$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa File: d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa (raw, json) Hash identifier: KCEhYv/OA8c1HBUbOGIixMunvZhFT1FP9ebLQrHQ2xQ= Subject key identifier: 22:21:E3:BE:13:BC:3C:6F:3D:8A:A0:D9:32:4E:6B:0D:AE:C0:51:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18B6BF45641DF79B674B492661013352F196D07B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa Signing time: Fri 01 May 2026 00:00:07 +0000 ROA not before: Fri 01 May 2026 00:00:07 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 148.154.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:b6:bf:45:64:1d:f7:9b:67:4b:49:26:61:01:33:52:f1:96:d0:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:00:07 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=feea107a8012750cd4c5bed88acf6756a7020fbb8851472500568469172e40d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:12:ea:b6:37:a6:44:b8:6e:7d:df:7f:67:25: f5:93:85:c8:0c:dd:e6:4f:5d:fd:76:26:df:e2:77: 48:68:a1:a5:0b:ce:7f:1f:4c:13:d5:6c:da:03:54: 85:f5:96:13:a4:95:0e:65:ec:a2:6c:a4:20:96:da: 15:13:7f:c3:35:25:c1:6a:81:19:5d:46:6e:f6:db: 2f:34:c1:ca:d5:ee:61:a4:ce:fd:5b:48:4c:d0:f3: 14:54:34:95:f3:83:bc:91:e0:1d:46:ef:bd:61:1b: 68:9a:a8:6a:35:a4:b6:22:b0:0c:8f:64:be:09:7d: 55:6d:0d:7e:7d:0b:4b:d3:cd:e1:ad:d4:79:ba:53: f9:5e:c6:20:f6:c4:b9:d4:29:d7:99:4d:25:df:2f: 8e:de:3c:0c:ac:63:06:b1:06:60:7b:07:fa:dc:4c: ef:3f:12:53:3f:92:75:bc:f9:2f:52:51:a4:40:11: 8e:10:eb:06:99:c1:fd:0a:72:2c:09:a2:68:47:06: 9b:ce:3d:d5:ff:04:f4:fa:d5:9e:b5:02:b4:b5:02: c3:10:97:57:94:5a:31:3f:c7:f1:cf:8c:aa:ba:0e: c9:fd:64:4b:a2:26:3c:24:51:88:da:98:2b:7e:60: f1:73:22:21:64:93:8f:64:31:9a:87:df:a8:53:f6: db:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:21:E3:BE:13:BC:3C:6F:3D:8A:A0:D9:32:4E:6B:0D:AE:C0:51:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.154.0.0/16 Signature Algorithm: sha256WithRSAEncryption 06:85:34:08:fd:98:9a:cc:13:2c:bb:f9:09:4f:df:d0:e2:fa: a2:60:cf:51:01:f0:72:4d:a6:5c:b3:8b:84:57:27:85:c7:a5: 31:cb:19:14:62:1a:c7:ef:5b:b9:64:2d:42:5c:41:c1:67:e3: 57:89:bf:23:7e:0a:4c:54:0d:79:51:e6:e2:74:15:76:1a:b0: e8:ec:ee:21:e0:d8:81:55:67:da:33:69:bf:a8:75:ca:68:8e: 73:2c:bc:6f:30:68:20:bb:b1:cf:1b:3e:cc:76:49:4d:ca:23: 68:4c:04:e1:be:10:25:5b:52:98:69:76:51:e2:65:2b:22:25: ed:c8:60:80:c7:df:38:d7:27:df:de:7a:ef:01:98:67:66:76: b9:d9:c4:77:7d:ff:9e:69:fa:d9:b3:05:14:0f:92:83:66:28: ef:ed:ca:fc:2f:d3:b3:aa:84:11:b0:76:6b:4c:80:b7:a6:58: ce:d0:55:d5:07:99:58:36:34:34:fe:44:88:86:da:7c:14:06: 1a:8e:fc:1d:42:fd:dd:b0:2d:d7:d4:46:df:52:de:21:f3:4b: c0:a6:76:9e:9c:bf:cc:09:40:04:f5:53:52:b8:c8:24:30:8b: 26:b1:a5:2e:13:8c:c8:33:24:d3:e7:a8:51:81:78:15:43:23: 8a:da:c7:13 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGLa/RWQd95tnS0kmYQEzUvGW0HswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAwMDA3WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWVhMTA3YTgwMTI3NTBjZDRjNWJlZDg4YWNmNjc1NmE3 MDIwZmJiODg1MTQ3MjUwMDU2ODQ2OTE3MmU0MGQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuEuq2N6ZEuG59339nJfWThcgM3eZPXf12Jt/id0hooaUL zn8fTBPVbNoDVIX1lhOklQ5l7KJspCCW2hUTf8M1JcFqgRldRm722y80wcrV7mGk zv1bSEzQ8xRUNJXzg7yR4B1G771hG2iaqGo1pLYisAyPZL4JfVVtDX59C0vTzeGt 1Hm6U/lexiD2xLnUKdeZTSXfL47ePAysYwaxBmB7B/rcTO8/ElM/knW8+S9SUaRA EY4Q6waZwf0KciwJomhHBpvOPdX/BPT61Z61ArS1AsMQl1eUWjE/x/HPjKq6Dsn9 ZEuiJjwkUYjamCt+YPFzIiFkk49kMZqH36hT9tuVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIiHjvhO8PG89iqDZMk5rDa7AUTcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1NTJlM2RjLTg4YzgtNGQ2ZS04ODI1LTM2MzVjMjNkYTNmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCUmjANBgkqhkiG9w0BAQsFAAOCAQEABoU0CP2YmswTLLv5CU/f0OL6omDP UQHwck2mXLOLhFcnhcelMcsZFGIax+9buWQtQlxBwWfjV4m/I34KTFQNeVHm4nQV dhqw6OzuIeDYgVVn2jNpv6h1ymiOcyy8bzBoILuxzxs+zHZJTcojaEwE4b4QJVtS mGl2UeJlKyIl7chggMffONcn39567wGYZ2Z2udnEd33/nmn62bMFFA+Sg2Yo7+3K /C/Ts6qEEbB2a0yAt6ZYztBV1QeZWDY0NP5EiIbafBQGGo78HUL93bAt19RG31Le IfNLwKZ2npy/zAlABPVTUrjIJDCLJrGlLhOMyDMk0+eoUYF4FUMjitrHEw== -----END CERTIFICATE-----Generated at Sun May 3 15:31:24 2026 by rpki-client