$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a22c470d-8074-414a-ac14-cdafb7379aed.roa File: a22c470d-8074-414a-ac14-cdafb7379aed.roa (raw, json) Hash identifier: wCkmD5x9GVEatzkR+qe2qKrxAMCuq/n2ZV+P0FyLKB4= Subject key identifier: C2:C8:3E:C7:22:0F:35:85:7B:76:20:70:30:27:E3:9E:23:01:B4:C1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63D11A88357C6EDFA8EC780505BAE26BA021D2BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a22c470d-8074-414a-ac14-cdafb7379aed.roa Signing time: Fri 01 May 2026 00:10:39 +0000 ROA not before: Fri 01 May 2026 00:10:39 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 162.250.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:d1:1a:88:35:7c:6e:df:a8:ec:78:05:05:ba:e2:6b:a0:21:d2:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:10:39 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=99deaf45d82bbb85f9251959ee6e228628572a639eb9a0130c0594d537c80b5e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d1:50:f1:fd:ec:87:80:90:d1:7a:32:82:a5: 71:d6:5e:c7:1a:80:af:52:f9:6f:c4:d6:24:a5:05: 19:01:02:0b:56:ad:a8:72:2d:28:61:31:7e:e6:60: df:5e:af:69:98:3f:77:a9:4e:f3:5c:80:0d:e1:97: 50:d3:17:b8:67:dc:eb:a9:13:11:62:f0:97:7b:8d: 21:76:9a:fb:97:4b:70:14:65:6d:e9:86:e5:c2:c0: 49:06:8d:02:93:96:c6:db:6d:8c:eb:e9:96:0b:ef: a2:9a:4b:5f:e9:4b:f7:ba:1b:c0:38:2e:98:32:ee: 63:fa:b3:6e:ad:83:95:37:8a:82:cf:eb:72:bf:5b: bc:5c:d6:3d:be:b4:32:b1:7f:08:e6:a7:65:07:de: df:35:05:1a:be:09:7d:bc:0f:7c:0f:84:f6:77:3d: fb:a5:9a:de:9a:c0:7f:2c:8a:65:48:e9:75:e3:63: c8:bb:a9:9c:14:28:d9:b4:1f:ce:2c:e7:eb:92:84: 84:69:62:57:11:8d:4c:29:3b:ef:af:7a:4d:ab:32: 74:66:54:bb:c6:e8:63:10:7f:ac:c6:89:d4:e7:68: 09:7b:73:ac:1c:fa:0a:6a:0e:5e:75:1c:10:c0:32: 1e:5d:7f:ed:1f:fb:37:41:6a:f3:1a:0f:90:a3:ba: 70:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:C8:3E:C7:22:0F:35:85:7B:76:20:70:30:27:E3:9E:23:01:B4:C1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a22c470d-8074-414a-ac14-cdafb7379aed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.250.236.0/24 Signature Algorithm: sha256WithRSAEncryption 73:fe:0b:0b:5f:cb:94:9f:4a:13:8d:94:b8:f8:42:35:e9:8c: e6:c4:45:09:1c:3e:35:16:98:09:4a:28:fe:f7:df:a9:e1:2a: cd:cf:b6:b0:fd:44:d4:32:4b:f1:58:7a:a3:55:73:e3:e2:12: 4b:36:a1:92:56:cd:7a:3a:36:4b:c7:6a:eb:ac:2d:b1:3a:21: d5:e1:98:17:63:54:17:3a:4a:3c:ae:3f:8c:95:1a:f0:fb:3f: 19:5f:44:4b:38:ce:ed:24:01:43:83:5c:fa:86:f3:67:a2:a6: d4:09:5c:64:21:44:b9:7b:6a:59:fb:4e:ba:ad:7d:fa:f2:88: 9c:2f:e5:26:10:98:36:0a:ea:e1:36:b5:45:11:a2:ba:a4:79: 44:b8:b0:7b:e7:b0:0c:8d:0f:38:8d:f7:f9:e7:64:2e:c8:8a: 20:f2:66:f0:d7:7d:87:ba:e1:38:c6:c2:e3:5b:5c:58:ec:73: fa:97:6b:a8:b9:26:d6:b8:1a:17:a4:b2:43:1e:31:03:ed:dc: fb:64:57:11:67:37:11:eb:c8:d2:d9:f8:6b:2e:99:a5:06:a5: 97:f7:17:2f:87:40:2e:6d:c2:09:bb:d6:28:5c:37:f2:ce:3a: f8:e3:91:72:b3:c8:d3:cf:6c:ee:c8:17:b5:cd:61:bf:81:12: 89:2f:b8:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY9EaiDV8bt+o7HgFBbria6Ah0rwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAxMDM5WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWRlYWY0NWQ4MmJiYjg1ZjkyNTE5NTllZTZlMjI4NjI4 NTcyYTYzOWViOWEwMTMwYzA1OTRkNTM3YzgwYjVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx0VDx/eyHgJDRejKCpXHWXscagK9S+W/E1iSlBRkBAgtW rahyLShhMX7mYN9er2mYP3epTvNcgA3hl1DTF7hn3OupExFi8Jd7jSF2mvuXS3AU ZW3phuXCwEkGjQKTlsbbbYzr6ZYL76KaS1/pS/e6G8A4Lpgy7mP6s26tg5U3ioLP 63K/W7xc1j2+tDKxfwjmp2UH3t81BRq+CX28D3wPhPZ3Pfulmt6awH8simVI6XXj Y8i7qZwUKNm0H84s5+uShIRpYlcRjUwpO++vek2rMnRmVLvG6GMQf6zGidTnaAl7 c6wc+gpqDl51HBDAMh5df+0f+zdBavMaD5CjunBDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwsg+xyIPNYV7diBwMCfjniMBtMEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyMmM0NzBkLTgwNzQtNDE0YS1hYzE0LWNkYWZiNzM3OWFlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi+uwwDQYJKoZIhvcNAQELBQADggEBAHP+Cwtfy5SfShONlLj4QjXpjObE RQkcPjUWmAlKKP7336nhKs3PtrD9RNQyS/FYeqNVc+PiEks2oZJWzXo6NkvHauus LbE6IdXhmBdjVBc6SjyuP4yVGvD7PxlfREs4zu0kAUODXPqG82eiptQJXGQhRLl7 aln7TrqtffryiJwv5SYQmDYK6uE2tUURorqkeUS4sHvnsAyNDziN9/nnZC7IiiDy ZvDXfYe64TjGwuNbXFjsc/qXa6i5Jta4GhekskMeMQPt3PtkVxFnNxHryNLZ+Gsu maUGpZf3Fy+HQC5twgm71ihcN/LOOvjjkXKzyNPPbO7IF7XNYb+BEokvuMs= -----END CERTIFICATE-----Generated at Sun May 3 15:32:13 2026 by rpki-client