$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa File: e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa (raw, json) Hash identifier: HxV3p1WDT9V9jn9musGj4440y8zx0Ie6RLzBCgI1t2U= Subject key identifier: BA:4E:11:30:3F:30:40:43:DF:B1:DE:F2:93:48:E0:57:8D:78:FD:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0BCD46D7C77895BD32E860E0540F4E2C63D4BB67 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa Signing time: Sat 02 May 2026 01:10:43 +0000 ROA not before: Sat 02 May 2026 01:10:43 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 64.252.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:cd:46:d7:c7:78:95:bd:32:e8:60:e0:54:0f:4e:2c:63:d4:bb:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 01:10:43 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=2686143137a1655d9460813539fc9685b56693817e252cbfd1f6e5940b1d5506, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1e:2f:c4:a7:aa:6f:07:27:0c:80:10:c3:28: 1a:3c:77:a7:36:3f:57:4c:a1:d1:3e:e4:ae:7d:c0: 20:df:50:60:e9:33:b7:35:31:7b:e7:61:07:be:c5: ec:a2:62:32:f2:02:e2:5a:2e:70:81:85:df:f7:46: 15:b3:8c:a2:20:76:8f:12:82:8e:64:c5:15:3c:be: 5f:32:69:7d:e2:53:30:f1:d5:04:7d:20:78:16:9a: 59:94:4d:ef:13:56:2a:79:6c:58:d3:2f:4b:73:4d: 50:4b:d9:19:8f:2c:30:c3:02:11:8c:d5:da:39:e2: a0:b8:83:ae:92:f4:7a:21:b9:5f:6f:e7:ec:4e:37: c0:93:40:9b:59:ed:ec:11:80:15:7f:80:64:df:b5: 2c:70:10:69:c2:93:ce:37:68:b0:ee:ed:36:1e:58: 88:9e:88:e1:3e:45:21:20:f6:55:55:2f:53:ca:60: 46:19:a6:7c:fd:7c:ba:72:8a:87:08:66:70:61:1e: 5f:14:98:8e:af:83:63:1c:01:7b:cf:ec:0f:69:c9: 82:9a:d8:f5:3d:f1:88:10:a1:79:d9:14:55:be:e0: 36:2c:57:68:b2:7a:b5:93:12:8e:6c:93:6c:b2:f2: 56:2b:c5:7f:84:bc:cf:9a:26:f3:e9:8a:34:41:e3: ed:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4E:11:30:3F:30:40:43:DF:B1:DE:F2:93:48:E0:57:8D:78:FD:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.125.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:23:79:e5:b6:8d:66:a2:9f:8a:5c:89:0b:8e:53:12:ad:ee: 15:95:d3:c8:55:a3:b8:f4:65:8f:09:21:36:b5:bc:bd:d8:0f: e6:29:af:65:44:e1:ee:74:68:2a:e6:b9:33:a6:7f:ad:71:4f: 7b:92:24:00:3e:22:21:0b:19:45:44:ad:ea:c0:fd:85:95:2a: 03:c2:d9:89:f5:eb:6b:7e:a7:43:8b:58:48:92:dc:1d:0a:18: 9e:42:ed:79:cf:28:8b:08:28:05:61:9f:49:59:b6:58:c0:ba: 33:a4:d9:c7:e0:0f:4e:b5:2d:4c:0f:e8:e5:94:99:28:bf:e6: ed:72:d7:b8:c9:d4:2d:07:43:8e:e8:24:22:21:dc:fb:49:9d: 3d:91:5d:27:60:56:8c:3f:d0:63:7e:e7:a7:e0:8b:81:4b:3d: ec:11:99:9d:6a:be:42:91:36:a8:98:d8:a3:ea:91:69:f5:cb: 5d:c4:b2:f3:30:03:91:a1:31:91:5b:39:4b:ed:cb:1d:39:80: 49:e1:4a:40:88:d7:33:99:f1:c9:f1:1c:82:aa:4b:e1:9d:3d: 9b:db:e5:e6:be:5a:7e:73:a9:82:ed:aa:56:2b:d5:f6:32:38: 7f:9d:52:34:a9:b0:80:24:f7:72:49:4b:fc:45:7b:28:a9:d0: 89:c3:fb:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC81G18d4lb0y6GDgVA9OLGPUu2cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDExMDQzWhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjg2MTQzMTM3YTE2NTVkOTQ2MDgxMzUzOWZjOTY4NWI1 NjY5MzgxN2UyNTJjYmZkMWY2ZTU5NDBiMWQ1NTA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaHi/Ep6pvBycMgBDDKBo8d6c2P1dModE+5K59wCDfUGDp M7c1MXvnYQe+xeyiYjLyAuJaLnCBhd/3RhWzjKIgdo8Sgo5kxRU8vl8yaX3iUzDx 1QR9IHgWmlmUTe8TVip5bFjTL0tzTVBL2RmPLDDDAhGM1do54qC4g66S9HohuV9v 5+xON8CTQJtZ7ewRgBV/gGTftSxwEGnCk843aLDu7TYeWIieiOE+RSEg9lVVL1PK YEYZpnz9fLpyiocIZnBhHl8UmI6vg2McAXvP7A9pyYKa2PU98YgQoXnZFFW+4DYs V2iyerWTEo5sk2yy8lYrxX+EvM+aJvPpijRB4+0JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuk4RMD8wQEPfsd7yk0jgV414/SIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwNjc3YzY4LTM2ODEtNGUzYy1iNjNhLWUyZGZkZDVlMDc3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/H0wDQYJKoZIhvcNAQELBQADggEBAEojeeW2jWain4pciQuOUxKt7hWV 08hVo7j0ZY8JITa1vL3YD+Ypr2VE4e50aCrmuTOmf61xT3uSJAA+IiELGUVErerA /YWVKgPC2Yn162t+p0OLWEiS3B0KGJ5C7XnPKIsIKAVhn0lZtljAujOk2cfgD061 LUwP6OWUmSi/5u1y17jJ1C0HQ47oJCIh3PtJnT2RXSdgVow/0GN+56fgi4FLPewR mZ1qvkKRNqiY2KPqkWn1y13EsvMwA5GhMZFbOUvtyx05gEnhSkCI1zOZ8cnxHIKq S+GdPZvb5ea+Wn5zqYLtqlYr1fYyOH+dUjSpsIAk93JJS/xFeyip0InD+zo= -----END CERTIFICATE-----Generated at Mon May 4 22:21:47 2026 by rpki-client