$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec2a25c7-03d3-41ca-9778-621ae3af6930.roa File: ec2a25c7-03d3-41ca-9778-621ae3af6930.roa (raw, json) Hash identifier: ZeXbwKrI0H5WgcYz9lBFLNYM8EfBD/W74S288Z8jWqU= Subject key identifier: ED:6E:41:62:CE:5C:3C:8A:90:D6:54:FA:F6:DD:F0:4B:D7:D9:22:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2848C81C49D2C518AE242DF9837AEF7B6250346D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec2a25c7-03d3-41ca-9778-621ae3af6930.roa Signing time: Tue 28 Apr 2026 00:00:41 +0000 ROA not before: Tue 28 Apr 2026 00:00:41 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 6167 IP address blocks: 162.208.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:48:c8:1c:49:d2:c5:18:ae:24:2d:f9:83:7a:ef:7b:62:50:34:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:00:41 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=23c4b5c808403fc9cca67dc0e92ceff43f915c68b01879be4c97b63185eaa6de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ae:4c:74:62:2c:1a:7a:5d:2d:c9:3a:31:df: 21:ee:a5:8d:61:62:f3:fa:f1:87:89:a8:a7:a6:cc: 5a:e8:31:99:d3:41:e1:26:66:9b:cc:bf:8c:e9:39: 98:20:1d:cd:71:46:24:d7:c6:4c:c2:6d:b0:f5:a1: a8:a7:1e:64:a0:56:cf:30:f0:62:95:51:b9:74:b0: b1:25:d7:4f:6c:64:ce:13:f7:a2:94:f3:04:80:75: 6d:3b:3f:45:f2:31:33:80:77:8d:7b:c2:85:19:be: 0a:c2:2d:3d:b9:72:da:cf:4f:22:4c:0b:96:86:63: e7:de:f0:6f:72:14:1f:19:e3:b2:6f:50:84:3b:9d: c1:c2:27:85:a9:6b:40:fc:93:a0:5d:60:40:26:b8: c5:23:e1:90:82:9e:4b:fd:fc:c1:b3:e3:78:9b:3b: dd:60:5a:d4:fd:54:b9:b7:db:58:11:97:ea:b1:4b: 96:4c:2b:f3:20:e4:66:13:b9:9b:0b:36:69:4d:2b: 7e:01:9a:0a:66:27:0b:94:85:bf:1e:d4:7a:2a:5f: 3e:04:fa:8f:0c:93:1e:6a:a0:9e:7f:2c:fa:ae:9c: a6:c9:41:22:90:e0:76:7c:06:48:a3:2e:ea:a4:75: 73:69:ba:2f:50:c3:4e:6f:af:33:17:34:ff:b2:e6: c1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:6E:41:62:CE:5C:3C:8A:90:D6:54:FA:F6:DD:F0:4B:D7:D9:22:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec2a25c7-03d3-41ca-9778-621ae3af6930.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.123.0/24 Signature Algorithm: sha256WithRSAEncryption a0:0a:fb:11:ca:bf:49:ed:75:d2:ad:66:dd:4e:7a:d5:83:eb: b0:42:c8:7d:bc:f8:fd:08:50:5d:bf:ed:4d:51:b4:f2:aa:d8: 41:a9:a7:8a:4a:92:4a:cf:87:e5:19:c3:ef:86:da:04:bc:ad: 4a:81:45:9c:dc:41:80:38:03:86:c7:91:26:90:94:b1:00:3e: 72:bc:8e:5f:23:2c:4b:e9:26:59:12:f0:da:de:00:b6:63:08: 84:bc:d4:88:0f:45:00:1e:8b:10:23:45:15:26:74:f4:f4:9d: a3:9d:fd:b3:33:16:47:e7:8d:56:b2:90:97:35:36:a1:85:b9: 82:d2:0e:3d:71:dd:45:54:50:0e:38:f8:84:3b:b6:5b:fb:d3: fc:78:6f:c1:d1:9d:dc:26:ef:7c:1c:3e:94:65:69:e2:78:6e: b0:1c:2c:33:24:00:24:b6:07:10:0d:5f:35:fe:15:16:c9:55: 2e:13:53:62:9c:5e:62:99:8b:a7:ac:f2:99:7c:50:26:6a:ec: 66:e1:7c:09:55:04:d1:9c:9b:99:dc:76:73:9e:9c:e2:59:44: f4:2a:e4:50:73:4a:fd:f0:6c:98:fd:12:e7:ce:4d:5d:ce:33: 27:3b:eb:df:3b:3a:45:10:a5:53:41:b1:f6:d9:19:b8:d4:64: 4a:97:10:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKEjIHEnSxRiuJC35g3rve2JQNG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAwMDQxWhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2M0YjVjODA4NDAzZmM5Y2NhNjdkYzBlOTJjZWZmNDNm OTE1YzY4YjAxODc5YmU0Yzk3YjYzMTg1ZWFhNmRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkrkx0Yiwael0tyTox3yHupY1hYvP68YeJqKemzFroMZnT QeEmZpvMv4zpOZggHc1xRiTXxkzCbbD1oainHmSgVs8w8GKVUbl0sLEl109sZM4T 96KU8wSAdW07P0XyMTOAd417woUZvgrCLT25ctrPTyJMC5aGY+fe8G9yFB8Z47Jv UIQ7ncHCJ4Wpa0D8k6BdYEAmuMUj4ZCCnkv9/MGz43ibO91gWtT9VLm321gRl+qx S5ZMK/Mg5GYTuZsLNmlNK34BmgpmJwuUhb8e1HoqXz4E+o8Mkx5qoJ5/LPqunKbJ QSKQ4HZ8BkijLuqkdXNpui9Qw05vrzMXNP+y5sEDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7W5BYs5cPIqQ1lT69t3wS9fZIrMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjMmEyNWM3LTAzZDMtNDFjYS05Nzc4LTYyMWFlM2FmNjkzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi0HswDQYJKoZIhvcNAQELBQADggEBAKAK+xHKv0ntddKtZt1OetWD67BC yH28+P0IUF2/7U1RtPKq2EGpp4pKkkrPh+UZw++G2gS8rUqBRZzcQYA4A4bHkSaQ lLEAPnK8jl8jLEvpJlkS8NreALZjCIS81IgPRQAeixAjRRUmdPT0naOd/bMzFkfn jVaykJc1NqGFuYLSDj1x3UVUUA44+IQ7tlv70/x4b8HRndwm73wcPpRlaeJ4brAc LDMkACS2BxANXzX+FRbJVS4TU2KcXmKZi6es8pl8UCZq7GbhfAlVBNGcm5ncdnOe nOJZRPQq5FBzSv3wbJj9EufOTV3OMyc76987OkUQpVNBsfbZGbjUZEqXEGc= -----END CERTIFICATE-----Generated at Mon May 4 21:39:05 2026 by rpki-client