$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa File: b5e54a86-ed38-4b92-882c-c19087637bc3.roa (raw, json) Hash identifier: pwtGimmwMkN3dwebBmYmKMpDnKbNbjlxQVCiLzxtrKc= Subject key identifier: BC:62:BF:2F:72:9D:E7:B4:18:14:F2:49:8F:D0:07:83:6E:8C:81:01 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 353281D4138ADE68BDC3086388B2979CB91B2D90 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa Signing time: Mon 27 Apr 2026 00:10:41 +0000 ROA not before: Mon 27 Apr 2026 00:10:41 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:32:81:d4:13:8a:de:68:bd:c3:08:63:88:b2:97:9c:b9:1b:2d:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:10:41 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=f67ec7f3b1527d7267fe2abd8c5d9aeca1cc6e2e28da76105191004f06898f5d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3c:00:5c:59:5b:c4:84:63:95:79:29:53:f9: 54:d4:d1:ef:6d:4c:59:89:ff:02:1a:e1:d2:6d:e2: d6:51:f5:23:d1:00:e8:64:51:ff:25:d0:cd:fe:a5: 4d:d8:7a:ef:f5:a0:75:4d:26:d3:a5:68:9b:ad:d0: 66:f8:64:59:a4:1e:bc:03:65:e6:18:02:97:86:09: 15:a9:6c:eb:03:a2:10:9b:70:31:d4:e0:e0:cb:cf: 09:2c:89:4c:9e:73:99:47:eb:2a:6e:81:6b:97:6c: 9d:1c:02:2a:1e:9b:a2:a0:61:94:71:7f:1e:cb:00: cd:7b:70:07:7b:9e:da:2b:f8:be:5d:17:67:a3:2b: 46:ff:a4:6a:69:d4:96:9d:ee:31:d5:80:05:6a:a2: cb:a2:b4:62:1f:da:12:b8:fc:ad:3c:8d:c7:d6:27: e2:4c:88:b4:4c:c1:8b:e8:6e:4d:8a:99:ad:0c:10: 03:67:31:58:bb:1e:19:b4:03:38:e1:ee:37:d8:b1: 93:a9:c7:de:ff:a1:91:19:39:da:f4:85:9e:6a:ab: 7a:fb:1f:d4:95:8f:c7:d6:26:97:4e:7a:c7:83:56: e7:1d:93:04:19:3e:03:ad:f9:64:e8:04:fe:58:5a: 72:a1:62:c7:f0:fc:7c:76:d7:38:3d:27:29:d0:28: 4f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:62:BF:2F:72:9D:E7:B4:18:14:F2:49:8F:D0:07:83:6E:8C:81:01 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.112.0/24 Signature Algorithm: sha256WithRSAEncryption 56:e0:3f:89:d3:d2:9f:fe:a2:26:5d:9d:95:8e:b7:f8:68:ab: 65:96:89:4f:04:26:5b:a8:25:2c:e0:b3:ee:c7:03:41:e0:bc: 96:12:b7:4e:4a:59:57:02:8d:1b:1c:09:a2:18:17:e2:f9:78: 71:83:35:9c:9c:d8:66:ff:ab:bc:e5:e7:a9:23:07:b2:62:83: c6:f7:db:86:f2:b8:96:2b:27:32:21:b7:2e:69:68:cd:69:b6: 38:f5:8e:10:89:88:56:63:28:45:a0:56:9b:6e:23:7e:4f:a5: ef:a3:21:bc:71:b0:cf:28:f5:f1:b3:93:03:42:02:3c:e3:4a: 5e:86:a7:2c:b1:5a:8b:69:8b:47:b7:8f:13:91:5a:53:df:91: 85:43:2e:4b:3f:3d:44:35:c8:e2:92:7c:01:a0:ce:74:36:c0: 20:bc:2c:f6:2f:90:60:78:a0:73:50:98:ba:53:c5:32:2f:fc: 9d:9f:4d:62:6e:e6:ce:16:3f:9c:74:a3:79:7b:82:3b:f5:d8: 6b:d5:ce:0c:7b:6a:dd:d9:d8:c0:24:8b:ea:7a:33:c6:51:8c: e5:c6:53:10:eb:c2:ba:f2:ae:45:cf:e0:c1:a4:5a:16:9c:dc: 07:e0:eb:09:4b:25:dd:95:cf:7e:9d:88:01:63:47:50:f4:c7: 9c:47:56:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNTKB1BOK3mi9wwhjiLKXnLkbLZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAxMDQxWhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjdlYzdmM2IxNTI3ZDcyNjdmZTJhYmQ4YzVkOWFlY2Ex Y2M2ZTJlMjhkYTc2MTA1MTkxMDA0ZjA2ODk4ZjVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8PABcWVvEhGOVeSlT+VTU0e9tTFmJ/wIa4dJt4tZR9SPR AOhkUf8l0M3+pU3Yeu/1oHVNJtOlaJut0Gb4ZFmkHrwDZeYYApeGCRWpbOsDohCb cDHU4ODLzwksiUyec5lH6ypugWuXbJ0cAioem6KgYZRxfx7LAM17cAd7ntor+L5d F2ejK0b/pGpp1Jad7jHVgAVqosuitGIf2hK4/K08jcfWJ+JMiLRMwYvobk2Kma0M EANnMVi7Hhm0Azjh7jfYsZOpx97/oZEZOdr0hZ5qq3r7H9SVj8fWJpdOeseDVucd kwQZPgOt+WToBP5YWnKhYsfw/Hx21zg9JynQKE97AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvGK/L3Kd57QYFPJJj9AHg26MgQEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1ZTU0YTg2LWVkMzgtNGI5Mi04ODJjLWMxOTA4NzYzN2JjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXAwDQYJKoZIhvcNAQELBQADggEBAFbgP4nT0p/+oiZdnZWOt/hoq2WW iU8EJluoJSzgs+7HA0HgvJYSt05KWVcCjRscCaIYF+L5eHGDNZyc2Gb/q7zl56kj B7Jig8b324byuJYrJzIhty5paM1ptjj1jhCJiFZjKEWgVptuI35Ppe+jIbxxsM8o 9fGzkwNCAjzjSl6GpyyxWotpi0e3jxORWlPfkYVDLks/PUQ1yOKSfAGgznQ2wCC8 LPYvkGB4oHNQmLpTxTIv/J2fTWJu5s4WP5x0o3l7gjv12GvVzgx7at3Z2MAki+p6 M8ZRjOXGUxDrwrryrkXP4MGkWhac3Afg6wlLJd2Vz36diAFjR1D0x5xHVrQ= -----END CERTIFICATE-----Generated at Mon May 4 22:21:47 2026 by rpki-client