$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa File: 7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa (raw, json) Hash identifier: ZQgEPm7fDYkvQFr3m1kd8PVfPOa+BMDvUOSd0DuuYZk= Subject key identifier: 1E:E0:7E:DD:A1:AF:A3:1D:DB:2A:1B:BB:2E:09:95:1E:51:C6:07:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6AE97541B813ECC43A70DEC7708F9B15704C881E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa Signing time: Mon 27 Apr 2026 00:21:02 +0000 ROA not before: Mon 27 Apr 2026 00:21:02 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 137.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:e9:75:41:b8:13:ec:c4:3a:70:de:c7:70:8f:9b:15:70:4c:88:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:21:02 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=582d89b37142b8ee0e659d561be87abbca110acf71381c91d05a26217e2c0caf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:98:80:3c:96:12:39:d1:51:47:4f:d1:f1:3f: 2a:56:1a:e5:65:eb:1d:49:a9:e8:86:53:16:84:9b: 16:bf:f3:79:f6:0a:d6:1b:3a:fd:31:42:d4:dd:23: 81:82:d3:bf:f2:49:0d:0d:03:8f:bd:7c:49:9c:47: 86:22:49:aa:6d:4b:ce:20:b0:5f:71:d1:25:68:34: 78:ce:95:33:2d:8b:3a:73:52:b2:87:4e:17:e9:a1: 6f:44:e6:79:65:30:cb:ff:d0:43:fa:5f:fe:83:d7: 9e:0a:7b:cb:91:fa:f4:0c:79:c6:82:0a:4d:64:39: 5b:0e:07:7f:1b:d1:96:15:f7:d1:67:f1:c4:dd:2d: af:1b:66:86:70:3d:79:44:e2:82:fd:99:ec:4f:46: dc:ca:03:06:13:05:bd:92:cc:09:04:db:f9:e7:1e: 19:bc:43:d2:6e:b0:f6:b9:2e:a2:f5:2f:0a:24:36: cf:f7:0f:92:c4:56:cb:f1:d6:2e:58:8b:b0:60:fa: cc:33:c1:31:68:09:f6:23:cb:af:17:04:f0:ef:65: 6d:b0:60:12:93:60:ca:bf:01:d6:61:f6:d6:db:e4: db:29:31:c0:50:63:3f:f0:87:65:04:8c:a6:31:7f: cf:bf:43:30:05:ce:cd:99:3b:14:f1:bd:ab:1c:35: 0b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E0:7E:DD:A1:AF:A3:1D:DB:2A:1B:BB:2E:09:95:1E:51:C6:07:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0c:fb:90:8b:0d:1e:61:52:57:e2:49:8b:d1:1a:eb:c8:6e:eb: 0c:67:bc:e7:64:9a:17:82:7e:eb:b8:00:dd:a5:11:b6:e5:a4: 5c:5c:e4:f4:cc:46:2c:00:39:c1:ae:dd:63:b3:d0:4f:6e:b6: 70:9d:9f:37:41:f9:d4:07:28:2d:3e:20:67:9d:c4:72:ea:59: cb:ee:c8:41:6b:f7:66:b2:4a:5c:2e:bb:e8:c2:a0:a7:2a:93: 74:84:10:1a:fe:0e:b6:0b:9d:cc:cc:aa:b8:99:76:40:f8:c1: b1:48:23:02:4c:22:af:69:06:fa:48:45:9f:72:27:fe:d0:3d: 37:95:b1:e4:63:f7:2c:b1:94:aa:52:63:04:8f:4c:25:ef:5a: 5f:9a:e0:b3:66:be:00:77:6d:23:97:08:85:aa:eb:ff:e6:b8: 1f:37:bf:fa:a3:8e:16:2e:63:a8:1c:ad:ee:fd:4d:cc:63:98: 5b:ce:38:aa:a0:d2:5b:4d:75:f2:4d:60:2d:c7:c9:86:32:1f: 16:5e:5e:23:9d:75:74:6c:ff:ac:e4:9b:81:b1:fd:a9:0e:80: 1a:64:f1:32:25:59:ce:f5:70:dd:36:66:41:61:97:9a:20:bd: 16:6b:cc:a8:5b:c2:67:a7:5e:32:e1:0f:18:62:0f:d2:48:79: 15:a8:a1:b5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaul1QbgT7MQ6cN7HcI+bFXBMiB4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAyMTAyWhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODJkODliMzcxNDJiOGVlMGU2NTlkNTYxYmU4N2FiYmNh MTEwYWNmNzEzODFjOTFkMDVhMjYyMTdlMmMwY2FmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcmIA8lhI50VFHT9HxPypWGuVl6x1JqeiGUxaEmxa/83n2 CtYbOv0xQtTdI4GC07/ySQ0NA4+9fEmcR4YiSaptS84gsF9x0SVoNHjOlTMtizpz UrKHThfpoW9E5nllMMv/0EP6X/6D154Ke8uR+vQMecaCCk1kOVsOB38b0ZYV99Fn 8cTdLa8bZoZwPXlE4oL9mexPRtzKAwYTBb2SzAkE2/nnHhm8Q9JusPa5LqL1Lwok Ns/3D5LEVsvx1i5Yi7Bg+swzwTFoCfYjy68XBPDvZW2wYBKTYMq/AdZh9tbb5Nsp McBQYz/wh2UEjKYxf8+/QzAFzs2ZOxTxvascNQupAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHuB+3aGvox3bKhu7LgmVHlHGB3gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjN2MwN2VlLTA5MTctNDFmOC05OTdiLWQ1MjUzYWQ1NmNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCJoDANBgkqhkiG9w0BAQsFAAOCAQEADPuQiw0eYVJX4kmL0RrryG7rDGe8 52SaF4J+67gA3aURtuWkXFzk9MxGLAA5wa7dY7PQT262cJ2fN0H51AcoLT4gZ53E cupZy+7IQWv3ZrJKXC676MKgpyqTdIQQGv4OtgudzMyquJl2QPjBsUgjAkwir2kG +khFn3In/tA9N5Wx5GP3LLGUqlJjBI9MJe9aX5rgs2a+AHdtI5cIharr/+a4Hze/ +qOOFi5jqByt7v1NzGOYW844qqDSW0118k1gLcfJhjIfFl5eI511dGz/rOSbgbH9 qQ6AGmTxMiVZzvVw3TZmQWGXmiC9FmvMqFvCZ6deMuEPGGIP0kh5FaihtQ== -----END CERTIFICATE-----Generated at Sun May 3 14:46:32 2026 by rpki-client