$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa File: c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa (raw, json) Hash identifier: 3nmR8qS1fIRtPdHAUbJ2UGwLfSclFr1lenlUxr0dtPQ= Subject key identifier: 83:40:8C:ED:1E:23:67:E9:14:97:2E:68:86:52:C7:E5:30:68:44:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F38C6A5D60E9E101B77C8B7D33E742CD22642E3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa Signing time: Wed 29 Apr 2026 00:40:52 +0000 ROA not before: Wed 29 Apr 2026 00:40:52 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 162.213.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:38:c6:a5:d6:0e:9e:10:1b:77:c8:b7:d3:3e:74:2c:d2:26:42:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:40:52 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=3ed787df27eecdfedac8a4d2acbba8a780df5fccad5e76c1533110a9bb35e07c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:61:d9:a7:2c:5d:fe:ed:4d:01:b2:fa:60:e2: 2d:a6:ea:68:b2:47:ce:00:25:3b:78:05:f2:03:50: 30:f7:b7:b7:91:dd:77:ee:8e:e3:74:7c:0d:f8:d7: 1a:f2:b0:f6:5c:a4:f7:e3:7c:63:1c:a4:b3:81:9f: 7d:c9:1a:df:02:eb:ed:89:4d:71:fc:4a:0f:d0:47: ee:2d:56:fe:66:9f:23:6b:b3:62:cc:f0:a0:5c:42: 81:67:94:8a:ab:ce:0e:53:fc:6a:cb:c9:4f:14:87: c8:3d:1d:04:5b:73:28:0b:19:d4:5f:82:11:b8:6c: fd:25:ec:19:e4:62:e4:cc:3f:68:99:dc:45:22:ae: 09:08:cc:6e:08:01:b9:7b:fb:7d:11:44:4a:03:98: b8:c8:fe:2c:40:37:c5:56:84:64:d3:70:d5:ef:c2: 22:e6:f1:ce:2c:59:df:a8:cd:d4:69:e1:36:54:8d: 30:34:64:4c:cc:b6:da:e5:8e:5d:2e:d9:39:a0:fb: 05:40:49:31:57:a1:8f:2e:f5:a7:94:83:3f:d5:f5: bf:ff:14:ec:44:bd:79:40:7a:79:b2:46:fd:08:0d: 2a:c9:6d:c2:8f:ba:d4:9b:0d:0b:da:f1:71:97:45: 00:74:20:f1:db:3a:57:4d:18:39:9d:e2:c8:b4:95: f7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:40:8C:ED:1E:23:67:E9:14:97:2E:68:86:52:C7:E5:30:68:44:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.213.233.0/24 Signature Algorithm: sha256WithRSAEncryption b6:79:9b:28:26:e3:c9:4f:00:57:8b:8a:de:52:27:1b:5c:5d: 04:47:82:fc:cd:d9:be:5f:82:54:ab:d3:d2:c5:2f:3c:36:96: 7c:1e:0e:2a:02:16:b4:5e:1f:7b:a1:a5:a4:de:5a:69:06:9a: 78:40:f0:6d:9f:55:f8:65:65:f4:92:83:f9:9d:f2:1f:e8:b1: 65:a3:21:e4:a2:93:8f:91:3c:c5:56:c7:d3:66:9a:c4:30:c3: be:09:18:c9:4e:35:73:86:da:f9:31:fe:93:f6:20:49:dc:3e: 57:76:67:f2:b9:d5:ee:38:44:6e:80:8e:ee:1e:f3:25:b2:ad: dd:2e:db:b3:b7:71:1c:cc:4c:c7:a0:4d:af:4b:bc:da:51:f9: 34:b4:d0:f6:72:1c:9a:69:ee:d7:53:f9:2e:6a:7d:81:eb:c4: 96:a0:c7:9d:8a:17:06:9d:91:b3:a7:7e:c7:5d:5a:4e:bc:a8: 54:2b:be:0b:1a:b3:a0:24:25:30:8f:06:77:de:20:9a:a2:b7: 68:f3:ac:d2:99:2d:49:47:64:62:81:c2:23:a4:d5:d8:cb:af: ce:08:89:1c:45:aa:46:a9:f7:b5:21:a3:31:92:1c:a4:8c:a7: 0e:fe:e0:dc:6b:42:07:d4:56:53:fa:a6:cd:a4:8e:9c:68:2c: 9c:69:2a:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfzjGpdYOnhAbd8i30z50LNImQuMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDA0MDUyWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWQ3ODdkZjI3ZWVjZGZlZGFjOGE0ZDJhY2JiYThhNzgw ZGY1ZmNjYWQ1ZTc2YzE1MzMxMTBhOWJiMzVlMDdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIYdmnLF3+7U0Bsvpg4i2m6miyR84AJTt4BfIDUDD3t7eR 3XfujuN0fA341xrysPZcpPfjfGMcpLOBn33JGt8C6+2JTXH8Sg/QR+4tVv5mnyNr s2LM8KBcQoFnlIqrzg5T/GrLyU8Uh8g9HQRbcygLGdRfghG4bP0l7BnkYuTMP2iZ 3EUirgkIzG4IAbl7+30RREoDmLjI/ixAN8VWhGTTcNXvwiLm8c4sWd+ozdRp4TZU jTA0ZEzMttrljl0u2Tmg+wVASTFXoY8u9aeUgz/V9b//FOxEvXlAenmyRv0IDSrJ bcKPutSbDQva8XGXRQB0IPHbOldNGDmd4si0lfc5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg0CM7R4jZ+kUly5ohlLH5TBoRHYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OTg5YjVhLTZjYTctNGYzYi05NGQxLTgyOTVhYjcyNjMyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi1ekwDQYJKoZIhvcNAQELBQADggEBALZ5mygm48lPAFeLit5SJxtcXQRH gvzN2b5fglSr09LFLzw2lnweDioCFrReH3uhpaTeWmkGmnhA8G2fVfhlZfSSg/md 8h/osWWjIeSik4+RPMVWx9NmmsQww74JGMlONXOG2vkx/pP2IEncPld2Z/K51e44 RG6Aju4e8yWyrd0u27O3cRzMTMegTa9LvNpR+TS00PZyHJpp7tdT+S5qfYHrxJag x52KFwadkbOnfsddWk68qFQrvgsas6AkJTCPBnfeIJqit2jzrNKZLUlHZGKBwiOk 1djLr84IiRxFqkap97UhozGSHKSMpw7+4NxrQgfUVlP6ps2kjpxoLJxpKo8= -----END CERTIFICATE-----Generated at Sun May 3 15:32:12 2026 by rpki-client