$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07db827d-5458-468d-8395-d3b2b4a26a9b.roa File: 07db827d-5458-468d-8395-d3b2b4a26a9b.roa (raw, json) Hash identifier: HRsM48cvVUowyoMyUlK1lVVyS9jf/t+xgWYfU2trqSs= Subject key identifier: E7:3C:F4:88:17:2B:FE:C1:F1:9C:B3:57:9F:87:3F:C5:99:F7:5D:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 500DEA88E18F180724BA36619567189CED8B84FB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07db827d-5458-468d-8395-d3b2b4a26a9b.roa Signing time: Tue 05 May 2026 00:10:10 +0000 ROA not before: Tue 05 May 2026 00:10:10 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 31.220.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:0d:ea:88:e1:8f:18:07:24:ba:36:61:95:67:18:9c:ed:8b:84:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:10:10 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=c575c532ecb83ab96411a665b2964a34c33d8a72dbb0a3f540a15b442b0de2b7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:34:ca:8e:8f:c9:79:94:42:60:e2:54:d5:69: 67:64:c1:04:01:7d:c3:68:a9:b2:39:93:c4:79:f6: 45:cd:bc:68:93:dc:a6:4b:20:4a:85:7d:08:29:f3: f5:9d:57:95:4a:fc:5e:41:59:e5:ca:e8:09:ca:d3: 58:46:72:c5:76:59:b4:a2:72:f4:df:b1:ad:e1:04: 38:f0:52:e6:37:62:4f:ed:ec:79:25:4b:53:df:98: 53:af:cf:e8:4d:81:03:41:20:f1:1d:30:55:05:08: 7e:fd:07:ed:a9:4c:cd:7e:55:42:ec:e0:6f:8b:a0: 8c:fc:6e:27:40:75:5a:45:0f:ec:9c:55:25:37:95: 6c:e7:26:a0:60:66:fd:d4:6f:4c:28:ef:7a:77:39: 92:5a:ce:37:a9:41:55:3c:7a:38:6d:67:ef:8a:e2: 24:62:88:88:76:84:58:36:c5:69:76:50:b0:23:14: 80:61:90:57:5f:7a:13:38:8c:03:41:f7:13:6a:17: de:54:f7:ec:77:f4:7b:f4:d9:d4:44:76:e8:37:32: 4c:c5:56:9b:8a:98:ee:8e:d2:69:68:c4:57:1e:a4: 52:4c:be:b5:25:50:3e:4f:ea:e8:03:8d:9c:a5:e4: e6:9b:e4:9a:c5:ab:3b:a9:5a:95:5b:6b:a3:62:5d: 17:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3C:F4:88:17:2B:FE:C1:F1:9C:B3:57:9F:87:3F:C5:99:F7:5D:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07db827d-5458-468d-8395-d3b2b4a26a9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.220.0/22 Signature Algorithm: sha256WithRSAEncryption 77:c9:72:a6:1d:43:fe:44:e5:70:80:df:96:cf:42:d6:38:b5: d0:6f:bf:bb:cb:a8:00:4e:b1:4c:ad:39:ab:65:61:b8:03:59: 0c:b5:33:4d:d7:37:2c:38:18:43:35:c6:f1:ed:a6:b5:54:8d: cd:46:6a:71:a2:cc:ab:41:18:ab:0f:24:56:70:f9:d6:d8:cf: 8d:80:ef:ec:a2:1b:92:6d:55:07:d9:15:a4:0b:14:a8:d5:01: ee:6d:42:8b:d3:41:a4:f3:d0:03:c6:7b:75:86:80:61:ca:f6: 14:3a:30:f0:b2:37:ba:4b:92:0b:ce:c2:b1:cf:9f:d4:05:63: 2d:38:2d:71:25:57:6a:73:e3:1d:01:88:0b:2e:32:51:2e:32: 58:6f:2b:7d:82:7e:a0:d1:4d:d6:4d:12:38:c0:f3:b8:98:14: 95:c3:7f:1b:2d:49:bc:8b:ec:0d:fa:f5:37:98:36:a9:ac:d7: 93:9d:9c:b8:49:bb:6b:e3:47:3c:44:42:42:36:2a:c3:15:a0: 29:ba:61:79:83:b2:e7:39:14:42:7c:19:01:10:ff:38:73:73: 24:12:00:bb:2f:b6:f0:4d:c8:cb:cb:db:cd:5a:77:1f:cc:da: 9a:9c:e2:ca:9c:4e:75:4f:ad:a3:28:b2:b1:3b:59:7a:4e:2a: f6:01:c0:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUA3qiOGPGAckujZhlWcYnO2LhPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAxMDEwWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTc1YzUzMmVjYjgzYWI5NjQxMWE2NjViMjk2NGEzNGMz M2Q4YTcyZGJiMGEzZjU0MGExNWI0NDJiMGRlMmI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4NMqOj8l5lEJg4lTVaWdkwQQBfcNoqbI5k8R59kXNvGiT 3KZLIEqFfQgp8/WdV5VK/F5BWeXK6AnK01hGcsV2WbSicvTfsa3hBDjwUuY3Yk/t 7HklS1PfmFOvz+hNgQNBIPEdMFUFCH79B+2pTM1+VULs4G+LoIz8bidAdVpFD+yc VSU3lWznJqBgZv3Ub0wo73p3OZJazjepQVU8ejhtZ++K4iRiiIh2hFg2xWl2ULAj FIBhkFdfehM4jANB9xNqF95U9+x39Hv02dREdug3MkzFVpuKmO6O0mloxFcepFJM vrUlUD5P6ugDjZyl5Oab5JrFqzupWpVba6NiXRdlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5zz0iBcr/sHxnLNXn4c/xZn3XbQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3ZGI4MjdkLTU0NTgtNDY4ZC04Mzk1LWQzYjJiNGEyNmE5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIf3NwwDQYJKoZIhvcNAQELBQADggEBAHfJcqYdQ/5E5XCA35bPQtY4tdBv v7vLqABOsUytOatlYbgDWQy1M03XNyw4GEM1xvHtprVUjc1GanGizKtBGKsPJFZw +dbYz42A7+yiG5JtVQfZFaQLFKjVAe5tQovTQaTz0APGe3WGgGHK9hQ6MPCyN7pL kgvOwrHPn9QFYy04LXElV2pz4x0BiAsuMlEuMlhvK32CfqDRTdZNEjjA87iYFJXD fxstSbyL7A369TeYNqms15OdnLhJu2vjRzxEQkI2KsMVoCm6YXmDsuc5FEJ8GQEQ /zhzcyQSALsvtvBNyMvL281adx/M2pqc4sqcTnVPraMosrE7WXpOKvYBwHQ= -----END CERTIFICATE-----Generated at Wed May 13 01:31:15 2026 by rpki-client