$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa File: 08765d1b-0666-44f8-ba33-732d7e392300.roa (raw, json) Hash identifier: iecWmG4W+iTPrLt3Favk5mI/RzEBwYf44kBWuvuRUzM= Subject key identifier: 5F:3A:34:C7:65:FF:23:4A:47:90:19:79:7C:CD:1B:B4:DB:A8:D6:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73426DD109B3823A2AC28FE14A603D40948B0B65 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa Signing time: Tue 05 May 2026 00:10:45 +0000 ROA not before: Tue 05 May 2026 00:10:45 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:42:6d:d1:09:b3:82:3a:2a:c2:8f:e1:4a:60:3d:40:94:8b:0b:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:10:45 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=5d1e4e38b7c01788f617aa135a874ca8d6043bd1bb047195686712ece5fa868e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:71:41:55:2d:2a:15:8e:1f:c0:8c:bd:9c:7a: 31:a7:15:85:a8:dd:bf:b8:60:60:72:25:16:eb:49: 25:1d:12:ec:5d:ae:8b:8e:88:78:a9:51:47:5b:b9: 40:ae:03:fe:ca:60:58:3e:f6:c2:db:ed:6b:56:6e: 96:95:7e:c4:7c:98:57:51:4d:8c:a1:b9:91:b6:9f: 9d:e6:cd:bc:7f:dd:64:cb:08:2d:c2:09:60:c2:4a: ff:bb:49:23:5e:48:a3:5b:0b:1a:fa:5d:eb:ec:37: fd:67:05:3c:ed:2e:9f:f4:03:19:16:58:79:ee:57: 13:ea:c7:ba:bc:1a:70:9d:a4:23:7c:60:7f:0b:22: 20:1a:dc:c5:b3:9b:4b:5d:e6:4f:41:a8:2e:52:23: 4a:02:c3:61:9e:1b:ad:97:89:67:f4:48:46:7a:8d: 00:c8:9a:fb:19:ea:cd:78:10:bb:78:b5:4e:39:04: 4e:97:ed:1e:8a:ba:fd:a8:25:28:0e:19:15:b6:fa: 96:c2:28:5c:a8:44:7c:ad:b0:04:9e:fa:c8:f3:29: e4:ef:66:1d:3b:42:c1:9b:55:f2:57:ac:63:38:bd: a6:ea:35:9b:92:99:b6:e0:43:6e:59:de:b9:bb:45: 39:ce:fc:ba:b7:6e:d6:1e:37:c8:49:b6:cf:d8:76: a7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3A:34:C7:65:FF:23:4A:47:90:19:79:7C:CD:1B:B4:DB:A8:D6:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.128.0/20 Signature Algorithm: sha256WithRSAEncryption 59:cc:76:b9:0e:bd:b2:16:dc:ee:cb:6c:ce:b0:60:60:3d:cf: a5:c2:f9:fa:d4:55:cf:7f:bf:57:37:14:2f:92:43:ae:4f:2d: d6:86:f2:bc:43:0c:a8:79:81:46:45:32:5a:53:1e:4e:70:1d: 5a:1b:4f:5d:62:cf:5a:64:31:f9:58:00:a9:c0:42:e2:4d:7d: 44:03:cf:ef:7f:74:5e:6f:f5:db:5b:c2:c2:01:39:96:cc:e7: ea:0d:9a:c6:3c:32:7a:d1:b2:69:0d:ea:e4:5f:72:c9:bf:c5: 30:b2:d3:5d:68:a0:43:e4:ca:96:1e:cc:6b:b9:09:56:e3:09: 4a:57:41:f2:dc:55:6d:c2:b6:0c:2a:36:96:86:0d:7d:34:99: 27:29:d3:7b:04:7a:76:ad:cd:8e:37:b0:74:38:da:be:a4:d1: d6:e2:f7:3c:ce:30:7b:42:1c:c2:d8:ca:84:26:d9:dd:1e:12: 00:6e:56:34:32:9f:70:73:9f:04:42:40:c9:d7:66:ad:8d:90: 0a:d6:a7:cb:bb:c4:88:6a:51:cc:67:a7:92:f2:e8:5c:73:8f: 5c:62:4c:11:47:7f:d0:3a:3a:7a:07:40:fa:03:8a:e4:65:3d: a3:c9:19:30:09:88:ae:57:64:a6:9e:85:e9:6e:03:7f:a6:27: 83:d6:ef:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc0Jt0Qmzgjoqwo/hSmA9QJSLC2UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAxMDQ1WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDFlNGUzOGI3YzAxNzg4ZjYxN2FhMTM1YTg3NGNhOGQ2 MDQzYmQxYmIwNDcxOTU2ODY3MTJlY2U1ZmE4NjhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFcUFVLSoVjh/AjL2cejGnFYWo3b+4YGByJRbrSSUdEuxd rouOiHipUUdbuUCuA/7KYFg+9sLb7WtWbpaVfsR8mFdRTYyhuZG2n53mzbx/3WTL CC3CCWDCSv+7SSNeSKNbCxr6XevsN/1nBTztLp/0AxkWWHnuVxPqx7q8GnCdpCN8 YH8LIiAa3MWzm0td5k9BqC5SI0oCw2GeG62XiWf0SEZ6jQDImvsZ6s14ELt4tU45 BE6X7R6Kuv2oJSgOGRW2+pbCKFyoRHytsASe+sjzKeTvZh07QsGbVfJXrGM4vabq NZuSmbbgQ25Z3rm7RTnO/Lq3btYeN8hJts/YdqfNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXzo0x2X/I0pHkBl5fM0btNuo1iowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA4NzY1ZDFiLTA2NjYtNDRmOC1iYTMzLTczMmQ3ZTM5MjMwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4SYAwDQYJKoZIhvcNAQELBQADggEBAFnMdrkOvbIW3O7LbM6wYGA9z6XC +frUVc9/v1c3FC+SQ65PLdaG8rxDDKh5gUZFMlpTHk5wHVobT11iz1pkMflYAKnA QuJNfUQDz+9/dF5v9dtbwsIBOZbM5+oNmsY8MnrRsmkN6uRfcsm/xTCy011ooEPk ypYezGu5CVbjCUpXQfLcVW3CtgwqNpaGDX00mScp03sEenatzY43sHQ42r6k0dbi 9zzOMHtCHMLYyoQm2d0eEgBuVjQyn3BznwRCQMnXZq2NkArWp8u7xIhqUcxnp5Ly 6Fxzj1xiTBFHf9A6OnoHQPoDiuRlPaPJGTAJiK5XZKaeheluA3+mJ4PW774= -----END CERTIFICATE-----Generated at Wed May 13 03:03:54 2026 by rpki-client