CA:94:4A:E4:0C:A3:1A:9E:B5:D1:A4:21:15:92:E8:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption 29:61:9d:10:72:16:38:01:52:b4:b8:dd:c6:92:49:9f:ee:4b: 37:4d:8d:c6:c1:9d:08:f8:fe:2d:03:ef:8e:59:63:41:70:77: 57:18:bc:51:b0:ef:7a:11:f8:9d:28:6b:df:7e:ca:0c:df:5a: 87:f2:46:31:bb:78:dd:e4:5b:0f:b7:6d:a6:bd:1a:f6:52:86: 43:c7:f8:c1:0a:45:1e:43:88:15:b8:c8:b9:2a:8b:0b:ef:82: 39:2f:3c:d3:e0:5f:e6:89:ea:e1:4f:ed:d9:81:44:00:90:11: d5:21:a3:13:db:82:0b:19:02:0a:9f:ad:7d:f5:8a:00:17:d2: d9:d6:59:64:8d:78:d8:64:04:8d:a2:0e:df:16:8d:4c:c9:9c: 47:24:b9:41:ff:b0:ae:5f:b9:01:8d:be:7d:06:f7:21:d3:46: 81:0f:6c:fc:b8:28:b3:0b:1d:1f:60:8b:60:c7:38:40:33:f3: 6c:e9:8d:f1:e8:08:e6:1c:3c:81:d3:65:88:d6:81:11:35:6c: 3f:b1:b5:56:8d:2a:49:2e:6f:89:45:6a:cc:d3:b0:eb:1c:47: 49:3b:89:59:a7:39:5f:61:f3:9a:7f:82:ae:76:5b:f4:0d:3c: 0a:27:27:dc:d9:7d:9f:fd:b4:c9:13:77:01:dd:16:bc:70:ca: 2a:1e:ab:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOkCiJp20vFIaWcPJzJ7VMys3iBgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDEwMDUyWhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGY0MGFlOWFlM2U2YTgzODNkYWM5ZDBkYzkzMjRkMGMw YTU3MDJlYTllMzlmZTJmZWVkZDdmZDFmZmQ2ODRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZC1xsD7IW3BploShgOHxaVxYDA0wbw7JeYmS32IYA6bu/ dnhCI26QAUwzODa/f4kb7dsEEq0eZrxEcxufFFg6dDjOl0CE5OjltFVa3ZA4GlJx 99ydcoZ92c3V/QIpUOGP9rU76E4GL3AcifE0m80oz3q58WQtDO9NBneUCjLSYlJw I2cZH1D23pfkF4a4sRPyMUHNAlxZVpccj60ytOZM0x5aWN7Y5Iy9o3gd3evpcNg+ ZYjtOfVvDTrzeQGvBGCp6SuCagYTPDCZ0H5ynOCZt8R8dQ9yqCmM7ohsWkyQLMG4 MioKjH+IKiDsOpvRqUqn+5ZheFKA/4KSuzKzA4gRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa73JhMqUSuQMoxqetdGkIRWS6IIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzZTBjYWZkLTBkZTYtNDhiOC1iZDQzLWY4MWJkNDRmNmZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlBQwDQYJKoZIhvcNAQELBQADggEBAClhnRByFjgBUrS43caSSZ/uSzdN jcbBnQj4/i0D745ZY0Fwd1cYvFGw73oR+J0oa99+ygzfWofyRjG7eN3kWw+3baa9 GvZShkPH+MEKRR5DiBW4yLkqiwvvgjkvPNPgX+aJ6uFP7dmBRACQEdUhoxPbggsZ AgqfrX31igAX0tnWWWSNeNhkBI2iDt8WjUzJnEckuUH/sK5fuQGNvn0G9yHTRoEP bPy4KLMLHR9gi2DHOEAz82zpjfHoCOYcPIHTZYjWgRE1bD+xtVaNKkkub4lFaszT sOscR0k7iVmnOV9h85p/gq52W/QNPAonJ9zZfZ/9tMkTdwHdFrxwyioeq3E= -----END CERTIFICATE-----Generated at Sun May 3 14:47:16 2026 by rpki-client