$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e0a2129-9dc9-4f7b-b350-4e41028e5506.roa File: 5e0a2129-9dc9-4f7b-b350-4e41028e5506.roa (raw, json) Hash identifier: wNYQOtnBH3qSb8ELs5LL4FqHIvXE799iK7w6ZmiFcHU= Subject key identifier: 46:28:46:12:2F:BA:72:49:5A:CD:F1:D7:3F:7A:D3:84:59:7D:25:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37E731B65928A99AC0BDA11FE16FBF9788FD629E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e0a2129-9dc9-4f7b-b350-4e41028e5506.roa Signing time: Wed 29 Apr 2026 00:31:48 +0000 ROA not before: Wed 29 Apr 2026 00:31:48 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e7:31:b6:59:28:a9:9a:c0:bd:a1:1f:e1:6f:bf:97:88:fd:62:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:31:48 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=d6c6feb055a6934dfac54d1f4451118d65e635a540bd7bf2df4009e4829f17dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:89:f8:b5:2a:07:03:2b:22:b8:62:16:b9:a7: ef:8a:ba:43:72:12:c7:8f:e1:c6:04:73:6a:a8:20: d3:2e:75:44:95:93:98:c7:b8:62:f9:9f:fc:b7:4e: 95:95:14:7b:6d:b5:51:6d:69:89:fb:a4:48:6e:f1: 9e:3a:b6:85:1a:b0:fc:d5:3d:60:a0:1f:33:b0:f3: eb:f8:77:37:43:0a:0d:b1:c5:d3:69:20:c6:2f:08: 09:9d:0e:31:71:5f:95:98:ca:88:32:64:44:eb:eb: bb:12:7e:2c:8e:63:e3:cc:e4:b4:79:3b:8b:95:f0: 4e:46:4b:c4:c6:0f:c8:a5:16:64:a4:29:39:d3:46: 1b:18:12:60:06:f3:f6:94:b1:42:bf:b7:f0:c2:ef: b4:0e:76:39:7f:3f:e5:e0:1d:4e:4f:c7:88:aa:2a: 4d:25:22:9f:75:8a:ae:80:bf:fb:73:87:18:9e:05: f8:fa:7d:10:bd:9a:0e:c1:1c:e0:03:53:ef:06:4c: 11:d9:4b:a1:ab:c7:60:81:38:6b:da:e3:59:c0:fd: cb:08:82:4a:a7:34:e3:ec:d0:18:b3:92:39:c2:cc: 1d:1b:dc:8e:04:1f:42:e1:90:8b:1c:57:fa:75:01: c0:77:f6:8f:a8:3f:f0:b5:b3:be:ae:95:11:8d:5a: 36:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:28:46:12:2F:BA:72:49:5A:CD:F1:D7:3F:7A:D3:84:59:7D:25:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e0a2129-9dc9-4f7b-b350-4e41028e5506.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.71.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:6d:99:72:19:f3:d5:79:05:29:6b:30:3b:88:5a:47:ae:4f: b7:cc:a8:7b:c1:82:97:f0:fc:b1:6e:2e:31:38:ad:a9:be:02: a1:70:80:60:98:d1:88:e4:6a:e4:b8:30:31:3a:b4:a8:9a:d6: c7:a9:f9:0c:72:48:1f:25:9a:28:5a:22:5f:d1:65:f6:12:ce: 4e:66:49:ea:d1:c5:cc:bb:50:ee:a5:aa:aa:05:a2:14:63:e3: 9c:9c:95:4e:26:8f:1e:48:81:8d:c8:bc:91:75:f5:66:c4:96: 62:5e:1d:29:58:1e:70:ee:ed:77:59:19:f1:2e:d2:41:5c:ef: 73:85:e4:9c:be:60:97:cd:ef:e9:64:8a:a9:74:71:f7:51:81: b4:60:0a:c0:8b:fd:ea:03:7c:76:0c:26:65:1d:0a:26:79:2c: 14:67:68:0c:9b:4d:ac:62:17:c2:7a:66:97:1d:2d:dd:2b:72: 1e:72:e0:e5:79:35:97:57:29:a4:90:80:bb:c5:55:78:66:bf: f8:4b:15:0f:c2:33:f1:b1:80:6e:30:56:9f:9b:fa:62:ec:4f: 29:66:35:2a:07:23:eb:c9:2c:49:2d:17:df:97:5c:4a:67:b7: 41:f2:77:46:e7:ed:ba:aa:e9:2f:6f:d5:be:c7:09:0f:2a:05: 81:d9:c4:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN+cxtlkoqZrAvaEf4W+/l4j9Yp4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMTQ4WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNmM2ZmViMDU1YTY5MzRkZmFjNTRkMWY0NDUxMTE4ZDY1 ZTYzNWE1NDBiZDdiZjJkZjQwMDllNDgyOWYxN2RjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoifi1KgcDKyK4Yha5p++KukNyEseP4cYEc2qoINMudUSV k5jHuGL5n/y3TpWVFHtttVFtaYn7pEhu8Z46toUasPzVPWCgHzOw8+v4dzdDCg2x xdNpIMYvCAmdDjFxX5WYyogyZETr67sSfiyOY+PM5LR5O4uV8E5GS8TGD8ilFmSk KTnTRhsYEmAG8/aUsUK/t/DC77QOdjl/P+XgHU5Px4iqKk0lIp91iq6Av/tzhxie Bfj6fRC9mg7BHOADU+8GTBHZS6Grx2CBOGva41nA/csIgkqnNOPs0BizkjnCzB0b 3I4EH0LhkIscV/p1AcB39o+oP/C1s76ulRGNWja7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURihGEi+6cklazfHXP3rThFl9Jd4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlMGEyMTI5LTlkYzktNGY3Yi1iMzUwLTRlNDEwMjhlNTUwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EcwDQYJKoZIhvcNAQELBQADggEBADptmXIZ89V5BSlrMDuIWkeuT7fM qHvBgpfw/LFuLjE4ram+AqFwgGCY0YjkauS4MDE6tKia1sep+QxySB8lmihaIl/R ZfYSzk5mSerRxcy7UO6lqqoFohRj45yclU4mjx5IgY3IvJF19WbElmJeHSlYHnDu 7XdZGfEu0kFc73OF5Jy+YJfN7+lkiql0cfdRgbRgCsCL/eoDfHYMJmUdCiZ5LBRn aAybTaxiF8J6ZpcdLd0rch5y4OV5NZdXKaSQgLvFVXhmv/hLFQ/CM/GxgG4wVp+b +mLsTylmNSoHI+vJLEktF9+XXEpnt0Hyd0bn7bqq6S9v1b7HCQ8qBYHZxJU= -----END CERTIFICATE-----Generated at Sun May 3 14:46:09 2026 by rpki-client