$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d62262e0-df75-4dc8-9ed2-530f6b7cd952.roa File: d62262e0-df75-4dc8-9ed2-530f6b7cd952.roa (raw, json) Hash identifier: jTZBh1F/WpsrRJgN/vvEaSRBcD80xqxqpZ7UAHyHJ1Q= Subject key identifier: 99:A7:42:DC:24:1A:9D:8A:93:74:0B:69:31:D7:F1:77:5E:E7:45:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5178D890845CD78A138D438B44572F4F677E7375 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d62262e0-df75-4dc8-9ed2-530f6b7cd952.roa Signing time: Tue 28 Apr 2026 00:20:34 +0000 ROA not before: Tue 28 Apr 2026 00:20:34 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 144.168.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:78:d8:90:84:5c:d7:8a:13:8d:43:8b:44:57:2f:4f:67:7e:73:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:20:34 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=3ee8379a41cfa9bda7d995f0aa78c4a2f37e3d1a7dd70cd9043b208a0d0c0400, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:dd:3c:62:c0:3c:ab:59:97:80:a0:d4:2a:03: c0:d1:e7:0f:34:00:04:4f:39:da:cd:20:9c:82:fc: d4:c6:f3:92:18:28:6d:f1:a7:e7:cc:70:33:42:9a: 5f:ea:00:17:bf:38:c3:87:36:c1:1a:fa:a3:63:29: 7a:8b:00:92:55:99:ee:4b:13:f5:95:2e:f3:c5:ee: 1c:42:dd:f3:fa:35:71:f8:24:f0:75:7d:89:45:f6: 66:26:b9:a5:cf:d1:79:df:88:93:8b:37:54:c8:8a: bf:11:04:a3:c5:ad:14:5b:b3:e9:f7:37:fd:ac:ce: 3e:d8:40:98:23:56:e9:d4:3d:29:80:a4:f0:e5:d8: 80:58:2e:fb:e5:b4:d6:ca:f6:b1:95:ae:21:e2:07: 52:a5:f7:8f:51:55:74:bf:a1:17:a3:6f:19:54:8c: 0a:b4:fc:da:aa:17:10:dd:32:b1:31:14:29:1e:5f: 68:2c:73:fc:16:54:5f:e7:90:59:b7:85:84:7d:1e: 26:94:57:b0:16:2e:9b:3e:cb:1d:82:b2:74:82:c6: 8e:34:7e:b5:2a:10:85:33:d5:63:77:23:6a:81:55: 42:b2:b9:7a:ea:d7:ea:0f:d2:a7:30:ad:3f:44:37: 42:02:10:e6:41:e2:74:95:84:09:bb:89:b3:0e:92: 74:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A7:42:DC:24:1A:9D:8A:93:74:0B:69:31:D7:F1:77:5E:E7:45:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d62262e0-df75-4dc8-9ed2-530f6b7cd952.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.168.128.0/17 Signature Algorithm: sha256WithRSAEncryption 9b:c4:3c:d3:ba:3f:c4:48:83:07:c3:c5:0d:a1:35:fb:47:66: 43:c3:4a:54:33:ab:17:76:f9:6c:f8:70:0c:9e:83:8d:9e:f7: 80:17:d5:f4:8a:2b:8d:19:6c:5e:87:bd:49:5c:18:c2:fa:2e: f3:20:1f:be:f8:b3:bf:4c:c5:1e:04:29:df:24:f0:80:00:31: 75:a3:44:2f:a3:27:ed:cc:30:f6:a2:be:b7:55:9d:b5:08:eb: e9:75:31:1c:57:1b:4d:de:07:c9:f9:38:3a:ce:e9:5d:d8:67: fe:22:b6:75:f9:4b:70:6e:2e:93:3a:7b:df:1b:59:4e:aa:62: 6b:be:be:4b:31:eb:a0:e8:5a:98:ca:16:52:9c:8f:ef:19:92: 95:e7:4d:91:41:75:fa:e6:c9:c2:7f:74:83:4c:2c:a4:ed:bb: c0:11:69:92:65:f5:18:2f:f3:df:3b:c1:0c:c1:19:9d:1c:7b: f2:dd:5e:c4:04:a9:a0:5b:cf:82:aa:11:00:ac:9e:3c:ed:bf: 13:4d:29:d1:80:aa:6a:a9:34:d2:69:fd:8a:d4:3f:7a:1b:26: 2a:2a:bd:34:58:d5:76:1d:79:8e:29:5e:50:7f:75:41:c6:cf: de:2c:97:fd:10:dd:7b:e1:f8:32:d7:ba:c4:45:f4:a5:6b:c5: ce:b9:11:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUXjYkIRc14oTjUOLRFcvT2d+c3UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAyMDM0WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWU4Mzc5YTQxY2ZhOWJkYTdkOTk1ZjBhYTc4YzRhMmYz N2UzZDFhN2RkNzBjZDkwNDNiMjA4YTBkMGMwNDAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl3TxiwDyrWZeAoNQqA8DR5w80AARPOdrNIJyC/NTG85IY KG3xp+fMcDNCml/qABe/OMOHNsEa+qNjKXqLAJJVme5LE/WVLvPF7hxC3fP6NXH4 JPB1fYlF9mYmuaXP0XnfiJOLN1TIir8RBKPFrRRbs+n3N/2szj7YQJgjVunUPSmA pPDl2IBYLvvltNbK9rGVriHiB1Kl949RVXS/oRejbxlUjAq0/NqqFxDdMrExFCke X2gsc/wWVF/nkFm3hYR9HiaUV7AWLps+yx2CsnSCxo40frUqEIUz1WN3I2qBVUKy uXrq1+oP0qcwrT9EN0ICEOZB4nSVhAm7ibMOknQJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmadC3CQanYqTdAtpMdfxd17nRUUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2MjI2MmUwLWRmNzUtNGRjOC05ZWQyLTUzMGY2YjdjZDk1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeQqIAwDQYJKoZIhvcNAQELBQADggEBAJvEPNO6P8RIgwfDxQ2hNftHZkPD SlQzqxd2+Wz4cAyeg42e94AX1fSKK40ZbF6HvUlcGML6LvMgH774s79MxR4EKd8k 8IAAMXWjRC+jJ+3MMPaivrdVnbUI6+l1MRxXG03eB8n5ODrO6V3YZ/4itnX5S3Bu LpM6e98bWU6qYmu+vksx66DoWpjKFlKcj+8ZkpXnTZFBdfrmycJ/dINMLKTtu8AR aZJl9Rgv8987wQzBGZ0ce/LdXsQEqaBbz4KqEQCsnjztvxNNKdGAqmqpNNJp/YrU P3obJioqvTRY1XYdeY4pXlB/dUHGz94sl/0Q3Xvh+DLXusRF9KVrxc65Ebk= -----END CERTIFICATE-----Generated at Sun May 3 16:15:03 2026 by rpki-client