$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c1a18f2-6db7-414e-af5f-943e93d34d77.roa File: 8c1a18f2-6db7-414e-af5f-943e93d34d77.roa (raw, json) Hash identifier: 3WWy1htlah6m7u8nB4yJRGdRO2qsRRo+nJH6ygvtF6c= Subject key identifier: 4B:0D:7C:C1:50:D8:F5:4F:27:10:14:45:8D:40:27:15:C0:EB:6F:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FD5379030E0125C4F1F2B14E827D1B0960CF65C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c1a18f2-6db7-414e-af5f-943e93d34d77.roa Signing time: Mon 27 Apr 2026 00:11:15 +0000 ROA not before: Mon 27 Apr 2026 00:11:15 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 151.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:d5:37:90:30:e0:12:5c:4f:1f:2b:14:e8:27:d1:b0:96:0c:f6:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:11:15 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=d6771fa8f9db16a4b85f8a5644865cf70ec5ca53c2ccc816db5a82f9688bed8d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0f:12:ab:f2:5f:41:5d:18:ee:b2:ef:a2:cb: a6:46:2f:96:1c:a8:78:73:c2:da:44:04:72:a6:f6: 0b:fe:94:2c:54:ef:95:e2:09:c1:0b:d7:65:71:7f: cc:b7:33:54:1f:70:0f:ec:f3:34:11:b6:c2:29:fc: 37:66:c5:95:b5:2e:28:a2:d6:e3:68:2f:7d:74:ae: f1:36:8d:59:25:0f:d9:71:d2:e2:b8:4e:03:f6:31: ea:70:a1:05:ef:8e:5b:e3:8f:56:c4:20:55:28:40: 8b:f8:12:0c:5b:05:cf:da:02:c6:99:53:d2:05:2b: 56:c0:8d:41:b9:55:49:4b:8f:96:d6:59:a1:7b:8b: b8:a2:64:c5:03:17:6a:bf:f7:56:b5:0c:4c:9d:69: 6f:55:6c:63:64:2a:a3:68:82:46:73:68:36:1d:6b: fe:21:06:26:0e:0f:6e:27:dd:cd:96:48:56:45:47: 7c:89:fa:18:74:32:f6:20:29:3f:70:1d:70:b2:2a: 9b:6e:e2:07:09:2b:cc:9d:f6:e5:35:35:3d:b7:aa: e0:07:6a:bc:23:03:11:9d:13:f1:ed:6d:82:cd:1f: 3d:ce:31:ab:1c:6e:4b:f4:c9:fe:44:9a:75:ca:58: b8:a7:bf:e6:27:16:b7:e0:91:8a:79:07:1b:ae:0b: 92:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0D:7C:C1:50:D8:F5:4F:27:10:14:45:8D:40:27:15:C0:EB:6F:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c1a18f2-6db7-414e-af5f-943e93d34d77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:3f:6c:30:34:2a:f9:8f:93:22:c9:47:25:64:18:f4:51:51: 7b:66:49:ac:e3:4b:2e:91:9e:3d:a5:15:4f:49:e9:4b:cd:0d: 5d:a2:04:e8:0a:9e:31:69:f5:de:6d:57:75:62:25:21:b9:c2: eb:00:3a:3c:f9:a8:75:e0:7a:89:d5:fe:b2:e3:39:2a:49:b3: 29:b4:5d:3d:6c:76:4c:6a:e7:95:98:bc:ac:6d:c9:5f:78:f1: 12:1d:ea:89:bb:d1:8b:dd:a0:a0:dc:6c:81:32:c7:d9:70:76: ea:49:ca:50:52:fd:98:f3:c6:eb:05:92:25:07:fd:b9:81:41: cd:74:0b:b9:dc:56:d0:f7:77:57:1c:3d:bb:33:c5:42:6a:f7: dc:31:d2:b6:5d:38:d0:54:39:f0:76:92:10:21:a3:0a:76:e3: 3a:88:59:ca:55:cc:b1:68:ab:a0:be:de:13:6f:d6:cf:90:16: 3d:2d:ce:53:57:da:d3:a1:de:d7:f8:16:f2:31:f7:f2:59:05: af:05:9a:50:72:e1:1a:31:15:bc:1a:97:d4:fa:b3:b8:70:70: a7:15:97:50:72:c3:a0:3b:79:35:2e:06:7f:09:fd:89:37:16: 99:37:36:9f:38:dd:50:66:0b:1f:ad:32:03:b4:11:d4:52:7b: 09:f6:49:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT9U3kDDgElxPHysU6CfRsJYM9lwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAxMTE1WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjc3MWZhOGY5ZGIxNmE0Yjg1ZjhhNTY0NDg2NWNmNzBl YzVjYTUzYzJjY2M4MTZkYjVhODJmOTY4OGJlZDhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtDxKr8l9BXRjusu+iy6ZGL5YcqHhzwtpEBHKm9gv+lCxU 75XiCcEL12Vxf8y3M1QfcA/s8zQRtsIp/DdmxZW1Liii1uNoL310rvE2jVklD9lx 0uK4TgP2MepwoQXvjlvjj1bEIFUoQIv4EgxbBc/aAsaZU9IFK1bAjUG5VUlLj5bW WaF7i7iiZMUDF2q/91a1DEydaW9VbGNkKqNogkZzaDYda/4hBiYOD24n3c2WSFZF R3yJ+hh0MvYgKT9wHXCyKptu4gcJK8yd9uU1NT23quAHarwjAxGdE/HtbYLNHz3O Mascbkv0yf5EmnXKWLinv+YnFrfgkYp5BxuuC5KxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSw18wVDY9U8nEBRFjUAnFcDrb5QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhjMWExOGYyLTZkYjctNDE0ZS1hZjVmLTk0M2U5M2QzNGQ3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCXhjANBgkqhkiG9w0BAQsFAAOCAQEAdz9sMDQq+Y+TIslHJWQY9FFRe2ZJ rONLLpGePaUVT0npS80NXaIE6AqeMWn13m1XdWIlIbnC6wA6PPmodeB6idX+suM5 KkmzKbRdPWx2TGrnlZi8rG3JX3jxEh3qibvRi92goNxsgTLH2XB26knKUFL9mPPG 6wWSJQf9uYFBzXQLudxW0Pd3Vxw9uzPFQmr33DHStl040FQ58HaSECGjCnbjOohZ ylXMsWiroL7eE2/Wz5AWPS3OU1fa06He1/gW8jH38lkFrwWaUHLhGjEVvBqX1Pqz uHBwpxWXUHLDoDt5NS4Gfwn9iTcWmTc2nzjdUGYLH60yA7QR1FJ7CfZJQQ== -----END CERTIFICATE-----Generated at Sun May 3 16:13:57 2026 by rpki-client