$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae158d97-c74d-483a-ae31-f34d17ac996d.roa File: ae158d97-c74d-483a-ae31-f34d17ac996d.roa (raw, json) Hash identifier: uosSOfSzctNU7Knmo8ioFFDM5G6ASk42DmVI7LAKT4o= Subject key identifier: 00:0E:16:F3:4E:6C:DD:93:C4:8F:22:FD:74:3B:B4:EB:83:95:06:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 419962B4618C6FE47899B09A7BC615F64C42435C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae158d97-c74d-483a-ae31-f34d17ac996d.roa Signing time: Tue 21 Apr 2026 08:47:04 +0000 ROA not before: Tue 21 Apr 2026 08:47:04 +0000 ROA not after: Mon 20 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:99:62:b4:61:8c:6f:e4:78:99:b0:9a:7b:c6:15:f6:4c:42:43:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 08:47:04 2026 GMT Not After : Jul 20 23:59:59 2026 GMT Subject: serialNumber=9243cae67cbbfb25cf3e6c0ee70c9f463dba82b6723a9da3c2d28eba2b581e73, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:31:f1:98:b4:b8:29:65:24:09:c2:11:69:15: f6:d3:59:2e:01:8b:f9:b9:66:b2:b7:24:a6:c9:6f: 6a:f4:63:36:bb:63:cb:c2:76:0e:3e:13:3d:ef:7e: eb:42:23:d4:5e:ad:d5:52:c5:25:60:0a:35:e3:16: fa:b9:a0:06:6d:90:8e:56:ff:8a:2d:d5:3c:92:d6: 67:36:5c:74:69:bb:a3:3a:0e:bc:3a:52:fd:f8:e1: 8c:f0:06:c2:ce:51:74:b1:e6:e8:84:8c:29:c5:a9: a5:48:d5:ec:a2:51:c6:03:e0:12:c4:ab:19:ee:81: 19:71:0a:46:fd:b9:8c:a9:eb:15:0d:dd:f5:aa:f8: b6:87:07:45:7e:4d:f6:c7:b7:ab:a2:47:08:57:64: 4a:27:b1:a6:8b:7b:94:80:ce:dd:b1:b8:fd:b2:a5: 3d:7b:7e:16:1e:90:89:ee:ca:6b:96:11:6a:43:73: b1:e5:43:40:32:40:55:f7:53:3e:64:ae:de:cd:27: 36:4c:e3:39:3d:f5:e0:b6:7d:02:a7:16:a0:8b:1c: a5:89:59:94:2f:85:ea:ef:22:1b:75:40:aa:df:c3: ea:b1:a8:0b:1e:b8:5f:d2:61:a8:9f:04:35:f2:54: 65:0b:a4:a9:34:be:ca:26:9f:79:1b:34:58:e4:3b: 5d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0E:16:F3:4E:6C:DD:93:C4:8F:22:FD:74:3B:B4:EB:83:95:06:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae158d97-c74d-483a-ae31-f34d17ac996d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.7.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:7a:1d:95:fd:13:bc:05:d0:94:9a:22:97:df:84:1c:f8:4a: e2:76:8e:35:18:25:f2:51:a2:a3:0f:25:4f:92:a0:70:33:b7: 6b:d7:52:0a:e7:6b:88:4b:a1:41:0f:07:1f:ab:09:9e:6a:35: e6:31:58:18:3c:53:5f:4c:04:ce:c3:18:9d:04:c1:b7:63:33: cd:55:3c:3e:77:7a:40:7b:f1:01:89:a8:70:c5:0d:e5:47:7a: ba:65:3e:12:ec:a8:ad:e3:b8:78:2c:ae:f1:0f:bf:89:ec:4d: 2f:dd:3f:ac:dc:2d:7c:a6:4b:f4:71:1d:bf:46:f4:1a:99:42: 42:2d:62:1a:33:97:b8:26:92:95:6c:5b:c8:e0:9c:b8:7e:46: 45:32:29:64:45:44:d5:c9:1c:47:13:b4:bd:9b:6b:97:f6:67: 1d:e6:5b:4a:7e:8b:23:80:cc:38:13:18:2b:c3:26:ba:ce:15: a7:c7:a9:ef:1c:8c:9a:b4:5a:a4:72:cb:08:bd:d2:ec:5a:14: f4:b1:5d:21:7e:48:1d:28:08:97:de:c0:12:7c:7a:8d:63:f9: cd:bd:18:8e:a2:f1:a3:c7:3d:b6:b2:71:f4:da:50:8e:85:33: 94:7a:69:af:1e:b3:d9:84:4d:7e:d1:4c:cf:a7:ae:89:fc:f6: 20:4f:e7:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQZlitGGMb+R4mbCae8YV9kxCQ1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDIxMDg0NzA0WhcNMjYwNzIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjQzY2FlNjdjYmJmYjI1Y2YzZTZjMGVlNzBjOWY0NjNk YmE4MmI2NzIzYTlkYTNjMmQyOGViYTJiNTgxZTczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeMfGYtLgpZSQJwhFpFfbTWS4Bi/m5ZrK3JKbJb2r0Yza7 Y8vCdg4+Ez3vfutCI9RerdVSxSVgCjXjFvq5oAZtkI5W/4ot1TyS1mc2XHRpu6M6 Drw6Uv344YzwBsLOUXSx5uiEjCnFqaVI1eyiUcYD4BLEqxnugRlxCkb9uYyp6xUN 3fWq+LaHB0V+TfbHt6uiRwhXZEonsaaLe5SAzt2xuP2ypT17fhYekInuymuWEWpD c7HlQ0AyQFX3Uz5krt7NJzZM4zk99eC2fQKnFqCLHKWJWZQvhervIht1QKrfw+qx qAseuF/SYaifBDXyVGULpKk0vsomn3kbNFjkO13FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAA4W805s3ZPEjyL9dDu064OVBkkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlMTU4ZDk3LWM3NGQtNDgzYS1hZTMxLWYzNGQxN2FjOTk2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsAcwDQYJKoZIhvcNAQELBQADggEBAIx6HZX9E7wF0JSaIpffhBz4SuJ2 jjUYJfJRoqMPJU+SoHAzt2vXUgrna4hLoUEPBx+rCZ5qNeYxWBg8U19MBM7DGJ0E wbdjM81VPD53ekB78QGJqHDFDeVHerplPhLsqK3juHgsrvEPv4nsTS/dP6zcLXym S/RxHb9G9BqZQkItYhozl7gmkpVsW8jgnLh+RkUyKWRFRNXJHEcTtL2ba5f2Zx3m W0p+iyOAzDgTGCvDJrrOFafHqe8cjJq0WqRyywi90uxaFPSxXSF+SB0oCJfewBJ8 eo1j+c29GI6i8aPHPbaycfTaUI6FM5R6aa8es9mETX7RTM+nron89iBP50g= -----END CERTIFICATE-----Generated at Sun May 3 14:44:42 2026 by rpki-client