$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a0c4726a-289c-4d44-8fd7-1b91e1d5da9a.roa File: a0c4726a-289c-4d44-8fd7-1b91e1d5da9a.roa (raw, json) Hash identifier: /czUU3T4ukHF0KYPKqPIzFc7kegqRruLX90hbe64SKU= Subject key identifier: FF:EB:3F:0D:B6:61:E4:4E:E9:07:DC:5A:20:E5:E0:57:45:F8:47:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 468173BE63028953D8E8700E64C7305727A1C0D8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a0c4726a-289c-4d44-8fd7-1b91e1d5da9a.roa Signing time: Tue 19 May 2026 00:20:42 +0000 ROA not before: Tue 19 May 2026 00:20:42 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 153.47.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 11 Jun 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:81:73:be:63:02:89:53:d8:e8:70:0e:64:c7:30:57:27:a1:c0:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:20:42 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=5872c8f03a5c4662f606788c0372b0397ef97dc74411280289fbe1e403207b7a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:08:d0:0a:58:d0:e6:67:22:9a:45:40:78:5d: 5d:a1:4f:b3:e9:53:09:8e:61:04:e5:0b:fd:d0:3a: b0:4d:0b:b0:6b:2d:5e:2f:48:f6:58:06:46:43:d1: 62:48:9d:0d:d2:c3:44:6d:29:cd:34:29:9c:38:ec: 8e:27:f8:22:6d:47:3b:20:d8:18:20:d8:54:ab:fa: 61:04:fc:e3:41:29:4a:f9:40:c9:56:81:93:f7:86: 0f:ce:0e:86:de:42:32:fc:8e:11:87:ac:0c:b8:01: 10:9d:03:96:2c:96:c7:e1:f8:ba:b6:33:2d:22:b1: 7a:55:81:72:f1:d2:82:ae:98:d1:9d:53:07:0e:c1: 01:78:60:f9:f2:aa:3d:5f:2f:f8:9b:60:ad:a4:d9: c5:c7:87:77:fe:bb:1f:f8:83:3e:da:86:63:48:af: a7:70:54:0c:10:81:4b:3e:d5:2f:ff:00:b5:27:ca: 2e:0b:76:28:a7:53:70:e6:18:5c:43:88:c6:ce:f2: db:6e:58:d0:6c:89:b3:c1:81:8f:64:80:c8:88:12: fc:6a:7e:c3:d9:f5:f1:0e:c8:fa:38:6b:c2:25:0c: b1:25:6f:db:cc:dc:75:7a:25:82:f9:65:0a:dc:e6: e3:2d:63:e2:67:82:d2:e4:7c:15:3d:31:a2:3d:93: 9c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EB:3F:0D:B6:61:E4:4E:E9:07:DC:5A:20:E5:E0:57:45:F8:47:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a0c4726a-289c-4d44-8fd7-1b91e1d5da9a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.47.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:9c:70:96:da:91:27:51:48:d2:21:18:91:57:2c:32:24:fe: 32:aa:84:98:80:81:e5:3a:63:38:ef:3f:67:8b:7b:c7:22:12: a3:6e:30:59:90:89:ec:cf:cc:13:9d:81:8b:aa:50:ac:f7:fe: ae:12:7e:96:e9:cb:15:af:e3:79:e1:7c:3a:dd:65:ec:95:70: 09:86:02:d3:5c:8a:83:7d:f9:2e:95:5b:2e:34:21:96:8f:c6: c4:7b:40:f0:14:03:37:58:2a:05:07:d4:d2:f9:56:75:32:ff: bf:d5:7b:f5:32:e9:50:55:42:86:c0:85:d9:f0:60:84:4c:61: 2d:46:da:87:cb:9a:58:31:5d:bd:5b:e4:a0:be:3d:d9:a0:be: 04:6c:4e:60:65:0a:ea:e0:7a:85:09:5e:48:a3:0f:63:c1:9d: 29:4b:e4:2d:20:9c:c9:07:22:7a:b6:98:25:12:1a:b9:54:8e: e6:f8:16:f2:d0:66:46:03:13:95:a4:c4:60:36:ad:80:47:c1: 6c:dd:a7:d2:cd:2d:fb:2c:8f:25:82:16:e5:98:da:43:aa:bd: b1:f2:95:f4:b0:b1:b3:f2:7a:86:dd:d7:7b:18:30:c0:60:fd: c6:ba:ad:b5:95:ad:50:a5:0c:95:cf:43:f6:18:ad:c9:40:27: 0b:7c:58:23 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURoFzvmMCiVPY6HAOZMcwVyehwNgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAyMDQyWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODcyYzhmMDNhNWM0NjYyZjYwNjc4OGMwMzcyYjAzOTdl Zjk3ZGM3NDQxMTI4MDI4OWZiZTFlNDAzMjA3YjdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0CNAKWNDmZyKaRUB4XV2hT7PpUwmOYQTlC/3QOrBNC7Br LV4vSPZYBkZD0WJInQ3Sw0RtKc00KZw47I4n+CJtRzsg2Bgg2FSr+mEE/ONBKUr5 QMlWgZP3hg/ODobeQjL8jhGHrAy4ARCdA5Yslsfh+Lq2My0isXpVgXLx0oKumNGd UwcOwQF4YPnyqj1fL/ibYK2k2cXHh3f+ux/4gz7ahmNIr6dwVAwQgUs+1S//ALUn yi4LdiinU3DmGFxDiMbO8ttuWNBsibPBgY9kgMiIEvxqfsPZ9fEOyPo4a8IlDLEl b9vM3HV6JYL5ZQrc5uMtY+JngtLkfBU9MaI9k5yvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/+s/DbZh5E7pB9xaIOXgV0X4Ry8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwYzQ3MjZhLTI4OWMtNGQ0NC04ZmQ3LTFiOTFlMWQ1ZGE5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCZLzANBgkqhkiG9w0BAQsFAAOCAQEAIZxwltqRJ1FI0iEYkVcsMiT+MqqE mICB5TpjOO8/Z4t7xyISo24wWZCJ7M/ME52Bi6pQrPf+rhJ+lunLFa/jeeF8Ot1l 7JVwCYYC01yKg335LpVbLjQhlo/GxHtA8BQDN1gqBQfU0vlWdTL/v9V79TLpUFVC hsCF2fBghExhLUbah8uaWDFdvVvkoL492aC+BGxOYGUK6uB6hQleSKMPY8GdKUvk LSCcyQcieraYJRIauVSO5vgW8tBmRgMTlaTEYDatgEfBbN2n0s0t+yyPJYIW5Zja Q6q9sfKV9LCxs/J6ht3XexgwwGD9xrqttZWtUKUMlc9D9hityUAnC3xYIw== -----END CERTIFICATE-----Generated at Tue Jun 9 15:32:11 2026 by rpki-client