$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e893d247-a871-4625-a1dc-d362c9082fa4.roa File: e893d247-a871-4625-a1dc-d362c9082fa4.roa (raw, json) Hash identifier: VFzNtiFbPUbKWpDph5eIqMwUWFzrRnUoHMzWVsUp6OM= Subject key identifier: 33:63:E0:9E:8D:5F:FD:C5:FD:EB:A0:FC:64:45:2C:27:0B:2F:B8:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 698BE8329BA32181F9415EB63BC8DD36C2D33493 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e893d247-a871-4625-a1dc-d362c9082fa4.roa Signing time: Fri 01 May 2026 00:10:40 +0000 ROA not before: Fri 01 May 2026 00:10:40 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 93.78.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:8b:e8:32:9b:a3:21:81:f9:41:5e:b6:3b:c8:dd:36:c2:d3:34:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:10:40 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=afa722a3e50f1028b8aa683a4de4e89c8f9a6549eaf8212d7996af1edddf43a6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:25:be:b0:1c:68:bf:cd:ac:60:44:14:a4:e5: 1b:c9:1e:c6:75:f8:db:b6:c6:dd:ff:01:1b:a0:a3: 48:b9:cc:d1:eb:b0:de:e9:ce:5f:00:cf:f0:c1:20: 60:d5:90:81:9c:30:44:38:87:49:79:57:3e:2d:9a: 57:fa:9c:ef:6c:2a:ea:15:3a:09:06:c1:13:70:af: 17:40:53:08:67:5f:d7:d5:5f:47:2b:33:0e:b8:06: 22:48:e6:53:b5:3d:8e:84:00:0a:8e:93:88:ec:e7: cc:7f:c5:a7:58:91:0f:27:c6:9a:7e:b2:7e:74:8e: 74:4f:f8:05:d9:7a:a7:16:d7:f9:f1:62:92:b5:9b: c0:d6:5c:0d:04:82:7d:4b:1b:84:3d:7d:85:f7:12: 87:fa:95:ba:2a:1f:b3:8c:03:f2:5f:04:d7:f5:2a: e2:ef:ea:18:62:2e:91:d9:a7:a8:38:a1:d3:21:75: be:27:f0:b8:02:97:00:66:f2:b3:6f:d5:20:9f:2e: 47:d0:27:94:76:54:32:fd:17:1d:73:7c:78:66:d8: 6e:7b:6b:f4:b2:cb:0e:c5:7b:8d:2a:21:66:92:83: 17:01:b1:6c:ab:24:45:f6:0b:92:84:60:9a:72:3d: f8:83:5c:bf:1b:62:2b:f4:f1:4a:03:38:ef:2c:f2: 57:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:63:E0:9E:8D:5F:FD:C5:FD:EB:A0:FC:64:45:2C:27:0B:2F:B8:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e893d247-a871-4625-a1dc-d362c9082fa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.78.0.0/17 Signature Algorithm: sha256WithRSAEncryption 37:5e:27:b6:00:ad:31:a2:a4:e0:88:73:2a:83:c3:9d:b2:e4: 60:a7:c0:fc:2c:6f:d0:d7:c4:51:57:d0:a2:f2:86:81:ab:13: 09:7f:62:31:4a:d6:4d:8c:46:93:41:63:cf:94:0a:44:54:ab: 85:75:85:86:a7:60:22:95:19:a5:37:24:e8:24:63:38:54:94: f7:c9:79:d6:17:83:3f:70:a1:26:b2:c6:83:5e:6b:e0:b2:87: 82:b4:a7:50:97:77:5a:81:34:3d:96:1b:43:2b:f6:6e:71:44: 95:c1:f1:8f:9e:77:ed:cc:2d:cd:06:ef:29:b2:0a:ba:a1:a2: bf:31:35:04:83:18:87:d3:e8:22:a8:49:3e:f0:20:24:9c:76: 62:66:01:a9:c1:bc:a0:b4:ed:a1:2c:ce:af:b4:ff:05:b8:ff: 74:0b:55:99:09:bc:4b:52:0f:d6:c7:57:e7:5d:36:18:5f:a3: 3f:5d:74:2b:c5:09:f3:e7:9e:76:16:f9:3c:62:bc:b7:97:dc: 27:18:c0:13:c0:5f:e6:15:a8:b1:8d:5a:f1:7b:ce:cb:13:81: 2b:83:98:38:04:f6:29:29:21:fa:63:52:b4:67:6b:07:76:ad: 2e:46:ff:1e:39:66:23:48:6c:4e:1b:7b:09:75:80:4c:a8:9f: 3f:6b:81:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaYvoMpujIYH5QV62O8jdNsLTNJMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAxMDQwWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZmE3MjJhM2U1MGYxMDI4YjhhYTY4M2E0ZGU0ZTg5Yzhm OWE2NTQ5ZWFmODIxMmQ3OTk2YWYxZWRkZGY0M2E2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbJb6wHGi/zaxgRBSk5RvJHsZ1+Nu2xt3/ARugo0i5zNHr sN7pzl8Az/DBIGDVkIGcMEQ4h0l5Vz4tmlf6nO9sKuoVOgkGwRNwrxdAUwhnX9fV X0crMw64BiJI5lO1PY6EAAqOk4js58x/xadYkQ8nxpp+sn50jnRP+AXZeqcW1/nx YpK1m8DWXA0Egn1LG4Q9fYX3Eof6lboqH7OMA/JfBNf1KuLv6hhiLpHZp6g4odMh db4n8LgClwBm8rNv1SCfLkfQJ5R2VDL9Fx1zfHhm2G57a/Syyw7Fe40qIWaSgxcB sWyrJEX2C5KEYJpyPfiDXL8bYiv08UoDOO8s8lc/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM2Pgno1f/cX966D8ZEUsJwsvuO4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4OTNkMjQ3LWE4NzEtNDYyNS1hMWRjLWQzNjJjOTA4MmZhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAddTgAwDQYJKoZIhvcNAQELBQADggEBADdeJ7YArTGipOCIcyqDw52y5GCn wPwsb9DXxFFX0KLyhoGrEwl/YjFK1k2MRpNBY8+UCkRUq4V1hYanYCKVGaU3JOgk YzhUlPfJedYXgz9woSayxoNea+Cyh4K0p1CXd1qBND2WG0Mr9m5xRJXB8Y+ed+3M Lc0G7ymyCrqhor8xNQSDGIfT6CKoST7wICScdmJmAanBvKC07aEszq+0/wW4/3QL VZkJvEtSD9bHV+ddNhhfoz9ddCvFCfPnnnYW+TxivLeX3CcYwBPAX+YVqLGNWvF7 zssTgSuDmDgE9ikpIfpjUrRnawd2rS5G/x45ZiNIbE4bewl1gEyonz9rgdQ= -----END CERTIFICATE-----Generated at Sun May 3 17:00:16 2026 by rpki-client