$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6560d66-8e98-4546-86ad-c43d86d45125.roa File: a6560d66-8e98-4546-86ad-c43d86d45125.roa (raw, json) Hash identifier: wj3sNFjd3Y+8x0Pu7PR+ZGIK6rp2j95x15MRQGVRlNQ= Subject key identifier: 9D:D9:4C:5D:3B:F5:76:74:41:96:B4:A7:8C:BB:F5:D9:0F:B5:83:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 167A47FDB9FABFBFFC9859D0E59FD91040CD44B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6560d66-8e98-4546-86ad-c43d86d45125.roa Signing time: Mon 27 Apr 2026 00:10:11 +0000 ROA not before: Mon 27 Apr 2026 00:10:11 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:7a:47:fd:b9:fa:bf:bf:fc:98:59:d0:e5:9f:d9:10:40:cd:44:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:10:11 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=f8efd11464e74ebed419685fabd6e56fec5217cdbf8926d3eb0275834ae4a182, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f1:f8:01:d8:eb:db:b2:1a:e1:ac:52:00:ee: a2:55:16:67:ac:e3:26:4e:e2:da:df:49:c0:c7:3d: 0a:5f:a6:ce:cc:eb:64:ac:f1:f3:3d:55:ce:f6:d2: 45:ec:8f:49:7f:58:27:88:3c:99:3d:0b:d7:53:15: 5a:30:14:b1:28:43:24:8b:6b:ff:5c:32:78:c4:2c: 9e:4c:03:d4:30:14:66:72:28:0e:e0:2f:04:f9:29: 1f:fe:9c:2d:63:97:5a:7d:aa:14:48:b2:37:92:c5: fb:30:fc:f2:3c:9d:50:b4:a6:3c:51:24:36:24:78: cf:67:f8:0c:c4:33:e3:09:4e:2c:d8:b5:1e:3e:12: e4:d8:5e:06:b8:51:bc:6d:44:94:10:43:c2:a5:e4: e7:d6:aa:18:46:05:01:3f:38:da:b6:22:ab:dd:c9: 3e:dc:aa:8b:38:8c:6e:95:58:b2:05:2d:e2:45:d6: 33:5c:d3:51:4a:97:60:d0:ab:43:27:48:22:95:f3: 90:03:db:49:3a:0e:32:8f:e2:d8:a7:38:45:32:0e: 56:bf:62:94:99:d3:24:41:46:20:f8:03:80:b2:57: f9:95:50:82:80:36:14:a8:14:be:0b:1c:b0:2c:6f: 28:b7:44:b4:33:de:b3:19:a4:b7:d3:72:f0:d6:41: c4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D9:4C:5D:3B:F5:76:74:41:96:B4:A7:8C:BB:F5:D9:0F:B5:83:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6560d66-8e98-4546-86ad-c43d86d45125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.36.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:cf:a8:2f:3d:53:5f:31:d8:c2:0b:4a:ce:0f:6f:40:31:4d: 66:52:0d:5b:2a:29:9d:7d:86:35:af:c1:90:59:ab:f6:54:87: b4:3f:dd:77:be:89:dc:59:7b:c8:9a:6a:43:ec:af:dd:ad:55: 95:9d:98:c8:44:1f:03:b2:2b:0c:d0:80:69:33:b0:2e:75:05: ff:4f:4a:33:da:9a:9a:f5:5b:0d:a8:fd:c2:69:41:1a:21:15: b2:cb:be:6f:89:be:18:11:f7:53:95:b5:73:13:44:eb:d7:9e: 49:3d:16:ed:17:2c:20:37:e9:f1:61:9d:17:57:8e:cd:38:ae: 70:cd:4d:53:fe:28:0d:21:a2:8d:74:22:b1:14:26:6a:00:25: ba:76:04:a7:d6:17:10:e7:38:cb:b6:c0:84:aa:68:cc:70:92: 77:ee:83:50:6f:00:0c:ca:3a:5e:24:76:fb:b4:10:51:41:c2: 0f:72:d3:f2:63:b1:1a:f6:c8:24:8e:67:8c:d4:df:15:2a:b9: dd:60:f0:be:1c:2c:c4:c1:00:79:30:b9:ed:7f:c3:4a:61:d0: f0:cc:df:20:56:ab:88:e2:5e:c1:dd:a7:33:d7:19:ff:04:d7: b6:c2:eb:e4:67:a3:e8:2e:28:e8:3d:f9:3a:4f:ec:43:ad:8b: bf:42:a1:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFnpH/bn6v7/8mFnQ5Z/ZEEDNRLIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAxMDExWhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOGVmZDExNDY0ZTc0ZWJlZDQxOTY4NWZhYmQ2ZTU2ZmVj NTIxN2NkYmY4OTI2ZDNlYjAyNzU4MzRhZTRhMTgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT8fgB2OvbshrhrFIA7qJVFmes4yZO4trfScDHPQpfps7M 62Ss8fM9Vc720kXsj0l/WCeIPJk9C9dTFVowFLEoQySLa/9cMnjELJ5MA9QwFGZy KA7gLwT5KR/+nC1jl1p9qhRIsjeSxfsw/PI8nVC0pjxRJDYkeM9n+AzEM+MJTizY tR4+EuTYXga4UbxtRJQQQ8Kl5OfWqhhGBQE/ONq2IqvdyT7cqos4jG6VWLIFLeJF 1jNc01FKl2DQq0MnSCKV85AD20k6DjKP4tinOEUyDla/YpSZ0yRBRiD4A4CyV/mV UIKANhSoFL4LHLAsbyi3RLQz3rMZpLfTcvDWQcRFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUndlMXTv1dnRBlrSnjLv12Q+1gwAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NTYwZDY2LThlOTgtNDU0Ni04NmFkLWM0M2Q4NmQ0NTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlCQwDQYJKoZIhvcNAQELBQADggEBAFzPqC89U18x2MILSs4Pb0AxTWZS DVsqKZ19hjWvwZBZq/ZUh7Q/3Xe+idxZe8iaakPsr92tVZWdmMhEHwOyKwzQgGkz sC51Bf9PSjPampr1Ww2o/cJpQRohFbLLvm+JvhgR91OVtXMTROvXnkk9Fu0XLCA3 6fFhnRdXjs04rnDNTVP+KA0hoo10IrEUJmoAJbp2BKfWFxDnOMu2wISqaMxwknfu g1BvAAzKOl4kdvu0EFFBwg9y0/JjsRr2yCSOZ4zU3xUqud1g8L4cLMTBAHkwue1/ w0ph0PDM3yBWq4jiXsHdpzPXGf8E17bC6+Rno+guKOg9+TpP7EOti79CoaY= -----END CERTIFICATE-----Generated at Sun May 3 17:07:52 2026 by rpki-client