$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6076b8a5-2430-4e9c-a4fc-13785f08cd67.roa File: 6076b8a5-2430-4e9c-a4fc-13785f08cd67.roa (raw, json) Hash identifier: bIHK+iFnGJ/GG0vAKvPeluL/4N6f9xKdNCo6kxkJ1cs= Subject key identifier: D9:A2:0D:50:2C:F5:35:CB:C1:7A:0A:11:62:0C:AB:AC:2F:95:AE:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04DC11FE87F5693BFB10A5B7466068B99EC8639B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6076b8a5-2430-4e9c-a4fc-13785f08cd67.roa Signing time: Mon 27 Apr 2026 00:11:19 +0000 ROA not before: Mon 27 Apr 2026 00:11:19 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:dc:11:fe:87:f5:69:3b:fb:10:a5:b7:46:60:68:b9:9e:c8:63:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:11:19 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=5864792d497e31ab1e041f732eab9c9c1095a29164cfdcd08e6b45fa57d8d229, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:57:0b:fc:01:c8:4d:9a:f7:c6:55:72:b2:fa: c9:ca:5f:78:2c:8b:fb:51:63:09:06:70:13:51:f5: 3e:b3:e6:01:70:64:79:b5:ea:79:43:f3:ec:85:2d: 63:f1:bb:e6:b2:1e:1c:d1:1e:2c:1f:c8:fe:fd:22: ac:cd:d3:2c:99:f0:e9:93:e5:4a:77:05:37:26:a0: 33:78:85:70:5f:c9:b5:bb:08:dc:58:27:e8:44:85: 1a:11:89:2c:d1:de:cc:75:55:4c:c2:3c:66:4a:41: 52:4c:48:99:d3:cc:2f:72:78:41:b1:aa:13:eb:ef: 77:a5:09:95:d0:69:33:49:a1:75:a1:87:46:a7:9f: 22:96:3e:b3:ec:72:da:ac:7c:0d:1c:00:69:04:66: 8f:d9:de:a0:74:21:ce:4b:2b:e9:43:d0:44:ef:45: 71:b4:ab:13:e9:23:6d:50:d6:2f:6b:9a:f2:f2:18: f0:32:83:cf:d9:40:5c:6f:80:0c:cd:1f:03:66:57: 72:45:4c:1d:c1:74:5d:bc:5c:5c:40:24:95:dc:02: a0:df:7b:4e:62:2d:72:a2:7c:23:c8:08:58:d6:85: 03:c5:75:46:c4:f1:35:88:64:8c:36:58:ba:bc:b8: b7:13:46:51:ea:a7:0b:4d:01:45:04:fc:1c:60:f7: b6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A2:0D:50:2C:F5:35:CB:C1:7A:0A:11:62:0C:AB:AC:2F:95:AE:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6076b8a5-2430-4e9c-a4fc-13785f08cd67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.32.0/19 Signature Algorithm: sha256WithRSAEncryption be:e5:3d:ca:74:8a:78:ce:ae:ee:ee:db:09:de:26:fd:88:16: 04:f8:72:21:a4:62:a2:e5:eb:a0:49:23:81:61:08:b3:c2:06: 39:cc:fd:38:6b:a0:2c:03:20:f6:54:73:60:ef:f8:de:d0:24: fa:0b:f7:3b:7b:64:c2:2d:11:5f:ba:04:71:7f:5c:dd:b9:17: 39:48:a7:76:f6:03:c5:1e:0e:2c:12:12:45:f9:1c:d0:01:77: a6:b2:f8:58:11:df:59:c8:bf:44:a5:a1:6f:6c:0f:dc:d8:cf: 9d:a3:05:fe:2d:46:6f:8c:af:e6:f9:b2:b2:bc:29:e4:6f:c5: 8f:6d:1b:78:a0:66:60:27:da:a2:72:e9:ef:61:ce:31:6e:40: 02:1d:6b:70:e4:48:c8:8f:e1:4a:3d:5d:09:85:f6:f9:1e:9f: 45:9e:9f:3b:54:35:76:32:06:41:c6:05:05:f6:9f:7b:65:92: 9c:14:be:ad:d7:55:00:23:ce:39:ea:b8:0d:d7:bb:99:4d:81: 14:13:9f:c7:98:dc:aa:18:3d:2d:84:28:81:01:07:82:a0:aa: 63:d5:d8:f4:14:e4:21:a0:c5:64:8d:37:97:71:c3:04:50:3f: 07:bf:2f:e3:d7:92:fc:31:19:ea:a4:0c:6f:39:1d:bb:71:11: af:66:d4:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBNwR/of1aTv7EKW3RmBouZ7IY5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAxMTE5WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODY0NzkyZDQ5N2UzMWFiMWUwNDFmNzMyZWFiOWM5YzEw OTVhMjkxNjRjZmRjZDA4ZTZiNDVmYTU3ZDhkMjI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAVwv8AchNmvfGVXKy+snKX3gsi/tRYwkGcBNR9T6z5gFw ZHm16nlD8+yFLWPxu+ayHhzRHiwfyP79IqzN0yyZ8OmT5Up3BTcmoDN4hXBfybW7 CNxYJ+hEhRoRiSzR3sx1VUzCPGZKQVJMSJnTzC9yeEGxqhPr73elCZXQaTNJoXWh h0annyKWPrPsctqsfA0cAGkEZo/Z3qB0Ic5LK+lD0ETvRXG0qxPpI21Q1i9rmvLy GPAyg8/ZQFxvgAzNHwNmV3JFTB3BdF28XFxAJJXcAqDfe05iLXKifCPICFjWhQPF dUbE8TWIZIw2WLq8uLcTRlHqpwtNAUUE/Bxg97ZRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2aINUCz1NcvBegoRYgyrrC+VrgAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwNzZiOGE1LTI0MzAtNGU5Yy1hNGZjLTEzNzg1ZjA4Y2Q2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWXlCAwDQYJKoZIhvcNAQELBQADggEBAL7lPcp0injOru7u2wneJv2IFgT4 ciGkYqLl66BJI4FhCLPCBjnM/ThroCwDIPZUc2Dv+N7QJPoL9zt7ZMItEV+6BHF/ XN25FzlIp3b2A8UeDiwSEkX5HNABd6ay+FgR31nIv0SloW9sD9zYz52jBf4tRm+M r+b5srK8KeRvxY9tG3igZmAn2qJy6e9hzjFuQAIda3DkSMiP4Uo9XQmF9vken0We nztUNXYyBkHGBQX2n3tlkpwUvq3XVQAjzjnquA3Xu5lNgRQTn8eY3KoYPS2EKIEB B4KgqmPV2PQU5CGgxWSNN5dxwwRQPwe/L+PXkvwxGeqkDG85HbtxEa9m1L0= -----END CERTIFICATE-----Generated at Mon May 4 21:37:11 2026 by rpki-client