$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b727064c-07d3-4be3-87a1-dd3468e18230.roa File: b727064c-07d3-4be3-87a1-dd3468e18230.roa (raw, json) Hash identifier: BWxa2KVB6lsmcMIofR6+ucxtEqHouWRYq1DS1iP0jpU= Subject key identifier: 6B:3D:05:FB:E5:0D:F3:5E:0C:DB:64:D6:FA:D4:86:E4:90:04:3B:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B4492C6394DA97B652AF016B1FE8A234CA8CF32 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b727064c-07d3-4be3-87a1-dd3468e18230.roa Signing time: Tue 28 Apr 2026 00:20:59 +0000 ROA not before: Tue 28 Apr 2026 00:20:59 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 194.148.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:44:92:c6:39:4d:a9:7b:65:2a:f0:16:b1:fe:8a:23:4c:a8:cf:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:20:59 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=db974448d415e79b80e2d77f4ffcbdf465a9c437c5faaa6e438b6d083f0e1d8d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7e:fc:88:33:72:c7:36:12:c8:8c:0d:ab:4a: df:1b:df:a0:3b:86:01:3f:89:f1:aa:99:82:b9:b9: 47:c2:fd:8e:2a:20:4d:26:4d:a5:25:2b:49:a6:e7: a1:84:16:5b:20:d2:4b:a0:57:05:41:b0:55:10:1f: b9:98:5b:dc:4d:f9:e3:15:3b:45:33:08:06:57:a9: 3a:38:76:02:33:b9:8d:72:b9:18:af:0b:ba:a1:f7: 6e:eb:47:00:1e:40:ef:f9:23:f7:3f:60:1d:37:fe: f2:96:d5:75:68:60:de:4f:0f:2c:59:cf:bc:9e:d7: b5:31:aa:c1:e4:2c:aa:6f:c0:b5:bf:82:09:21:a4: 0f:57:db:ae:03:e6:7d:65:5d:d8:85:e5:91:b2:62: cd:9e:0c:ee:b8:5a:a1:36:fd:2c:1d:77:e0:07:88: f6:70:d8:a8:7d:84:aa:a9:2b:a7:17:3e:23:4f:13: 4d:38:c6:cc:82:df:49:d9:f2:b7:48:a0:f9:a0:cd: 9a:ae:a3:67:db:dd:e3:fc:e2:83:9f:80:e8:73:91: 3c:03:fb:7a:44:18:6b:46:d9:12:53:f0:a9:03:21: f2:9e:38:71:9a:38:20:87:00:af:d2:0d:a5:37:92: 9e:24:d6:ef:88:a8:f3:de:ba:ef:86:69:df:7d:ac: 46:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:3D:05:FB:E5:0D:F3:5E:0C:DB:64:D6:FA:D4:86:E4:90:04:3B:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b727064c-07d3-4be3-87a1-dd3468e18230.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.148.128.0/17 Signature Algorithm: sha256WithRSAEncryption 43:4d:9d:18:63:42:87:3d:8c:24:70:1f:2d:15:8a:91:ff:86: 86:63:0c:16:e8:71:7f:29:cb:49:03:f4:50:c0:d5:88:6c:5d: 26:02:8a:a4:48:e9:a1:44:c0:d6:78:b2:51:14:3b:33:c8:5b: f2:2f:f1:f9:fd:fd:08:f6:1a:82:aa:2c:86:1e:4d:46:d6:cb: 41:56:f6:0a:fe:9f:a1:56:00:35:34:1b:95:0a:b5:e5:b4:24: d7:23:ff:03:45:9f:17:b7:1b:6d:19:56:a6:96:09:c3:cc:d2: 4c:74:af:6a:ed:f4:d7:9c:02:10:94:e1:09:61:63:f2:25:af: 33:58:07:b7:1f:ab:7c:7b:69:87:5e:7f:90:e0:f1:bc:ec:d7: c3:09:82:c8:27:cd:b9:71:bd:da:7b:52:b6:db:fb:bd:03:c4: cd:63:f1:2d:01:17:4b:7e:ce:b6:9d:fe:d5:57:7f:a8:8a:c5: 1f:e9:3b:8d:cb:92:54:9a:66:31:26:db:8c:5e:43:56:d0:5c: 95:7f:de:ba:ec:35:e6:8f:a3:a3:85:51:b7:d2:dc:fc:e5:53: 1f:28:6e:c8:1c:9e:61:fc:0e:35:c0:70:c3:34:07:ef:b2:da: 6c:bc:62:2a:52:d2:a8:9e:5c:c7:13:ec:03:61:8e:03:9e:75: 3a:e6:73:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO0SSxjlNqXtlKvAWsf6KI0yozzIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAyMDU5WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjk3NDQ0OGQ0MTVlNzliODBlMmQ3N2Y0ZmZjYmRmNDY1 YTljNDM3YzVmYWFhNmU0MzhiNmQwODNmMGUxZDhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/fvyIM3LHNhLIjA2rSt8b36A7hgE/ifGqmYK5uUfC/Y4q IE0mTaUlK0mm56GEFlsg0kugVwVBsFUQH7mYW9xN+eMVO0UzCAZXqTo4dgIzuY1y uRivC7qh927rRwAeQO/5I/c/YB03/vKW1XVoYN5PDyxZz7ye17UxqsHkLKpvwLW/ ggkhpA9X264D5n1lXdiF5ZGyYs2eDO64WqE2/Swdd+AHiPZw2Kh9hKqpK6cXPiNP E004xsyC30nZ8rdIoPmgzZquo2fb3eP84oOfgOhzkTwD+3pEGGtG2RJT8KkDIfKe OHGaOCCHAK/SDaU3kp4k1u+IqPPeuu+Gad99rEaPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaz0F++UN814M22TW+tSG5JAEO0wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3MjcwNjRjLTA3ZDMtNGJlMy04N2ExLWRkMzQ2OGUxODIzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfClIAwDQYJKoZIhvcNAQELBQADggEBAENNnRhjQoc9jCRwHy0VipH/hoZj DBbocX8py0kD9FDA1YhsXSYCiqRI6aFEwNZ4slEUOzPIW/Iv8fn9/Qj2GoKqLIYe TUbWy0FW9gr+n6FWADU0G5UKteW0JNcj/wNFnxe3G20ZVqaWCcPM0kx0r2rt9Nec AhCU4QlhY/IlrzNYB7cfq3x7aYdef5Dg8bzs18MJgsgnzblxvdp7Urbb+70DxM1j 8S0BF0t+zrad/tVXf6iKxR/pO43LklSaZjEm24xeQ1bQXJV/3rrsNeaPo6OFUbfS 3PzlUx8obsgcnmH8DjXAcMM0B++y2my8YipS0qieXMcT7ANhjgOedTrmc64= -----END CERTIFICATE-----Generated at Sun May 3 15:32:58 2026 by rpki-client