$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa File: d745880d-9e6a-449c-9c99-caee7921445e.roa (raw, json) Hash identifier: KOkWTx1QWgJ4E8NiECoaq4JBVJh/Gt1/r+b/gXM872w= Subject key identifier: AA:E7:0C:05:AE:94:5B:8A:01:1B:FC:B6:A6:8C:EF:B4:A2:34:30:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BA65312F60E27BA2206B319EE09A86E130C4A75 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa Signing time: Wed 29 Apr 2026 00:20:10 +0000 ROA not before: Wed 29 Apr 2026 00:20:10 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.0.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:a6:53:12:f6:0e:27:ba:22:06:b3:19:ee:09:a8:6e:13:0c:4a:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:20:10 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=639c0eeb194e51bf3b53e922d48f298ba18c02d2a94c0e61d59d3579a660e09b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:04:0e:50:6d:08:e2:70:73:3b:47:6c:00:f5: cc:7d:bd:c9:63:bd:34:d9:4b:77:6c:c3:57:64:c3: 2f:51:1f:f2:b1:45:e8:db:12:c7:91:c3:98:c7:e4: 49:45:27:ef:b9:87:b3:b1:e5:ce:26:0e:34:a1:0d: 77:38:be:c5:b3:84:f6:60:f4:85:e5:18:76:ae:89: 8a:38:94:0e:89:62:50:00:b4:c8:ac:cc:fd:5b:0c: 43:5f:a4:1c:89:e1:35:01:24:aa:3c:21:8b:76:c4: ab:eb:c4:42:9e:af:5c:63:68:cb:ab:eb:d0:c6:39: f3:fa:8d:d4:ed:8f:61:d4:99:e0:a6:82:4f:6b:a4: a2:c9:ec:f3:b6:65:41:d9:3f:28:65:73:c6:59:24: 9b:fb:6d:4d:26:5a:92:92:0c:aa:67:75:28:85:53: 72:7a:45:c8:e0:91:5b:93:e7:66:cc:d7:08:21:50: fc:91:58:4c:d0:85:a2:d2:3b:d2:59:e2:18:ff:a0: 36:2d:54:cd:22:7a:c4:80:e5:26:41:5d:65:5a:d7: 7e:21:a4:0e:1f:ce:9e:7d:d0:53:27:6b:96:48:93: a0:45:1e:84:f1:7d:b7:79:07:29:fd:da:c8:c6:be: db:5f:2c:70:37:48:27:90:b8:8a:da:0d:81:10:1a: 77:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E7:0C:05:AE:94:5B:8A:01:1B:FC:B6:A6:8C:EF:B4:A2:34:30:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption b2:6a:30:50:27:f1:5b:dd:84:9a:f5:92:cb:50:54:6f:47:51: 88:99:00:71:6f:f3:77:bf:b9:96:59:fe:9a:f1:be:70:4d:2e: e8:7a:a4:fb:e5:92:e0:73:91:c8:92:c8:15:c8:2d:79:34:47: 09:f9:1f:34:1b:20:47:20:32:c7:ff:e2:ca:8e:2f:1a:1f:8c: 0a:ce:b7:e8:34:28:68:18:eb:80:80:34:d0:9c:b7:3e:12:46: d4:04:58:e9:68:0e:7d:9e:1d:31:09:46:11:65:f2:5f:4e:d5: 65:84:fe:a3:9d:96:b2:91:df:b7:e5:da:d9:29:4d:0f:65:f1: b2:e1:ac:9e:a0:66:8c:f6:b7:d5:32:15:90:03:5b:39:fd:18: 14:4c:df:29:57:7e:5a:78:98:be:4b:07:84:5e:21:a2:28:35: d2:30:1f:f2:db:24:51:db:da:e7:28:3b:4a:fe:47:e5:68:0e: a6:f7:15:a9:f6:81:fe:83:d1:c7:6a:90:cc:12:49:26:6c:24: 11:0f:15:50:4c:7e:19:bc:d4:e4:12:45:c7:25:80:a5:18:b4: 31:d4:1c:da:ac:2a:e8:c5:da:cb:ae:d4:2c:f2:08:6a:9b:ba: 98:71:6e:78:cd:2b:64:01:c8:c6:d0:4b:00:a8:b2:fb:26:db: 50:9a:d0:9a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUW6ZTEvYOJ7oiBrMZ7gmobhMMSnUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAyMDEwWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MzljMGVlYjE5NGU1MWJmM2I1M2U5MjJkNDhmMjk4YmEx OGMwMmQyYTk0YzBlNjFkNTlkMzU3OWE2NjBlMDliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyBA5QbQjicHM7R2wA9cx9vcljvTTZS3dsw1dkwy9RH/Kx RejbEseRw5jH5ElFJ++5h7Ox5c4mDjShDXc4vsWzhPZg9IXlGHauiYo4lA6JYlAA tMiszP1bDENfpByJ4TUBJKo8IYt2xKvrxEKer1xjaMur69DGOfP6jdTtj2HUmeCm gk9rpKLJ7PO2ZUHZPyhlc8ZZJJv7bU0mWpKSDKpndSiFU3J6RcjgkVuT52bM1wgh UPyRWEzQhaLSO9JZ4hj/oDYtVM0iesSA5SZBXWVa134hpA4fzp590FMna5ZIk6BF HoTxfbd5Byn92sjGvttfLHA3SCeQuIraDYEQGncfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqucMBa6UW4oBG/y2pozvtKI0MOYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3NDU4ODBkLTllNmEtNDQ5Yy05Yzk5LWNhZWU3OTIxNDQ1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ADANBgkqhkiG9w0BAQsFAAOCAQEAsmowUCfxW92EmvWSy1BUb0dRiJkA cW/zd7+5lln+mvG+cE0u6Hqk++WS4HORyJLIFcgteTRHCfkfNBsgRyAyx//iyo4v Gh+MCs636DQoaBjrgIA00Jy3PhJG1ARY6WgOfZ4dMQlGEWXyX07VZYT+o52WspHf t+Xa2SlND2XxsuGsnqBmjPa31TIVkANbOf0YFEzfKVd+WniYvksHhF4hoig10jAf 8tskUdva5yg7Sv5H5WgOpvcVqfaB/oPRx2qQzBJJJmwkEQ8VUEx+GbzU5BJFxyWA pRi0MdQc2qwq6MXay67ULPIIapu6mHFueM0rZAHIxtBLAKiy+ybbUJrQmg== -----END CERTIFICATE-----Generated at Sun May 3 14:50:25 2026 by rpki-client