$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa File: 54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa (raw, json) Hash identifier: xdruHoNK/jtYHdcxhQB8oA5ci7yQQa8hdoBfAMnZ9eo= Subject key identifier: B5:3C:05:BA:A9:30:B1:61:E7:05:5E:A9:F3:BA:FB:91:36:68:63:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14CE08693F76ED66586F771EAEFABFBEA5ED4C36 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa Signing time: Mon 27 Apr 2026 00:10:44 +0000 ROA not before: Mon 27 Apr 2026 00:10:44 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 138.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:ce:08:69:3f:76:ed:66:58:6f:77:1e:ae:fa:bf:be:a5:ed:4c:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:10:44 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=f44254c8a93cae9c603ad5ede8958bd294864bcdf9ccf4fd24b45ecb1f761306, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9a:90:01:a5:ba:94:92:31:b2:55:33:5c:5a: 51:88:2f:9e:d4:a4:68:9b:b6:fb:f1:bf:04:d0:57: ff:8e:b6:86:cf:f0:c1:eb:76:04:fd:ab:53:b3:b6: ce:c8:14:9c:0c:b4:ea:f7:24:57:1f:0a:5a:d3:f4: 2b:dc:a2:56:b3:1f:d2:c9:b0:81:07:fc:19:9e:14: 50:a6:1a:5c:9e:04:a3:9d:e3:65:56:69:49:d1:19: 72:44:39:65:b3:49:33:de:14:fe:8a:ca:36:54:a4: 79:5a:e4:f6:08:f9:0b:bd:79:67:70:71:57:d8:c0: 59:b8:31:14:48:59:6d:3e:69:d4:a5:45:e8:7d:d5: 90:82:d3:98:3b:31:0e:46:d6:ba:2c:82:dc:8f:e0: e3:8f:66:30:5f:48:4e:8e:34:cb:9e:7f:3e:e4:12: e4:81:d4:23:5b:7f:63:9f:e0:b0:5f:13:e8:73:87: 74:f0:17:c9:32:5e:2e:8c:05:56:d6:2f:93:43:e4: ba:2f:76:e6:67:19:80:2a:1f:7c:7f:cc:ae:ff:7f: 29:c2:25:f5:d3:ef:37:f5:75:09:45:19:c7:80:94: ee:c6:d2:2c:bc:9e:4c:13:37:ae:79:4e:73:c4:5a: a2:8c:69:bd:11:48:9d:2b:84:d0:07:29:c0:5c:9a: 69:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3C:05:BA:A9:30:B1:61:E7:05:5E:A9:F3:BA:FB:91:36:68:63:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:73:af:d5:d7:82:78:0b:9b:49:b7:d7:ea:ab:ef:fa:a1:a7: e5:ca:e2:41:97:37:eb:78:7d:c7:ab:7c:e9:47:b9:09:81:5a: 59:ed:31:dd:2b:b1:a9:e4:0a:7c:b9:c8:3d:cf:98:21:79:60: ec:b6:97:78:21:e5:9e:bd:42:d8:21:d0:b2:09:7f:1f:52:82: ed:24:d1:14:bd:1e:2b:ce:d7:72:eb:64:6a:38:77:0c:fa:94: a2:01:dc:9e:e1:cf:9b:7e:34:7a:3d:18:6c:16:1e:e9:7c:2b: 09:46:3d:90:64:1e:37:20:3c:60:02:b0:b1:20:e0:c9:0a:79: f1:a7:c3:d5:f2:b7:5d:4e:9c:6c:8c:9d:7d:5e:4f:b8:8a:2c: f1:96:40:d5:89:b1:dc:e9:2d:3b:79:af:a4:73:83:e4:e1:18: 61:5e:7d:be:a0:e7:a1:2c:1e:9b:2f:74:56:22:f7:c6:81:c5: 9f:cc:77:40:fa:9a:fc:0e:f2:df:37:92:f6:f8:a3:7e:70:f8: 7d:65:b4:e2:38:68:b3:81:64:76:86:34:64:b9:ac:b4:41:c7: 2d:76:68:ba:ba:77:de:01:d1:81:13:fb:23:03:cf:ce:c9:3f: 72:e6:c1:78:4f:19:7d:61:47:80:0f:19:5b:3a:4a:db:49:e6: 67:f5:85:63 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFM4IaT927WZYb3cervq/vqXtTDYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAxMDQ0WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDQyNTRjOGE5M2NhZTljNjAzYWQ1ZWRlODk1OGJkMjk0 ODY0YmNkZjljY2Y0ZmQyNGI0NWVjYjFmNzYxMzA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVmpABpbqUkjGyVTNcWlGIL57UpGibtvvxvwTQV/+OtobP 8MHrdgT9q1Ozts7IFJwMtOr3JFcfClrT9CvcolazH9LJsIEH/BmeFFCmGlyeBKOd 42VWaUnRGXJEOWWzSTPeFP6KyjZUpHla5PYI+Qu9eWdwcVfYwFm4MRRIWW0+adSl Reh91ZCC05g7MQ5G1rosgtyP4OOPZjBfSE6ONMuefz7kEuSB1CNbf2Of4LBfE+hz h3TwF8kyXi6MBVbWL5ND5LovduZnGYAqH3x/zK7/fynCJfXT7zf1dQlFGceAlO7G 0iy8nkwTN655TnPEWqKMab0RSJ0rhNAHKcBcmmlvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtTwFuqkwsWHnBV6p87r7kTZoY4UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZjRmNWJjLTMwYzctNGQyMC1hOWI0LWIzOTYyNmYzMGU3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCKNDANBgkqhkiG9w0BAQsFAAOCAQEAc3Ov1deCeAubSbfX6qvv+qGn5cri QZc363h9x6t86Ue5CYFaWe0x3SuxqeQKfLnIPc+YIXlg7LaXeCHlnr1C2CHQsgl/ H1KC7STRFL0eK87Xcutkajh3DPqUogHcnuHPm340ej0YbBYe6XwrCUY9kGQeNyA8 YAKwsSDgyQp58afD1fK3XU6cbIydfV5PuIos8ZZA1Ymx3OktO3mvpHOD5OEYYV59 vqDnoSwemy90ViL3xoHFn8x3QPqa/A7y3zeS9vijfnD4fWW04jhos4FkdoY0ZLms tEHHLXZourp33gHRgRP7IwPPzsk/cubBeE8ZfWFHgA8ZWzpK20nmZ/WFYw== -----END CERTIFICATE-----Generated at Sun May 3 14:47:21 2026 by rpki-client