$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa File: 70571ce4-58f3-4cc6-b162-737a20af972d.roa (raw, json) Hash identifier: 6Rw9FZtvILJxrMJUonuDDKqvhbUDRG+VwLspk4FCg+4= Subject key identifier: 7C:54:6D:40:DB:AA:7E:9F:90:F0:D5:ED:DA:42:22:C9:D2:0E:97:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C254D5A6FFBB2F8970856C85ECCB148332AB7F1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa Signing time: Wed 29 Apr 2026 00:11:36 +0000 ROA not before: Wed 29 Apr 2026 00:11:36 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 70.251.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:25:4d:5a:6f:fb:b2:f8:97:08:56:c8:5e:cc:b1:48:33:2a:b7:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:11:36 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=837d742f929c61058efe8a365644dfaf59c1e21281ae5e4c8de5cae303f7e10a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3d:db:67:e5:1c:a3:e3:bc:38:ca:74:1e:bb: 65:69:db:6e:b0:3e:b5:3e:45:91:43:c7:2d:c9:a2: 52:1e:07:00:6e:99:58:55:25:9a:5c:79:7a:68:fc: c6:b7:d5:12:75:d0:f7:44:78:b3:63:5a:1d:19:4b: 91:0b:3d:eb:6f:3c:15:a0:01:17:ee:1c:bd:98:6b: b3:7f:54:d0:89:7d:4f:ca:62:c8:ec:55:e4:15:82: 38:3a:78:2a:4b:4f:82:1c:3d:32:f1:17:6e:82:41: f3:38:6f:90:a6:4a:cc:a0:c8:7f:8a:ae:b8:45:b7: 58:33:6d:14:78:84:ce:68:2a:e8:5d:37:8d:0f:5d: 69:8d:14:26:d0:1a:01:b0:ec:f8:c4:ca:44:35:23: f5:9e:22:59:a2:bb:1e:66:df:ef:f0:40:6d:a2:10: 79:56:28:26:3f:af:f1:4f:db:d5:52:4f:3d:c1:49: 9e:9d:94:c3:b6:4f:e5:f3:6f:d3:aa:80:31:94:fc: b7:f3:39:e2:f0:a3:68:24:f7:56:5c:ec:b0:9d:e7: db:df:6d:29:75:65:dc:66:90:b4:a2:64:69:ee:fe: 6f:2a:0e:70:61:89:e4:8c:b7:f8:37:b4:55:41:42: ec:2c:9a:aa:50:62:01:c4:ac:0c:e9:e3:7e:d8:ae: 6f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:54:6D:40:DB:AA:7E:9F:90:F0:D5:ED:DA:42:22:C9:D2:0E:97:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70571ce4-58f3-4cc6-b162-737a20af972d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.251.64.0/18 Signature Algorithm: sha256WithRSAEncryption 27:0b:11:53:cc:7c:a3:8f:c8:08:3e:1b:6c:88:50:ae:ba:ea: ed:b2:05:e8:70:3b:56:f3:87:29:8e:60:ee:75:0f:e4:1e:89: f6:1f:57:51:80:ea:ba:39:c4:fb:3b:b9:b9:4e:ff:f0:12:ed: bd:65:4d:5a:83:eb:5e:92:9a:54:bf:f7:0b:af:6b:95:33:23: 54:70:fd:c9:1d:d1:b2:0f:4c:9c:de:f4:84:8f:6f:7f:dc:88: 68:1c:8a:f2:13:69:71:e7:49:ec:83:c0:07:33:87:ae:2e:68: dd:47:c1:bc:4f:2c:55:73:ea:c6:71:5d:ea:3a:d0:ff:5b:71: 94:f9:6a:fc:4d:a2:fe:c8:ea:90:6b:f4:c9:87:52:52:93:81: b1:2f:0d:c9:f5:75:fa:85:49:15:75:b1:c6:af:d1:e8:52:5b: 26:84:b7:e4:e5:c6:59:7b:1f:bf:05:75:f1:62:15:66:5e:45: c8:b7:90:e4:1d:d3:31:59:d0:4f:1c:a6:fb:58:25:41:2c:4e: 15:e6:1a:8c:0e:2b:62:68:81:a1:a5:e3:14:17:9b:52:e7:06: a5:82:40:4f:bf:0e:d0:21:03:c3:c2:e3:e1:ad:6c:d2:b5:4b: ea:2d:e6:03:90:05:f6:aa:da:88:49:d1:1d:dc:68:b3:11:3b: 3d:c2:2f:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHCVNWm/7sviXCFbIXsyxSDMqt/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAxMTM2WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzdkNzQyZjkyOWM2MTA1OGVmZThhMzY1NjQ0ZGZhZjU5 YzFlMjEyODFhZTVlNGM4ZGU1Y2FlMzAzZjdlMTBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJPdtn5Ryj47w4ynQeu2Vp226wPrU+RZFDxy3JolIeBwBu mVhVJZpceXpo/Ma31RJ10PdEeLNjWh0ZS5ELPetvPBWgARfuHL2Ya7N/VNCJfU/K YsjsVeQVgjg6eCpLT4IcPTLxF26CQfM4b5CmSsygyH+KrrhFt1gzbRR4hM5oKuhd N40PXWmNFCbQGgGw7PjEykQ1I/WeIlmiux5m3+/wQG2iEHlWKCY/r/FP29VSTz3B SZ6dlMO2T+Xzb9OqgDGU/LfzOeLwo2gk91Zc7LCd59vfbSl1ZdxmkLSiZGnu/m8q DnBhieSMt/g3tFVBQuwsmqpQYgHErAzp437Yrm/XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfFRtQNuqfp+Q8NXt2kIiydIOl1kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwNTcxY2U0LTU4ZjMtNGNjNi1iMTYyLTczN2EyMGFmOTcyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG+0AwDQYJKoZIhvcNAQELBQADggEBACcLEVPMfKOPyAg+G2yIUK666u2y BehwO1bzhymOYO51D+QeifYfV1GA6ro5xPs7ublO//AS7b1lTVqD616SmlS/9wuv a5UzI1Rw/ckd0bIPTJze9ISPb3/ciGgcivITaXHnSeyDwAczh64uaN1HwbxPLFVz 6sZxXeo60P9bcZT5avxNov7I6pBr9MmHUlKTgbEvDcn1dfqFSRV1scav0ehSWyaE t+Tlxll7H78FdfFiFWZeRci3kOQd0zFZ0E8cpvtYJUEsThXmGowOK2JogaGl4xQX m1LnBqWCQE+/DtAhA8PC4+GtbNK1S+ot5gOQBfaq2ohJ0R3caLMROz3CL6M= -----END CERTIFICATE-----Generated at Sun May 3 14:46:53 2026 by rpki-client